KR20090036045A - Method for providing advertisement with wireless one-time authentication and mobile phone, recording medium - Google Patents

Method for providing advertisement with wireless one-time authentication and mobile phone, recording medium Download PDF

Info

Publication number
KR20090036045A
KR20090036045A KR1020070101141A KR20070101141A KR20090036045A KR 20090036045 A KR20090036045 A KR 20090036045A KR 1020070101141 A KR1020070101141 A KR 1020070101141A KR 20070101141 A KR20070101141 A KR 20070101141A KR 20090036045 A KR20090036045 A KR 20090036045A
Authority
KR
South Korea
Prior art keywords
time authentication
area
wireless
screen
authentication key
Prior art date
Application number
KR1020070101141A
Other languages
Korean (ko)
Inventor
정종필
Original Assignee
주식회사 신한은행
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 신한은행 filed Critical 주식회사 신한은행
Priority to KR1020070101141A priority Critical patent/KR20090036045A/en
Publication of KR20090036045A publication Critical patent/KR20090036045A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/02Marketing; Price estimation or determination; Fundraising
    • G06Q30/0241Advertisements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/065Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
    • H04L9/0656Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Finance (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Accounting & Taxation (AREA)
  • Development Economics (AREA)
  • Strategic Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Game Theory and Decision Science (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The present invention relates to a wireless one-time authentication-based advertisement providing method and a mobile phone and a recording medium therefor, the wireless one-time authentication-based advertisement providing method according to the present invention, when providing a one-time authentication key-based wireless security authentication process using a mobile phone, confirming the advertisement provision Outputting a one-time authentication region for processing the one-time authentication key-based wireless security authentication on the mobile phone screen, and confirming whether an area for outputting advertisement data is set in a predetermined region (or all regions) of the one-time authentication region; And checking and extracting at least one advertisement data to be provided to the area where the advertisement data set in the one-time authentication area is to be output by the advertisement extracting means and confirming the advertisement provision to the mobile phone through the wireless communication network. Send advertisement data to the one-time authentication area And processing the output such that the control area (or the total area).

Description

Method for Providing Wireless One-Time Authentication-based Advertising and Mobile Phone and Recording Media for It {Method for Providing Advertisement with Wireless One-time Authentication and Mobile Phone, Recording Medium}

1 is a diagram illustrating a system configuration for processing a one-time authentication key based wireless security authentication through a one-time authentication area in which advertisements are output according to an embodiment of the present invention.

2 is a diagram illustrating a program providing system configuration for downloading and remotely mounting a one-time authentication program for outputting a one-time authentication area for outputting advertisements to a wireless terminal according to an embodiment of the present invention.

3 is a diagram illustrating a configuration of wireless terminal information having a one-time authentication program according to an embodiment of the present invention.

4 is a diagram illustrating one-time authentication management information provided to a wireless terminal according to an embodiment of the present invention.

5 is a diagram illustrating one-time authentication management information provided to a wireless terminal according to another embodiment of the present invention.

FIG. 6 is a diagram illustrating a process of remotely installing and downloading a one-time authentication program for outputting a one-time authentication area for outputting the advertisement to a wireless terminal according to an embodiment of the present invention.

7 is a diagram illustrating a wireless terminal function configuration having a one-time authentication key based wireless security authentication processing function according to an embodiment of the present invention.

8 is a diagram illustrating a configuration of a one-time authentication key-based wireless security authentication processing system according to an embodiment of the present invention.

9 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to an embodiment of the present invention.

10 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

11 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

12 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to an embodiment of the present invention.

13 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

14 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

15 is a diagram illustrating a process of inputting and transmitting a one-time authentication key according to an embodiment of the present invention.

16 is a diagram illustrating a one-time authentication key-based wireless security authentication process according to an embodiment of the present invention.

17 is a diagram illustrating a one-time authentication key-based wireless security authentication process according to an embodiment of the present invention.

18 is a diagram illustrating an advertisement providing process for replacing a one-time authentication fee (or a discount) according to an embodiment of the present invention.

<Description of main parts of drawing>

100: program providing server 105: authentication server

110: financial server 115: payment server

120: wireless web server 125: wireless server

130: ad server 135: network management system

140: wireless terminal

The present invention outputs a one-time authentication area for processing the one-time authentication key-based wireless security authentication on the mobile phone screen in the advertisement providing confirmation means in the one-time authentication key-based wireless security authentication processing using a mobile phone, the schedule of the one-time authentication area Checking whether an area for outputting advertisement data is set in an area (or an entire area); and at least one or more areas to be provided as an area for outputting advertisement data set in the one-time authentication area by advertisement extracting means when the advertisement is provided. Checking and extracting the advertising data and the wireless one-time authentication based on the advertising providing means for transmitting the advertising data to the mobile phone via a wireless communication network and outputting a predetermined area (or all areas) on the one-time authentication area It relates to an advertisement providing method.

As the rapid development of information and communication technology has been applied to the financial industry, most financial transactions (or payments) and various service industries that have been conventionally face-to-face have been made online through non-face-to-face financial transactions (or payments) and online services. Developed into an industry.

As the non-face-to-face financial transactions (or payments) and online service industries are gradually activated, cases of security problems such as online anonymity and security shortcomings in communication protocols are increasing rapidly. The non-face-to-face financial transactions (or payments) and online services are based on a method of using an encryption / decryption-based security protocol to solve anonymity, compensate for shortcomings in communication protocols through real name verification.

Recently, various non-face-to-face financial transactions (or payments) and online services that have been activated online have been transferred to the wireless field using the wireless network due to the opening of the wireless network and the expansion of the wireless communication infrastructure. Most wireless terminals are not only more constrained to MMI (Man Machine Interface) than the wired terminals used online, but also have low computing power, and the communication speed of the wireless network is lower than on-line. Since the security defects are different, it includes a problem that is difficult to apply the security function applied online, the security function applied to the wireless field is to minimize the user input, and to prevent high-level encryption / decryption operation It is preferably made in the form.

On the other hand, as a means for solving the online security problem, a one-time authentication key method called a one-time password (OTP) is commercially available, so-called OTP generator for the security function of the one-time authentication key method Although a module called a wireless terminal is used recently, an example of using the wireless terminal as an OTP generator for an online security function (for example, inputting an OTP generated by a wireless terminal to an online wired terminal) has been commercialized. In order to apply the OTP commercially available online to transactions (or payments) and wireless services, a national policy (eg, a two-factor policy in which the OTP generator must be logically separated from the communication terminal), or security This includes problems on elements (eg, lost wireless terminals, or changes in wireless carriers, etc.).

In addition, when the OTP is applied to the financial transaction (or payment) and the wireless service in the wireless field, when the OTP service fee is charged, the OTP service is activated despite the excellent security function of the OTP. It contains a difficult problem.

An object of the present invention for solving the above problems, when the one-time authentication key-based wireless security authentication processing using a mobile phone, outputs a one-time authentication area for processing the one-time authentication key-based wireless security authentication on the mobile phone screen, the one-time authentication area An output processing unit for processing the advertisement data to be output to a predetermined area (or all areas) of the advertisement, an advertisement receiving unit for receiving the advertisement data to be output to a certain area (or all areas) of the disposable authentication area through a wireless communication network, and the reception Generates and outputs a one-time authentication key through the advertisement output unit and the one-time authentication area for processing the outputted advertisement data to be output to a predetermined area (or all areas) of the one-time authentication area, and the one-time authentication key output to the one-time authentication area. When the one-time authentication key output through the input screen (or interface) is input, The present invention provides a wireless one-time authentication-based advertisement providing mobile phone having an authentication key processing unit for transmitting the input one-time authentication key to a server on a communication network to process one-time authentication-based wireless security authentication.

The wireless one-time authentication-based advertisement providing mobile phone according to the present invention outputs a one-time authentication area for processing the one-time authentication key-based wireless security authentication on the screen of the mobile phone, when the one-time authentication key-based wireless security authentication processing using a mobile phone, the one-time authentication An output processing unit for processing advertisement data to be output to a predetermined area (or all areas) of the area, an advertisement receiving unit for receiving advertisement data to be output to a certain area (or all areas) of the disposable authentication area through a wireless communication network, and Generate and output a one-time authentication key through the advertisement output unit and the one-time authentication area to process the received advertisement data to be output to a predetermined area (or all areas) of the one-time authentication area, and the one-time authentication output to the one-time authentication area The one-time authentication key output through the key input screen (or interface) When input, characterized in that it comprises an authentication key processing unit for transmitting the input one-time authentication key to the server on the communication network to process the wireless security authentication based on the one-time authentication key.

In the wireless disposable authentication-based advertisement providing mobile phone according to the present invention, the advertisement output unit, except for the one-time authentication key generation screen (or interface) when the one-time authentication key generation screen (or interface) is output to the one-time authentication area; Process to output the advertisement data to a region, or if the generated one-time authentication key is output to the one-time authentication region, process the advertisement data to be output to a region other than the region where the one-time authentication key is output, or When the one-time authentication key input screen (or interface) is output to the one-time authentication area, the one-time authentication on the remaining area except the one-time authentication key input screen (or interface) or the one-time authentication key input screen (or interface). All areas except where the key is entered, The advertisement data is output in a shaded area on the background of the area where the one-time authentication key is input, or when the one-time authentication key end screen (or interface) is output to the one-time authentication area, the one-time authentication key ends. The advertisement data may be output to a remaining area except a screen (or an interface).

On the other hand, it includes a recording medium recording a program for executing the above-described wireless one-time authentication-based advertising provided mobile phone function configuration.

On the other hand, the wireless one-time authentication-based advertisement providing method according to the present invention, when the one-time authentication key-based wireless security authentication processing using a mobile phone, the one-time authentication to process the one-time authentication key-based wireless security authentication on the mobile phone screen in the advertisement providing confirmation means Outputting an authentication area and confirming that an area for outputting advertisement data is set in a predetermined area (or all areas) of the one-time authentication area; and upon confirming the advertisement provision, an advertisement set in the one-time authentication area by the advertisement extracting means. Identifying and extracting at least one advertisement data to be provided as an area to which data is to be output; and transmitting advertisement data to the mobile phone through a wireless communication network in an advertisement providing means and outputting the advertisement data to a predetermined area (or entire area) on the one-time authentication area. Characterized in that it comprises a step of processing if possible The.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. Terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to intentions or customs of users or operators. Therefore, the definition should be made based on the contents throughout the present invention.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify, integrate, or separate the terminology so that those skilled in the art to which the present invention pertains may clearly understand the present invention. The present invention is by no means limited thereto. That is, each means described above is a server (or terminal) provided on the system shown in the following embodiments, or is a predetermined functional configuration provided in at least one or more servers (or terminals), or at least one or more servers. (Or a terminal) may be an association of at least two or more functional components. In addition, the server (or terminal) shown in the following embodiment is shown to include at least two or more functional components for achieving the technical features of the present invention for convenience, the functional component shown in the server (or terminal) Matched with the above-described means may be provided in two or more different servers (or terminals) according to the role and function of each functional component and the corresponding server (or terminal) operator (or operator), whereby the present invention is not limited No.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram illustrating a system configuration for processing a one-time authentication key-based wireless security authentication through a one-time authentication area in which advertisements are output according to an embodiment of the present invention.

In more detail, Figure 1 is a one-time authentication key-based wireless security authentication processing through the wireless terminal 140 used by the customer, the wireless terminal 140 for the one-time authentication key-based wireless security authentication processing in a certain area of the screen After outputting the one-time authentication area outputting the one-time authentication screen, and processing the advertisement data to be output to a predetermined area (or entire area) on the one-time authentication area, the one-time authentication area based wireless security authentication processing As a system configuration for those who have ordinary knowledge in the art to which the present invention pertains, one-time authentication key-based wireless security authentication is performed through the one-time authentication area in which the advertisement is output by referring to and / or modifying the drawing 1. Although various implementation methods for the system configuration to be processed may be inferred, the present invention is inferred from the above. Is made, including any exemplary method, to which the technical feature that is not limited to the exemplary method shown in the figure 1.

Referring to FIG. 1, a system for processing a one-time authentication key-based wireless security authentication through the one-time authentication area in which the advertisement is output includes a one-time authentication area in which the advertisement is output to at least one wireless terminal 140 through a wireless communication network. A program providing server 100 for providing a one-time authentication program to be output on the screen, and a one-time authentication program for outputting the one-time authentication area on which the advertisement is output by connecting to the program providing server 100 through a wireless communication network After downloading and recording to the recording medium, if the one-time authentication key-based wireless security authentication processing through the wireless terminal 140 through the one-time authentication program is required, based on the one-time authentication key in a certain area of the screen of the wireless terminal 140 Print a one-time authentication area that outputs a one-time authentication screen for wireless security authentication processing. After processing the advertisement data is output to a predetermined area (or entire area) on the one-time authentication area, the wireless terminal 140 to generate a one-time authentication key for the one-time authentication key-based wireless security authentication through the one-time authentication area. And an authentication server 105 for checking the validity of the one-time authentication key generated by the wireless terminal 140 and processing the one-time authentication key-based wireless security authentication, and at least one wireless terminal connected to the wireless communication network ( 140 and at least one wireless server providing various financial transactions (or payments) or authentication-based additional services based on an advertisement server 130 providing at least one advertisement data and a result of validating the one-time authentication key. Characterized in that it comprises a (125).

Here, some of the advertising revenue corresponding to the advertisement provided to the wireless terminal 140 through the ad server 130 is replaced with a one-time authentication program usage fee (or one-time authentication key-based wireless security authentication fee) according to the advertisement output. It is preferable to be used.

According to an exemplary embodiment of the present invention, the advertisement server 130 is preferably a server of a communication company operating the wireless communication network and interoperates with the network operation system 135 provided on the wireless communication network.

According to another exemplary embodiment of the present invention, the advertisement server 130 may be connected to the network management system 135 provided on the wireless communication network as an advertisement provider side server associated with the wireless communication network through a communication network. The present invention is not limited thereby.

In addition, the wireless server 125 has a financial server 110 having at least one financial transaction function according to the one-time authentication key-based wireless security authentication, and at least one payment settlement according to the one-time authentication key-based wireless security authentication. It is preferable to include at least one or more payment server 115 having a function, and a wireless web server 120 having various member authentication / service authentication / terminal authentication function according to the one-time authentication key-based wireless security authentication. Do.

In addition, the wireless communication network includes at least one base station, a control station for controlling the base station and at least one server (or device) for controlling and operating a wireless communication network including the base station and the control station ( And 135).

2 is a diagram illustrating a program providing system for downloading and remotely mounting a one-time authentication program for outputting a one-time authentication area for outputting advertisements to a wireless terminal 140 according to an embodiment of the present invention.

More specifically, Figure 2 is a one-time authentication key-based wireless security authentication processing for the one-time authentication key-based wireless security authentication processing through the wireless terminal 140 used by the customer through a wireless communication network in the wireless security authentication processing system is required, the A one-time authentication area for outputting a one-time authentication screen for one-time authentication key-based wireless security authentication processing is output to a predetermined area (or entire area) of the screen of the wireless terminal 140, and a predetermined area (or all areas) on the one-time authentication area. By processing the advertisement data to be output to, the one-time authentication program for the one-time authentication key-based wireless security authentication using the wireless terminal 140 for a system configuration for remote mounting by downloading to the wireless terminal 140, Those skilled in the art to which the present invention pertains, see FIG. And / or may be modified to infer various implementation methods for downloading and remotely mounting a one-time authentication program for outputting the one-time authentication area on which the advertisement is output to the wireless terminal 140 on the screen. It includes all the implementation methods, and is not limited by the implementation method shown in FIG.

For example, the one-time authentication program is downloaded from the program providing system to a wired terminal (eg, a wired terminal used by a customer or a wired terminal used by a window employee) through a wired communication network, and then the wired terminal and the wireless terminal 140. It is possible to be mounted on the wireless terminal 140 through a cable communication connecting, or it is possible to manufacture so that the one-time authentication program is mounted on the wireless terminal 140 from the manufacturer of the wireless terminal 140, The present invention is characterized in that it comprises all the possible inference methods.

Hereinafter, in FIG. 2, a component on a wireless security authentication processing system for downloading and remotely mounting a one-time authentication program for outputting the one-time authentication area on which the advertisement is output to the wireless terminal 140 on the screen is provided as a "program providing server." (100) ", the program providing server 100 is implemented in the form of a server (or device) provided on the wireless security authentication processing system, as shown in Figure 2, or the wireless terminal 140 It is possible to be implemented in the form of a functional component provided in the authentication server 105 on the wireless security authentication processing system to download and remotely mount a one-time authentication program for outputting the one-time authentication area on which the advertisement is output on the screen. Therefore, it will be apparent that the present invention is not limited.

Referring to FIG. 2 according to an embodiment of the present invention, a program providing system for outputting a one-time authentication region on which an advertisement is output on a screen may be connected to the program providing server 100 through a wireless communication network. The wireless terminal 140 which downloads a one-time authentication program for outputting the one-time authentication area output on the screen and records the recording on the recording medium, and is connected to the wireless terminal 140 through a wireless communication network to the wireless terminal 140. It includes a program providing server 100 for providing a one-time authentication program for outputting the one-time authentication area for the advertisement output on the screen, the one-time authentication key based wireless through the one-time authentication program provided to the wireless terminal 140 The wireless security authentication processing system including at least one function configuration for security authentication processing It is characterized in that which further comprises a non-authentication server 105.

The wireless terminal 140 is a mobile communication terminal connected to a Code Division Multiple Access (CDMA) / Wide-CDMA (WCDMA) based mobile communication network, a wireless communication terminal connected to an HSDPA based wireless communication network, or an IEEE 802.16x based communication. At least one wireless terminal 140 including at least one or more portable Internet terminals connected to the high-speed wireless Internet, characterized in that the wireless terminal 140 is at least provided by the program providing server 100 A function for outputting one or more program providing interface screens, inputting (or selecting) program request information for downloading and remotely mounting the one-time authentication program through the program providing interface screen, and transmitting the program request information to the program providing server 100. Configuration (e.g., browser program and communication functions) Preferable.

Those skilled in the art to which the present invention pertains can easily infer the features of the wireless terminal 140, and thus a detailed description thereof is omitted for convenience.

According to an embodiment of the present invention, the wireless communication network to which the wireless terminal 140 connects may include at least one of the CDMA based mobile communication network, the HSDPA based wireless communication network, or the IEEE 802.16x based high speed wireless Internet. Do.

The wireless communication network to which the wireless terminal 140 connects includes at least one or more base stations, a control station for controlling the base station, and at least one server (or apparatus) for controlling and operating a wireless communication network including the base station and the control station. It characterized in that it comprises a network operating system 135 including).

The base station is located at an end of the wireless communication network connecting a wireless section with at least one wireless terminal 140 located in a cell (eg, frequency reach) according to a wireless communication protocol defined in the wireless communication network. As a component, it characterized in that the network operation system 135 to control and operate the radio terminal 140 through the control station.

According to an embodiment of the present invention, when the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, the base station connects a wireless section with at least one wireless terminal 140 based on the CDMA / WCDMA / GSM wireless protocol stack. It is desirable to.

According to another exemplary embodiment of the present invention, when the wireless communication network is an HSDPA based wireless communication network, the base station preferably connects a wireless section with at least one wireless terminal 140 based on the HSDPA wireless protocol stack.

According to another embodiment of the present invention, when the wireless communication network is an IEEE 802.16x based wireless communication network, the base station includes at least one based on a wireless physical (PHY) layer and a media access control (MAC) layer of the IEEE 802.16x protocol. It is preferable to connect the wireless terminal 140 and the wireless section.

The control station is a component on a wireless communication network that controls at least one base station and connects the base station and the network operation system 135 in a wired section. When the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, Preferably, the control station includes a base station controller (BSC). When the wireless communication network is an IEEE 802.16x based wireless communication network, the control station includes a packet access router (PAR). desirable.

