KR20090114585A - Method and System for Processing Cash Payment by Using USIM and Recording Medium - Google Patents

Method and System for Processing Cash Payment by Using USIM and Recording Medium Download PDF

Info

Publication number
KR20090114585A
KR20090114585A KR1020080040290A KR20080040290A KR20090114585A KR 20090114585 A KR20090114585 A KR 20090114585A KR 1020080040290 A KR1020080040290 A KR 1020080040290A KR 20080040290 A KR20080040290 A KR 20080040290A KR 20090114585 A KR20090114585 A KR 20090114585A
Authority
KR
South Korea
Prior art keywords
information
usim
cash withdrawal
customer
authentication
Prior art date
Application number
KR1020080040290A
Other languages
Korean (ko)
Inventor
최수진
Original Assignee
주식회사 신한은행
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 신한은행 filed Critical 주식회사 신한은행
Priority to KR1020080040290A priority Critical patent/KR20090114585A/en
Publication of KR20090114585A publication Critical patent/KR20090114585A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3229Use of the SIM of a M-device as secure element
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/02Banking, e.g. interest calculation, credit approval, mortgages, home banking or on-line banking
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines

Abstract

The present invention relates to a cash withdrawal processing method and system using a USIM and a recording medium therefor. The cash withdrawal processing method using the USIM according to the present invention includes a USIM unique information and a financial company provided in the customer mobile phone from a cash withdrawal customer phone. When the authentication information generated by combining the one-time password information transmitted from the server to the customer's mobile phone is provided (or input) to the automatic teller machine, receiving the authentication information from the automated teller machine; and Confirming USIM unique information, and firstly authenticating the cash withdrawal customer validity through the USIM unique information, and during the first customer authentication, validating the cash withdrawal customer through the one-time password information included in the authentication information. Performing the second authentication, and generating the cash withdrawal approval information during the second customer authentication. Transmitting to the screen device.

Description

Method and system for processing cash withdrawal using universal subscriber identification module and recording medium therefor {Method and System for Processing Cash Payment by Using USIM and Recording Medium}

1 is a diagram showing the configuration of a wireless cash withdrawal system using a USIM according to an embodiment of the present invention.

2 is a diagram illustrating a non-face-to-face banking system for cash withdrawal using a USIM according to an embodiment of the present invention.

3 is a diagram illustrating a non-face-to-face financial transaction process for cash withdrawal using USIM according to one embodiment of the present invention.

4A and 4B illustrate a non-face-to-face financial transaction process for cash withdrawal using USIM according to another embodiment of the present invention.

5 is a diagram illustrating a configuration of a customer wireless terminal function for cash withdrawal using a USIM according to an embodiment of the present invention.

6 is a diagram illustrating a customer wireless terminal operation process for cash withdrawal using a USIM according to an embodiment of the present invention.

7 is a diagram showing the configuration of a cash withdrawal system using a USIM according to an embodiment of the present invention.

8 is a diagram showing a cash withdrawal process using the USIM according to an embodiment of the present invention.

<Description of main parts of drawing>

100: non-face-to-face banking server 105: financial company server

110: automatic teller machine 115: customer wireless terminal

The present invention provides (or inputs) the authentication information generated by combining USIM unique information provided in the customer mobile phone with the one-time password information transmitted from the financial company server to the customer mobile phone in the cash withdrawal customer mobile phone. Receiving the authentication information from the automatic teller machine; confirming USIM unique information included in the authentication information; firstly authenticating the cash withdrawal customer validity through the USIM unique information; And secondly authenticating the cash withdrawal customer validity through the one-time password information included in the authentication information, and generating cash withdrawal approval information and transmitting the generated cash withdrawal approval information to the automated teller machine. It relates to a cash withdrawal processing method using the USIM.

As the continuous development of information and communication technology is integrated into the financial industry, the conventional face-to-face transaction has developed into a face-to-face transaction using a communication network and various non-face-to-face authentication means through the unmanned transaction phase using a card and a financial automation device.

Despite the development of financial transactions as described above, cash withdrawal remains in the form of face-to-face transactions or unattended transactions, because real money is not stored in electronic means but consists of paper money that is paid directly to customers.

On the other hand, various service methods have been proposed for withdrawing cash through automated teller machines without using plastic card media.

However, the method of withdrawing cash through the automated teller machine without the conventionally proposed card media, the card information stored in the card media other than the card storage type mobile storage means (for example, mobile phone memory, IC chip provided in the mobile phone) ) And transfer the card information to the automated teller machine, which is merely a change of the conventional card medium to another mobile storage means.

In particular, in order to withdraw cash in the above manner, it is inconvenient to store the card information in the mobile storage means according to a complicated procedure, and in the same form as the card media is lost when the mobile storage means is lost. It includes a fatal problem.

An object of the present invention is to provide (or input) authentication information generated by combining USIM unique information provided in the customer mobile phone with one-time password information transmitted from the financial company server to the customer mobile phone in the cash withdrawal customer mobile phone. In this case, the first authentication means for receiving the authentication information from the automated teller machine, confirms the USIM unique information included in the authentication information, and firstly authenticates the cash withdrawal customer validity through the USIM unique information. Means and second authentication means for secondly authenticating the cash withdrawal customer validity through the one-time password information included in the authentication information when the first customer is authenticated, and cash withdrawal approval information when the second customer is authenticated. In providing a cash withdrawal processing system using a USIM including a cash withdrawal approval means to be transmitted to the automated teller machine .

Cash withdrawal processing method using the USIM according to the present invention, financial with automated authentication information generated by combining the USIM unique information provided in the customer mobile phone with the one-time password information transmitted from the financial company server to the customer mobile phone When provided (or input) to the device, receiving the authentication information from the automated teller machine, confirming the USIM unique information included in the authentication information, and the first cash withdrawal customer validity through the USIM unique information Authenticating, and secondly authenticating the cash withdrawal customer validity through the one-time password information included in the authentication information when the first customer is authenticated, and generating cash withdrawal approval information when the second customer is authenticated. It characterized in that it comprises the step of transmitting to the automated teller machine.

According to the present invention, the authentication information is generated by concatenating the USIM unique information and the one time password information, or decomposes the respective configuration information of the USIM unique information and the one time password information, and the decomposed configuration information is the financial company server Generated by combining the USIM unique information and one-time password information according to a specified information combination method, or restoring the USIM unique information and one-time password information from the financial institution server at the financial institution server; Or a hash function hashed through a designated hash function for verification) or encrypted using an encryption key that can be decrypted by the financial institution server.

The present invention includes a computer-readable recording medium characterized by recording a program for executing the above cash withdrawal processing method using the USIM.

Cash withdrawal processing system using the USIM according to the present invention, the bank withdrawal authentication information generated by combining the USIM unique information provided in the customer mobile phone with the one-time password information transmitted from the financial company server to the customer mobile phone When provided (or input) to an automated device, information receiving means for receiving the authentication information from the automated teller machine, USIM unique information included in the authentication information is confirmed, and the cash withdrawal customer validity through the USIM unique information First authentication means for firstly authenticating, second authentication means for secondly authenticating the cash withdrawal customer validity through one-time password information included in the authentication information when the first customer is authenticated, and the second customer authentication And cash withdrawal approval means for generating cash withdrawal approval information and transmitting the same to the financial automatic device. It is characterized by.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description will be omitted. Terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to intentions or customs of users or operators. Therefore, the definition should be made based on the contents throughout the present invention.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify, integrate, or separate the terminology so that those skilled in the art to which the present invention pertains may clearly understand the present invention. The present invention is by no means limited thereto. In other words, each means constituting the present invention is a server (or terminal) provided on the system shown in the following embodiments, or a predetermined functional configuration provided in at least one or more servers (or terminals), or at least It may be an association of at least two or more functional components provided in one or more servers (or terminals). In addition, the server (or terminal) shown in the following embodiment is shown to include at least two or more functional components for achieving the technical features of the present invention for convenience, the functional component shown in the server (or terminal) May be provided in two or more servers (or terminals) different from each other according to the role and function of each functional component and the corresponding server (or terminal) operator (or operator) in accordance with the above-described means, thereby limiting the present invention. Not.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram showing the configuration of a wireless cash withdrawal system using a USIM according to an embodiment of the present invention.

In more detail, in Figure 1, when a customer requests cash withdrawal using a USIM through a non-face-to-face banking system, the non-face-to-face banking system transmits a one-time password for cash withdrawal using the USIM to the customer wireless terminal 115. When the customer wireless terminal 115 generates the authentication information combining the received one-time password and the unique USIM information and provides the authentication information to the automatic teller machine 110, the automatic teller machine 110 provides the authentication information. The present invention relates to a system for transferring cash to a financial company server 105 (for example, a CD transaction server) that approves cash withdrawal using USIM. Various implementation methods for the wireless cash withdrawal system using the USIM with reference and / or modification of 1 (eg, some components are omitted, or Would be able to infer or differentiation, or the combined method embodiment), the present invention is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 1.

Referring to FIG. 1, the wireless cash withdrawal system using the USIM includes a customer wireless terminal 115 owned (or possessed) by a customer requesting cash withdrawal using the USIM through non-face-to-face banking, and the USIM. After checking the validity for cash withdrawal, non-face-to-face banking server 100 for transmitting a one-time password for cash withdrawal using the USIM to the customer wireless terminal 115, and authentication information from the customer wireless terminal 115 A financial automation device 110 that inputs (or receives) and transmits the received authentication information to a financial institution server 105 that approves cash withdrawal using the USIM through a CD network; Receive the authentication information from the 110, confirm the USIM unique information included in the authentication information, and firstly authenticate the customer validity through the USIM unique information, the first customer authentication In the case of the financial company server 105 to secondly authenticate the customer validity through the one-time password included in the authentication information, and to generate the cash withdrawal approval information at the time of the second customer authentication to the automated teller machine 110 It characterized by comprising a.

However, in FIG. 1, the non-face-to-face banking server 100 and the financial company server 105 are illustrated as being made in the form of one server for convenience. However, the present invention is not limited thereto, and the non-face-to-face banking server ( 100) and the financial company server 105 may be implemented in the form of two or more server groups for each component, or in the form of one integrated server, the present invention is characterized in that it comprises all the inferable implementation method It is done.

2 is a diagram illustrating a non-face-to-face banking system for cash withdrawal using USIM according to an embodiment of the present invention.

In more detail, Figure 2 shows a cash withdrawal request information including one or more customer account information, transaction authentication information, cash withdrawal amount information, and customer wireless terminal 115 information through a non-face-to-face banking system. If provided, the non-face-to-face banking system generates a one-time password for cash withdrawal using the USIM after approval of cash withdrawal through the customer account information, transaction authentication information and cash withdrawal amount information included in the provided cash withdrawal request information. As a configuration of the system provided to the customer wireless terminal 115, and those skilled in the art to which the present invention pertains, non-cash withdrawal by using the USIM by referring to and / or modifying the present figure 2 Various implementation methods for the configuration of the face-to-face banking system may be inferred, but the present invention is inferred from the above. Includes any method embodiment, it shall not be limited to the exemplary method shown in the figure 2.

Hereinafter, the cash withdrawal request information provided from the customer is received through a non-face-to-face banking interface on the non-face-to-face banking system shown in FIG. 2, and the customer account information and transaction authentication information included in the received cash withdrawal request information. And after the cash withdrawal approval through the cash withdrawal amount information, for convenience to generate a one-time password for cash withdrawal using the USIM to provide one or more means and / or functional components corresponding to the functional configuration to the customer wireless terminal 115 for convenience The non-face-to-face banking server 100 is called.

Referring to FIG. 2 according to an embodiment of the present invention, a non-face-to-face banking system for cash withdrawal using the USIM includes a client terminal 240 including one or more wired or wireless terminals used by a customer. The client terminal 240 is connected to a non-face-to-face banking server 100 provided on the non-face-to-face banking system through a communication network.

According to an embodiment of the present invention, the customer connects to the non-face-to-face banking server 100 through at least one client terminal 240 of a wired terminal connected to a wired communication network or a wireless terminal connected to a wireless communication network, and the non-face-to-face When the cash withdrawal request information for cash withdrawal using the USIM is input (or selected) through one or more user interfaces provided by the banking server 100, the client terminal 240 receives the information on the non-face-to-face banking system through a communication network. It is preferable to transmit to the non-facing banking server 100 provided in.

Here, the wired terminal is a generic term for all terminal devices connected to a TCP / IP based communication network and includes a desktop computer, a notebook, or the PC connected to the TCP / IP based communication network. It is preferable to include at least one home appliance terminal (eg, Set-Top-Box) connected to a TCP / IP based communication network, or a kiosk connected to the TCP / IP based communication network.

The wireless terminal is a generic term for all terminal apparatuses connected to a code division multiple access (CDMA) based mobile communication network and all terminal apparatuses connected to a portable Internet based on IEEE 802.1xx, and includes a personal communication terminal connected to the CDMA based mobile communication network ( Personal Communication System (PCS) or Global System for Mobile communications (GSM) terminals or Personal Digital Cellular (PDC) or Personal Handyphone System (PHS) terminals or Personal Digital Assistants (PDAs) or smartphones (Smart Phone) or Telematics, or one or more portable Internet terminals connected to the IEEE 802.1xx based portable Internet.

In addition, the non-face-to-face banking server 100 connected to the client terminal 240 may be any one of an internet banking server, a wireless banking server, a tele banking server, or a TV banking server according to the characteristics of the client terminal 240 and a communication network. Or, preferably, a separate banking server for cash withdrawal using the USIM.

In addition, the communication network connecting the client terminal 240 and the non-face-to-face banking server 100 may be a CDMA based mobile communication network or an IEEE 802.1xx based portable Internet according to the type of wireless communication network to which the client terminal 240 is connected. Either one of them, or it is preferable to include all kinds of wireless communication networks proposed in the future including a wireless section.

In addition, the client terminal 240 outputs one or more user interfaces provided by the non-face-to-face banking server 100, and inputs or selects one or more information through the user interface to the non-face-to-face banking server 100. It is preferable that a function configuration for transmitting (for example, a browser program and a communication function, or a communication program and a communication function for communicating with the non-face-to-face banking server 100, etc.) is provided.

Those skilled in the art to which the present invention pertains can easily infer the characteristics of the client terminal 240 corresponding to one or more wired terminals or wireless terminals, and thus a detailed description thereof will be omitted for convenience. .

In the non-face-to-face banking system as described above, a client terminal 240 including at least one wired terminal or a wireless terminal used by the customer, and one that connects the client terminal 240 and the non-face-to-face banking server 100. The communication network performs a function of a non-face-to-face banking interface for the customer to transmit cash withdrawal request information for cash withdrawal using the USIM.

According to another exemplary embodiment of the present invention, the customer is a call terminal (not shown) connected to a wired telephone network such as a public switched telephone network (PSTN) and a voice over IP (VoIP) network, in addition to the client terminal 240. ), Or further comprising a call terminal (not shown) connected to a wireless telephone network such as a mobile communication network, a wireless VoIP network, or provided with one or more institutions affiliated with the financial institution (or Server) (not shown), the cash withdrawal request information can be transmitted further, and the present invention is not limited thereto.

In the non-face-to-face banking system as described above, when the customer transmits the cash withdrawal request information using the call terminal (not shown), the call terminal (not shown), the call terminal (not shown), and the The wired telephone network or the wireless telephone network connecting the non-face-to-face banking server 100 performs a function of a non-face-to-face banking interface for the customer to transmit cash withdrawal request information for cash withdrawal using the USIM, or the customer When transmitting the cash withdrawal request information using a terminal (or server) (not shown) provided in an institution affiliated with a financial institution, the terminal (or server) (not shown) and the terminal (or server) (not shown) Network) connecting the non-face-to-face banking server 100 is enlarged for the customer to transmit cash withdrawal request information for cash withdrawal using the USIM. It performs the function of banking interface.

The non-face-to-face banking system is characterized by comprising a financial system opened a financial account of the customer name corresponding to the customer account information.

The financial system is a computerized system provided to a financial company to open one or more financial accounts to one or more financial transaction customers and provide one or more financial transaction services based on the financial accounts, and occurs at one or more branches (or windows). An accounting system that handles window services such as credit or receiving or trust or foreign exchange; an information system that processes headquarters operations, branch office information support and customer information management; and one or more other financial systems (or payment systems) Interconnection, and / or access to the financial system from one or more non-face-to-face financial transaction means (e.g., internet banking, wireless banking, IC chip based wireless banking, tele banking, TV banking, etc.) provided in one or more external communication networks. And / or various financing through one or more common networks (eg, CD common network, financial common network) And an external system that provides a network interface, and the financial system includes an interface module corresponding to a middleware platform that provides interfacing between components in the financial system, and components in the financial system. DBMS (DataBase Management System) including one or more databases that store and manage predetermined information (eg, ledger information, and / or customer information, and / or management information, etc.) required for each function in It is characterized by comprising.

According to the method of the present invention, the external system preferably comprises a cash withdrawal unit for processing the cash withdrawal using the USIM, and the cash withdrawal unit may be omitted according to the intention or financial system characteristics of those skilled in the art. Thereby, this invention is not limited.

In addition, the financial system is based on the intention of those skilled in the art and / or each financial company (eg, commercial banks, savings banks, trust banks) equipped with the financial system, and the foreign exchange module (city) O) one or more components, such as investment finance module (not shown), international module (not shown), may be further included, and those skilled in the art to which the present invention belongs, Since it will be familiar with the technical details, the detailed description thereof will be omitted for convenience, thereby not limiting the present invention.

According to the present invention, the DBMS provided in the financial system is one or more ledgers for the financial company to open one or more financial accounts to one or more financial transaction customers, and provide one or more financial transaction services based on the financial accounts. And ledger D / B for storing the at least one ledger information (eg, customer ledger, reception) for processing one or more financial transactions to be provided to the financial transaction customer by the financial company. Ledger, collateral ledger, etc.) and one or more ledger additional information corresponding to each ledger information (e.g., to further refine (or supplement) the attributes / functions of each ledger) are stored in a relational manner. It features.

Those skilled in the art to which the present invention pertains include one or more ledger information provided in the ledger D / B and one corresponding to each ledger information according to the type of financial company and the purpose and characteristic of the financial system. In addition to being familiar with the above ledger supplementary information, it is understood that each ledger information is linked and stored in a relational relation, and / or that predetermined ledger information and one or more ledger additional information are linked and stored in relational relation. Since there will be, a detailed description thereof will be omitted for convenience.

The non-face-to-face banking server 100 provided on the non-face-to-face banking system is a generic term for the non-face-to-face banking system side components connected to the client terminal 240 through a communication network, and may include one or more servers (or devices). It may be implemented as one or more than one program recorded on a recording medium provided in the server (or device), by which the present invention is not limited.

According to an embodiment of the present invention, when the client terminal 240 is a wired terminal, the non-face-to-face banking server 100 is an internet banking server provided on the internet banking system or is provided in the internet banking server. A program or a server (or device) accessible to the outside world of the financial system through the Internet banking system, a program included in the server (or device), or the Internet banking server (or the server (or device) It may be a server (or device) provided in the external system on the financial system accessible through)), or a program provided in the external system on the financial system, and the present invention is not limited thereto.