The network operation system 135 controls at least one or more radio terminals 140 connectable to the radio communication network through at least one or more base stations in association with the control station, and at least one other radio with the radio terminal 140. A communication channel (or a call channel) is connected to a terminal 140 or a server on a communication network, and the various communication charges and additional service use charges corresponding to the communication plan subscribed to the wireless terminal 140 are calculated. .

According to an embodiment of the present invention, when the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, the network operation system 135 may include a mobile switching center (MSC) and an HLR (Mobile Switching Center) for processing circuit switching. Interworking function that provides circuit data service and / or packet data service for wireless data communication and connection with other networks in the network infrastructure for voice call and home location register (VLR). IWF), various message centers (e.g., short message center (SMC), multimedia message center (MMC), etc.) and various additional service server farms, and SGSN for processing packet exchange. (Serving GPRS Support Node), GGSN (Gateway GPRS Support Node) and RNC (Radio Network Controller) are preferably included.

According to another exemplary embodiment of the present invention, when the wireless communication network is an IEEE 802.16x based wireless communication network, the network operation system 135 may include a home agent (HA) for mobility of IP to the wireless terminal 140, and Authentication, Authorization and Accounting (AAA) server for user authentication, Network Management Server (Network Management System), FA (Foreign Agent) interworking with the wireless network and at least one external wireless network, and the wireless terminal ( It is preferable to include a Dynamic Host Configuration Protocol (DHCP) server and DNS for allocating and registering Mobile IP (MIP).

According to the present invention, the program providing server 100 connects and manages a communication channel with the wireless terminal 140 through the wireless communication network to provide a web interface corresponding to the wireless terminal 140 and a wireless communication network. It characterized in that it comprises an interface unit 200, whereby the program providing server 100 has a function of a web server that is connected to the communication through the wireless terminal 140 and a wireless communication network.

According to an embodiment of the present invention, when the wireless terminal 140 is a mobile communication terminal to which a communication channel is connected through a CDMA / WCDMA-based wireless communication network, the interface unit 200 is connected to the wireless terminal 140 and the WAP. (Wireless Markup Language) or WML (Wireless Markup Language) or the like to connect a communication channel based on a (Wireless Application Protocol) or ME (Mobile Explorer) protocol (or a full-browsing based wireless Internet-based), and to the wireless terminal 140 through the communication channel. It is preferable to transmit and output a program providing interface screen in the form of an HTML compatible document, and to receive and process program request information corresponding to the program providing interface screen from the wireless terminal 140.

According to an embodiment of the present invention, when the wireless terminal 140 is a wireless communication terminal to which a communication channel is connected through an HSDPA-based wireless communication network, the interface unit 200 is connected to the wireless terminal 140 and the HSDPA. A communication channel is connected based on a corresponding wireless protocol, a program providing interface screen in the form of an HTML-compatible document is transmitted to the wireless terminal 140 through the communication channel, and outputted, and the program is provided from the wireless terminal 140. It is preferable to perform a function of receiving and processing program request information corresponding to an interface screen.

According to another exemplary embodiment of the present invention, when the wireless terminal 140 is a wireless terminal 140 through which a communication channel is connected through an IEEE 802.16x based wireless communication network, the interface unit 200 may include the wireless terminal ( 140) connects a communication channel based on a wireless protocol corresponding to the IEEE 802.16 standard, transmits and outputs a program providing interface screen to the wireless terminal 140 through the communication channel, and outputs it from the wireless terminal 140. It is preferable to perform a function of receiving and processing predetermined program request information corresponding to the program providing interface screen.

According to the present invention, the program providing server 100 when the wireless terminal 140 is connected to the program providing server 100 through the interface unit 200, in conjunction with the interface unit 200, the wireless terminal And an interface providing unit 205 for generating (or extracting) and providing a program providing interface screen for inputting (or selecting) and transmitting program request information at 140.

The interface providing unit 205 is provided in the wireless terminal 140 when the wireless terminal 140 is connected to the program providing server 100 (or a one-time authentication program providing request) through the interface unit 200. A program providing interface screen for inputting (or selecting) program request information corresponding to a function configuration (for example, a browser program provided in the wireless terminal 140) and transmitting the program request information to the program providing server 100 through the wireless communication network. Or extract from a database (not shown), and provide the generated (or extracted) program providing interface screen to the wireless terminal 140 through the wireless communication network in association with the interface unit 200. It features.

Thereafter, the wireless terminal 140 inputs (or selects) program request information on the basis of the program providing interface screen, and transmits the input (or selected) program request information to the program providing server 100 through the wireless communication network. To send).

Here, the program request information is customer information requesting to provide the one-time authentication program to the wireless terminal 140 (for example, customer member information including member ID information and password information of the customer, or the name of the customer, Customer personal information including at least one of a social security number, an address, a contact number, etc.) and operating system (or platform) information provided in the wireless terminal 140 on which the one-time authentication program is mounted. , At least one mobile identification number (MIN), a serial number (Electronic Serial Number; ESN), USIM (Universal Subscriber Identity Module (USIM) information, etc.) and carrier information and terminal model information, etc. It is preferable to include information.

According to the present invention, the program providing server 100 is a program D / B (225) for storing at least one or more program source or program file corresponding to the one-time authentication program to be provided to the wireless terminal 140, and the wireless When the program request information is received from the terminal 140, the one-time authentication program corresponding to the program request information is extracted or dynamically generated from the program D / B 225 and the wireless terminal through the interface unit 200. Characterized in that it comprises a program providing unit 210 provided to (140).

According to an exemplary embodiment of the present invention, the program D / B 225 stores a one-time authentication program file that can be operated in an operating system (or terminal platform) provided in the wireless terminal 140. If the program request information is received from the wireless terminal 140, the program providing unit 210 extracts a one-time authentication program file matching the program request information from the program D / B 225. It features.

According to another exemplary embodiment of the present invention, the program D / B 225 stores a one-time authentication program source capable of operating in an operating system (or terminal platform) provided in the wireless terminal 140. When the program request information is received from the wireless terminal 140, the program provider 210 extracts a one-time authentication program source matching the program request information from the program D / B 225, and Compile the extracted one-time authentication program source (Compile), characterized in that for dynamically generating a one-time authentication program to be provided to the wireless terminal (140).

Thereafter, the program providing unit 210 provides the extracted (or dynamically generated) one-time authentication program to the wireless terminal 140 through the wireless communication network through the interface unit 200 and remotely mounts the present invention. Those skilled in the art will be familiar with how to remotely mount the one-time authentication program (for example, a method of remotely mounting the wireless terminal 140 by attaching a program provider certificate). Detailed description thereof will be omitted for convenience.

The one-time authentication program provided to the wireless terminal 140 by the program providing unit 210 has a function of checking whether a one-time authentication key-based security authentication using the wireless terminal 140 is processed, and when checking the security authentication. And outputting a one-time authentication area on which the one-time authentication screen for the wireless security authentication process based on the one-time authentication key is output on the screen of the wireless terminal 140, and outputting advertisement data in a predetermined area (or an entire area) on the one-time authentication area. Outputs a one-time authentication key generation screen (or interface) to a predetermined function on the one-time authentication area, and generates a one-time authentication key through the one-time authentication key generation screen (or interface). Output the one-time authentication key to a certain area, the customer is a one-time person to enter the one-time authentication key Outputting an authentication key input screen (or interface) to a predetermined area on the one-time authentication area, and if the one-time authentication key-based security authentication is processed, outputting a one-time authentication key end screen (or interface) to a certain area on the one-time authentication area. A function for receiving advertisement data to be output to a predetermined area (or entire area) on the one-time authentication area through a wireless communication network, and outputting the received advertisement data to a predetermined area (or all area) on the one-time authentication area. It is characterized by comprising a function to process as possible.

Here, the function of processing the received advertisement data to be output to a predetermined area (or all areas) on the one-time authentication area, if the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the one-time authentication The advertisement data is processed to be output in the remaining areas except for the key generation screen (or interface), or when the one-time authentication key is output in the one-time authentication area, the advertisement data is displayed in the remaining areas except the one-time authentication key output area. Is outputted, or if the one-time authentication key input screen (or interface) is output to the one-time authentication area, the remaining area except the one-time authentication key input screen (or interface), or the one-time authentication key input screen (or interface) Except for one-time authentication key input area on On the contrary, when the advertisement data is output to the shaded area of the background of the one-time authentication key input area, or when the one-time authentication key end screen (or interface) is output to the one-time authentication area, the one-time authentication key end screen It is preferable to include at least one process of processing the advertisement data to be output to the remaining areas except the (or interface).

When the one-time authentication program is downloaded and remotely mounted to the wireless terminal 140 through the program providing unit 210, the wireless terminal 140 first executes the one-time authentication program to validate the one-time authentication program. Initiate the program diagnostic mode for authenticating, for this purpose, the program providing server 100 is connected to the one-time authentication program provided in the wireless terminal 140 to diagnose the validity of the one-time authentication program ( 215) characterized by comprising.

According to an exemplary embodiment of the present invention, the program diagnostic mode generates and transmits a one-time authentication key according to a one-time authentication key-based wireless security authentication procedure in the one-time authentication program provided in the wireless terminal 140, and the one-time authentication. It is desirable to include verifying that the key is valid.

Here, the one-time authentication key-based wireless security authentication, it is preferable that at least one or more of the one-time authentication key generation method of the time-sync (Challenge-Response) method (Time-Synchoronous).

According to the present invention, the program providing server 100 is downloaded to the wireless terminal 140 and the one-time authentication management information corresponding to the remote-mounted one-time authentication program and the one-time authentication program request the wireless terminal 140 Characterized in that it comprises the information storage unit 220 for storing the information stored in the one-time authentication management D / B 230 by linking the customer information and the wireless terminal 140 information requested to be mounted on.

According to the method of the present invention, when the validity of the one-time authentication program is confirmed as the result of the diagnosis of the diagnosis unit 215, the one-time authentication downloaded to the wireless terminal 140 and remotely mounted. Preferably, the management information, the customer information corresponding to the customer who has transmitted the program request information, and the wireless terminal 140 information are cooperatively processed and stored in a cooperative process with a predetermined one-time authentication management D / B 230. The one-time authentication management information, the customer information and the wireless terminal 140 information stored in the one-time authentication management D / B 230 is used for the one-time authentication key-based wireless security authentication processing in a wireless security authentication processing system. do.

3 is a diagram showing the configuration of the wireless terminal 140 information with a one-time authentication program according to the method of the present invention.

In more detail, FIG. 3 illustrates that when the wireless terminal 140 illustrated in the program providing system illustrated in FIG. 2 is a mobile communication terminal, the wireless terminal 140 is processed in association with the one-time authentication management information for the one-time authentication-based wireless security authentication. Regarding the configuration of the wireless terminal 140 information provided in the one-time authentication management D / B 230, those of ordinary skill in the art to which the present invention pertains, refer to and / or modify the present figure 3 for the disposable Various implementation methods for the configuration of the information of the wireless terminal 140 having the authentication program may be inferred. However, the present invention includes all the implementation methods inferred above, and the technical description is given only by the implementation method shown in FIG. Features are not limited.

For example, those skilled in the art to which the present invention pertains may refer to, and / or modify, the wireless terminal 140 in addition to the mobile communication terminal HSDPA-based wireless communication terminal, or IEEE 802.16.x. In the case of the portable Internet terminal, it is possible to infer the configuration of the one-time authentication management information stored in the one-time authentication management D / B 230, and also omitted for convenience in the configuration of the wireless terminal 140 shown in FIG. Inferred information items will be inferred, and it will be apparent that the present invention includes all such inferred methods of implementation.

Referring to FIG. 3, the wireless terminal information includes at least one wireless terminal 140 of the telephone number MIN, serial number ESN, and USIM information USIM of the wireless terminal 140 equipped with the one-time authentication program. And unique information, and may further include platform information, carrier information, and terminal model information for the wireless terminal 140.

4 is a diagram illustrating one-time authentication management information provided to the wireless terminal 140 according to an embodiment of the present invention.

In more detail, Figure 4 is a mobile terminal 140 shown in the program providing system shown in Figure 2 is a mobile communication terminal, a one-time authentication key in a time-synchronous (Time-Synchoronous) method to the wireless terminal 140 When providing and mounting a one-time authentication program to generate, showing the configuration of the one-time authentication management information stored in the one-time authentication management D / B 230 shown in the program providing system shown in Figure 2, this invention belongs Those skilled in the art will be able to infer various implementation methods for constructing the one-time authentication management information provided to the wireless terminal 140 by referring to and / or modifying the present invention. It is made to include all the implementation methods inferred, the technical features are not limited only to the implementation method shown in FIG.

For example, those skilled in the art to which the present invention pertains may refer to, and / or modify, the wireless terminal 140 in addition to the mobile communication terminal HSDPA-based wireless communication terminal, or IEEE 802.16.x. In the case of the portable Internet terminal, it is possible to infer the one-time authentication management information configuration stored in the one-time authentication management D / B 230, and also the information omitted for convenience in the one-time authentication management information configuration shown in FIG. It will be apparent that the items will be inferred and the present invention includes all such inferred methods of implementation.

According to the present invention, the one-time authentication program mounted on the wireless terminal 140 through the program providing system shown in FIG. 2 is mounted on the wireless terminal 140 owned by the customer to generate a one-time authentication key. By doing so, the one-time authentication program is characterized in that it comprises a program code that can be driven or operated in the customer wireless terminal 140 platform. For example, if the wireless terminal 140 is equipped with a WIPI (Wireless Internet Platform for Interoperability) platform, the one-time authentication program includes a program code that operates on a WIPI basis, and other platforms (eg, GVM / SK- If VM / BREW is installed), it includes program code that runs on the platform.

In FIG. 4, the one-time authentication program is provided in the program D / B 225 shown in FIG. 2 in the form of a precompiled program, or the program shown in FIG. 2 in the form of source code to be compiled. It is characterized in that stored in the D / B (225).

When the one-time authentication program is provided in the program D / B 225 in the form of a precompiled program according to an embodiment of the present invention, the wireless terminal 140 through the wireless communication network in the program providing server 100 At the time of providing and mounting the one-time authentication program, at least one or more one-time authentication key generation information corresponding to the one-time authentication program (for example, a secret key value corresponding to a randomly generated number in the program providing server 100) ) Together with the wireless terminal 140 to be stored in a storage device (eg, a memory unit of the wireless terminal 140, or a chip memory unit provided in an IC chip mounted or detached from the wireless terminal 140). Preferably, the disposable authentication program mounted on the wireless terminal 140 generates a one-time authentication key. Program, it is preferable to extract at least one one-time authentication key generation information from the storage device, and generating a one-time authentication key to the one-time authentication key generation information group in half.

When the one-time authentication program is stored in the program D / B 225 in the form of source code to be compiled according to another embodiment of the present invention, the program providing server 100 to the wireless terminal 140 At the time of providing the one-time authentication program, the one-time use of at least one or more one-time authentication key generation information corresponding to the one-time authentication program (for example, a secret key value corresponding to a number randomly generated by the program providing server 100) It is assigned to the one-time authentication key generation information variable included in the authentication program source code, and the one-time authentication program is compiled by compiling the one-time authentication program source code in which at least one or more one-time authentication key generation information is assigned to the one-time authentication key generation information variable. A one-time authentication program generated dynamically as described above. Preferably, a RAM is provided to the wireless terminal 140 through a wireless communication network and mounted thereon. Then, at the time when the one-time authentication program mounted on the wireless terminal 140 generates a one-time authentication key, the one-time authentication program is It is preferable to generate a one-time authentication key based on the one-time authentication key generation information substituted in the one-time authentication program internal variable.

According to another exemplary embodiment of the present invention, even when at least one or more one-time authentication key generation information is substituted into the one-time authentication program as described above, the dynamically generated one-time authentication program to the wireless terminal 140 according to the intention of a person skilled in the art. At the time of mounting and providing, at least one or more other one-time authentication key generation information is provided to the wireless terminal 140 and stored in the storage device, and then the one-time authentication program mounted on the wireless terminal 140 is At the time of generating the one-time authentication key, it is possible to generate a one-time authentication key by using both the one-time authentication key generation information provided in the one-time authentication program and the one-time authentication key generation information provided in the storage device, The present invention is not limited by this.

Referring to FIG. 4, the one-time authentication management information provided to the wireless terminal 140 through the program providing system illustrated in FIG. 2 is an operating system (or platform) for the wireless terminal 140 on which the one-time authentication program is mounted. Information), a version of the one-time authentication program, an authentication key generation algorithm, at least one or more one-time authentication key generation information, or a one-time authentication key update period. It may be further included, but the present invention is not limited by the information item.

The operating system (or platform) information included in the one-time authentication management information includes a type of operating system (or platform) included in the wireless terminal 140 equipped with the one-time authentication program through the program providing system shown in FIG. 2. Preferably, the operating system (or platform) information is used to identify an operating system (or platform) of the one-time authentication program to be provided to the wireless terminal 140 when the one-time authentication program is upgraded.

The version included in the one-time authentication management information includes version information of the one-time authentication program for each platform to be provided to the wireless terminal 140.

According to the embodiment of the present invention, even if the same type of one-time authentication program (for example, one-time authentication program operating on the same platform), the type or version of the authentication key generation algorithm applied according to the version of the one-time authentication program may be different. As a result, since the one-time authentication key generated by the one-time authentication program will also vary, the version information provides information for accurately determining the one-time authentication program mounted on the wireless terminal 140. By the version information of the one-time authentication key agent program it is possible to minimize the one-time authentication key authentication error that may occur in the process of authenticating the one-time authentication key generated in the wireless terminal 140.

The authentication key generation algorithm included in the one-time authentication management information includes hashing algorithm information applied to the one-time authentication program or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating authentication keys are MD4, MD5, SHA, and the like, and a hashing algorithm modified from the hashing algorithm according to an application field (for example, SHA-1 hashing algorithm modified from SHA). This is being used.

The one-time authentication key generation information included in the one-time authentication management information is information for generating a one-time authentication key of the time synchronization method, referring to FIG. 4, the one-time authentication key generation information is a time when the one-time authentication key is generated ( Or time) as first generation information, and is unique to the wireless terminal 140 on which the secret key value corresponding to a value randomly generated by the program providing server 100 or the one-time authentication program is mounted according to an implementation method. It is preferable to use the given MIN / ESN as the second generation information or the third generation information.

Referring to an embodiment of the present invention, when the one-time authentication program uses the MIN / ESN of the wireless terminal 140 as the one-time authentication key generation information for generating the one-time authentication key, the MIN / ESN is a one-time authentication as it is. The MIN / ESN may be used as key generation information, and the MIN / ESN has an excessively large value to prevent the one-time authentication program from overflowing in the process of generating the one-time authentication key. It is possible to convert the data to a value within a certain size by applying a hash function to the device, which is determined by the intention of a person skilled in the art or the computing power of the wireless platform.

The one-time authentication key update period of the one-time authentication management information is a time interval in which the one-time authentication key generated by the one-time authentication program is volatilized and invalidated in time when the authentication key generation algorithm follows the time synchronization scheme. If it is difficult to transmit the time (or time) information of the one-time authentication key generated with the one-time authentication key in the process of transmitting the one-time authentication key to the authentication server 105 at 140, the wireless terminal ( 140 is used for synchronizing the time (or time) generation of the one-time authentication key generation between the authentication server 105 for a predetermined time. That is, the one-time authentication key generated by the one-time authentication program is transmitted to the authentication server 105 within the one-time authentication key update period, the authentication server 105 is a one-time authentication key authentication code corresponding to the one-time authentication key Should be created. That is, after the one-time authentication key is generated in the one-time authentication program provided in the wireless terminal 140, when the one-time authentication key authentication code is generated within the one-time authentication key update period in the authentication server 105, the one-time authentication The validity of the key is authenticated. Therefore, the one-time authentication key update period is a time required to provide the one-time authentication key generated in the wireless terminal 140 to the wireless terminal 140, and to transmit the one-time authentication key to the authentication server 105 It is preferable to consider the time required and the time required to generate a one-time authentication key authentication code in the authentication server 105, and the like.