According to another embodiment of the present invention, when the client terminal 240 is a wireless terminal, the non-face-to-face banking server 100 is a wireless banking server provided on the wireless banking system, or provided in the wireless banking server. Program or a server (or device) accessible to the outside world of the financial system through the wireless banking system, a program included in the server (or device), or the wireless banking server (or the server (or It may be a server (or device) provided in the external system on the financial system accessible through the device)), or a program provided in the external system on the financial system, and the present invention is not limited thereto.

According to another exemplary embodiment of the present invention, the non-face-to-face banking server 100 may be a telebanking server (eg, an Automatic Response Service (ARS) server) provided on the telebanking system, or may be connected to the telebanking server. A program provided, or a server (or device) accessible to the outside world of the financial system through the telebanking system, a program included in the server (or device), or the telebanking server (or the server ( Or a server (or device) provided in the external system on the financial system accessible through the device)), or a program provided in the external system on the financial system, and the present invention is not limited thereto.

Alternatively, the non-face-to-face banking server 100 may be a TV banking server provided on the TV banking system, a program included in the TV banking server, or an external system of the financial system is accessed through the TV banking system. A server (or device) capable of being a server (or device), a program included in the server (or device), or a server (or being provided in an external system on the financial system accessible through the TV banking server (or the server (or device)). Device) or a program included in the external system on the financial system, and the present invention is not limited thereto.

According to an exemplary embodiment of the present invention, the non-face-to-face banking server 100 may include an interface unit 200 for connecting and managing a communication channel with the client terminal 240 through the communication network.

According to an embodiment of the present invention, when the client terminal 240 is a wired terminal, the interface unit 200 connects a communication channel with the client terminal 240 based on a protocol stack defined in the communication network. It is preferable to provide a communication interface for transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal 240.

For example, when the client terminal 240 is equipped with a browser program corresponding to the Hyper-Text Transfer Protocol (HTTP) protocol, the interface unit 200 may be connected to the client terminal 240 based on the TCP / IP protocol. It connects a communication channel and provides a communication interface for transmitting and receiving a web page (eg, a Hyper-Text Markup Language (HTML) compatible web page) and / or information using the HTPP protocol defined in the browser program.

Alternatively, when the client terminal 240 is provided with a communication program (eg, an internet banking program) provided by the non-face-to-face banking server 100, the interface unit 200 is based on the TCP / IP protocol. It connects a communication channel with the client terminal 240, and provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in the communication program.

According to another exemplary embodiment of the present invention, when the client terminal 240 is a wireless terminal, the interface unit 200 connects a communication channel with the client terminal 240 based on a protocol stack defined in the wireless communication network. In addition, it is preferable to provide a communication interface for transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal 240.

For example, when a browser program corresponding to a WAP (Wireless Application Protocol) or a ME (Mobile Explorer) protocol is provided in the client terminal 240, the interface unit 200 is based on the CDMA protocol. ) And a communication interface for transmitting / receiving a web page (eg, a WML (Wireless Markup Language) compatible web page, or an HTML compatible web page) or information using a WAP / ME protocol defined in the browser program. to provide.

Alternatively, when the client terminal 240 is provided with a communication program (eg, IC chip based banking program) provided by the non-face-to-face banking server 100, the interface unit 200 is based on the CDMA protocol. It connects a communication channel with the client terminal 240, and provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in the communication program.

According to another exemplary embodiment of the present invention, when the client terminal 240 is a call terminal (not shown) connected to a wired telephone network or a wireless telephone network, the interface unit 200 is defined in the wired telephone network or a wireless telephone network. It is desirable to provide a communication interface for connecting a call terminal (not shown) and a call path based on a voice call protocol and transmitting and receiving information (or data) based on the voice call.

For example, the interface unit 200 provides a communication interface for transmitting and receiving information based on Dual Tone MultiFrequency (DTMF) through the call terminal and the communication path, or provides a communication interface for transmitting and receiving information based on voice recognition. .

According to another exemplary embodiment of the present invention, when the client terminal 240 is a wired terminal (or two-way digital TV) connected to a TV banking system, the interface unit 200 may include a protocol stack defined in the TV banking system. Connect a communication channel with the wired terminal (or bidirectional digital TV) based on the above, and transmit and receive one or more information (or data) using a communication protocol defined in a communication program included in the wired terminal (or bidirectional digital TV). It is desirable to provide a communication interface for the purpose.

Referring to FIG. 2, in the non-face-to-face banking server 100, a client terminal 240 connects a communication channel with the non-face-to-face banking server 100 through the interface unit 200. In conjunction with 200, the client terminal 240 inputs (or selects) and transmits cash withdrawal request information including one or more of customer account information, transaction authentication information, cash withdrawal amount information, and customer wireless terminal 115 information. An interface providing unit 205 for generating (or extracting) a user interface and providing the same to the client terminal 240 and inputting the user interface from the client terminal 240 in cooperation with the interface unit 200 ( Or selecting) information receiving unit 210 (or information receiving means) for receiving the cash withdrawal request information transmitted, and checking the validity of the received cash withdrawal request information. Characterized in that it comprises a validating unit 215 (or validating means).

The interface providing unit 205 connects the communication channel with the non-face-to-face banking server 100 through the interface unit 200, and then the functional configuration provided in the client terminal 240. Correspondingly, the user may input (or select) the cash withdrawal request information and generate a user interface capable of transmitting the cash withdrawal request information to the non-face-to-face banking server 100 through the communication network, or extract it from a database (not shown). In operation 200, the generated (or extracted) user interface may be provided to the client terminal 240 through the communication network.

Thereafter, the client terminal 240 inputs (or selects) cash withdrawal request information including one or more of the customer account information, the transaction authentication information, the cash withdrawal amount information, and the customer wireless terminal 115 information based on the user interface. And transmits the input (or selected) cash withdrawal request information to the non-face-to-face banking server 100 through the financial network.

According to an exemplary embodiment of the present invention, when the client terminal 240 is a client terminal 240 including a wired terminal or a wireless terminal connected to a communication network, the interface providing unit 205 may be connected to the client terminal 240. It is preferable to generate (or extract) a user interface that can be provided by the provided browser program or communication program, and provide the generated (or extracted) user interface to the client terminal 240 through the interface unit 200. .

According to another exemplary embodiment of the present invention, when the client terminal 240 is a client terminal 240 including a wireless terminal connected to a wireless communication network, the interface providing unit 205 is provided in the client terminal 240. It is preferable to generate (or extract) a user interface that can be provided by a browser program or a communication program, and provide the generated (or extracted) user interface to the client terminal 240 through the interface unit 200.

According to another exemplary embodiment of the present invention, when the client terminal 240 is a call terminal (not shown) connected to a wired telephone network or a wireless telephone network, the interface study 205 returns to the call terminal (not shown). Creating (or extracting) a user interface that can be provided, and providing the generated (or extracted) user interface (eg, ARS based user interface) to the call terminal (not shown) through the interface unit 200. desirable.

According to another exemplary embodiment of the present invention, when the client terminal 240 is a wired terminal (or two-way digital TV) connected to a TV banking system, the interface providing unit 205 is the wired terminal (or two-way digital TV). It is preferable to generate (or extract) a user interface that can be provided by the user interface and provide the generated (or extracted) user interface to the wired terminal (or interactive digital TV) through the interface unit 200.

According to another exemplary embodiment of the present invention, a non-facing bank having at least one user interface for inputting (or selecting) the cash withdrawal request information to the client terminal 240 and transmitting the information to the non-face-to-face banking server 100 through the communication network. When the facing program is provided, the interface providing unit 205 for providing the user interface to the client terminal 240 may be omitted, and the present invention is not limited thereto.

The information receiver 210 receives the cash withdrawal request information including at least one of customer account information, transaction authentication information, cash withdrawal amount information, and customer wireless terminal 115 information through the user interface. When the input (or selection) is transmitted through the communication network, it is characterized in that for receiving the cash withdrawal request information in conjunction with the interface unit 200.

Here, the customer account information, preferably comprises an account number corresponding to the financial account of the customer name of the financial account opened in the financial system linked to the non-face-to-face banking system.

The transaction authentication information may include an account password, a withdrawal password, and one or more non-face-to-face authentication information (for example, certificate information, security card information, and one-time password for non-face-to-face transaction) for withdrawing the cash withdrawal amount from the customer account. It is preferable to comprise as mentioned above.

The cash withdrawal amount information may include an amount to be withdrawn from the automated teller machine 110 through the USIM included in the customer wireless terminal 115 of the amount deposited in the customer account.

The customer wireless terminal 115 information is wireless terminal information provided with the USIM, and the customer wireless terminal 115 authenticates the USIM unique information by combining the one-time password provided from the non-face-to-face banking server 100. It is desirable to have a function for generating information.

The validity verification unit 215 is characterized in that whether the cash withdrawal request information received from the client terminal 240 satisfies the validity for cash withdrawal using a USIM.

According to the method of the present invention, the validity of the cash withdrawal request information, the ledger corresponding to the customer account information included in the cash withdrawal request information in the ledger D / B on the financial system associated with the non-face-to-face banking system It is preferable to check the validity of the customer account information by checking whether (for example, an account ledger) is provided.

In addition, the validity check of the cash withdrawal request information, the transaction authentication information stored in the ledger D / B on the financial system for storing the ledger corresponding to the customer account information compared with the transaction authentication information contained in the cash withdrawal request information It is preferable to check the validity of the transaction authentication information.

In addition, the validity check of the cash withdrawal request information, the account balance stored in the ledger D / B on the financial system for storing the ledger corresponding to the customer account information and the cash withdrawal amount information is compared to the cash withdrawal amount information It is advisable to check the validity.