According to another exemplary embodiment of the present invention, the authentication key generation algorithm follows a time synchronization scheme and transmits time (or time) information on which the one-time authentication key is generated in the one-time authentication program to the authentication server 105. If it is easy, the one-time authentication key renewal cycle may be omitted, or may be set at very short time intervals.

5 is a view showing the one-time authentication management information provided to the wireless terminal 140 according to another embodiment of the present invention.

In more detail, in FIG. 5, the wireless terminal 140 illustrated in the program providing system illustrated in FIG. 2 is a mobile communication terminal, and a one-time authentication key is a challenge-response method to the wireless terminal 140. When providing and equipped with a one-time authentication program for generating a, showing the configuration of the one-time authentication management information stored in the one-time authentication management D / B 230 shown in the program providing system shown in Figure 2, the present invention Those skilled in the art will be able to infer various implementation methods for constructing one-time authentication management information provided to the wireless terminal 140 by referring to and / or modifying the present invention. Is made including all the inferred implementation method, the technical features are not limited only to the implementation method shown in FIG.

For example, those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 5 so that the wireless terminal 140 is an HSDPA-based wireless communication terminal in addition to the mobile communication terminal, or IEEE 802.16.x. In the case of the portable Internet terminal, it is possible to infer the one-time authentication management information configuration stored in the one-time authentication management D / B 230, and also omitted for convenience in the one-time authentication management information configuration shown in FIG. Information items may be inferred, and it is apparent that the present invention includes all such inferred methods of implementation.

According to the present invention, the one-time authentication program mounted on the wireless terminal 140 through the program providing system shown in FIG. 2 is mounted on the wireless terminal 140 owned by the customer to generate a one-time authentication key. By doing so, the one-time authentication program is characterized in that it comprises a program code that can be driven or operated in the customer wireless terminal 140 platform. For example, if the wireless terminal 140 is provided with a WIPI (Wireless Internet Platform for Interoperability) platform, the one-time authentication program includes a program code operating on a WIPI basis, and other platforms (eg, GVM / SK- If VM / BREW is installed), it includes program code that runs on the platform.

In FIG. 5, the one-time authentication program is provided in the program D / B 225 shown in FIG. 2 in the form of a precompiled program, or the program shown in FIG. 2 in the form of source code to be compiled. It is characterized in that stored in the D / B (225).

According to an embodiment of the present invention, the one-time authentication program is provided in the program D / B 225 in the form of a pre-compiled program, and the one-time authentication program is for generating the one-time authentication key from the authentication server 105. And a challenge value as one-time authentication key generation information, wherein the program providing server 100 provides the one-time authentication program to the customer wireless terminal 140 through a wireless communication network, and then mounts the challenge value. At the time when the one-time authentication program mounted on the wireless terminal 140 generates the one-time authentication key, the one-time authentication program preferably generates a one-time authentication key based on the challenge value received from the authentication server 105. Do.

According to another embodiment of the present invention, when the one-time authentication program is provided in the program D / B 225 in the form of a pre-compiled program, the wireless terminal 140 through the wireless communication network in the program providing server 100. At the time when the one-time authentication program is provided and mounted, at least one one-time authentication key generation information corresponding to the one-time authentication program (eg, a secret key corresponding to a random number generated by the program providing server 100) Value) together with the wireless terminal 140 and stored in a storage device (eg, a memory unit of the wireless terminal 140, or a chip memory unit provided in an IC chip mounted or detached from the wireless terminal 140). Preferably, when the one-time authentication program mounted on the wireless terminal 140 generates a one-time authentication key, the one-time authentication program To extract one or more one-time authentication key generation information from the challenge value and the storage device is received from the authentication server 105, and generates a one-time authentication key based on the one-time authentication key generation information are preferred.

According to another embodiment of the present invention, when the one-time authentication program is stored in the one-time authentication management D / B 230 in the form of source code to be compiled, the wireless terminal 140 in the program providing server 100. At the time of providing the one-time authentication program with a), at least one or more one-time authentication key generation information corresponding to the one-time authentication program (for example, a secret key value corresponding to a number randomly generated by the program providing server 100) Is substituted into the one-time authentication key generation information variable included in the one-time authentication program source code, and the one-time authentication program source code in which at least one or more one-time authentication key generation information is substituted into the one-time authentication key generation information variable Create a one-time authentication program, dynamically generated one-time as described above It is preferable to provide an authentication program to the wireless terminal 140 through a wireless communication network, and to mount the authentication program thereafter. It is preferable to generate a one-time authentication key based on the challenge value received from the authentication server 105 and the one-time authentication key generation information substituted in the one-time authentication program internal variable.

According to another exemplary embodiment of the present invention, even when at least one or more one-time authentication key generation information is substituted into the one-time authentication program as described above, the dynamically generated one-time authentication program to the wireless terminal 140 according to the intention of a person skilled in the art. At the time of providing and mounting, at least one or more other one-time authentication key generation information is provided to the wireless terminal 140 and stored in a storage device, and the one-time authentication program mounted on the wireless terminal 140 is a one-time authentication. At the time of generating the key, the one-time authentication program is a challenge value received from the authentication server 105, the one-time authentication key generation information provided in the one-time authentication program and the one-time authentication key generation information provided in the storage device It is possible to generate a one-time authentication key, etc., whereby the present invention It does not specified.

Referring to FIG. 5, the one-time authentication management information provided to the wireless terminal 140 through the program providing system illustrated in FIG. 2 is an operating system (or platform) for the wireless terminal 140 on which the one-time authentication program is mounted. Information, a version of the one-time authentication program, an authentication key generation algorithm, and at least one or more one-time authentication key generation information, which may further include at least one or more information items according to the intention of a person skilled in the art. The present invention is in no way limited by the terms.

The operating system (or platform) information included in the one-time authentication management information includes a type of operating system (or platform) included in the wireless terminal 140 equipped with the one-time authentication program through the program providing system shown in FIG. 2. Preferably, the operating system (or platform) information is used to identify the operating system (or platform) of the one-time authentication program to be provided to the wireless terminal 140 at the time of upgrading the one-time authentication program.

The version included in the one-time authentication management information includes version information of the one-time authentication program for each platform to be provided to the wireless terminal 140.

According to the embodiment of the present invention, even if the same type of one-time authentication program (for example, one-time authentication program operating on the same platform), the type or version of the authentication key generation algorithm applied according to the version of the one-time authentication program may be different. As a result, since the one-time authentication key generated by the one-time authentication program will also vary, the version information provides information for accurately determining the one-time authentication program mounted on the wireless terminal 140. By the version information of the one-time authentication key agent program it is possible to minimize the one-time authentication key authentication error that may occur in the process of authenticating the one-time authentication key generated in the wireless terminal 140.

The authentication key generation algorithm included in the one-time authentication management information includes hashing algorithm information applied to the one-time authentication program or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating authentication keys are MD4, MD5, SHA, and the like, and a hashing algorithm modified from the hashing algorithm according to an application field (for example, SHA-1 hashing algorithm modified from SHA). Is being used.

The one-time authentication key generation information included in the one-time authentication management information is information for generating a one-time authentication key of the time synchronization method, referring to FIG. 5, the one-time authentication key generation information is provided in the wireless terminal 140. At the time when the one-time authentication program generates the one-time authentication key, the challenge value provided to the wireless terminal 140 through the authentication server 105 is used as first generation information, and the program providing server 100 according to the implementation method. Secret key value corresponding to the randomly generated value) or MIN / ESN uniquely assigned to the wireless terminal 140 on which the one-time authentication program is mounted, is used as the second generation information or the third generation information. Do.

According to the method of the present invention, the challenge value is an arbitrary value randomly generated by the authentication server 105 at the time when the one-time authentication program included in the wireless terminal 140 generates the one-time authentication key. The challenge server 105 transmits the challenge to the wireless terminal 140 until a one-time authentication key (for example, a response corresponding to the challenge) generated based on the challenge value is received from the wireless terminal 140. It is preferable to maintain a value, and when the one-time authentication key is received, it is preferable to generate the one-time authentication key authentication code based on the challenge value to authenticate the received one-time authentication key.

Referring to an embodiment of the present invention, when the one-time authentication program uses the MIN / ESN of the wireless terminal 140 as the one-time authentication key generation information for generating the one-time authentication key, the MIN / ESN is a one-time authentication as it is. The MIN / ESN may be used as key generation information, and the MIN / ESN has an excessively large value to prevent the one-time authentication program from overflowing in the process of generating the one-time authentication key. It is possible to convert the data to a value within a certain size by applying a hash function to the device, which is determined by the intention of a person skilled in the art or the computing power of the wireless platform.

6 is a diagram illustrating a process of downloading and remotely mounting a one-time authentication program for outputting the one-time authentication area on which the advertisement is output to the wireless terminal 140 according to an embodiment of the present invention.

In more detail, FIG. 6 illustrates a one-time authentication program for outputting a one-time authentication area for outputting the advertisement on the screen from the program providing server 100 to the wireless terminal 140 through the program providing system illustrated in FIG. 2. As a process for downloading and remotely installing the present invention, one of ordinary skill in the art to which the present invention pertains refers to the present invention, and / or modifications to the wireless terminal 140. Although various implementation methods of downloading and remotely mounting a one-time authentication program for outputting the authentication area on a screen may be inferred, the present invention includes all the inferred implementation methods, and by the implementation method shown in FIG. It is not limited.

Hereinafter, in FIG. 6, the wireless terminal 140 illustrated in FIG. 2 is referred to as a “terminal” for convenience, and the program providing server 100 illustrated in FIG. 2 is referred to as a “server” for convenience.

Referring to FIG. 6, the terminal accesses the server through a wireless communication network, requests the server to download and remotely mount a one-time authentication program that outputs the one-time authentication area on which the advertisement is output on the screen (600). In response, the server extracts (or generates) a program providing interface screen for providing the one-time authentication program to the wireless terminal 140 and provides the terminal to the terminal (605).

Thereafter, the terminal inputs (or selects) program request information through the program providing interface screen (610), and transmits the input (or selected) program request information to the server through the wireless communication network (615). In response, the server extracts (or dynamically generates) a one-time authentication program matching the program request information from the program D / B 225 (620), and extracts (or dynamically generates) the one-time authentication program. It is provided to the terminal via the wireless communication network to be mounted remotely (625).

If the one-time authentication program is remotely mounted to the terminal (630), the terminal executes the one-time authentication program to initiate a diagnostic mode for the one-time authentication program (635), and the terminal correspondingly the one-time authentication Generate a validity diagnostic information through a program and transmit it to the server through the wireless communication network (640), the server receives and read the received validity diagnostic information to confirm the validity of the one-time authentication program (645)

According to an embodiment of the present invention, if the diagnostic mode for the one-time authentication program is generated and transmitted according to the one-time authentication key-based wireless security authentication procedure in the one-time authentication program provided in the wireless terminal 140, It is preferable that the one-time authentication key comprises a check that is valid.

If the validity of the one-time authentication program is not confirmed (650), the server generates program diagnostic error information and transmits the terminal to the terminal through the wireless communication network (655), and then the program providing interface screen to the terminal. And receiving program request information, and extracting (or dynamically generating) a one-time authentication program corresponding to the received program request information and remotely mounting the terminal to the terminal.

On the other hand, if the validity of the one-time authentication program is confirmed (650), the server is a one-time authentication management information corresponding to the one-time authentication program mounted on the terminal, and the customer information and wireless corresponding to the customer who transmitted the program request information The terminal 140 stores information in the one-time authentication management D / B 230 by cooperatively processing the information, and then stores the one-time authentication management information, the customer information, and the wireless terminal stored in the one-time authentication management D / B 230. The information is characterized in that it is used for the one-time authentication key-based wireless security authentication processing in a wireless security authentication processing system.

7 is a diagram illustrating a function of a wireless terminal 799 having a one-time authentication key-based wireless security authentication processing function according to an embodiment of the present invention.

In more detail, in FIG. 7, when the wireless terminal 799 illustrated in the program providing system illustrated in FIG. 2 is a mobile communication terminal, a one-time authentication key-based wireless security authentication process is performed through a wireless terminal 799 used by a customer. If necessary, a one-time authentication area that outputs a one-time authentication screen for one-time authentication key-based wireless security authentication processing is output to a predetermined area (or entire area) of the screen of the wireless terminal 799, and a predetermined area on the one-time authentication area. (Or the entire area) shows the configuration of a wireless terminal 799 having a one-time authentication program for processing the one-time authentication key-based wireless security authentication using the wireless terminal 799 by processing to output the advertisement data. For those of ordinary skill in the art to which the present invention pertains, the one-time authentication key is referred to and / or modified with reference to FIG. Various implementation methods for the configuration of the function of the wireless terminal 799 having the wireless security authentication processing function may be inferred, but the present invention includes all the implementation methods inferred, and is illustrated in FIG. The technical features are not limited only by the method.

For example, those of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing 3 so that the wireless terminal 799 is an HSDPA based wireless communication terminal in addition to the mobile communication terminal, or IEEE 802.16.x. In the case of a portable Internet terminal, it is possible to infer the configuration of a wireless terminal 799 function having the one-time authentication key-based wireless security authentication processing function, and the present invention is apparent that the present invention includes all possible inference methods. It is a bar.

According to an embodiment of the present invention, the wireless terminal 799 that provides a mobile communication service has, in terms of hardware, a body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), an antenna, and a battery 796. And a predetermined modem chip (e.g., US Qualcomm) having internal functions such as a code division multiple access (CDMA) modem, a central processing unit / micro processing unit (CPU / MPU), a vocoder, and the like. Qualcomm) 's MSM series modem chips), various memory elements, duplexer filters that separate transmission and reception signals from one antenna, power amplifiers for amplifying transmission signals, high power amplifiers (HPAs), and high power transmission signals Isolator to prevent return, RF / IF SAW filter to remove unwanted out-of-band unwanted signal, frequency up circuit of transmission path, frequency down of reception path Including a circuit circuit, a Voltage Controlled Temperature Compensated X-tal Oscillator (VCTCXO) corresponding to a reference clock source, a UHF frequency synthesizer used as a local signal for frequency up-down conversion, and a codec chip for converting an analog voice signal into a digital signal. The internal components are gradually integrated in the modem chip, and the modem chip provides various multimedia services and / or additional services in addition to the core components for the mobile communication service. Various functions are being integrated together.

Referring to FIG. 7, the wireless terminal 799 having the one-time authentication key-based wireless security authentication processing function structurally outputs a control unit 700 corresponding to the modem chip and a liquid crystal display (LCD). Corresponds to the unit 755, a sound processor 760 corresponding to a microphone / speaker, a key input unit 765 corresponding to a keypad, a radio processor 798 corresponding to an antenna and various RF modules, and a nonvolatile memory. And a battery 796 for supplying a predetermined power.

In addition, the wireless terminal 799 is an IC chip 775 mounted on or detached from the wireless terminal 799 to provide various financial (or payment) services and / or various additional services corresponding thereto (eg, USIM ( Universal Subscriber Identity Module or financial IC chip 775) and an IC chip reader 770 for reading / writing at least one or more information (or data) on the IC chip 775. Do.

In addition, the wireless terminal 799 further includes a camera unit (not shown) that reads predetermined image information to provide various multimedia services and / or various additional services corresponding thereto, and / or a predetermined short range device. And a near field communication unit (not shown) for connecting a near field communication channel with each other.

The control unit 700 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, and provides a predetermined program routine for providing a function specific to the radio terminal 799 from a predetermined memory device. (Routine) and / or a bus (BUS) for inputting and outputting program data, and a predetermined electronic circuit (or integrated circuit) provided for this, characterized in that the memory unit 797 and / or in software A generic term for program routines and / or program data loaded from the memory device (or chipset) into the execution memory and processed by the processor to perform a specific function (hence, the one-time authentication key based wireless security authentication processing function. For convenience, a predetermined program routine recorded on the recording medium of the wireless terminal 799 is provided in the control unit 700 for convenience. The program routine included in the controller 700 is basically an operating system routine (not shown) and at least one system management routine (eg, a power management routine, a channel (forward / reverse) management). Routine, handoff routine, etc.), and various functional configurations intended to be implemented in the wireless terminal 799 by the control unit 700 are realized.

According to the exemplary embodiment of the present invention, after power is supplied to the wireless terminal 799, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are stored in the controller ( By loading into the execution memory included in the 700 and arithmetic processing by the processor, the wireless terminal 799 converts the system setting detailed state, the pilot channel acquisition detailed state, the sync channel acquisition detailed state, and the timing change according to a predetermined booting procedure. The operation mode corresponding to the "mobile station initialization state" including the detailed state is set.

After performing the booting procedure, the operating system routine (not shown), one or more system management routines (not shown), and various system variables corresponding thereto are loaded into the execution memory included in the controller 700 and loaded into the processor. The mobile terminal 799 is set to an operation mode corresponding to the " mobile station call waiting state ", " system access state " or " call channel state " Perform the Call Processing procedure.

The screen output unit 755 is a function configuration unit for confirming operation of each operation mode of the wireless terminal 799 and a corresponding operation state, and at least one including an LCD provided in the wireless terminal 799. A screen output device and a driver for driving the screen output device, and output at least one key data input through the key input unit 765 in connection with the control unit 700, and / Or outputs a menu screen, a function processing screen, and a function processing result screen corresponding to at least one or more functions (or programs) included in the wireless terminal 799, and / or provided in the wireless terminal 799 (or At least one content (eg, text content, image content, multimedia content) to be downloaded is output.

According to the exemplary embodiment of the present invention, the screen output unit 755 performs a function of screen output means for outputting various function processing screens corresponding to the one-time authentication key-based wireless security authentication processing function and a function processing result screen. desirable.

The sound processor 760 is a functional component that processes input and output of sound in each operation mode of the wireless terminal 799. The sound processor 760 decodes at least one or more encoded sound data and is provided in the wireless terminal 799. And a vocoder and a codec for encoding and encoding a sound signal inputted through a microphone provided in the wireless terminal 799 and / or the microphone provided in the wireless terminal 799. .

According to an exemplary embodiment of the present invention, the sound processor 760 may include a sound corresponding to a predetermined ring back tone through the speaker in an operation mode corresponding to the “system access state” among the operation modes of the wireless terminal 799. It is preferable to decode and output data, and / or to encode and input a predetermined voice signal through a microphone in an operation mode corresponding to the "call channel state", or to decode and output a predetermined voice signal through a speaker. .

In addition, the sound processor 760 may play at least one sound content and / or multimedia content provided (or downloaded) by the wireless terminal 799 in at least one operation mode including the "mobile station call waiting state." In this case, it is preferable to decode and output sound data corresponding to the reproduced content.

According to the exemplary embodiment of the present invention, the sound processor 760 preferably performs a function of a sound output means for decoding and outputting sound data corresponding to the disposable authentication key based wireless security authentication processing function.

The key input unit 765 is provided with at least one key button including a predetermined number key and / or a character key and / or a function key. And a driver for driving the key input device, thereby detecting at least one key input signal generated by clicking (or entering) the key button in the key input device. It is characterized by.

According to the present invention, when a predetermined key input signal is detected from a predetermined key button provided in the key input device in a predetermined input mode and / or at least one or more operation modes controlled by the control unit 700, the key. The input unit 765 generates a predetermined key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the detected key input signal, and provides the generated key event to the controller 700. The controller 700 reads predetermined key data corresponding to the key event in the current input mode and / or operation mode of the wireless terminal 799 (eg, a specific key event in each input mode and / or operation mode). Read key data from the key table that stores (manages) at least one key data corresponding to the key event; and / or Matched watts and a command to execute a predetermined function of the information characterized in that the shipping dock.

According to an embodiment of the present invention, the key input unit 765 inputs a predetermined telephone number in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 799, and enters a predetermined " By inputting a "call" button, it is preferable to change the operation mode of the radio terminal 799 to an operation mode corresponding to the "system access state".

In addition, the key input unit 765 inputs a predetermined function key (for example, a menu key) in an operation mode corresponding to the "mobile station call waiting state" among the operation modes of the radio terminal 799, thereby providing the radio terminal. It is preferable to execute the various functions provided in 799.