Referring to FIG. 2, the non-face-to-face banking server 100 generates a one-time password for cash withdrawal using the USIM when validating the cash withdrawal request information through the validity verification unit 215. Password generation unit 220 (or one-time password generation means), and the one-time password for transmitting the generated one-time password to the customer wireless terminal 115 corresponding to the customer wireless terminal 115 information included in the cash withdrawal request information Characterized in that it comprises a transmission unit 225 (or one-time password transmission means).

When the validity (eg, customer account information validity, transaction authentication information validity, cash withdrawal amount information validity) of the cash withdrawal request information is confirmed through the validity verification unit 215, the one-time password generation unit 220 is pre-configured. According to the set one-time password generation method characterized in that for generating a one-time password for cash withdrawal using the USIM.

According to the embodiment of the present invention, the one-time password generation unit 220 is preferably shared with the financial company server 105 that approves the cash withdrawal using the USIM.

When the one-time password for cash withdrawal using the USIM is generated through the one-time password generation unit 220, the one-time password transmission unit 225 corresponds to the customer wireless terminal 115 information included in the cash withdrawal request information. Check the wireless communication network to transmit the generated one-time password to the customer wireless terminal 115 corresponding to the customer wireless terminal 115 information through the wireless communication network.

Referring to FIG. 2, the non-face-to-face banking server 100 stores the information on the storage medium 235 in association with at least one valid customer account information, cash withdrawal amount information, and one-time password. (Or information storage means).

The validity check unit 215 confirms the validity of the cash withdrawal request information (eg, customer account information validity, transaction authentication information validity, cash withdrawal amount information validity), and the one-time password generation unit 220. When a one-time password for cash withdrawal using the USIM is generated, the information storage unit 230 stores the information on the storage medium 235 in association with one or more of the customer account information, the cash withdrawal amount information and the one-time password. do.

Here, the storage medium 235 for storing the customer account information, cash withdrawal amount information and one or more passwords in association with one or more is a database operated by the non-face-to-face banking server 100, or provided in the financial system. Preferably, the storage medium 235 includes one or more additional information ledgers associated with a customer account ledger. When the storage medium 235 is a database operated by the non-face-to-face banking server 100, It is preferably shared with the financial institution server 105 that approves the cash withdrawal using the USIM.

3 is a diagram illustrating a non-face-to-face financial transaction process for cash withdrawal using a USIM according to one embodiment of the present invention.

In more detail, FIG. 3 shows the customer account information, the transaction authentication information, the cash withdrawal amount information, and the customer wireless terminal 115 information through the non-face-to-face banking interface in the client terminal 240 on the non-face-to-face banking system shown in FIG. If the cash withdrawal request information including at least one is provided, after the cash withdrawal through the customer account information, transaction authentication information and cash withdrawal information included in the provided cash withdrawal request information in the non-face-to-face banking system, the USIM As a method for generating a one-time password for cash withdrawal to provide to the customer wireless terminal 115, if the person skilled in the art to which the present invention pertains, refer to and / or this figure 3 Variations on the non-face-to-face financial transaction process for cash withdrawal using USIM in the client terminal 240 Exemplary method would be able to infer, the present invention includes all embodiments in which the inference method, not limited to the exemplary method shown in the figure 3.

For example, FIG. 3 illustrates a web-based non-face-to-face financial transaction process, but the present invention is not limited thereto, and the non-face-to-face financial transaction is terminal-based program-based non-face-to-face financial transaction, or terminal-side IC. Chip-based non-face-to-face financial transactions may also be included, whereby the present invention is not limited.

Hereinafter, in FIG. 3, the client terminal 240 illustrated in FIG. 2 is referred to as a “terminal” for convenience, and the non-face-to-face banking server 100 illustrated in FIG. 2 is referred to as a “server” for convenience.

Referring to FIG. 3, the terminal shown in FIG. 2 is a communication network (eg, when the terminal is a wired terminal, a TCP / IP based wired communication network, when the client terminal 240 is a wireless terminal, a CDMA based mobile communication network, or Connecting to a communication channel for transmitting the cash withdrawal request information through an IEEE 802.1xx based portable Internet, etc.), and requesting a cash withdrawal transaction using a USIM through the communication channel (300). Generates (or extracts) a web page corresponding to a non-face-to-face banking interface for transmitting the cash withdrawal request information (305), and transmits and outputs the generated (or extracted) web page to the terminal through the communication channel. (310).

According to an embodiment of the present invention, the non-face-to-face banking interface inputs cash withdrawal request information including at least one of customer account information, transaction authentication information, cash withdrawal amount information, and customer wireless terminal 115 information ( Or a user interface).

In addition, the web page transmission or output process is preferably performed at least once according to the cash withdrawal request information transmission procedure, thereby not limited to the present invention.

Thereafter, the terminal inputs (or selects) cash withdrawal request information including one or more customer account information, transaction authentication information, cash withdrawal amount information, and customer wireless terminal 115 information through the non-face-to-face banking interface ( 315).

If the terminal receives (or selects) cash withdrawal request information including one or more of the customer account information, the transaction authentication information, the cash withdrawal amount information, and the customer wireless terminal 115 information through the non-face-to-face banking interface (320); The terminal transmits the input (or selected) customer account information, transaction authentication information, cash withdrawal amount information, and customer wireless terminal 115 information to the server through the communication channel (325).

According to an exemplary embodiment of the present invention, transmitting the input (or selected) customer account information, transaction authentication information, cash withdrawal amount information, and customer wireless terminal 115 information through the communication channel to the server may include: The electronic device may further include electronically signing or encrypting the cash withdrawal request information input (or selected) through a face-to-face banking interface through a security module provided in the terminal.

Thereafter, the server receives and reads the customer account information, the transaction authentication information, the cash withdrawal amount information, and the customer wireless terminal 115 information through the communication channel to confirm the validity of the cash withdrawal request information (330). .

According to an embodiment of the present invention, checking the validity of the cash withdrawal request information may include: when the cash withdrawal request information is electronically signed and / or encrypted through a security module provided in the terminal, the cash withdrawal request information Or decrypting the cash withdrawal request information.

According to the method of the present invention, the validity of the cash withdrawal request information, the ledger corresponding to the customer account information included in the cash withdrawal request information in the ledger D / B on the financial system associated with the non-face-to-face banking system It is preferable to check the validity of the customer account information by checking whether (for example, an account ledger) is provided.

In addition, the validity check of the cash withdrawal request information, the transaction authentication information stored in the ledger D / B on the financial system for storing the ledger corresponding to the customer account information compared with the transaction authentication information contained in the cash withdrawal request information It is preferable to check the validity of the transaction authentication information.

In addition, the validity check of the cash withdrawal request information, the account balance stored in the ledger D / B on the financial system for storing the ledger corresponding to the customer account information and the cash withdrawal amount information is compared to the cash withdrawal amount information It is advisable to check the validity.

If the validity of the cash withdrawal request information is not authenticated (335), the server generates a web page including cash withdrawal error information using a USIM and transmits it to the terminal (340), and withdraws the cash using the USIM. Do not do it.

On the other hand, if the validity of the cash withdrawal request information is authenticated (335), the server generates a one-time password for cash withdrawal using a USIM (345), and linked one or more customer account information and cash withdrawal amount information and one-time password The storage medium 235 is stored in the storage medium 235 (350), and the generated one-time password is transmitted to the wireless terminal corresponding to the customer wireless terminal 115 information included in the cash withdrawal request information (355).

4A and 4B illustrate a non-face-to-face financial transaction process for cash withdrawal using USIM according to another embodiment of the present invention.

In more detail, FIGS. 4A and 2B show the customer account information, the transaction authentication information, the cash withdrawal amount information, and the customer wireless terminal through the non-face-to-face banking interface in the client terminal 240 on the non-face-to-face banking system shown in FIG. 115) If the cash withdrawal request information including one or more information is provided, the non-face-to-face banking system approves the cash withdrawal through the customer account information, the transaction authentication information and the cash withdrawal amount information included in the provided cash withdrawal request information. The present invention relates to a method of generating a one-time password for cash withdrawal using the USIM and providing it to the customer wireless terminal 115. Specifically, the non-face-to-face banking server 100 shown in FIG. 2 is an internet banking server. It is a figure which shows the implementation method.

Those skilled in the art to which the present invention pertains may refer to and / or modify the drawings 4a and 4b to transfer the cash withdrawal request information from the client terminal 240 to the non-face-to-face banking server 100. Various implementation methods for transmitting may be inferred, but the present invention includes all the implementation methods inferred above and is not limited to the implementation methods shown in FIGS. 4A and 4B.

That is, the browser program is connected to the Internet banking server through a browser program (for example, Microsoft Internet Explorer or Netscape's Netscape Navigator, etc.) included in the client terminal 240 in FIGS. 4A and 4B. Based on the implementation method for connecting the Internet banking-based financial transaction channel for transmitting cash withdrawal request information between the client terminal 240 and the Internet banking server based on the present invention, those skilled in the art The client terminal 240 is based on an internet banking program mounted on the client terminal 240 by referring to and / or modifying an internet banking-based financial transaction channel connection method using the browser programs shown in FIGS. 4A and 4B. Cash withdrawal request between you and the Internet banking server Although it may be possible to infer an implementation method of linking an internet banking-based financial transaction channel for transmission, the present invention includes a provided internet banking-based financial transaction based on the internet banking program, thereby limiting the present invention. Not.

In addition, those skilled in the art to which the present invention pertains, in addition to the Internet banking system by referring to and / or modify the Internet banking-based financial transaction channel connection method shown in Figures 4a and 4b, a telebanking system Or another banking system such as a wireless banking system or a TV banking system may infer an implementation method of connecting a non-face-to-face channel-based financial transaction channel for transmitting cash withdrawal request information, but the present invention may provide a telebanking system or a wireless banking system. All types of non-face-to-face channel-based financial transactions, including systems or TV banking systems or future non-face-to-channel banking systems, and the technical configuration of the present invention in the case of the Internet banking shown in Figures 4a and 4b It is by no means limited to.