According to the exemplary embodiment of the present invention, the key input unit 765 may perform a function of key input means for inputting at least one or more key data corresponding to the one-time authentication key based wireless security authentication processing function.

The wireless processor 798 is a functional component that connects a wireless channel with a base station on a mobile communication network in which the wireless terminal 799 operates based on CDMA / WCDMA, and includes a CDMA modem and various RF modules (eg, duplexer filter, power). Amplifiers, High Power Amplifiers (HPAs), Isolators, RF / IF SAW Filters, Frequency Up-Circuits, Frequency Down-Conversion Circuits, VCTCXOs, UHF Frequency Synthesizers, etc. for Reference Clock Sources) and Antennas And a location registration and / or slot mode and / or power control corresponding to each operation mode of the wireless terminal 799 in connection with the control unit 700. Control and / or hand-off and / or call processing procedures.

According to an embodiment of the present invention, the wireless processing unit 798 is a radio frequency signal transmission / reception function corresponding to the one-time authentication key based wireless security authentication processing function (eg, antenna control, modulation, synthesis, amplification and / or radio frequency signal). Or performing filtering or the like).

In particular, the wireless processing unit 798 processes or processes information or a signal transmitted from the wireless terminal 799 to the base station for the one-time authentication key-based wireless security authentication processing, or a CDMA stack received from the base station. It is preferable to include a function for reading a predetermined information or signal from the.

The IC chip reader unit 770 is an IC chip 775 mounted or detached from the wireless terminal 799 through the IC chip 775 standard including ISO / IEC 7816 and / or ISO / IEC 14443. As a functional component for exchanging at least one information (or data or command) with a financial IC chip or USIM), the contact IC card reader corresponding to the ISO / IEC 7816 standard, and / or the ISO And a non-contact IC card reader compliant with the IEC / 14443 standard, wherein the IC card reader has at least one or more information (or data, or data) with the IC chip 775 through an application protocol data unit (APDU). Command).

Referring to the standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip 775 mounted or detached from the customer wireless terminal may include a power supply (VCC), a reset signal (RST), and a clock signal. I / O to communicate with IC chip reader 770 (e.g. command or data exchange) through contact points such as CLK, ground GND, programming power supply (VPP), and / or input / output (I / O), etc. A processor unit 783 comprising an interface 780, a CPU (Central Process Unit), an MPU (Micro Process Unit), and / or a coprocessor, and the like, and a ROM (Read Only). And a chip memory unit 785 formed of at least one memory device including a memory, a random access memory (RAM), an electrically erasable and programmable read only memory (EEPROM), a flash memory (FM), and the like. At least one memory device (eg, ROM) among the devices A chip operating system (COS) for managing and operating an IC card internal resource is stored, and a predetermined power is transferred from the IC chip reader unit 770 through a power supply (VCC) contact point of the input / output interface 780. When a circle is supplied, the COS stored in the chip memory unit 785 is loaded into a predetermined execution memory to control the overall operation of the IC chip 775, and the clock frequency of the contact point of the clock signal CLK (for example, 3.57). Control information or data exchange between the IC chip 775 and the IC chip reader 770 through an APDU (Application Protocol Data Unit) based on MHz or 4.9 MHz.

According to the present invention, the chip memory unit 785 of the IC chip 775 stores at least one IC chip 775 corresponding to a card application for providing the USIM function (or the financial IC chip 775 function). Characterized in that the information is stored, wherein the IC chip 775 storage information is stored to store a data set corresponding to predetermined information or data that is read and read and / or used by a processor provided in the customer wireless terminal. A program routine (for example, a Java card) that is driven or executed by a processor 793 and an arithmetic function of the processor unit 783 and an instruction set provided by a COS, and used by a processor included in the customer wireless terminal. (Javacard) is a Java Applet) that includes instruction call code that interacts with the instruction set of the COS and execution code that is processed by the processor unit 783. It is characterized in that comprises a processing unit (790) for the application made.

Here, in particular, the processing unit 790 reads a command provided from the processor provided in the customer wireless terminal via the input / output interface 780 via an APDU, and reads the command from the processor 793 based on the read command. Read or record at least one or more information or data to be stored, and provides the result or read information or data to the processor provided in the customer wireless terminal via the input and output interface 780 through the APDU. do.

According to an embodiment of the present invention, the storage unit 793 stores at least one unique information of the wireless terminal 799 for the one-time authentication key based wireless security authentication processing function, wherein the storage unit ( The unique information of the wireless terminal 799 stored in the 793 may be a phone number, a USIM information, an ICIM 775 unique information, a dynamic (or fixed) IP address, or the like assigned to the wireless terminal 799. It is preferable to include at least one.

According to a preferred embodiment of the present invention, the chip memory unit 785 of the IC chip 775 includes a security structure based on ISO / IEC 10202. Accordingly, the chip memory unit 785 may include a CSN ( And a protection area for storing secret information such as a Chip Serial Number), a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area. The IC chip 775 storage information is preferably stored in an area excluding the protection area and the COS control area.

In addition, according to ISO / IEC 7816 and / or ISO / IEC 14443 ICC standards, the chip memory unit 785 may include one master file (MF) corresponding to a root file, and the master file. ATR (Answer To Reset) including function information on at least one stored information at a lower portion, at least one dedicated file (DF) corresponding to each ICC stored information, and disposed below the dedicated file. And a file structure including an element file (EF) including substantial information and / or data for a smart card service. The IC chip 775 storage information for the present invention also includes the file structure as described above. It is made to include.

According to an embodiment of the present invention, if the IC chip 775 is a financial IC chip (or USIM having financial information), the IC chip 775 storage information includes an electronic bankbook and a financial common network. It is preferable to include a financial account (or financial product) means, and / or credit card payment method, debit card payment method, check card payment method, prepaid card ( Prepaid Card) It is preferable to include at least one payment means, electronic wallet (Electronic Wallet) payment means.

The memory unit 797 is a storage medium for storing at least one or more information (or data) in the wireless terminal 799, and / or a ratio corresponding to a recording medium for recording program codes corresponding to at least one or more program routines. As a general term of volatile memory, ROM (Read Only memory) corresponding to the read-only memory, Flash memory (FM) and EEPROM (Electrically Erasable and Programmable Read Only Memory), etc. Characterized in that made.

According to an embodiment of the present invention, the ROM information of the nonvolatile memory is not to be stored, and the flash memory is provided through an operating system routine, a call processing program routine, and / or the wireless terminal 799. Various application program routines and information or data for the same are stored, and the EEPROM is extracted and / or generated during the execution of the application provided in the terminal registration-related parameters and phone number (eg, address book) or the wireless terminal 799. Preferably at least one or more information (or data) is stored.

According to the exemplary embodiment of the present invention, the memory unit 797 stores at least one unique information of the wireless terminal 799 for the one-time authentication key-based wireless security authentication processing function. The wireless terminal 799 The unique information may include at least one of a radio terminal 799 telephone number assigned to the radio terminal 799, an electronic serial number (ESN), a dynamic (or fixed) IP address, and the like.

Referring to FIG. 7, the wireless terminal 799 includes a terminal side screen including at least one of a desktop screen, a content using screen, a web access screen, a financial transaction screen, and a payment screen on a screen of the wireless terminal 799. And a terminal-side screen processing unit 705 corresponding to various programs for outputting the program. The terminal-side screen processing unit 705 is connected to the screen output unit 755 to screen the wireless terminal 799. Contents that output a content usage screen on the screen of the wireless terminal 799 in association with the screen processing unit 790 (not shown) and the screen output unit 755 corresponding to a background program for outputting a desktop screen. Corresponding to a browser program that outputs a web access screen to a screen of the wireless terminal 799 in conjunction with a content screen processing unit 790 (not shown) corresponding to a program and the screen output unit 755. A financial transaction screen corresponding to a financial transaction program (or a browser program) outputting a financial transaction screen on the screen of the wireless terminal 799 in conjunction with a browser processing unit 790 (not shown) and the screen output unit 755. A payment screen processing unit 790 corresponding to a processing program 790 (not shown) and a payment program (or a browser program) outputting a payment screen on the screen of the wireless terminal 799 in association with the screen output unit 755 ( It is preferable to include at least one or more).

Those skilled in the art will be familiar with the various features corresponding to the terminal-side screen processing unit 705 and the technical features of the functional components corresponding to the programs. Detailed description thereof will be omitted for convenience.

Referring to FIG. 7, for the one-time authentication key-based wireless security authentication processing, the wireless terminal 799, the one-time authentication processing unit 710 corresponding to the one-time authentication program provided through the program providing system shown in FIG. And a one-time authentication processing unit 710 includes a security authentication verification unit 725 for confirming whether the one-time authentication key-based wireless security authentication using the wireless terminal 799 is processed, and the security. When confirming the authentication, a one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output to a predetermined area (or entire area) of the screen of the wireless terminal 799, and a predetermined area on the one-time authentication area. Or an output processor 730 for processing the advertisement data to be output to the entire area.

According to one embodiment of the invention, the one-time authentication processing unit 710 is preferably driven (or activated) in conjunction with the key input unit 765.

For example, when the wireless terminal 799 is provided with a key button for driving (or activating) the one-time authentication unit 710, the one-time authentication unit 710 is driven (or activated) by the key button input. It is preferable.

Alternatively, the one-time authentication processing unit 710 may be provided on a terminal side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen output on the screen of the wireless terminal 799. When a menu for driving (or activating) is provided, the one-time authentication processor 710 may be driven (or activated) by menu selection through the key input unit 765.

According to another exemplary embodiment of the present invention, the terminal screen displayed on the screen of the wireless terminal 799 may include a content use screen, a web access screen, a financial transaction in the form of a wireless web document including at least one tag string (or a script). At least one screen, a payment screen, and the like, and when the tag string (or script) includes a tag string (or script) for driving (or activating) the one-time authentication processing unit 710, the disposable The authentication processor 710 may be driven (or activated) by the tag string (or script).

For example, when the terminal-side screen output on the screen of the wireless terminal 799 includes a string (or a script) for automatically driving (or activating) the one-time authentication program, the one-time authentication processing unit 710 may include the tag string ( Or a script).

Alternatively, when the terminal-side screen output on the screen of the wireless terminal 799 includes a string (or a script) corresponding to the user interface for driving the one-time authentication program, the one-time authentication processor 710 may use the tag string ( Or via a user interface and a key input unit 765 corresponding to a script).

According to another exemplary embodiment of the present invention, program driving information corresponding to the one-time authentication program is received through a wireless communication network, or a desktop, content use screen, web access screen, and financial transaction are displayed on the screen of the wireless terminal 799. When the program operation information corresponding to the one-time authentication program is included in the terminal-side screen processing unit 705 corresponding to various programs for outputting a terminal-side screen including at least one screen, a payment screen, and the like, the one-time authentication processor ( 710 is preferably driven (or activated) by the program driving information.

According to one embodiment of the invention, when the one-time authentication processing unit 710 is driven (or activated), the security authentication confirmation unit 725 is the one-time authentication processing unit 710 in response to the driving (or activation) The wireless terminal 799 is characterized in that the one-time authentication key-based wireless security authentication confirms that the processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication processing unit 710 is driven (or activated), the desktop, content using screen, web access screen, financial transaction screen, payment is displayed on the screen of the wireless terminal 799. Wireless security for use of content corresponding to the terminal screen, web access, financial transactions, or payment processing by the terminal screen processing unit 705 corresponding to various programs for outputting a terminal screen including at least one screen or the like. When requesting authentication, the security authentication check unit 725 is characterized in that the wireless terminal 799 confirms that the one-time authentication key-based wireless security authentication processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication processor 710 is driven (or activated), the key input unit 765 uses contents corresponding to the terminal-side screen, web access, and financial transactions. , Or when an authentication command (or key data) for wireless security authentication for payment processing is input, the security authentication verification unit 725 requests the one-time authentication key-based wireless security authentication processing from the wireless terminal 799. Characterized in that it is confirmed.

When confirming the one-time authentication key-based wireless security authentication using the wireless terminal 799 through the security authentication confirmation unit 725, the output processing unit 730 is a predetermined area (or entire area) of the screen of the wireless terminal 799. And outputting a one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process, and outputting advertisement data to a predetermined area (or entire area) on the one-time authentication area.

According to an exemplary embodiment of the present invention, the output processor 730 stores the terminal side screen area output on the entire area of the screen of the wireless terminal 799, and then schedules the screen of the wireless terminal 799. Outputting a one-time authentication area that outputs a one-time authentication screen for wireless security authentication processing based on a one-time authentication key in an area (or an entire area), and processing the advertisement data to be output to a predetermined area (or an entire area) on the one-time authentication area. It is preferable.

According to another exemplary embodiment of the present invention, the output processor 730 sets a layer in which the one-time authentication area is set on the terminal screen area output on the entire area of the screen of the wireless terminal 799. A one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key in a predetermined area of the set hierarchy, and outputting advertisement data in a predetermined area (or all areas) on the one-time authentication area. It is preferable to process as much as possible.

For example, the output processor 730 may set the one-time authentication area to be output to the hierarchy in an overlap method (or pop-up method).

According to another exemplary embodiment of the present invention, the output processing unit 730 processes the one-time authentication screen for the one-time authentication key-based wireless security authentication processing and the one-time authentication area for outputting advertisement data to be output on the screen of the wireless terminal 799. ) May not be provided in the one-time authentication processing unit 710, but may be provided in a program manager (not shown) associated with the one-time authentication program in the wireless terminal 799, and the present invention is not limited thereto. It is obvious.

Referring to FIG. 7, the one-time authentication processing unit 710 provided in the wireless terminal 799 is provided in the memory unit 797 (or the IC chip 775) for the one-time authentication key-based wireless security authentication processing. A check unit 745 for confirming at least one or more one-time authentication key generation information required for generating the one-time authentication key from the stored chip memory unit 785 and an authentication key generation algorithm based on the one-time authentication key generation information. And a generation unit 740 for generating a one-time authentication key for the one-time authentication key-based wireless security authentication process. When the authentication key generation method includes a challenge-response method, the wireless processing unit 798 It is characterized in that it comprises a communication processing unit 750 for receiving the one-time authentication key generation information corresponding to the challenge in association with.

The terminal-side screen area and the one-time authentication area are divided and output to a predetermined area on the screen of the wireless terminal 799 by the output processor 730, and the one-time authentication key based wireless security authentication process using the wireless terminal 799. When the one-time authentication key generation for the request is requested, the verification unit 745 is at least one required for generating the one-time authentication key from the memory unit 797 (or the chip memory unit 785 provided in the IC chip 775). It is characterized by checking the one-time authentication key generation information above.

When the authentication key generation method includes a challenge-response method according to an embodiment of the present invention, the communication processing unit 750 generates a one-time authentication key corresponding to the challenge with the authentication server in association with the wireless processing unit 798. The method may further include requesting information and receiving at least one or more one-time authentication key generation information necessary for generating the one-time authentication key from the authentication server.

When generating a one-time authentication key of the time synchronization method according to an embodiment of the present invention, the confirmation unit 745 is the memory unit 797 (or chip memory unit 785 provided in the IC chip 775) It is preferable to check at least one or more one-time authentication key generation information required for generating the one-time authentication key from, and to check the time information for generating the one-time authentication key from the timer provided in the wireless terminal (799).

In the case of generating a challenge-response type disposable authentication key according to another embodiment of the present invention, the verification unit 745 is a chip memory unit 785 provided in the memory unit 797 (or IC chip 775). Confirm at least one or more one-time authentication key generation information required for generating the one-time authentication key from the)), and at least one or more one-time authentication key generation information required for generating the one-time authentication key from the authentication server in association with the communication processing unit 750 It is desirable to receive.

When at least one or more one-time authentication key generation information necessary for generating the one-time authentication key is confirmed as described above, the generation unit 740 uses the authentication key generation algorithm based on the at least one or more one-time authentication key generation information. Characterized by generating a one-time authentication key for the one-time authentication key-based wireless security authentication process, wherein the one-time authentication key preferably comprises a data block of a predetermined length.

Those skilled in the art to which the present invention pertains, one-time corresponding to the time synchronization method (or challenge-response method) using an authentication key generation algorithm based on the at least one or more disposable authentication key generation information identified. Since you will be familiar with the technical features for generating the authentication key, a detailed description thereof will be omitted for convenience.

Referring to FIG. 7, for the one-time authentication key-based wireless security authentication processing, the one-time authentication processing unit 710 provided in the wireless terminal 799 may output a predetermined area on the one-time authentication area when the one-time authentication area is output. Outputting a one-time authentication start screen (or interface), and when one-time authentication is started through the one-time authentication start screen (or interface), outputting a password input screen (or interface) to a predetermined area on the one-time authentication area, and When the password input through the password input screen (or interface) is authenticated, the one-time authentication key generation screen (or interface) is output to a certain area on the one-time authentication area, and through the one-time authentication key generation screen (or interface) The one-time authentication key generation is requested and the requested one-time authentication key is generated through the generation unit 740. When is generated, output the one-time authentication key to a certain area on the one-time authentication area, and outputs a one-time authentication key input screen (or interface) to the customer to enter the one-time authentication key to a certain area on the one-time authentication area, When the one-time authentication key-based wireless security authentication is processed, characterized in that the authentication key processing unit 735 for outputting the one-time authentication key end screen (or interface) on a predetermined area on the one-time authentication area.

When the one-time authentication area is output on the screen of the wireless terminal 799 through the output processor 730, a one-time authentication start screen (or interface) is output to a predetermined area on the one-time authentication area, and the one-time authentication start screen When one-time authentication is started through (or an interface), a password input screen (or interface) is output to a predetermined area on the one-time authentication area, and the password input through the password input screen (or interface) is authenticated, and then the The authentication key processing unit 735 outputs a one-time authentication key generation screen (or interface) to a predetermined area on the one-time authentication area, and checks whether a one-time authentication key is generated through the one-time authentication key generation screen (or interface). The one-time authentication key by the one-time authentication key generation request, characterized in that Gets the one-time authentication key generated for half the wireless security authentication process, characterized in that it outputs the one-time key in the predetermined area on the disposable authentication area.

In addition, the authentication key processing unit 735 outputs a one-time authentication key input screen (or interface) for the customer to input a one-time authentication key to a predetermined area on the one-time authentication area, and the one-time authentication key input screen (or interface) When the one-time authentication key is input through, the security authentication request information including the one-time authentication key is processed in connection with the communication processing unit 750 to be transmitted to the authentication server on the communication network so that the one-time authentication key-based wireless security authentication is processed. Characterized in that.

If the one-time authentication key-based wireless security authentication is processed, the authentication key processing unit 735 outputs a one-time authentication key end screen (or interface) to a predetermined area on the one-time authentication area, the one-time authentication key When the one-time authentication key-based wireless security authentication is terminated through an end screen (or an interface), the output processor 730 deletes the one-time authentication area on the screen of the wireless terminal 799, and displays the terminal-side screen wirelessly. The terminal 799 may return to the entire area of the screen.

Referring to FIG. 7, for the one-time authentication key-based wireless security authentication processing, the one-time authentication processing unit 710 provided in the wireless terminal 799 is screened by the output processing unit 730 on the screen of the wireless terminal 799. Before (or after) the one-time authentication area is output to the advertisement receiving unit 715 for receiving the advertisement data to be output to a predetermined area (or all areas) on the one-time authentication area through a wireless communication network, and the received advertising data It characterized in that it comprises an advertisement output unit 720 for processing to be output to a predetermined area (or entire area) on the one-time authentication area.

According to an embodiment of the present invention, the authentication server for processing the one-time authentication key-based wireless security authentication (or a wireless server requesting the one-time authentication key-based wireless security authentication processing) and the advertisement data to the wireless terminal 799. When the advertisement server transmitting the is linked (or implemented as one server) on the communication network, the advertisement receiving unit 715 corresponds to the interaction of the advertisement server and the authentication server (or wireless server) through the wireless communication network ( For example, an advertisement server corresponds to a keyword (or context or index word) included in a terminal screen displayed on the screen of the wireless terminal 799 before the one-time authentication area is established in association with an authentication server (or wireless server). It is desirable to receive the advertising data.

According to another exemplary embodiment of the present invention, an authentication server for processing the one-time authentication key-based wireless security authentication (or a wireless server requesting the one-time authentication key-based wireless security authentication processing) and the advertisement to the wireless terminal 799 If the advertisement server transmitting the data is not associated with the communication network (for example, implemented by a separate operator who does not share information), the advertisement receiving unit 715 may set the one-time authentication area through the wireless communication network. The keyword (or context or index word) included in the terminal screen displayed on the previous screen of the wireless terminal 799 is transmitted to the advertisement server, and the keyword corresponds to the keyword (or context or index word). It is desirable to receive the advertising data.

According to another embodiment of the present invention, the authentication server for processing the one-time authentication key-based wireless security authentication (or a wireless server requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal (799) If the advertisement server for transmitting the advertisement data is not linked on the communication network (for example, implemented by a separate operator not sharing information), the advertisement receiving unit 715 may be configured to perform the wireless communication with the advertisement server through the wireless communication network. It is preferable to receive advertisement data preset to be provided to the terminal 799.

According to another exemplary embodiment of the present invention, when the at least one advertisement data to be output to a predetermined region (or all regions) on the disposable authentication region and the advertisement identification information corresponding to the advertisement data are stored in the memory unit 797, The advertisement receiving unit 715 may receive advertisement identification information associated with the advertisement data instead of the advertisement data from the advertisement server, and the present invention is not limited thereto.

When at least one advertisement data is received from the advertisement server through the advertisement receiving unit 715 (or advertisement data corresponding to the advertisement identification information received through the advertisement receiving unit 715 is confirmed), the advertisement output unit 720 is provided. ) Processes the received (or confirmed) advertisement data to be output to a predetermined area (or entire area) on the one-time authentication area.

According to an embodiment of the present invention, when the advertisement data does not satisfy a condition to be output in a predetermined area (or all areas) on the one-time authentication area (eg, the screen size of the advertisement data is a certain area on the one-time authentication area) Or a sound source not supported by the wireless terminal 799), the advertisement output unit 720 transmits the advertisement data to a predetermined region (or all regions) on the one-time authentication region. It is preferable to further include a function for converting to meet the condition to be output.

According to the exemplary embodiment of the present invention, when the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the advertisement output unit 720 may display the remaining area except for the one-time authentication key generation screen (or interface). When the advertisement data is output, or when the one-time authentication key is output to the one-time authentication area, the advertisement data is output to the remaining area except for the one-time authentication key area, or the one-time authentication area. When the one-time authentication key end screen (or interface) is outputted, it is preferable to process the advertisement data to be output to the remaining areas except the one-time authentication key end screen (or interface).

In addition, when the one-time authentication key input screen (or interface) is output to the one-time authentication area, the advertisement output unit 720 processes or outputs the advertisement data to the remaining areas except the one-time authentication key input screen (or interface). Or process advertisement data to be output in an area other than the one-time authentication key input area on the one-time authentication key input screen (or interface), or output advertisement data in a shaded area of the background of the one-time authentication key input area. It is preferable to process as much as possible.

8 is a diagram illustrating a configuration of a one-time authentication key based wireless security authentication processing system according to an embodiment of the present invention.

In more detail, FIG. 8 processes the one-time authentication key-based wireless security authentication through the wireless terminal 140 having a functional configuration corresponding to the one-time authentication program shown in FIG. 7 through the program providing system shown in FIG. As a system configuration, in detail, the wireless terminal 140 shown in FIG. 7 generates a one-time authentication key for wireless security authentication processing through a one-time authentication area and transmits it to the authentication server 105 through a wireless communication network. In this case, the authentication server 105 generates a one-time authentication key authentication code matching the one-time authentication key and compares it with the one-time authentication key to process wireless security authentication using the one-time authentication key, and the authentication key based wireless. In the security authentication process, by transmitting at least one or more advertising data from the ad server 130 to the wireless terminal 140, the wireless End 140, a diagram illustrating a system configuration for processing such that the advertisement data is output to the one-time authentication on the region displayed on the screen certain area (or the total area).

Those skilled in the art to which the present invention pertains may refer to and / or modify this drawing 8 to infer various implementation methods for the one-time authentication key based wireless security authentication processing system configuration, but the present invention. Is made including all the inferred implementation method, the technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 8, the one-time authentication key based wireless security authentication processing system includes at least one wireless terminal 140 having a functional configuration corresponding to the one-time authentication program shown in FIG. 7, and the wireless terminal 140. And at least one base station connecting the wireless section, and a control station controlling the base station and at least one server (or device) controlling and operating a wireless communication network including the base station and the control station. And a one-time authentication key information generated and transmitted by the wireless terminal 140 in connection with the network operation system 135, and the one-time authentication matched with the one-time authentication key. By generating a key authentication code and comparing with the one-time authentication key, wireless security authentication using the one-time authentication key is processed. By having the authentication server 105 is characterized in that formed.

In addition, the one-time authentication key-based wireless security authentication processing system, in conjunction with the authentication server 105 processes at least one or more financial transactions (or payment) in accordance with the one-time authentication key-based wireless security authentication, or the one-time use Characterized in that it comprises at least one or more wireless server 125 for performing various member authentication / service authentication / terminal authentication according to the wireless security authentication, wherein the wireless server 125 is the one-time authentication key The financial server 110 having at least one financial transaction function based on the wireless security authentication, the payment server 115 having at least one payment function based on the one-time authentication based on the wireless security authentication, and the disposable service. Wireless web server 120 with various member authentication / service authentication / terminal authentication functions based on authentication key-based wireless security authentication An preferably comprises at least one.

In addition, the one-time authentication key-based wireless security authentication processing system, a one-time authentication screen for wireless security authentication processing based on the one-time authentication key on a certain area of the screen of the wireless terminal 140 in the wireless terminal 140 used by the customer outputs If the one-time authentication area is output, and the advertisement data can be output to a predetermined area (or the entire area) on the one-time authentication area, the advertisement data is transmitted to the wireless terminal 140 through a wireless communication network to the one-time authentication area. Process to be output to a predetermined area (or entire area) of an image, confirm an advertisement revenue amount corresponding to outputting the advertisement data to a predetermined area (or all areas) on the one-time authentication area, and confirm the one-time authentication of the advertisement revenue amount. Calculate a fee replacement amount, and the one-time authentication through the calculated one-time authentication fee replacement amount Characterized in that the advertisement server 130 to replace (or discount) the fee amount.

In FIG. 8 according to an embodiment of the present invention, in order to effectively explain the technical features for the one-time authentication key-based wireless security authentication process to those skilled in the art, the one-time authentication key for convenience. Based on the authentication server 105 for processing wireless security authentication, the wireless server 125 for providing a variety of additional services based on the one-time authentication key-based wireless security authentication and the wireless terminal 140 to provide at least one or more advertising data Although the ad server 130 is illustrated as a separate server, the present invention is not limited thereto, and the one-time authentication key based wireless security authentication function provided in the authentication server 105 according to the intention of a person skilled in the art (for example, An information receiving unit 805, an information checking unit 810, an extracting unit 815, and an authenticating unit 825 are provided in the wireless server 125, or It is possible that the server 105 and the wireless server 125 is implemented as one server, and also calculates the amount of advertisement provision and one-time authentication fee provided in the ad server 130 to replace the one-time authentication fee amount. The function may be provided in the wireless server 125 (or the authentication server 105), or the advertisement server 130 and the wireless server 125 (or the authentication server 105) may be implemented as one server. Is to be made clear.

The wireless terminal 140 is a mobile communication terminal connected to a Code Division Multiple Access (CDMA) / Wide-CDMA (WCDMA) based mobile communication network, a wireless communication terminal connected to an HSDPA based wireless communication network, or an IEEE 802.16x based communication. At least one wireless terminal 140 including at least one or more portable Internet terminals connected to the high-speed wireless Internet, characterized in that the wireless terminal 140 is a wireless terminal 140 shown in FIG. It is characterized by comprising a functional configuration.

Those skilled in the art to which the present invention pertains can easily infer the technical characteristics of the wireless terminal 140 including the functional configuration of the wireless terminal 140 shown in FIG. Detailed description is omitted for convenience.

According to an embodiment of the present invention, the wireless communication network to which the wireless terminal 140 connects may include at least one of the CDMA based mobile communication network, the HSDPA based wireless communication network, or the IEEE 802.16x based high speed wireless Internet. Do.

The wireless communication network to which the wireless terminal 140 connects includes at least one or more base stations, a control station for controlling the base station, and at least one server (or apparatus) for controlling and operating a wireless communication network including the base station and the control station. It characterized in that it comprises a network operating system 135 including).

The base station is located at an end of the wireless communication network connecting a wireless section with at least one wireless terminal 140 located in a cell (eg, frequency reach) according to a wireless communication protocol defined in the wireless communication network. As a component, it characterized in that the network operation system 135 to control and operate the radio terminal 140 through the control station.

According to an embodiment of the present invention, when the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, the base station connects a wireless section with at least one wireless terminal 140 based on the CDMA / WCDMA / GSM wireless protocol stack. It is desirable to.

According to another exemplary embodiment of the present invention, when the wireless communication network is an HSDPA based wireless communication network, the base station preferably connects a wireless section with at least one wireless terminal 140 based on the HSDPA wireless protocol stack.

According to another embodiment of the present invention, when the wireless communication network is an IEEE 802.16x based wireless communication network, the base station includes at least one based on a wireless physical (PHY) layer and a media access control (MAC) layer of the IEEE 802.16x protocol. It is preferable to connect the wireless terminal 140 and the wireless section.

The control station is a component on a wireless communication network that controls at least one base station and connects the base station and the network operation system 135 in a wired section. When the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, Preferably, the control station includes a base station controller (BSC). When the wireless communication network is an IEEE 802.16x based wireless communication network, the control station includes a packet access router (PAR). desirable.

The network operation system 135 controls at least one or more radio terminals 140 connectable to the radio communication network through at least one or more base stations in association with the control station, and at least one other radio with the radio terminal 140. A communication channel (or a call channel) is connected to a terminal 140 or a server on a communication network, and the various communication charges and additional service use charges corresponding to the communication plan subscribed to the wireless terminal 140 are calculated. .

According to an embodiment of the present invention, when the wireless communication network is a CDMA / WCDMA / GSM-based wireless communication network, the network operation system 135 may include a mobile switching center (MSC) and an HLR (Mobile Switching Center) for processing circuit switching. Interworking function that provides circuit data service and / or packet data service for wireless data communication and connection with other networks in the network infrastructure for voice call and home location register (VLR). IWF), various message centers (e.g., short message center (SMC), multimedia message center (MMC), etc.) and various additional service server farms, and SGSN for processing packet exchange. (Serving GPRS Support Node), GGSN (Gateway GPRS Support Node) and RNC (Radio Network Controller) are preferably included.

According to another exemplary embodiment of the present invention, when the wireless communication network is an IEEE 802.16x based wireless communication network, the network operation system 135 may include a home agent (HA) for mobility of IP to the wireless terminal 140, and Authentication, Authorization and Accounting (AAA) server for user authentication, Network Management Server (Network Management System), FA (Foreign Agent) interworking with the wireless network and at least one external wireless network, and the wireless terminal ( It is preferable to include a Dynamic Host Configuration Protocol (DHCP) server and DNS for allocating and registering Mobile IP (MIP).

Referring to FIG. 8, the authentication server 105 may include an interface unit 800 connecting at least one wireless terminal 140 and a one-time authentication key-based secure communication channel for a one-time authentication-based wireless security authentication process. An information receiving unit 805 for receiving security authentication request information including a one-time authentication key for the one-time authentication key-based wireless security authentication processing from the wireless terminal 140 through the wireless communication network in association with the interface unit 800; And an information confirming unit 810 for confirming information of the wireless terminal 140 transmitting the one-time authentication key through the wireless communication network (or a wireless communication protocol), and the wireless terminal from the one-time authentication management D / B 830. Extraction unit 815 for extracting the one-time authentication program information associated with the information and the one provided to the wireless terminal 140 based on the extracted one-time authentication program information The one-time authentication program generates the one-time authentication key authentication code with the same authentication key generation conditions (eg, the same one-time authentication key generation information and authentication key generation algorithm) that generated the one-time authentication key, and received from the wireless terminal 140 The authentication unit 825 for comparing the one-time authentication key included in the security authentication request information with the generated one-time authentication key authentication code to authenticate the validity of the received one-time authentication key and the interface unit 800 And a transmitting unit 820 for transmitting the security authentication result information including the validity authentication result for the one-time authentication key to the wireless terminal 140 through the wireless communication network. When the authentication server 105 is provided outside the wireless server 125 as described above, the transmission unit 820 is the one-time authentication The validity authentication result of the is characterized in that transmission by sharing with at least one wireless server 125 that require the one-time authentication key based wireless security authentication process.

The interface unit 800 may connect at least one wireless terminal 140 and a communication channel for the one-time authentication key based wireless security authentication process through a wireless communication network, wherein the communication channel is the security authentication request information. It is desirable to include an encryption / decryption-based secure communication channel for.

The information receiving unit 805 receives the security authentication request information transmitted from the wireless terminal 140 through the interface unit 800, and the information checking unit 810 receives the security authentication request information. In the receiving process, characterized in that to confirm the information of the wireless terminal 140 that transmitted the one-time authentication key through the wireless communication network (or wireless communication protocol).

According to one embodiment of the invention, the security authentication request information is the information receiving unit through a separate one-time authentication key exchange protocol defined between the one-time authentication program provided in the wireless terminal 140 and the interface unit 800 ( 805 is preferably received.

According to another exemplary embodiment of the present invention, the security authentication request information is the information receiving unit 805 through an encryption / decryption protocol based on a data communication protocol defined in a wireless communication network to which the wireless terminal 140 is connected. Is preferably received.

The extractor 815 extracts one-time authentication program information associated with the wireless terminal 140 information from the one-time authentication management D / B 830 based on the identified wireless terminal 140 information and the authentication unit. 825, characterized in that provided.

The authentication unit 825 generates the same one-time authentication key generation information and the authentication key generation algorithm used to generate the one-time authentication key in the one-time authentication program provided in the wireless terminal 140 based on the extracted one-time authentication program information. By generating a one-time authentication key authentication code, and comparing the one-time authentication key included in the security authentication request information received from the wireless terminal 140 and the generated one-time authentication key authentication code, for the received one-time authentication key Characterizing authenticity.

Here, the validity of the one-time authentication key is authenticated by the authentication unit 825 is confidentiality, authentication, integrity, and non-repudiation of the one-time authentication key-based wireless security authentication process. Nonrepudiation).

When the validity of the one-time authentication key is authenticated through the authentication unit 825, the transmission unit 820 receives a validity authentication result for the one-time authentication key through the wireless communication network in association with the interface unit 800. Characterized by generating a security authentication result information, characterized in that for transmitting to the wireless terminal (140).

When the authentication server 105 is provided outside the wireless server 125 as shown in FIG. 8, the transmission unit 820 displays a validity authentication result for the one-time authentication key. It is characterized in that the transmission to the at least one or more wireless server 125 that needs to be based on the wireless security authentication processing, and correspondingly, the wireless server 125 at least based on the validity authentication result for the one-time authentication key It is characterized by processing one or more financial transactions (or payments), or processing various member authentication / service authentication / terminal authentication.

According to another embodiment of the present invention, when the wireless security authentication function of the authentication server 105 is provided in the wireless server 125, the transmission unit 820 may change the validity authentication result for the one-time authentication key. The function of sharing and transmitting to the wireless server 125 may be omitted, whereby the present invention is not limited.

According to the present invention, the advertisement server 130 includes advertisement data including at least one advertiser information requested to provide at least one advertisement data to the wireless terminal 140, advertisement information registered by the advertiser, and radio link information. And advertisement information D / C for storing advertisement information for each CPM / CPC / CPA-based advertisement provided through the advertisement data, and storing and storing the advertisement information D / D deposit information (or the balance remaining information) for executing the advertisement amount. It is preferred that the B 865 is provided or interlocked through a communication network.

Here, the advertiser information is information for identifying an advertiser registering to provide at least one or more of a banner advertisement, a keyword advertisement, or a context advertisement to the wireless terminal 140 shown in FIG. 7, wherein the advertiser name, address, It is preferable to include at least one or more contacts.

The advertisement data may include advertisement information corresponding to an advertisement to be provided to the wireless terminal 140 shown in FIG. 7, and radio link information for processing CPC / CPA based advertisement provision in the wireless terminal 140. Preferably, the advertisement information includes at least one of text-based advertisement information, image-based advertisement information, or multimedia-based advertisement information according to the advertisement type.

In addition, the advertisement amount information, the CPM-based advertisement amount according to the advertisement data provided to the wireless terminal 140 shown in Figure 7, or after the advertisement data is provided to the wireless terminal 140, the advertisement data selection CPC based advertisement amount according to (or click), or CPA based advertisement based on product purchase (or service use) through the advertisement after providing the advertisement data to the wireless terminal 140 and selecting (or clicking) the advertisement data. It is preferable to include at least one or more amounts of money.

In addition, the deposit information includes at least one amount remaining after executing the advertising amount of the amount deposited by the advertiser to execute the advertisement amount for the provision of the CPM / CPC / CPA-based advertising, or the deposit amount; It is preferable to make.

Referring to FIG. 8, the advertisement server 130 outputs a one-time authentication area for outputting a one-time authentication screen for one-time authentication key-based wireless security authentication processing to a predetermined area of the screen of the mobile terminal 140 used by the customer. An advertisement providing confirmation unit 860 (or advertisement providing confirmation means) for confirming whether an area for outputting the advertisement data is set in a predetermined area (or entire area) on the one-time authentication area; and the advertisement information when the advertisement is provided. The advertisement extracting unit 855 (or an advertisement) which extracts at least one advertisement data to be transmitted to the wireless terminal 140 in association with the D / B 865 and output to a predetermined region (or entire region) on the one-time authentication region. Extraction means) and the extracted advertisement data are transmitted to the wireless terminal 140 through a wireless communication network and output to a predetermined area (or entire area) on the one-time authentication area. The advertisement providing unit 840 (or advertisement providing means) for processing the advertisement revenue amount corresponding to the output of the advertisement data in a predetermined region (or all regions) on the one-time authentication region; Amount calculation unit 835 (or an amount calculation means) for calculating a one-time authentication fee replacement amount, and a fee processing unit 845 for replacing (or discounting) the one-time authentication fee amount with the calculated one-time authentication fee replacement amount ( Or fee calculation means).

In addition, the advertisement server 130 includes an information checking unit 850 (or information checking means) for checking keyword (or context or index word) information included in the terminal-side screen outputted to the wireless terminal 140. Preferably, the advertisement extracting unit 855 extracts the advertisement data corresponding to the identified keyword (or context or index word) in association with the advertisement information D / B 865. desirable.

According to an exemplary embodiment of the present invention, the advertisement providing confirmation unit 860 is disposable in a certain area of the screen of the wireless terminal 140 used by the customer in connection with the authentication server 105 (or the wireless server 125). And outputting a one-time authentication area for outputting a one-time authentication screen for the authentication key-based wireless security authentication process, and checking whether a region for outputting the advertisement data is set in a predetermined area (or all areas) on the one-time authentication area. do.

For example, the advertisement providing confirmation unit 860 transmits a wireless web document including a tag string (or a script) that drives (or activates) a one-time authentication processing function from the wireless server 125 to the wireless terminal 140. In one case, a one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, and a predetermined area (or all of the one-time authentication area) is output. Region), it is preferable to confirm that an area for outputting the advertisement data is set.