4A and 4B, the client terminal 240 is referred to as a "terminal" for convenience, and the Internet banking server corresponding to the non-face-to-face banking server 100 is referred to as a "server" for convenience.

4A and 4B, when a browser program is executed in the terminal to access the server through the TCP / IP based network (400a), the server connects a communication channel between the terminal and the server through the browser. 405a, wherein the communication channel is a web page generated (or extracted) at the request of a browser program provided in the terminal and transmitted to the terminal, and the web is transmitted from the browser program provided in the terminal. This means that a communication session is allocated to receive one or more information (or data) inputted (or selected) based on a user interface included in the page.

According to another embodiment of the present invention, when the terminal is provided with an internet banking program, the server transmits and receives one or more information (or data) with the internet banking program based on a communication protocol defined in the internet banking program. The communication channel can be allocated.

Thereafter, the server is equipped with a security module for internet banking on the web page (eg, an internet banking main page) generated (or extracted) for providing to the terminal, or to update the security module. By adding a script to check whether the terminal is provided to the terminal, it is checked whether the terminal is equipped with a security module for internet banking, or whether to update the security module (410a).

According to another embodiment of the present invention, when the terminal is provided with an internet banking program, the server requests the version information or the last update date, etc., from the internet banking program, thereby linking with the internet banking program (or the internet banking program). Security module, etc.) can be updated.

If the security module is mounted or updated on the terminal (415a), the server transmits the latest version of the security module for internet banking to the terminal according to a remote program installation procedure defined in the browser program to install or update the security module. 420a.

If the terminal does not need to install or update the latest version of the Internet banking security module (425a), or if the terminal does not need to load or update the Internet banking security module (415a), the server is mounted on the terminal By activating the security module for the Internet banking, the Internet banking security channel is connected between the terminal and the server (or the communication channel between the terminal and the server to a secure channel) (430a), where the security channel for Internet banking If the server attaches an electronic signature to the information (or data) required for security among the information (or data) included in the web page to be provided to the terminal, or encrypts and provides it with one or more encryption methods (or encryption algorithms). Verifying the digital signature in the terminal or decryption method corresponding to the encryption method (or an encryption algorithm) Means a communication channel for decrypting the information (or data) with a decryption algorithm, and attaches an electronic signature to information (or data) to be provided to the server for transmitting cash withdrawal request information from the terminal, or When the transmission is encrypted by the above encryption method (or encryption algorithm), the server verifies the digital signature or decrypts the information (or data) by the decryption method (or decryption algorithm) corresponding to the encryption method (or encryption algorithm). Means a communication channel for decoding.

According to another exemplary embodiment of the present invention, when the terminal is provided with an internet banking program, the Internet banking-based secure channel is information (or data) to be provided from the server to the terminal according to a communication protocol defined in the internet banking program. If the digital signature is attached to the digital signature or provided with one or more encryption methods (or encryption algorithms), the terminal verifies the digital signature or decrypts the decryption method (or decryption algorithm) corresponding to the encryption method (or encryption algorithm). ) Refers to a communication channel for decrypting the information (or data), and also attaches an electronic signature to the information (or data) to be provided to the server for the cash withdrawal request information transmission from the terminal or one or more encryption schemes. (Or encryption algorithm) to send encrypted In other words, the communication channel means that the server confirms the digital signature or decrypts the information (or data) by a decryption method (or decryption algorithm) corresponding to the encryption method (or encryption algorithm).

According to the present invention, the security module is characterized by performing an electronic signature attachment, encryption, or protection function for the information (or data) by using the certificate of the customer mounted on the terminal.

When the secure channel for internet banking is connected, the server requests the terminal to perform an internet banking customer authentication procedure through the browser program (435a).

According to an exemplary embodiment of the present invention, the Internet banking customer authentication procedure may include the Internet banking-based customer authentication data (for example, ID / PW or customer number registered by the customer during the internet banking application process) through the terminal. When inputted (or generated) and transmitted to the server, the server includes authenticating a customer connected through the terminal as an Internet banking customer based on the customer authentication data, wherein the customer authentication data is performed. It is preferable that the digital signature or encryption is transmitted through the secure channel.

According to another exemplary embodiment of the present invention, the Internet banking customer authentication procedure may include the Internet banking-based customer authentication data (for example, ID / PW or customer number registered by the customer during the internet banking application process) through the terminal. When (or generated) is transmitted to the authentication server, based on the customer authentication data in the authentication server includes a customer connected through the terminal to authenticate as an Internet banking customer, and providing the result to the server In this case, the customer authentication data preferably includes an authentication certificate-based authentication data, wherein the authentication server is a server for authenticating the authentication certificate-based authentication data.

Thereafter, the terminal inputs (or generates) customer authentication data according to the request, requests an internet banking customer authentication by electronically signing or encrypting the data through the security module and transmitting the data to the server (or authentication server) (440a). The server (or authentication server) authenticates a customer connected through the terminal as an Internet banking customer for non-face-to-face financial transactions based on the customer authentication data received from the terminal (445a).

If the Internet banking customer authentication fails (450a), the server blocks the Internet banking secure channel for the terminal (455a), so that the Internet banking-based financial transaction is not made through the terminal.

On the other hand, if the Internet banking customer authentication is successful (450a), the server is connected to the security module provided in the terminal to convert the Internet banking security channel into an internet banking-based financial transaction channel (460a), where the Internet banking based The financial transaction channel refers to a communication channel through which the terminal can transmit and register the cash withdrawal request information from the terminal to the server.

Subsequently, when the terminal requests cash withdrawal using USIM to the server through the inter-bank banking-based financial transaction channel for transmitting the cash withdrawal request information (400b), the server is face-to-face for transmitting the cash withdrawal request information. A web page corresponding to a banking interface is generated (or extracted) (405b), and the generated (or extracted) web page is transmitted to the terminal through the internet banking-based financial transaction channel (410b).

In addition, the web page transmission or output process is preferably performed at least once according to the cash withdrawal request information transmission procedure, thereby not limited to the present invention.

Thereafter, the terminal inputs (or selects) cash withdrawal request information including one or more of the customer account information, the transaction authentication information, the cash withdrawal amount information, and the customer wireless terminal 115 information through the non-face-to-face banking interface (415b). ).

If the terminal receives (or selects) cash withdrawal request information including one or more of the customer account information, the transaction authentication information, the cash withdrawal amount information, and the customer wireless terminal 115 information through the non-face-to-face banking interface (420b); In operation 425b, the terminal transmits the cash withdrawal request information input (or selected) through the financial transaction channel to the server.

According to the method of the present invention, transmitting the cash withdrawal request information input (or selected) through the financial transaction channel to the server, the cash withdrawal request information input (or selected) through the non-face-to-face banking interface. It comprises the electronic signature or encryption through the security module provided in the terminal and transmits to the server.

Thereafter, the server receives and reads the cash withdrawal request information through the financial transaction channel to check the validity of the cash withdrawal request information (430b).

According to an embodiment of the present invention, checking the validity of the cash withdrawal request information includes decrypting the cash withdrawal request information when the cash withdrawal request information is electronically signed or encrypted through a security module provided in the terminal. Alternatively, or further comprising decrypting the cash withdrawal request information.

In addition, the validity check of the cash withdrawal request information, it is preferable to further comprise authenticating a password or security code or OTP included in the cash withdrawal request information.

According to the method of the present invention, the validity of the cash withdrawal request information, the ledger corresponding to the customer account information included in the cash withdrawal request information in the ledger D / B on the financial system associated with the non-face-to-face banking system It is preferable to check the validity of the customer account information by checking whether (for example, an account ledger) is provided.

In addition, the validity check of the cash withdrawal request information, the transaction authentication information stored in the ledger D / B on the financial system for storing the ledger corresponding to the customer account information compared with the transaction authentication information contained in the cash withdrawal request information It is preferable to check the validity of the transaction authentication information.

In addition, the validity check of the cash withdrawal request information, the account balance stored in the ledger D / B on the financial system for storing the ledger corresponding to the customer account information and the cash withdrawal amount information is compared to the cash withdrawal amount information It is advisable to check the validity.

If the validity of the cash withdrawal request information is not authenticated (435b), the server generates a web page including the cash withdrawal request information transmission error information and transmits it to the terminal (440b), and withdraws the cash using the USIM. Do not do it.

On the other hand, if the validity of the cash withdrawal request information is authenticated (435b), the server generates a one-time password for cash withdrawal using a USIM (445b), and linked one or more customer account information, cash withdrawal amount information and one-time password The storage medium 235 is stored in the storage medium 235 (450b), and the generated one-time password is transmitted to the wireless terminal corresponding to the customer wireless terminal 115 information included in the cash withdrawal request information (455b).

5 is a diagram illustrating a configuration of a customer wireless terminal 115 for cash withdrawal using a USIM according to an embodiment of the present invention.

In more detail, FIG. 5 shows a customer wireless terminal 115 for cash withdrawal using a USIM for a mobile phone connected to a wide code division multiple access (WCDMA) based wireless communication network through a universal subscriber identity module (USIM). As an embodiment of the present invention, a person having ordinary skill in the art to which the present invention pertains may refer to, and / or modify, the mobile phone connected to the WCDMA-based wireless communication network through the USIM by referring to and / or modifying the present invention. In addition, the implementation method of having a functional configuration for cash withdrawal using the USIM in another customer wireless terminal 115 connected to a wireless communication network of another wireless communication standard may be inferred. It is made, including, and the technical features are not limited only to the implementation method shown in FIG.

According to an embodiment of the present invention, the customer wireless terminal 115 connected to the WCDMA-based wireless communication network has a physical body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), an antenna, and a battery in terms of hardware. 520 and the like, and internally include a modem chip (eg, US Qualcomm (CDMA) that includes functions such as a code division multiple access (CDMA) modem, a central processing unit / micro processing unit (CPU / MPU), a vocoder, and the like. Qualcomm) 's MSM series modem chips), various memory elements, duplexer filters that separate transmission and reception signals from one antenna, power amplifiers for amplifying transmission signals, high power amplifiers (HPAs), and high power transmission signals Isolator to prevent return, RF / IF SAW filter to remove unwanted out-of-band unwanted signal, frequency up circuit of transmission path, frequency down of reception path Including a circuit circuit, a Voltage Controlled Temperature Compensated X-tal Oscillator (VCTCXO) corresponding to a reference clock source, a UHF frequency synthesizer used as a local signal for frequency up-down conversion, and a codec chip for converting an analog voice signal into a digital signal. The internal components are gradually integrated in the modem chip, and in addition to the core components for the mobile communication service, the internal components are provided for various multimedia services or various additional services. Various functions are being integrated together.

Referring to FIG. 5, the customer wireless terminal 115 for cash withdrawal using the USIM includes a control unit 500 corresponding to the modem chip and a screen output unit 505 corresponding to an LCD (Liquid Crystal Display). ), A sound processor 510 corresponding to a microphone / speaker, a key input unit 515 corresponding to a keypad, a wireless processor 525 corresponding to an antenna and various RF modules, and a memory unit corresponding to a nonvolatile memory. 540, a USIM corresponding to an integrated circuit (IC) chip that stores universal subscriber identification information, a USIM reader 530 for reading / writing information (or data) to the USIM, and a battery for supplying power ( 520, characterized in that consisting of.

In addition, the wireless terminal preferably further includes a short-range communication unit 535 for connecting a short-range device (eg, the automated teller machine 110) and a short-range communication channel.

The control unit 500 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, and provides a program routine for providing a function unique to the customer wireless terminal 115 from a memory device. Or a bus BUS for inputting / outputting program data and an electronic circuit (or integrated circuit) provided therefor, and executing the program from the memory unit 540 or a memory device (or chipset) in software. Program routine or program data loaded into memory and computed by the processor to perform a specific function (thus, a program routine recorded on a recording medium of the customer wireless terminal 115 for cash withdrawal using the USIM). Will be described as being provided in the control unit 500 for convenience. Program routines provided at 500 include basically operating system routines (not shown) and one or more system management routines (eg, power management routines, channel (forward / reverse) management routines, handoff routines, etc.). It is characterized in that the various functional configurations to be implemented in the customer wireless terminal 115 by the control unit 500 is characterized in that it is realized.

According to an exemplary embodiment of the present invention, after power is supplied to the customer wireless terminal 115, the operating system routine (not shown), one or more system management routines (not shown), and various system variables corresponding thereto are stored in the controller ( By loading into the execution memory included in the 500 and arithmetic processing by the processor, the customer wireless terminal 115, according to the booting procedure, the system setting detailed state, the pilot channel acquisition detailed state, the sync channel acquisition detailed state, and the timing conversion detail. The operation mode corresponding to the "mobile station initialization state" including the state is set.

After performing the booting procedure, the operating system routine (not shown), one or more system management routines (not shown), and various system variables corresponding thereto are loaded into the execution memory provided in the control unit 500 and executed by the processor. By arithmetic processing, the customer wireless terminal 115 is set to an operation mode corresponding to a "mobile station call waiting state", "system access state", or "call channel state", and the like. Call Processing) procedure.

According to an embodiment of the present invention, the USIM-based cash withdrawal function is preferably initiated (or realized) through the key input in the operation mode corresponding to the "mobile station call waiting state".

The screen output unit 505 is a function configuration unit for checking the operation mode operation and the operation state corresponding to the operation mode of the customer wireless terminal 115, including a LCD provided in the customer wireless terminal 115 And at least one screen output device and a driver for driving the screen output device, and output one or more key data input through the key input unit 515 in association with the control unit 500, or Outputs a menu screen, a function processing screen, and a function processing result screen corresponding to one or more functions (or programs) included in the customer wireless terminal 115, or are provided (or downloaded to the customer wireless terminal 115). Outputting one or more contents (eg, text contents, image contents, multimedia contents).

According to the exemplary embodiment of the present invention, the screen output unit 505 preferably performs a function of a screen output means for outputting a menu screen, a function processing screen, and a function processing result screen corresponding to the USIM-based cash withdrawal function. .

The sound processor 510 is a functional component that processes input and output of sound in each operation mode of the customer wireless terminal 115. The sound processor 510 decodes one or more encoded sound data to the customer wireless terminal 115. It is characterized in that it comprises a vocoder (Code) and codec for outputting to the provided speaker, or by encoding (Encoding) the sound signal input through the microphone provided in the customer wireless terminal (115). .

According to an exemplary embodiment of the present invention, the sound processor 510 may include sound data corresponding to a ring back tone through the speaker in an operation mode corresponding to the “system access state” of each operation mode of the customer wireless terminal 115. It is preferable to decode and output the audio signal, or to encode and input a voice signal through a microphone in an operation mode corresponding to the "call channel state", or to decode and output the voice signal through a speaker.

In addition, the sound processing unit 510 plays the one or more sound contents or multimedia contents provided (or downloaded) by the customer wireless terminal 115 in one or more operation modes including the "mobile station call waiting state." It is preferable to decode and output sound data corresponding to the reproduced content.

According to the exemplary embodiment of the present invention, the sound processor 510 preferably performs a function of sound output means for decoding and outputting sound data corresponding to the USIM-based cash withdrawal function.

The key input unit 515 includes a key input device including one or more key buttons including a number key, a character key, or a function key, and the key input device. And at least one key input signal generated by clicking (or entering) the key button in the key input device.

According to the present invention, when a key input signal is detected from a key button provided in the key input device in an input mode or one or more operation modes controlled by the controller 500, the key input unit 515 may detect the detected key. Generate a key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to an input signal, and provide the generated key event to the controller 500, wherein the controller 500 is configured to provide the Read key data corresponding to the key event in the current input mode or operation mode of 115 (eg, from a key table that stores (manages) one or more key data corresponding to a specific key event in each input mode or operation mode). Read key data to the key event), or read a command to execute a function defined in accordance with the key event. And that is characterized.

According to an embodiment of the present invention, the key input unit 515 inputs a phone number in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the customer wireless terminal 115, and "call" button It is preferable to change the operation mode of the customer wireless terminal 115 to the operation mode corresponding to the "system access state" by inputting.

In addition, the key input unit 515 inputs a function key (for example, a menu key) in an operation mode corresponding to the "mobile station call waiting state" in each operation mode of the customer wireless terminal 115, thereby providing the customer wireless terminal. It is desirable to execute various functions provided in 115.

According to an embodiment of the present invention, the key input unit 515 preferably performs a function of key input means for inputting one or more key data corresponding to the USIM based cash withdrawal function.

The wireless processor 525 is a functional component that connects a wireless channel with a base station on a mobile communication network in which the customer wireless terminal 115 operates based on WCDMA, and includes a CDMA modem and various RF modules (eg, a duplexer filter and a power amplifier). , High Power Amplifier (HPA), Isolator, RF / IF SAW Filter, Frequency Up Circuit, Frequency Down Conversion Circuit, VCTCXO, UHF Frequency Synthesizer, etc.) And a location registration or slot mode or a power control or hand in response to each operation mode of the customer wireless terminal 115 in connection with the control unit 500. It is characterized by performing a hand-off or call processing procedure.

According to an embodiment of the present invention, the wireless processor 525 transmits and receives a radio frequency signal transmission / reception function corresponding to the USIM-based cash withdrawal function (eg, performs antenna control, modulation, synthesis, amplification, or filtering of radio frequency signals). It is preferable to have a.

In particular, the wireless processing unit 525 processes or processes information or a signal transmitted from the customer wireless terminal 115 to the base station for cash withdrawal using the USIM into a CDMA stack or information from a CDMA stack received from the base station. Or a function for reading out a signal.

According to another exemplary embodiment of the present invention, if the customer wireless terminal 115 shown in FIG. 5 is a portable Internet terminal, the wireless processing unit 525 is connected to an IEEE 802.16x based portable Internet to carry out a cash withdrawal using the USIM. It is possible to include a wireless communication function configuration for providing an Internet service, by which the present invention is not limited.

The USIM reader unit 530 is a functional configuration unit for exchanging one or more information (or data or command) with a USIM mounted or detached to the customer wireless terminal 115 through a standard including ISO / IEC 7816. And a contact type IC card reader corresponding to the ISO / IEC 7816 standard, wherein the IC card reader has one or more information (or data, or command) and the USIM through an application protocol data unit (APDU). Characterized in that to exchange.

The USIM mounted or detached from the customer wireless terminal 115 is an IC chip conforming to the ISO / IEC 7816 standard. Referring to the ISO / IEC 7816 standard, the USIM is a power supply (VCC) and a reset signal (RST). Input / output interface for communicating with the USIM reader 530 (eg, exchanging commands or data) through contact points such as clock signal CLK, ground GND, programming power supply (VPP), input / output (I / O), and the like. And a processor unit including at least one computing element including a central process unit (CPU), a micro process unit (MPU), a coprocessor, and the like, a read only memory (ROM), a random access memory (RAM), and an EEPROM. It consists of a memory consisting of one or more memory elements, including (Electrically Erasable and Programmable Read Only Memory), FM (Flash Memory), etc. Particularly, at least one of the memory elements (for example, ROM) in the IC card internal resources Manage and fortune The chip operating system (COS) is stored. When power is supplied from the USIM reader unit 530 through a power supply (VCC) contact point of the input / output interface, the COS stored in the memory is loaded into the execution memory. Controls the overall operation of the USIM and between the USIM and the USIM reader 530 through an application protocol data unit (APDU) based on a clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal CLK contact point. Control the exchange of information or data.