Alternatively, the advertisement providing confirmation unit 860 transmits program driving information for driving (or activating) a one-time authentication processing function from the wireless server 125 (or the authentication server 105) to the wireless terminal 140. In this case, a one-time authentication area for outputting a one-time authentication screen for one-time authentication key-based wireless security authentication processing is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, and a predetermined area (or an entire area) on the one-time authentication area. It is preferable to confirm that the area to output the advertisement data is set in the).

According to another exemplary embodiment of the present invention, the advertisement providing confirmation unit 860 is a one-time authentication key-based wireless security authentication processing in a predetermined area of the screen of the wireless terminal 140 used by the customer in connection with the wireless terminal 140. And outputting a one-time authentication area for outputting a one-time authentication screen for the user, and checking whether a region for outputting the advertisement data is set in a predetermined area (or entire area) on the one-time authentication area.

For example, the advertisement providing confirmation unit 860 may drive (or activate) the one-time authentication processing function from the wireless terminal 140 or output the advertisement data to a predetermined area (or all areas) on the one-time authentication area. When receiving the advertisement request information confirming that the area to be set, the one-time authentication area for outputting a one-time authentication screen for the wireless security authentication processing based on the one-time authentication key on the wireless terminal 140 screen used by the customer And, it is preferable to confirm that a region for outputting the advertisement data is set in a predetermined region (or all regions) on the one-time authentication region.

Alternatively, the advertisement providing confirmation unit 860 may include advertisement request information including a keyword (or a context or an index word) included in a terminal screen previously output from the wireless terminal 140 on the screen of the wireless terminal 140. When receiving, outputs a one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication processing to a predetermined area of the screen of the wireless terminal 140 used by the customer, and a predetermined area on the one-time authentication area ( Or an entire area), it is preferable to confirm that an area for outputting the advertisement data is set.

As a result of confirming by the advertisement providing confirming unit 860, when it is determined that a region for outputting the advertisement data is set in a predetermined region (or all regions) on the one-time authentication region, the information confirming unit 850 is connected to the wireless terminal ( Characterized in the keyword (or context, or index word) included in the terminal-side screen output in step 140 is characterized in that for checking.

According to an exemplary embodiment of the present invention, the information checking unit 850 checks the wireless web document transmitted from the wireless server 125 to the wireless terminal 140 in association with the wireless server 125. It is preferable to check keyword (or context or index word) information included in the terminal-side screen previously output to the wireless terminal 140.

According to another exemplary embodiment of the present invention, the information confirming unit 850 includes keyword (or context or index word) information included in the terminal-side screen previously output from the wireless terminal 140 to the wireless terminal 140. It is desirable to receive.

As a result of confirming by the advertisement providing confirmation unit 860, it is confirmed that a region for outputting the advertisement data is set in a predetermined region (or all regions) on the one-time authentication region, or the wireless information is confirmed by the information confirming unit 850. When the keyword (or context or index word) information included in the terminal-side screen output to the terminal 140 is confirmed, the advertisement extracting unit 855 is linked to the advertisement information D / B 865 for the wireless terminal. At least one advertisement data to be transmitted to the 140 to be output to a predetermined area (or the entire area) on the one-time authentication area is characterized in that it is extracted.

According to an exemplary embodiment of the present invention, the advertisement extracting unit 855 extracts at least one advertisement data preset to be transmitted to the wireless terminal 140 in association with the advertisement information D / B 865. Do.

According to another exemplary embodiment of the present invention, the advertisement extracting unit 855 is connected to the advertisement information D / B 865 and includes a keyword (or context, which is included in the terminal-side screen output to the wireless terminal 140). Or at least one advertisement data corresponding to an index word).

When at least one advertisement data to be transmitted to the wireless terminal 140 by the advertisement extracting unit 855 and output to a predetermined region (or entire region) on the disposable authentication region is extracted, the advertisement providing unit 840 The extracted advertisement data may be transmitted to the wireless terminal 140 through a wireless communication network to be output to a predetermined area (or entire area) on the one-time authentication area.

According to one embodiment of the invention, the advertisement providing unit 840 is a communication protocol negotiated with the wireless terminal 140 (for example, advertising data communication provided in the disposable authentication program provided in the wireless terminal 140). It is preferable to transmit the extracted advertising data to the wireless terminal 140 through a protocol).

According to another exemplary embodiment of the present invention, the advertisement providing unit 840 includes the extracted advertisement data in a wireless web document transmitted by the wireless server 125 to the wireless terminal 140. 140).

When at least one or more advertisement data is transmitted to the wireless terminal 140 through the advertisement providing unit 840 and output to a predetermined region (or all regions) on the one-time authentication region, the amount calculating unit 835 may be used. Confirming the advertisement amount information corresponding to the advertisement data enhanced by the wireless terminal 140 in association with the advertisement information D / B 865, and checking the advertisement amount amount information corresponding to the advertisement data provision among the advertisement amounts; It is characterized by.

In this case, the advertisement revenue amount information is preferably made of a variety of fees in the advertising amount including the revenue amount, may be used as the advertising revenue amount of the advertising amount according to the intention of those skilled in the art.

When the amount of advertising revenue according to the advertisement data is confirmed, the amount calculating unit 835 may calculate a portion of the amount of advertising revenue as the replacement amount of the one-time authentication fee.

According to the method of the present invention, the one-time authentication fee replacement amount is preferably made to include a certain amount of the advertising revenue amount, or comprises an amount corresponding to a certain ratio of the advertising revenue amount.

When the one-time authentication fee replacement amount is calculated by the amount calculation unit 835, the fee processing unit 845 confirms the deposit information deposited by the advertiser in connection with the advertisement information D / B 865, and The one-time authentication fee replacement amount of the deposit is characterized in that for replacing the one-time authentication fee amount for the one-time authentication key-based wireless security authentication processing (or a discount amount from the one-time authentication fee amount).

9 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to an embodiment of the present invention.

In more detail, FIG. 9 illustrates a process of generating a one-time authentication key in a time synchronization method for a one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. The wireless terminal 140 is provided on the wireless terminal 140 in a state in which a terminal screen including at least one of a desktop screen, a content using screen, a web access screen, a financial transaction screen, and a payment screen is output. When the one-time authentication key-based wireless security authentication function is driven through the key input means, the one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process on a certain area of the screen of the wireless terminal 140. And outputting the advertisement data to a predetermined area (or all areas) on the one-time authentication area, and then outputting A process of outputting at least one advertisement data to a predetermined area (or entire area) on the authentication authentication area, and generating a one-time authentication key to be output on the one-time authentication area through a time synchronization method, for convenience, the disposable The process of outputting the authentication start screen (or interface) and the process of outputting the password input screen (or interface) will be omitted.

Referring to FIG. 9, a terminal-side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen is displayed on the entire area of the screen of the wireless terminal 140 shown in FIG. 7. And a key input (or a one-time authentication key-based wireless security authentication related user interface included in the terminal side screen) through a key input unit provided in the wireless terminal 140 while outputting the terminal side screen. When the one-time authentication program is driven through the associated key input (905), the wireless terminal 140 checks whether or not the wireless security authentication process by generating the one-time authentication key through the one-time authentication program (910).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (915), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal-side screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output, and the advertisement data is output to a predetermined area (or all areas) on the one-time authentication area (920).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area that outputs a one-time authentication screen for authentication key-based wireless security authentication processing, and to process the advertisement data to be output to a predetermined area (or all areas) on the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program sets a layer in which the one-time authentication area is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. And outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key in a predetermined area of the set layer, and outputting the advertisement data in a predetermined area (or entire area) on the one-time authentication area. It is preferable to process.

For example, the one-time authentication program may be set such that the one-time authentication area is output to the hierarchy in an overlap (or pop-up) manner.

Thereafter, the wireless terminal 140 includes a one-time authentication key generation screen (or an interface) for requesting (or commanding) to generate a one-time authentication key in a predetermined area on the one-time authentication area, and outputs the data (925). In operation 930, the advertisement server 130 determines whether at least one advertisement data to be output to a predetermined region (or entire region) on the disposable authentication region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( If the advertisement server 130 for transmitting the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 130 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 130). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 130 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 may be connected to the wireless communication network. The keyword (or context or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 130 before the one-time authentication region is set through the advertisement server 130. 130, advertisement data corresponding to the keyword (or context or index word) is preferably received.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 130 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 130 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another exemplary embodiment of the present invention, when the at least one advertisement data to be output to a predetermined region (or all regions) on the disposable authentication region and the advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 may receive advertisement identification information associated with the advertisement data instead of the advertisement data from the advertisement server 130, and thus the present invention is not limited thereto.

If it is confirmed that the reception of the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertisement server 130 (935), the wireless terminal 140 is the advertisement via a wireless communication network After transmitting the advertisement request information corresponding to the advertisement data to be output to the predetermined region (or the entire region) on the one-time authentication area to the server 130 (940), the predetermined area on the one-time authentication area from the ad server 130 In operation 930, it is checked whether at least one advertisement data to be outputted to the entire area is received.

On the other hand, if it is confirmed from the advertisement server 130 that the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the ad server 130 (935), the wireless terminal 140 is a certain area on the one-time authentication area The received advertisement data is output (or the entire area) (945).

According to the exemplary embodiment of the present invention, when the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the wireless terminal 140 advertises the remaining area except for the one-time authentication key generation screen (or interface). When the data is processed to be output, or when the one-time authentication key is output to the one-time authentication area, the advertisement data is output to the remaining area except the one-time authentication key area, or the one-time authentication area is disposable. When the authentication key end screen (or interface) is output, it is preferable to process the advertisement data to be output to the remaining areas except the one-time authentication key end screen (or interface).

In addition, when the one-time authentication key input screen (or interface) is output to the one-time authentication area, the wireless terminal 140 processes the advertisement data to be output to the remaining areas except the one-time authentication key input screen (or interface), Alternatively, the advertisement data may be output to the remaining areas except for the one-time authentication key input area on the one-time authentication key input screen (or interface), or the advertisement data may be output to the shaded area of the background of the one-time authentication key input area. It is preferable to process.

Thereafter, it is checked whether the one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area (950).

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (955), the wireless terminal 140 is a memory unit (or a chip memory unit provided in the IC chip) And confirming the one-time authentication key generation information of the time synchronization method through a timer (960), and assigning the at least one or more one-time authentication key generation information to an authentication key generation algorithm to obtain the one-time authentication key for the wireless security authentication process. Create (965).

10 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

More specifically, FIG. 10 illustrates a process of generating a one-time authentication key in a time synchronization manner for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. At least one or more of a content-use screen, a web access screen, a financial transaction screen, a payment screen, etc., in the form of a wireless web document including at least one tag string (or a script), which is output to the terminal 140 shown in FIG. Including, and when the one-time authentication key-based wireless security authentication processing function is driven through the tag string (or script), one-time use for one-time authentication key-based wireless security authentication processing in a certain area of the screen of the wireless terminal 140 Outputs a one-time authentication area in which an authentication screen is output, and a predetermined area (or an entire area) on the one-time authentication area After the advertisement data is output, at least one advertisement data is output to a predetermined region (or entire region) on the one-time authentication region, and a one-time authentication key to be output on the one-time authentication region through a time synchronization method. A process of generating is described, but for convenience, the process of outputting the one-time authentication start screen (or interface) and the process of outputting a password input screen (or interface) will be omitted.

Referring to FIG. 10, a one-time wireless web document including a tag string (or a script) for driving a one-time authentication program is received by the wireless terminal 140 illustrated in FIG. 7, and the contents corresponding to the wireless web document are used. When the terminal-side screen including at least one screen, a web access screen, a financial transaction screen, a payment screen, etc. is output (1000), the one-time authentication is performed by a program driving related tag string (or script) included in the wireless web document. The program is driven (1005).

For example, when the terminal-side screen output on the screen of the wireless terminal 140 includes a string (or a script) for automatically driving (or activating) the one-time authentication program, the one-time authentication program is the tag string (or script). It is preferred to be driven (or activated) by.

Alternatively, when the terminal-side screen output on the screen of the wireless terminal 140 includes a string (or a script) corresponding to the user interface for driving the one-time authentication program, the one-time authentication program is the tag string (or the script). It is preferable to be driven (or activated) through a key input through a user interface and a key input means corresponding to the.

Thereafter, the wireless terminal 140 confirms whether or not the wireless security authentication processing by generating a one-time authentication key through the one-time authentication program (1010).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input corresponding to the terminal-side screen is used, the web access, the financial transaction, or the payment processing through the key input means. When an authentication command (or key data) for wireless security authentication is input for the one-time authentication program, it is preferable that the one-time authentication key-based wireless security authentication is requested to be processed in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1015), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output, and the advertisement data is output to a predetermined area (or all areas) on the one-time authentication area (1020).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area that outputs a one-time authentication screen for authentication key-based wireless security authentication processing, and to process the advertisement data to be output to a predetermined area (or all areas) on the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program sets a layer in which the one-time authentication area is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. And outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key in a predetermined area of the set layer, and outputting the advertisement data in a predetermined area (or entire area) on the one-time authentication area. It is preferable to process.

For example, the one-time authentication program may be set such that the one-time authentication area is output to the hierarchy in an overlap (or pop-up) manner.

Thereafter, the wireless terminal 140 includes a one-time authentication key generation screen (or an interface) for requesting (or commanding) to generate a one-time authentication key in a certain area on the one-time authentication area (1025), and outputs the wireless communication network. In operation 1030, the advertisement server 130 checks whether at least one advertisement data to be output to a predetermined region (or entire region) on the disposable authentication region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( When the advertisement server 130 for transmitting the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 authenticates with the advertisement server 130 through the wireless communication network. The one-time authentication area is set up in association with the interaction of the server 105 (or wireless server 125) (e.g., in connection with the authentication server 105 (or wireless server 125) in the advertising server 130). It is preferable to receive the advertisement data corresponding to the keyword (or the context or index word) included in the terminal screen displayed on the former terminal 140 screen.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 130 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 may be connected to the wireless communication network. The keyword (or context or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 130 before the one-time authentication region is set through the advertisement server 130. 130, advertisement data corresponding to the keyword (or context or index word) is preferably received.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 130 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 130 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another exemplary embodiment of the present invention, when the at least one advertisement data to be output to a predetermined region (or all regions) on the disposable authentication region and the advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 may receive advertisement identification information associated with the advertisement data instead of the advertisement data from the advertisement server 130, and thus the present invention is not limited thereto.

If it is confirmed that the reception of the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertisement server 130 (1035), the wireless terminal 140 is the advertisement via a wireless communication network After transmitting the advertisement request information corresponding to the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area to the server 130 (1040), the predetermined area on the one-time authentication area from the ad server 130 In operation 1030, it is determined whether at least one advertisement data to be outputted to the entire area is received.

On the other hand, if it is confirmed in step 1035 that the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the ad server 130, the wireless terminal 140 is a schedule on the one-time authentication area The received advertisement data is output to an area (or an entire area) (1045).

According to the exemplary embodiment of the present invention, when the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the wireless terminal 140 advertises the remaining areas except for the one-time authentication key generation screen (or interface). When the data is processed to be output, or when the one-time authentication key is output to the one-time authentication area, the advertisement data is output to the remaining area except the one-time authentication key area, or the one-time authentication area is disposable. When the authentication key end screen (or interface) is output, it is preferable to process the advertisement data to be output to the remaining areas except the one-time authentication key end screen (or interface).

In addition, when the one-time authentication key input screen (or interface) is output to the one-time authentication area, the wireless terminal 140 processes the advertisement data to be output to the remaining areas except the one-time authentication key input screen (or interface), Alternatively, the advertisement data may be output to the remaining areas except for the one-time authentication key input area on the one-time authentication key input screen (or interface), or the advertisement data may be output to the shaded area of the background of the one-time authentication key input area. It is preferable to process.

Thereafter, it is checked whether the one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area (1050).

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1055), the wireless terminal 140 is a memory unit (or a chip memory unit provided in the IC chip) And confirming the one-time authentication key generation information of the time synchronization method through a timer (1060), and assigning the at least one or more one-time authentication key generation information to an authentication key generation algorithm to obtain the one-time authentication key for the wireless security authentication process. Create (1065).

11 is a diagram illustrating a process of generating a time synchronization-based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

More specifically, FIG. 11 illustrates a process of generating a one-time authentication key in a time synchronization manner for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. When the program driving information for the one-time authentication program is received through the wireless communication network to the illustrated wireless terminal 140, and the one-time authentication key-based wireless security authentication processing function is driven through the program driving information, the wireless terminal 140. A) outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key on a certain area of the screen, and processing the advertisement data to be output to a predetermined area (or entire area) on the one-time authentication area Then, at least one or more in a certain area (or all areas) on the one-time authentication area A process of outputting a high data and generating a one-time authentication key to be output on the one-time authentication area through a time synchronization method will be described. For convenience, the process of outputting the one-time authentication start screen (or interface) and a password input. The process of outputting the screen (or interface) will be omitted.

Referring to FIG. 11, a terminal-side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen is displayed on the entire area of the screen of the wireless terminal 140 shown in FIG. 7. During output, if program driving information for the one-time authentication program is received through the wireless communication network (1100), the wireless terminal 140 drives the one-time authentication program through the program driving information (1105).

Thereafter, the wireless terminal 140 checks whether the wireless security authentication process is performed by generating a one-time authentication key through the one-time authentication program (1110).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1115), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output, and the advertisement data is output to a predetermined area (or entire area) on the one-time authentication area (1120).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area that outputs a one-time authentication screen for authentication key-based wireless security authentication processing, and to process the advertisement data to be output to a predetermined area (or all areas) on the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program sets a layer in which the one-time authentication area is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. And outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key in a predetermined area of the set layer, and outputting the advertisement data in a predetermined area (or entire area) on the one-time authentication area. It is preferable to process.

For example, the one-time authentication program may be set such that the one-time authentication area is output to the hierarchy in an overlap (or pop-up) manner.

Subsequently, the wireless terminal 140 includes a one-time authentication key generation screen (or interface) for requesting (or commanding) to generate a one-time authentication key in a certain area on the one-time authentication area (1125), and outputs the wireless communication network. Through the check whether the at least one advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertising server 130 through (1130).

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( If the advertisement server 130 for transmitting the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 130 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 130). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 130 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 may be connected to the wireless communication network. The keyword (or context or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 130 before the one-time authentication region is set through the advertisement server 130. 130, advertisement data corresponding to the keyword (or context or index word) is preferably received.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 130 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 130 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another exemplary embodiment of the present invention, when the at least one advertisement data to be output to a predetermined region (or all regions) on the disposable authentication region and advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 may receive advertisement identification information associated with the advertisement data instead of the advertisement data from the advertisement server 130, and thus the present invention is not limited thereto.

If it is confirmed that the reception of the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertisement server 130 (1135), the wireless terminal 140 is the advertisement via a wireless communication network After transmitting the advertisement request information corresponding to the advertisement data to be output to the predetermined region (or the entire region) on the one-time authentication area to the server 130 (1140), the predetermined area on the one-time authentication area from the ad server 130 In operation 1130, it is determined whether at least one advertisement data to be outputted to the entire area is received.

On the other hand, when it is confirmed that the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the ad server 130 (1135), the wireless terminal 140 is a certain area on the one-time authentication area The received advertisement data is output to (or the entire area) (1145).

According to the exemplary embodiment of the present invention, when the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the wireless terminal 140 advertises the remaining areas except for the one-time authentication key generation screen (or interface). When the data is processed to be output, or when the one-time authentication key is output to the one-time authentication area, the advertisement data is output to the remaining area except the one-time authentication key area, or the one-time authentication area is disposable. When the authentication key end screen (or interface) is output, it is preferable to process the advertisement data to be output to the remaining areas except the one-time authentication key end screen (or interface).

In addition, when the one-time authentication key input screen (or interface) is output to the one-time authentication area, the wireless terminal 140 processes the advertisement data to be output to the remaining areas except the one-time authentication key input screen (or interface), Alternatively, the advertisement data may be output to the remaining areas except for the one-time authentication key input area on the one-time authentication key input screen (or interface), or the advertisement data may be output to the shaded area of the background of the one-time authentication key input area. It is preferable to process.