According to the present invention, USIM storage information for cash withdrawal using USIM is stored in the memory of the USIM, and the USIM storage information is read out or used by a processor provided in the customer wireless terminal 115. A storage unit for storing a data set corresponding to the information or data to be provided, and a processor provided in the customer wireless terminal 115 that is driven or executed by an operation function provided by the processor unit and an operation set provided by a COS. A program routine used by the application (e.g., a Java Applet in the case of Javacard) that includes an instruction call code that interacts with the instruction set of the COS, and an execution code that is processed by the processor unit. The processor is provided, in particular, the processor via the APDU to the input and output interface Read the instructions provided from the processor provided in the customer wireless terminal 115 through, and read or write one or more information or data stored in the storage based on the read instructions, and as a result or The information or data read through the APDU is provided to the processor provided in the customer wireless terminal 115 via the input and output interface.

According to an embodiment of the present invention, the memory of the USIM is divided into a subscriber information area having a fixed memory address and an application area having a directory file (EFdir) structure, and the application area has a security structure based on ISO / IEC 10202. According to this, the memory includes a protected area in which secret information such as a chip serial number (CSN) is stored, a COS control area, a user application area, a read / write access area, an application program area, and a FAT (File Allocation). Table) preferably consists of a management area or the like.

In addition, according to the ISO / IEC 7816 standard, the application area of the memory includes one master file (MF) corresponding to a root file and function information about one or more stored information under the master file. Answer To Reset (ATR), and one or more Dedicated File (DF) corresponding to each ICC stored information, and substantive information or data disposed under the dedicated file and included for the smart card service. It includes a file structure consisting of an element file (Element File; EF), the USIM storage information for the present invention also comprises the file structure as described above.

The short range communication unit 535 is a functional component that connects at least one local area device and a short range communication channel for cash withdrawal using the USIM, and includes infrared ray communication or RF (radio frequency) communication or Bluetooth (BlueTooth). Or at least one local area device and at least one local area corresponding to the local area communication standard through at least one local area communication means including wireless LAN, Wi-Fi, and ultra wide band (UWB). And a short range communication module corresponding to a short range communication including the infrared communication, the RF communication, the Bluetooth, the wireless LAN, the Wi-Fi, and the ultra-wideband communication in hardware. Characterized in that it comprises a communication protocol or driver for the local area communication The.

According to an exemplary embodiment of the present invention, the wireless terminal uses a short distance communication unit 535 to provide a wireless section including a short distance communication channel corresponding to each short distance communication standard and the automatic teller machine 110 having a short distance communication module. It is preferable that the connection and the authentication information generated for cash withdrawal using the USIM to the automatic teller machine 110 through the wireless section.

Those skilled in the art will be familiar with the technical features of the short-range communication module corresponding to the above-mentioned short-range communication standard and the technical features of the corresponding communication protocol. Description is omitted for convenience.

In addition, one of ordinary skill in the art to which the present invention belongs can infer that the wireless terminal has a short range communication function corresponding to a short range communication standard in addition to the above short range communication standard. It is characterized by including all the implementation method inferred.

The memory unit 540 is a storage medium for storing one or more information (or data) in the customer wireless terminal 115, and a non-volatile memory corresponding to a recording medium for recording program codes corresponding to one or more program routines. Collectively, a read only memory (ROM) corresponding to the read-only memory, a flash memory (FM), an electrically erasable and programmable read only memory (EEPROM), and the like may be included. do.

According to an embodiment of the present invention, the ROM information of the nonvolatile memory is stored in the system information that is not to be deleted, and the flash memory provides various information provided through an operating system routine, a call processing program routine, and the customer wireless terminal 115. An application program routine and information or data for the same are stored, and the EEPROM is extracted or generated while executing an application provided in the terminal registration related parameter and phone number (eg, an address book) or the customer wireless terminal 115. It is preferable that the above information (or data) is stored.

Referring to FIG. 5, the customer wireless terminal 115 is disposable for cash withdrawal using USIM from the non-face-to-face banking server 100 on the non-face-to-face banking system shown in FIG. 2 through the wireless processor 525. The one-time password receiving unit 545 for receiving a password, the USIM information extracting unit 550 for extracting USIM unique information included in the USIM through the USIM reader unit 530, and the one-time password and USIM unique information are combined And an authentication information generating unit 555 for generating authentication information for cash withdrawal using a USIM, and an authentication information output unit 565 for outputting the generated authentication information. And an encryption unit 560 for encrypting information through an encryption key and an encryption method that can be decrypted by the financial institution server 105 approving the cash withdrawal using the USIM. It characterized by that.

If the non-face-to-face banking server 100 on the non-face-to-face banking system shown in FIG. 2 approves the face-to-face transaction for cash withdrawal using USIM, and generates and sends a one-time password for cash withdrawal using the USIM. The one-time password receiving unit 545 may receive a one-time password for cash withdrawal using the USIM from the non-face-to-face banking server 100 through the wireless processing unit 525.

When the one-time password for cash withdrawal using the USIM is received, the USIM information extracting unit 550 extracts USIM unique information for cash withdrawal using the USIM from the USIM through the USIM reader 530. It features.

According to an embodiment of the present invention, the USIM unique information is any one unique value (eg, card ID and the like) stored in at least one of an environment variable file, a service file, and a security authentication related file stored in the subscriber information area of the USIM. Issuer information, or unique ID, or subscriber authentication key).

According to another embodiment of the present invention, the USIM unique information includes a unique value (eg, chip serial number, financial company key value, carrier key value, financial key value, authentication key value, etc.) stored in the application area of the USIM. It is preferable to make it.

When the one-time password for cash withdrawal using the USIM is received through the one-time password receiving unit 545, and the USIM unique information for cash withdrawal using the USIM is extracted from the USIM through the USIM information extracting unit 550. The authentication information generation unit 555 combines the one-time password and unique USIM information to generate authentication information for cash withdrawal using USIM.

According to one embodiment of the invention, the authentication information is preferably generated by concatenating the USIM unique information and one-time password information, the authentication information is a customer to verify the validity of the USIM unique information according to the implementation method Preferably, the wireless terminal 115 further includes information (eg, a telephone number).

According to another embodiment of the present invention, the authentication information, the financial company server 105 for decomposing the respective configuration information of the USIM unique information and one-time password information, and approves the withdrawal using the USIM the decomposed configuration information It is preferable to be generated by combining according to the specified information combination method to reconstruct the USIM unique information and one-time password information, the authentication information is not decomposed to verify the validity of the USIM unique information according to the implementation method Preferably, the wireless terminal 115 further includes information (eg, a telephone number).

According to another embodiment of the present invention, the authentication information, the USIM unique information and one-time password information to restore the USIM unique information and one-time password information at the financial company server 105 that approves cash withdrawal using the USIM. (Or verification) is preferably generated in the form of a hash code hashed through a designated hash function, wherein the authentication information to easily restore the USIM unique information and one-time password information from the hashed authentication information Is preferably a non-hashed customer wireless terminal 115 information (eg, a phone number).

Those skilled in the art to which the present invention belongs, other than restoring the USIM unique information and one-time password information from the hashed authentication information in addition to the method of including the customer wireless terminal 115 information in the authentication information. The method may be inferred (for example, a method of storing the one-time password in association with the previously confirmed customer wireless terminal 115 information (or USIM information) in FIG. 2), and the present invention may infer all the implementation methods. It is to be clear that it is made, including.

When the authentication information for cash withdrawal using the USIM is generated by the authentication information generator 555, the encryption unit 560 approves the cash withdrawal using the USIM. ) Is encrypted using an encryption key (for example, a financial company encryption key provided in the application area of the USIM) and an encryption method.

When the authentication information for cash withdrawal using the USIM is generated by the authentication information generation unit 555 or the generated authentication information is encrypted through the encryption unit 560, the authentication information output unit 565 is The generated authentication information is characterized in that for outputting to the automated teller machine 110.

According to an exemplary embodiment of the present invention, the authentication information output unit 565 preferably outputs the authentication information through the screen output unit 505. In this case, the customer using the wireless terminal outputs the screen. It is preferable to input the authentication information through the key input means provided in the automated teller machine 110.

According to another exemplary embodiment of the present invention, the authentication information output unit 565 preferably transmits and outputs the authentication information to the automated teller machine 110 having the short range communication module through the short range communication unit 535. Do.

6 is a diagram illustrating an operation process of a customer wireless terminal 115 for cash withdrawal using a USIM according to an embodiment of the present invention.

In more detail, Figure 6 illustrates a process for performing a USIM-based cash withdrawal function in the customer wireless terminal 115 shown in Figure 5, if one of ordinary skill in the art to which the present invention belongs, By referring to and / or modifying FIG. 6, various implementation methods (for example, some steps may be omitted or the order may be changed) may be inferred for the operation of the customer wireless terminal 115 for cash withdrawal using the USIM. Although there will be, the present invention includes all the implementation methods inferred, the technical features are not limited only to the implementation method shown in FIG.

For example, in FIG. 6, an encryption key capable of decrypting the authentication information generated for cash withdrawal using the USIM in the financial company server 105 approving the cash withdrawal using the USIM (eg, provided in the application area of the USIM). Financial company encryption key) and the encryption process through the encryption method, but the present invention is not limited by this, it will be apparent that the encryption process can be omitted.