Thereafter, it is checked whether the one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area (1150).

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1155), the wireless terminal 140 is a memory unit (or a chip memory unit provided in the IC chip). And confirming the one-time authentication key generation information of the time synchronization method through a timer (1160), and inserting the at least one or more one-time authentication key generation information into an authentication key generation algorithm to obtain the one-time authentication key for the wireless security authentication process. Create (1165).

12 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to an embodiment of the present invention.

More specifically, FIG. 12 illustrates a process of generating a one-time authentication key in a challenge-response method for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. In the state in which the terminal-side screen including at least one of a desktop, a content use screen, a web access screen, a financial transaction screen, a payment screen, etc. is output on the screen of the wireless terminal 140 shown in FIG. When the one-time authentication key-based wireless security authentication function is driven through the provided key input means, the one-time authentication that outputs a one-time authentication screen for the one-time authentication key-based wireless security authentication processing on a certain area of the screen of the wireless terminal 140. Outputting an area, and processing the advertisement data to be output to a predetermined area (or an entire area) on the one-time authentication area; A process of outputting at least one advertisement data to a predetermined area (or entire area) on the one time authentication area, and generating a one time authentication key to be output on the one time authentication area through a challenge-response method will be described. The process of outputting the one-time authentication start screen (or interface) and the process of outputting the password input screen (or interface) will be omitted.

Referring to FIG. 12, a terminal-side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen is displayed on the entire area of the screen of the wireless terminal 140 shown in FIG. 7. And outputting (1200), while outputting the terminal-side screen, the key input (or the one-time authentication key-based wireless security authentication related user interface included in the terminal-side screen through the key input means provided in the wireless terminal 140 and When the one-time authentication program is driven through the associated key input (1205), the wireless terminal 140 checks whether the wireless security authentication process is performed by generating the one-time authentication key through the one-time authentication program (1210).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1215), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal-side screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output, and the advertisement data is output to a predetermined area (or all areas) on the one-time authentication area (1220).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area for outputting a one-time authentication screen for authentication key-based wireless security authentication processing, and to process the advertisement data to be output to a predetermined area (or all areas) on the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program sets a layer in which the one-time authentication area is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. And outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key in a predetermined area of the set layer, and outputting the advertisement data in a predetermined area (or entire area) on the one-time authentication area. It is preferable to process.

For example, the one-time authentication program may be set such that the one-time authentication area is output to the hierarchy in an overlap (or pop-up) manner.

Subsequently, the wireless terminal 140 includes a one-time authentication key generation screen (or an interface) for requesting (or commanding) to generate a one-time authentication key in a predetermined area on the one-time authentication area (1225), and outputs the wireless communication network. In operation 1230, the advertisement server 130 checks whether at least one advertisement data to be output to a predetermined region (or entire region) on the one-time authentication region is received.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( If the advertisement server 130 for transmitting the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 130 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 130). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 130 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 may be connected to the wireless communication network. The keyword (or context or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 130 before the one-time authentication region is set through the advertisement server 130. 130, advertisement data corresponding to the keyword (or context or index word) is preferably received.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless When the advertisement server 130 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 130 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another exemplary embodiment of the present invention, when the at least one advertisement data to be output to a predetermined region (or all regions) on the disposable authentication region and the advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 may receive advertisement identification information associated with the advertisement data instead of the advertisement data from the advertisement server 130, and thus the present invention is not limited thereto.

If it is confirmed that the reception of the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertisement server 130 (1235), the wireless terminal 140 is the advertisement via a wireless communication network After transmitting the advertisement request information corresponding to the advertisement data to be output to the predetermined region (or the entire region) on the one-time authentication area to the server 130 (1240), the predetermined area on the one-time authentication area from the ad server 130 In operation 1230, it is determined whether at least one advertisement data to be output to the entire region is received.

On the other hand, if it is confirmed in step 1235 that the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertisement server 130, the wireless terminal 140 is a certain area on the one-time authentication area The received advertisement data is output to the entire region (1245).

According to the exemplary embodiment of the present invention, when the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the wireless terminal 140 advertises the remaining areas except for the one-time authentication key generation screen (or interface). When the data is processed to be output, or when the one-time authentication key is output to the one-time authentication area, the advertisement data is output to the remaining area except the one-time authentication key area, or the one-time authentication area is disposable. When the authentication key end screen (or interface) is output, it is preferable to process the advertisement data to be output to the remaining areas except the one-time authentication key end screen (or interface).

In addition, when the one-time authentication key input screen (or interface) is output to the one-time authentication area, the wireless terminal 140 processes the advertisement data to be output to the remaining areas except the one-time authentication key input screen (or interface), Alternatively, the advertisement data may be output to an area other than the one-time authentication key input area on the one-time authentication key input screen (or interface), or the advertisement data may be output to the shaded area of the background of the one-time authentication key input area. It is preferable to process as much as possible.

Thereafter, it is checked whether the one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area (1250).

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1255), the wireless terminal 140 to the challenge server 105 through the wireless communication network-the challenge- Requesting and receiving first one-time authentication key generation information corresponding to the response challenge (1260), and N-th corresponding to the challenge-response method through the memory unit (or the chip memory unit provided in the IC chip). = 2,3, ...) one-time authentication key generation information (1265), and substituted the at least one or more one-time authentication key generation information into the authentication key generation algorithm to obtain a one-time authentication key for the wireless security authentication processing; Create (1270).

13 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

More specifically, FIG. 13 illustrates a process of generating a one-time authentication key in a challenge-response method for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. At least one of a content-use screen, a web access screen, a financial transaction screen, a payment screen, etc., in the form of a wireless web document including the at least one tag string (or script), which is output to the terminal 140 shown in FIG. When the one-time authentication key-based wireless security authentication processing function is driven through the tag string (or script), the wireless security authentication for one-time authentication key-based wireless security processing is performed on a certain area of the screen. Outputs a one-time authentication area on which a one-time authentication screen is output; Reverse processing) to output the advertisement data, and then output at least one advertisement data to a predetermined area (or entire area) on the one-time authentication area, and output on the one-time authentication area through a challenge-response method. A process of generating an authentication key will be described and described. For convenience, the process of outputting the one-time authentication start screen (or interface) and the process of outputting a password input screen (or interface) will be omitted.

Referring to FIG. 13, a one-time wireless web document including a tag string (or a script) for driving a one-time authentication program is received by the wireless terminal 140 illustrated in FIG. 7, and the contents corresponding to the wireless web document are used. When a terminal side screen including at least one screen, a web access screen, a financial transaction screen, a payment screen, etc. is output (1300), the one-time authentication is performed by a program driving related tag string (or script) included in the wireless web document. The program is driven (1305).

For example, when the terminal-side screen output on the screen of the wireless terminal 140 includes a string (or a script) for automatically driving (or activating) the one-time authentication program, the one-time authentication program is the tag string (or script). It is preferred to be driven (or activated) by.

Alternatively, when the terminal-side screen output on the screen of the wireless terminal 140 includes a string (or a script) corresponding to the user interface for driving the one-time authentication program, the one-time authentication program is the tag string (or the script). It is preferable to be driven (or activated) through key input through a user interface corresponding to the key input means.

Thereafter, the wireless terminal 140 checks whether the wireless security authentication process is performed by generating a one-time authentication key through the one-time authentication program (1310).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1315), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output, and the advertisement data is output to a predetermined area (or all areas) on the one-time authentication area (1320).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area that outputs a one-time authentication screen for authentication key-based wireless security authentication processing, and to process the advertisement data to be output to a predetermined area (or all areas) on the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program sets a layer in which the one-time authentication area is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. And outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key in a predetermined area of the set layer, and outputting the advertisement data in a predetermined area (or entire area) on the one-time authentication area. It is preferable to process.

For example, the one-time authentication program may be set such that the one-time authentication area is output to the hierarchy in an overlap (or pop-up) manner.

Subsequently, the wireless terminal 140 includes a one-time authentication key generation screen (or an interface) for requesting (or commanding) to generate a one-time authentication key in a predetermined area on the one-time authentication area (1325), and outputs the wireless communication network. In operation 1330, the advertisement server 130 determines whether to receive at least one advertisement data to be output to a predetermined region (or entire region) on the disposable authentication region.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( If the advertisement server 130 for transmitting the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 130 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 130). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 130 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 may be connected to the wireless communication network. The keyword (or context or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 130 before the one-time authentication region is set through the advertisement server 130. 130, advertisement data corresponding to the keyword (or context or index word) is preferably received.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 130 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 130 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another exemplary embodiment of the present invention, when the at least one advertisement data to be output to a predetermined region (or all regions) on the disposable authentication region and the advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 may receive advertisement identification information associated with the advertisement data instead of the advertisement data from the advertisement server 130, and thus the present invention is not limited thereto.

If it is confirmed that the reception of the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertisement server 130 (1335), the wireless terminal 140 is the advertisement via a wireless communication network After transmitting the advertisement request information corresponding to the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area to the server 130 (1340), the predetermined area on the one-time authentication area from the ad server 130 In operation 1330, it is determined whether at least one advertisement data to be output to the entire region is received.

On the other hand, if it is confirmed that the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertisement server 130 (1335), the wireless terminal 140 is a certain area on the one-time authentication area The received advertisement data is output (or entire area) (1345).

According to the exemplary embodiment of the present invention, when the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the wireless terminal 140 advertises the remaining areas except for the one-time authentication key generation screen (or interface). When the data is processed to be output, or when the one-time authentication key is output to the one-time authentication area, the advertisement data is output to the remaining area except the one-time authentication key area, or the one-time authentication area is disposable. When the authentication key end screen (or interface) is output, it is preferable to process the advertisement data to be output to the remaining area except for the one-time authentication key end screen (or interface).

In addition, when the one-time authentication key input screen (or interface) is output to the one-time authentication area, the wireless terminal 140 processes the advertisement data to be output to the remaining areas except the one-time authentication key input screen (or interface), Alternatively, the advertisement data may be output to the remaining areas except for the one-time authentication key input area on the one-time authentication key input screen (or interface), or the advertisement data may be output to the shaded area of the background of the one-time authentication key input area. It is preferable to process.

Thereafter, it is checked whether the one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area (1350).

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1355), the wireless terminal 140 to the challenge server 105 through the wireless communication network-the challenge- Request and receive first one-time authentication key generation information corresponding to the response challenge (1360), and the N-th corresponding to the challenge-response method through the memory unit (or the chip memory unit provided in the IC chip). = 2,3, ...) one-time authentication key generation information (1365), and substituted the at least one or more one-time authentication key generation information into the authentication key generation algorithm for a one-time authentication key for the wireless security authentication processing Generate (1370).

14 is a diagram illustrating a process of generating a challenge-response based one-time authentication key for wireless security authentication processing according to another embodiment of the present invention.

More specifically, FIG. 14 illustrates a process of generating a one-time authentication key in a challenge-response method for the one-time authentication key-based wireless security authentication processing in the wireless terminal 140 shown in FIG. 7. When the program driving information for the one time authentication program is received through the wireless communication network through the wireless terminal 140 shown in FIG. 1 and the one time authentication key based wireless security authentication processing function is driven through the program driving information, the wireless terminal ( 140) outputting a one-time authentication area that outputs a one-time authentication screen for wireless security authentication processing based on a one-time authentication key on a certain area of the screen, and processing the output of the advertisement data in a predetermined area (or all areas) on the one-time authentication area; Then, at least one or more in a certain area (or all areas) on the one-time authentication area A process of outputting advertisement data and generating a one-time authentication key to be output on the one-time authentication area through a challenge-response method will be described. For convenience, the process of outputting the one-time authentication start screen (or interface) and a password; The process of outputting the input screen (or interface) will be omitted.

Referring to FIG. 14, a terminal side screen including at least one of a desktop screen, a content usage screen, a web access screen, a financial transaction screen, and a payment screen is displayed on the entire area of the screen of the wireless terminal 140 shown in FIG. 7. During operation, the program driving information for the one-time authentication program and the first one-time authentication key generation information corresponding to the challenge-response challenge are received through a wireless communication network (1400), and the wireless terminal 140 receives the program. The one-time authentication program is driven through the driving information (1405).

According to another exemplary embodiment of the present invention, the first one-time authentication key generation information is received by requesting and receiving the authentication server 105 through the wireless communication network in the process of confirming the challenge-response one-time authentication key generation information. Also, the present invention is not limited thereto.

Thereafter, the wireless terminal 140 checks whether the wireless security authentication process is performed by generating a one-time authentication key through the one-time authentication program (1410).

According to one embodiment of the invention, when the one-time authentication program is driven (or activated), the one-time authentication program is a one-time authentication key based wireless security authentication in the wireless terminal 140 in response to the program driving (or activation). It is desirable to confirm that this processing is requested.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), a screen, a content use screen, a web access screen, a financial transaction screen, a payment screen, and the like are displayed on the screen of the wireless terminal 140. When the terminal side screen processing unit corresponding to various programs outputting at least one terminal screen including at least one request for wireless security authentication for content use, web access, financial transaction, or payment processing corresponding to the terminal screen, The one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

According to another exemplary embodiment of the present invention, after the one-time authentication program is driven (or activated), the content input, web access, financial transaction, or payment processing corresponding to the terminal screen is performed through the key input means. When an authentication command (or key data) for wireless security authentication is input, the one-time authentication program preferably confirms that the one-time authentication key-based wireless security authentication processing is requested in the wireless terminal 140.

If the one-time authentication key-based wireless security authentication process is confirmed as a result of the checking (1415), the wireless terminal 140 is located in a predetermined area of the screen of the wireless terminal 140 outputting the terminal-side screen through the one-time authentication program. A one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication is output, and the advertisement data is output to a predetermined area (or all areas) on the one-time authentication area (1420).

According to an exemplary embodiment of the present invention, the one-time authentication program stores the terminal side screen area output on the entire area of the screen of the wireless terminal 140, and then uses the single-use authentication program in a predetermined area of the screen of the wireless terminal 140. It is preferable to output a one-time authentication area that outputs a one-time authentication screen for authentication key-based wireless security authentication processing, and to process the advertisement data to be output to a predetermined area (or all areas) on the one-time authentication area.

According to another exemplary embodiment of the present invention, the one-time authentication program sets a layer in which the one-time authentication area is set on the terminal side screen area that is output to the entire area of the screen of the wireless terminal 140. And outputting a one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key in a predetermined area of the set layer, and outputting the advertisement data in a predetermined area (or entire area) on the one-time authentication area. It is preferable to process.

For example, the one-time authentication program may be set such that the one-time authentication area is output to the hierarchy in an overlap (or pop-up) manner.

Thereafter, the wireless terminal 140 includes a one-time authentication key generation screen (or interface) for requesting (or commanding) to generate a one-time authentication key in a predetermined area on the one-time authentication area (1425), and outputs the wireless communication network. In operation 1430, the advertisement server 130 checks whether at least one advertisement data to be output to a predetermined region (or entire region) on the disposable authentication region is received from the advertisement server 130.

According to an embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing) and the wireless terminal ( If the advertisement server 130 for transmitting the advertisement data to the server 140 is linked (or implemented as one server) on the communication network, the wireless terminal 140 is connected to the advertisement server 130 and the authentication server through the wireless communication network. Before the one-time authentication zone is set up in association with the interaction of 105 (or wireless server 125) (e.g., in connection with authentication server 105 (or wireless server 125) in ad server 130). It is preferable to receive advertisement data corresponding to a keyword (or a context or an index word) included in the terminal screen displayed on the screen of the wireless terminal 140.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless terminal When the advertisement server 130 that transmits the advertisement data to the 140 is not connected on the communication network (for example, implemented by a separate operator who does not share information), the wireless terminal 140 may be connected to the wireless communication network. The keyword (or context or index word) included in the terminal screen displayed on the screen of the wireless terminal 140 is transmitted to the advertisement server 130 before the one-time authentication region is set through the advertisement server 130. 130, advertisement data corresponding to the keyword (or context or index word) is preferably received.

According to another embodiment of the present invention, the authentication server 105 for processing the one-time authentication key-based wireless security authentication (or the wireless server 125 for requesting the one-time authentication key-based wireless security authentication processing), and the wireless When the advertisement server 130 that transmits the advertisement data to the terminal 140 is not connected on the communication network (for example, implemented by a separate operator that does not share information), the wireless terminal 140 is connected to the wireless terminal. Preferably, the advertisement server 130 receives advertisement data preset to be provided to the wireless terminal 140 through a communication network.

According to another exemplary embodiment of the present invention, when the at least one advertisement data to be output to a predetermined region (or all regions) on the disposable authentication region and the advertisement identification information corresponding to the advertisement data are stored in the memory unit, the wireless terminal 140 may receive advertisement identification information associated with the advertisement data instead of the advertisement data from the advertisement server 130, and thus the present invention is not limited thereto.

If it is confirmed that the reception of the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area from the advertisement server 130 (1435), the wireless terminal 140 is the advertisement via a wireless communication network After transmitting the advertisement request information corresponding to the advertisement data to be output to the predetermined area (or the entire area) on the one-time authentication area to the server 130 (1440), the predetermined area on the one-time authentication area from the ad server 130 In operation 1430, it is determined whether at least one advertisement data to be output to the entire region is received.

On the other hand, if it is confirmed that the advertisement data received from the advertisement server 130 to be output to a predetermined area (or entire area) on the one-time authentication area (1435), the wireless terminal 140 is a certain area on the one-time authentication area The received advertisement data is output to the entire region (1445).

According to the exemplary embodiment of the present invention, when the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the wireless terminal 140 advertises the remaining areas except for the one-time authentication key generation screen (or interface). When the data is processed to be output, or when the one-time authentication key is output to the one-time authentication area, the advertisement data is output to the remaining area except the one-time authentication key area, or the one-time authentication area is disposable. When the authentication key end screen (or interface) is output, it is preferable to process the advertisement data to be output to the remaining area except for the one-time authentication key end screen (or interface).

In addition, when the one-time authentication key input screen (or interface) is output to the one-time authentication area, the wireless terminal 140 processes the advertisement data to be output to the remaining areas except the one-time authentication key input screen (or interface), Alternatively, the advertisement data may be output to the remaining areas except for the one-time authentication key input area on the one-time authentication key input screen (or interface), or the advertisement data may be output to the shaded area of the background of the one-time authentication key input area. It is preferable to process.

Thereafter, it is checked whether the one-time authentication key generation is requested (or commanded) through the one-time authentication key generation screen (or interface) output to the one-time authentication area (1450).

If the one-time authentication key generation request (or command) is confirmed through the one-time authentication key generation screen (or interface) (1455), the wireless terminal 140 is the memory unit (or chip memory unit provided in the IC chip) N) (N = 2,3, ...) one-time authentication key generation information corresponding to the challenge-response method is performed (1460).

According to another exemplary embodiment of the present invention, the first one-time authentication key generation information corresponding to the challenge-response method is not received together with the program driving information, but is requested and received from the authentication server 105 through the wireless communication network. Also, the present invention is not limited thereto.

Thereafter, the wireless terminal 140 generates the one-time authentication key for the wireless security authentication process by substituting the identified at least one-time one-time authentication key generation information into an authentication key generation algorithm (1465).

15 is a diagram illustrating a process of inputting and transmitting a one-time authentication key according to an embodiment of the present invention.

More specifically, FIG. 15 is a one-time-use generated by the one-time authentication key generation process shown in FIG. 9 or 10 or 11 or 12 or 13 or 14 in the wireless terminal 140 shown in FIG. As the authentication key is input through the one-time authentication area output on the screen of the wireless terminal 140 and transmitted to the authentication server 105 shown in FIG. 8, general knowledge in the technical field to which the present invention belongs. If you have, it will be able to infer various implementation methods for the process of inputting and transmitting the one-time authentication key by referring to and / or modified in this figure 15, the present invention comprises all the implementation methods inferred However, the technical features are not limited only to the implementation method illustrated in FIG. 15.

Referring to FIG. 15, the wireless terminal 140 illustrated in FIG. 7 is configured to generate at least one single-use authentication key through the one-time authentication key generation process illustrated in FIG. 9, 10, 11, 12, 13, or 14. In operation 1500, a one-time authentication key for processing the wireless security authentication is generated through authentication key generation information and an authentication key generation algorithm.

If the one-time authentication key for the wireless security authentication process is generated (1505), the wireless terminal 140 outputs the generated one-time authentication key to a predetermined area on the one-time authentication area displayed on the screen of the wireless terminal 140. In operation 1510, the one-time authentication key input screen (or interface) is output to a predetermined area on the one-time authentication area.

Thereafter, the wireless terminal 140 checks whether the one-time authentication key is input through a one-time authentication key input screen (or an interface) output to the one-time authentication area through a key input (1520).

If the one-time authentication key is input through the one-time authentication key input screen (or interface) output to the one-time authentication area (1525), the wireless terminal 140 is input through the one-time authentication key input screen (or interface). Generates security authentication request information including the one-time authentication key (1530), and transmits the security authentication request information including the one-time authentication key to the authentication server 105 shown in FIG. 8 through the wireless communication network. (1535).

According to another embodiment of the present invention, when the security authentication request and the financial transaction (or payment) are made together, the one-time authentication key may be included in the financial transaction request information (or payment request information) and transmitted. This makes it clear that the present invention is not limited.

16 is a diagram illustrating a one-time authentication key based wireless security authentication process according to an embodiment of the present invention.

More specifically, FIG. 16 includes the one-time authentication key from the wireless terminal 140 shown in FIG. 7 to the authentication server 105 shown in FIG. 8 through the one-time authentication key transmission process shown in FIG. When the security authentication request information is transmitted, the authentication server 105 processes the wireless security authentication based on the one-time authentication key by checking the validity of the one-time authentication key. Those skilled in the art will be able to infer various implementation methods for the one-time authentication key-based wireless security authentication process by referring to and / or modifying the drawing 16, but the present invention includes all the implementation methods inferred above. The technical features are not limited only to the implementation method illustrated in FIG. 16.

Referring to FIG. 16, the wireless terminal 140 shown in FIG. 7 includes the one-time authentication key from the wireless terminal 140 to the authentication server 105 shown in FIG. 8 through the process of transmitting the one-time authentication key shown in FIG. When the security authentication request information is transmitted, the authentication server 105 receives the security authentication request information including the one-time authentication key through a wireless communication network (1600), and the wireless communication network (eg, a network operation system on a wireless communication network ( 135) or read the protocol for receiving the security authentication request information to check the information of the wireless terminal 140 that transmitted the security authentication request information (1605).

If the information on the wireless terminal 140 that transmits the security authentication request information is confirmed (1610), the authentication server 105 is connected to the one-time authentication management D / B 830 shown in Figure 8 the wireless terminal The one-time authentication key generation information and the authentication key generation algorithm corresponding to the one-time authentication key are checked from the one-time authentication key management information associated with the information (1615).

If the one-time authentication key generation information and the authentication key generation algorithm corresponding to the one-time authentication key is confirmed (1620), the wireless terminal 140 uses the one-time authentication key generation information and the authentication key generation algorithm. Generate a one-time authentication key authentication code corresponding to the key (1625), and compares the one-time authentication key included in the security authentication request information with the generated one-time authentication key authentication code to verify the validity of the one-time authentication key. (1630).

If the validity of the one-time authentication key is confirmed (1635), the wireless terminal 140 generates security authentication result information including the one-time authentication key validation result through the wireless communication network to the wireless terminal 140. 1640, the one-time authentication key to the wireless server 125 (eg, the financial server 110, the payment server 115, the wireless web server 120, etc.) requesting the wireless security authentication based on the one-time authentication key. The validity result is shared and transmitted (1645), and correspondingly, the wireless server 125 transmits to the wireless terminal 140 at least one or more financial transactions, payment and authentication based on the one-time authentication key validity result. Provide additional services.

17 is a diagram illustrating a one-time authentication key-based wireless security authentication process according to an embodiment of the present invention.

In more detail, FIG. 17 illustrates the one-time authentication in the authentication server 105 shown in FIG. 8 through the one-time authentication key based wireless security authentication process shown in FIG. 16 in the authentication server 105 shown in FIG. After generating security authentication result information including a key validation result and transmitting the result to the wireless terminal 140 shown in FIG. 7, the wireless terminal 140 processes the wireless security authentication using the security authentication result information. As for the person skilled in the art to which the present invention pertains, various implementation methods for the one-time authentication key based wireless security authentication process may be inferred by referring to and / or modifying the drawing 17. The present invention includes all the implementation methods inferred, and the technical features are not limited only to the implementation method illustrated in FIG. 17. .

Referring to FIG. 17, the one-time authentication key in the authentication server 105 shown in FIG. 8 through the one-time authentication key based wireless security authentication process shown in FIG. 16 in the authentication server 105 shown in FIG. After generating security authentication result information including a validity result and transmitting it to the wireless terminal 140 shown in FIG. 7, the wireless terminal 140 validates the one-time authentication key from the authentication server 105 through a wireless communication network. In operation 1700, the security authentication result information including the verification result (eg, validity approval or validity error) is received.

If the security authentication result information is received (1705), the wireless terminal 140 extracts the one-time validation result from the security authentication result information and outputs it to a predetermined area on the one-time authentication area (1710), the one-time The one-time authentication key end screen (or interface) is output to a predetermined area on the authentication area (1715).

Thereafter, the wireless security authentication process using the one-time authentication key is terminated through the one-time authentication key end screen (or interface) output on the one-time authentication area (1720).

If the wireless security authentication process using the one-time authentication key is terminated through the one-time authentication key end screen (or interface) (1725), the wireless terminal 140 displays the one-time authentication area on the screen of the wireless terminal 140. In operation 1730, the terminal-side screen is output to the entire area of the screen of the wireless terminal 140.

18 is a diagram illustrating an advertisement providing process for replacing a one-time authentication fee (or a discount) according to an embodiment of the present invention.

In more detail, FIG. 18 illustrates the one-time authentication through the one-time authentication key generation process shown in FIG. 9 or 10 or 11 or 12 or 13 or 14 in the wireless terminal 140 shown in FIG. When a region for outputting advertisement data is set in a predetermined region (or entire region) on the screen, the advertisement server 130 transmits at least one advertisement data from the advertisement terminal 130 to the wireless terminal 140 to display a predetermined region (or And a process of replacing a portion of the advertising revenue amount with the one-time authentication fee (or discounting) in response to the advertisement provision, which is common in the technical field to which the present invention pertains. Those skilled in the art can refer to and / or modify this drawing 18 to provide advertisements for the replacement (or discount) of the one-time authentication fee. To be able to infer the various embodiments and methods, the present invention is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 18.

Referring to FIG. 18, the advertisement server 130 may transmit advertisement data to a predetermined area (or entire area) on the one-time authentication screen to provide at least one advertisement data to the wireless terminal 140 shown in FIG. 7. Check whether the output area is set (1800).

According to an exemplary embodiment of the present invention, the advertisement server 130 is connected to the authentication server 105 (or the wireless server 125) in one-time authentication key in a certain area of the screen of the wireless terminal 140 used by the customer. And outputting a one-time authentication area on which the one-time authentication screen for the wireless security authentication process is output, and checking whether a region for outputting advertisement data is set in a predetermined area (or entire area) on the one-time authentication screen.

For example, the advertisement server 130 transmits a wireless web document including a tag string (or a script) that drives (or activates) a one-time authentication processing function from the wireless server 125 to the wireless terminal 140. And outputting a one-time authentication area in which a one-time authentication screen for one-time authentication key-based wireless security authentication processing is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, and a predetermined area (or entire area) on the one-time authentication screen ), It is preferable to confirm that an area for outputting advertisement data is set.

Alternatively, when the advertisement server 130 transmits program driving information for driving (or activating) a one-time authentication processing function from the wireless server 125 (or the authentication server 105) to the wireless terminal 140, A one-time authentication area for outputting a one-time authentication screen for wireless security authentication processing based on a one-time authentication key is output to a predetermined area of the screen of the wireless terminal 140 used by the customer, and to a certain area (or entire area) on the one-time authentication screen. It is preferable to confirm that an area for outputting advertisement data is set.

According to another exemplary embodiment of the present invention, the advertisement server 130 is connected to the wireless terminal 140 for one-time authentication key-based wireless security authentication processing in a certain area of the wireless terminal 140 used by the customer. And outputting a one-time authentication area on which the one-time authentication screen is output, and checking whether an area for outputting advertisement data is set in a predetermined area (or entire area) on the one-time authentication screen.

For example, the advertisement server 130 may drive (or activate) the one-time authentication processing function from the wireless terminal 140 or a predetermined area (or an entire area) on the one-time authentication screen of the wireless terminal 140 screen. When receiving the advertisement request information confirming that the set, and outputs a one-time authentication area outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication processing to a certain area of the screen of the wireless terminal 140 used by the customer and It is preferable to confirm that an area for outputting advertisement data is set in a predetermined area (or entire area) on the one-time authentication screen.

Alternatively, the advertisement server 130 receives advertisement request information including a keyword (or a context, or an index word) included in the terminal-side screen previously output on the screen of the wireless terminal 140 from the wireless terminal 140. In one case, a one-time authentication area for outputting a one-time authentication screen for the one-time authentication key-based wireless security authentication process is output to a certain area of the screen of the wireless terminal 140 used by the customer, and the predetermined area (or the entire area) on the one-time authentication screen. It is preferable to confirm that an area for outputting advertisement data is set in the area).

If it is confirmed that the advertisement output region is output on the screen of the wireless terminal 140 (1805), the advertisement server 130 is connected to the advertisement information D / B 865, the wireless terminal ( In operation 1810, the at least one advertisement data to be transmitted is checked.

According to an exemplary embodiment of the present invention, the advertisement server 130 may check at least one advertisement data preset to be transmitted to the wireless terminal 140 in association with the advertisement information D / B 865. .

According to another exemplary embodiment of the present invention, the advertisement server 130 checks the wireless web document transmitted from the wireless server 125 to the wireless terminal 140 in association with the wireless server 125. Check the keyword (or context or index word) information included in the terminal-side screen output to the wireless terminal 140 and at least one advertisement corresponding to the identified keyword (or context or index word) information. It is desirable to verify the data.

According to another exemplary embodiment of the present invention, the advertisement server 130 may use keyword (or context, or index word) information included in the terminal-side screen previously output from the wireless terminal 140 to the wireless terminal 140. It is desirable to receive and verify at least one or more advertisement data corresponding to the received keyword (or contextual or index word) information.

If at least one advertisement data to be transmitted to the wireless terminal 140 is identified (1815), the advertisement server 130 is provided to the wireless terminal 140 in association with the advertisement information D / B (865). At least one advertisement data is extracted (1820), and the extracted at least one advertisement data is transmitted to the wireless terminal 140 through a wireless communication network to be output to a predetermined region (or entire region) on the one-time authentication screen. (1825).

According to an embodiment of the present invention, the advertisement server 130 is a communication protocol negotiated with the wireless terminal 140 (for example, the advertisement data communication protocol provided in the one-time authentication program provided in the wireless terminal 140). It is preferable to transmit the extracted advertising data to the wireless terminal 140 through.

According to another exemplary embodiment of the present invention, the advertisement server 130 includes the extracted advertisement data in a wireless web document transmitted by the wireless server 125 to the wireless terminal 140. Is preferred.

If the advertisement data is output to a predetermined region (or entire region) on the one-time authentication screen output on the screen of the wireless terminal 140 (1830), the advertisement server 130 is the advertisement information D / B (865) In step 1835, the amount of advertisement revenue corresponding to the advertisement data is provided.

According to the exemplary embodiment of the present invention, the advertisement server 130 checks the advertisement amount information corresponding to the advertisement data enhanced by the wireless terminal 140 in association with the advertisement information D / B 865 and the advertisement. Characterized in that the advertising revenue amount information corresponding to the provision of the advertisement data of the amount is confirmed.

In this case, the advertisement revenue amount information is preferably made of a variety of fees in the advertising amount including the revenue amount, may be used as the advertising revenue amount of the advertising amount according to the intention of those skilled in the art.

In addition, the advertisement server 130 calculates a one-time authentication fee replacement amount to replace (or discount) the one-time authentication fee corresponding to the one-time authentication key-based wireless security authentication processing among the confirmed advertisement revenue amount (1840).

According to the method of the present invention, the one-time authentication fee replacement amount is preferably made to include a certain amount of the advertising revenue amount, or comprises an amount corresponding to a certain ratio of the advertising revenue amount.

If the one-time authentication fee replacement amount to replace (or discount) the one-time authentication fee corresponding to the one-time authentication key-based wireless security authentication processing is calculated (1845), the advertisement server 130 may be configured to replace the one-time authentication fee replacement amount. The one-time authentication fee corresponding to the one-time authentication key-based wireless security authentication process is replaced (or discounted) (1850).

According to the exemplary embodiment of the present invention, the advertisement server 130 confirms the deposit information deposited by the advertiser in connection with the advertisement information D / B 865 and replaces the disposable authentication fee replacement amount of the deposit with the disposable amount. It is preferable to substitute the one-time authentication fee amount for the authentication key-based wireless security authentication process (or process the discounted amount from the one-time authentication fee amount).

According to the present invention, when the one-time authentication key-based wireless security authentication processing through the wireless terminal used by the customer is required, one-time authentication that outputs a one-time authentication screen for the one-time authentication key-based wireless security authentication processing in a certain area of the wireless terminal screen After outputting an area and setting advertisement data to be output to a predetermined area (or entire area) on the one-time authentication area, the wireless communication network is processed by processing a one-time authentication key-based wireless security authentication and advertisement provision through the one-time authentication area. There is an advantage to provide a one-time authentication key-based wireless security authentication function for various financial transactions (or payment) and wireless services.

According to the present invention, the one-time authentication key-based wireless security by replacing (or discounting) a portion of the revenue amount corresponding to the advertisement output through a certain area (or all areas) on the one-time authentication area with the one-time authentication fee. This has the advantage of providing a certification service for free (or low cost).

Claims (4)

When the one-time authentication key-based wireless security authentication processing using a mobile phone, the one-time authentication area for processing the one-time authentication key-based wireless security authentication is output on the mobile phone screen, and the advertisement data is stored in a predetermined area (or all areas) of the one-time authentication area. An output processor which processes the output; An advertisement receiver configured to receive advertisement data to be output to a predetermined region (or entire region) of the disposable authentication region through a wireless communication network; An advertisement output unit configured to process the received advertisement data to be output to a predetermined region (or entire region) of the disposable authentication region; And Generate and output a one-time authentication key through the one-time authentication area, and when the outputted one-time authentication key is input through the one-time authentication key input screen (or interface) output to the one-time authentication area, the input one-time authentication key is input. Wireless single-use authentication-based advertising provided mobile phone comprising a; authentication key processing unit for transmitting to a server on a communication network to handle wireless security authentication based on one-time authentication key. The method of claim 1, wherein the advertisement output unit, When the one-time authentication key generation screen (or interface) is output to the one-time authentication area, the advertisement data is output to the remaining areas except the one-time authentication key generation screen (or interface), or When the generated one-time authentication key is output to the one-time authentication area, the advertisement data is output to the remaining area except the area where the one-time authentication key is output, or When the one-time authentication key input screen (or interface) is output to the one-time authentication area, the one-time authentication key in the remaining area except the one-time authentication key input screen (or interface) or the one-time authentication key input screen (or interface). Process the advertisement data to be output in the remaining area except the input area or the shaded area under the area where the one-time authentication key is input, or When the one-time authentication key end screen (or interface) is output to the one-time authentication area, the wireless one-time authentication-based advertising, characterized in that the advertisement data is output to the remaining area except the one-time authentication key end screen (or interface). Offer mobile phones. A recording medium comprising a program for executing the mobile phone function configuration of claim 1. In the one-time authentication key-based wireless security authentication processing using a mobile phone, an advertisement providing confirmation means outputs a one-time authentication area for processing the one-time authentication key-based wireless security authentication on the mobile phone screen, and a predetermined area (or Checking whether an area for outputting advertisement data is set in an entire area); Identifying and extracting at least one advertisement data to be provided to an area in which advertisement data set in the one-time authentication region is to be output by the advertisement extracting means when the advertisement provision is confirmed; And Transmitting advertisement data to the mobile phone through a wireless communication network in the advertisement providing means for processing to be output to a predetermined area (or the entire area) on the one-time authentication area; Wireless one-time authentication-based advertising providing method comprising a .
KR1020070101141A 2007-10-08 2007-10-08 Method for providing advertisement with wireless one-time authentication and mobile phone, recording medium KR20090036045A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020070101141A KR20090036045A (en) 2007-10-08 2007-10-08 Method for providing advertisement with wireless one-time authentication and mobile phone, recording medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020070101141A KR20090036045A (en) 2007-10-08 2007-10-08 Method for providing advertisement with wireless one-time authentication and mobile phone, recording medium

Related Child Applications (1)

Application Number Title Priority Date Filing Date
KR1020090078228A Division KR20090094790A (en) 2009-08-24 2009-08-24 Mobile Phone for Providing Advertisement with Wireless One-time Authentication

Publications (1)

Publication Number Publication Date
KR20090036045A true KR20090036045A (en) 2009-04-13

Family

ID=40761152

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020070101141A KR20090036045A (en) 2007-10-08 2007-10-08 Method for providing advertisement with wireless one-time authentication and mobile phone, recording medium

Country Status (1)

Country Link
KR (1) KR20090036045A (en)

Similar Documents

Publication Publication Date Title
KR101140223B1 (en) Device for Processing a Payment
KR100963928B1 (en) Method for Authenting Wireless One-time with Financial Password and Mobile Phone, Recording Medium
KR20230107162A (en) Near Field Communication based Payment Method Using Token Code
KR100963924B1 (en) Method for Confirming Wireless One-time Authentication Location and Mobile Phone, Recording Medium
KR101413117B1 (en) System for Processing Financial Transaction by using Token Code
KR100999567B1 (en) Method for Authenticating Wireless One-time with Living Body Information Base Two Factor and Recording Medium
KR100963929B1 (en) Method for Authenticating Wireless One-time with Financial Security Card Base Two Factor and Recording Medium
KR101139288B1 (en) Method for Processing Wireless Complex Settlement, Sales Man Wireless Terminal
KR101625222B1 (en) Method for Operating OTP by Seed Combination Mode
KR20090036046A (en) System and method for providing target advertisement with wireless one-time authentication and mobile phone, recording medium
KR20090036045A (en) Method for providing advertisement with wireless one-time authentication and mobile phone, recording medium
KR100963927B1 (en) Moblie Phone for Displaying Security with Wireless One-time Authentication and Recording Medium
KR20090036044A (en) System and method for operating advertisement with one-time authentication and mobile phone, recording medium
KR20090094790A (en) Mobile Phone for Providing Advertisement with Wireless One-time Authentication
KR101392360B1 (en) Method for Processing Financial Transaction by using Token Code
KR20090094791A (en) Method for Providing Advertisement with Wireless One-time Authentication
KR20090036048A (en) System and method for providing customer ordered advertisement with wireless one-time authentication and recording medium
KR20090036047A (en) System and method for providing advertisement with wireless one-time authentication and recording medium
KR20090094792A (en) System for Providing Customer Ordered Advertisement with Wireless One-time Authentication
KR20090036060A (en) System and method for authenticating locatin base wireless one-time and recording medium
KR20090098766A (en) Method for authenticating locatin base wireless one-time
KR20090036049A (en) System and method for settling wireless one-time authentication advertisement profit and recording medium
KR101625219B1 (en) Method for Providing Network type OTP of Multiple Code Creation Mode by using Users Medium
KR20090096588A (en) Method for Settling Wireless One-time Authentication Advertisement Profit
KR20070021581A (en) System and Method for Processing Financial Transaction, Devices for Processing Financial Transaction, Terminals and Recording Medium

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
A107 Divisional application of patent
E601 Decision to refuse application