Referring to FIG. 6, after the non-face-to-face banking server 100 on the non-face-to-face banking system shown in FIG. 2 approves a face-to-face transaction for cash withdrawal using USIM, a one-time password for cash withdrawal using the USIM. To generate and transmit, the customer wireless terminal 115 receives a one-time password for cash withdrawal using the USIM from the non-face-to-face banking server 100 via a wireless communication network (600).

Thereafter, the customer wireless terminal 115 extracts unique USIM information for cash withdrawal using the USIM from the USIM (605).

According to an embodiment of the present invention, the USIM unique information is any one unique value (eg, card ID and the like) stored in at least one of an environment variable file, a service file, and a security authentication related file stored in the subscriber information area of the USIM. Issuer information, or unique ID, or subscriber authentication key).

According to another embodiment of the present invention, the USIM unique information includes a unique value (eg, chip serial number, financial company key value, carrier key value, financial key value, authentication key value, etc.) stored in the application area of the USIM. It is preferable to make it.

Thereafter, the customer wireless terminal 115 generates authentication information for cash withdrawal using a USIM by combining the one-time password and unique USIM information (610).

According to one embodiment of the invention, the authentication information is preferably generated by concatenating the USIM unique information and one-time password information, the authentication information is a customer to verify the validity of the USIM unique information according to the implementation method Preferably, the wireless terminal 115 further includes information (eg, a telephone number).

According to another embodiment of the present invention, the authentication information, the financial company server 105 for decomposing the respective configuration information of the USIM unique information and one-time password information, and approves the withdrawal using the USIM the decomposed configuration information It is preferable to be generated by combining according to the specified information combination method to reconstruct the USIM unique information and one-time password information, the authentication information is not decomposed to verify the validity of the USIM unique information according to the implementation method Preferably, the wireless terminal 115 further includes information (for example, a telephone number).

According to another embodiment of the present invention, the authentication information, the USIM unique information and one-time password information to restore the USIM unique information and one-time password information at the financial company server 105 that approves cash withdrawal using the USIM. (Or verification) is preferably generated in the form of a hash code hashed through the specified hash function, wherein the authentication information to easily restore the USIM unique information and one-time password information from the hashed authentication information Is preferably a non-hashed customer wireless terminal 115 information (eg, a phone number).

Those skilled in the art to which the present invention belongs, other than restoring the USIM unique information and one-time password information from the hashed authentication information in addition to the method of including the customer wireless terminal 115 information in the authentication information. The method may be inferred (for example, a method of storing the one-time password in association with the previously confirmed customer wireless terminal 115 information (or USIM information) in FIG. 2), and the present invention may infer all the implementation methods. It is to be clear that it is made, including.

If the authentication information is generated (615), the customer wireless terminal 115 can decrypt the generated authentication information in the financial company server 105 that approves the cash withdrawal using the USIM (eg, the The encryption process is performed through a financial company encryption key provided in the application area of the USIM and an encryption method (620).

If the authentication information is encrypted (625), the customer wireless terminal 115 outputs the generated authentication information on the screen to process the input to the automated teller machine 110, or to perform the authentication information through short-range communication The data is sent to the automated teller machine 110 and output (630).

7 is a diagram showing the configuration of a cash withdrawal system using a USIM according to an embodiment of the present invention.

In more detail, FIG. 7 is a non-face-to-face banking server 100 on the non-face-to-face banking system shown in FIG. 2, and generates and sends a one-time password for cash withdrawal using USIM, the customer wireless terminal shown in FIG. In step 115, authentication information is generated by combining the one-time password and USIM unique information of the customer wireless terminal 115, and outputting (eg, inputting or transmitting) the generated authentication information to the automated teller machine 110. In addition, the financial automatic device 110 transmits the authentication information to the financial company server 105 that approves the cash withdrawal using the USIM, and the financial institution server 105 authenticates the authentication information to withdraw the cash using the USIM. As a system configuration for approving the present invention, those skilled in the art to which the present invention pertains may use the USIM by referring to and / or modifying the drawing of FIG. While various practice methods (e.g., some implementations may be omitted, subdivided, or combined) for a cash withdrawal system construction may be inferred, but the present invention includes all implementation methods inferred above, The technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 7 according to an embodiment of the present invention, the cash withdrawal system using the USIM includes a non-face-to-face banking server 100 shown in FIG. 2 and a customer wireless terminal 115 shown in FIG. And input (or receive) authentication information from the customer wireless terminal 115, and transmit the received authentication information to a financial institution server 105 that approves cash withdrawal using the USIM through a CD network. 110 and receiving the authentication information from the automated teller machine 110 through the CD network, confirming the USIM unique information included in the authentication information, and firstly authenticating the customer validity through the USIM unique information. And, when the first customer authentication, the second time to authenticate the customer validity through the one-time password included in the authentication information, when the second customer authentication, generating the cash withdrawal approval information to the automated teller machine 110 I'm The delivery is characterized by comprising a financial company server 105.

The automated teller machine 110 includes an authentication information input interface for keying authentication information generated by the customer wireless terminal 115 for cash withdrawal using the USIM, or from the customer wireless terminal 115. And a short range communication module for receiving authentication information, and transmitting the input (or received) authentication information to the financial institution server 105 through a CD network.

Those skilled in the art to which the present invention pertains, include the authentication information input interface to the short-range communication module, and the automated financial device 110 for transmitting the authentication information to the financial company server 105 via the CD network Since technical features of) can be inferred, a detailed description thereof will be omitted for convenience.

Referring to FIG. 7, the financial company server 105 receives a communication channel for receiving authentication information from the automated teller machine 110 through a CD network and transmitting cash withdrawal approval information to the automated teller machine 110. Characterized in that it comprises an interface unit 700 for connection and management.

Those skilled in the art to which the present invention pertains, the interface unit 700 is a technical feature that connects the communication channel between the automated teller machine 110 and the financial company server 105 via the CD network. Since it will be understood, a detailed description thereof will be omitted for convenience.

Referring to Figure 7, the financial company server 105, the authentication generated by combining the USIM unique information and the one-time password for cash withdrawal using the USIM from the automated teller machine 110 through the interface unit 700 Information receiving unit 705 (or information receiving means) for receiving information, and information extraction unit 720 (or recovering and extracting the one-time password and USIM unique information for cash withdrawal using the USIM from the received authentication information (or Information extraction means), a primary authentication unit 725 (or primary authentication means) for firstly validating the validity of the customer who requested the cash withdrawal through the extracted USIM unique information, and the first customer authentication. A second authentication unit 730 (or second authentication means) which secondly authenticates the validity of the customer who requested the cash withdrawal through the one-time password included in the authentication information, and when the second customer is authenticated, the drawing 2 A withdrawal processing unit 735 (or cash withdrawal approval means) for performing a ledger process in which the cash withdrawal amount is withdrawn from the customer account in connection with the financial system in which the customer account is opened, and the cash corresponding to the withdrawal; Information generating unit 740 (or cash withdrawal approval means) for generating withdrawal approval information, and information transmission unit for transmitting the generated cash withdrawal approval information to the automated teller machine 110 through the interface unit 700. 710 (or cash withdrawal approval means), and when the authentication information received from the automated teller machine 110 is encrypted, the decryption unit 715 (or encryption) for decrypting the authentication information. And processing means).

When the automated teller machine 110 transmits the authentication information input (or received) from the customer wireless terminal 115 to the financial institution server 105 via the CD network, the information receiver 705 receives the interface unit. Receiving the authentication information generated by combining the one-time password and USIM unique information for cash withdrawal using the USIM from the automated teller machine 110 through 700.

If the authentication information is encrypted in the customer wireless terminal 115, the decryption unit 715 is characterized by decrypting the encrypted authentication information.

The information extracting unit 720 is characterized in that to restore and extract the one-time password and USIM unique information for cash withdrawal using the USIM from the authentication information.

When the authentication information is generated by concatenating the USIM unique information and the one time password according to an embodiment of the present invention, the information extracting unit 720 separates the USIM unique information and the one time password from the USIM unique information. It is desirable to restore and extract one-time passwords with.

According to another embodiment of the present invention, when the authentication information is generated by decomposing the respective configuration information of the USIM unique information and the one-time password, and combining the decomposed configuration information according to a specified information combination method, the information extraction unit 720 reconstructs and restores the USIM unique information and one-time password according to the designated information combination method, and extracts the restored USIM unique information and one-time password.

According to another exemplary embodiment of the present invention, when the authentication information is generated in the form of a hash code that hashes the USIM unique information and the one-time password through a designated hash function, the information extracting unit 720 may include the authentication information and the hash. Check the customer wireless terminal 115 information that is not included in the form, and confirms the USIM unique information corresponding to the customer wireless terminal 115 information from the carrier server through the customer wireless terminal 115 information, the confirmation Hashed one-time password generated by the USIM unique information and the non-face-to-face banking server 100 shown in FIG. 2 through the designated hash function to generate a hash verification code, and the hash code and the hash verification code match. The one-time password generated by the non-face-to-face banking server 100 shown in FIG. 2 and the USIM unique information confirmed from the communication company server are included in the authentication information. It is desirable to restore and extract USIM unique information and one-time password.

Those skilled in the art to which the present invention pertains, in addition to the method of restoring the USIM unique information and the one-time password as described above from the hash code type authentication information as another embodiment to restore the USIM unique information and one-time password information A method (eg, a method of storing the one-time password in association with the previously confirmed customer wireless terminal 115 information (or USIM information) in FIG. 2) may be inferred. It is clearly evident that this is achieved.

When the one-time password and USIM unique information for cash withdrawal using the USIM are restored and extracted through the information extracting unit 720, the first authentication unit 725 performs validation through the validity of the extracted USIM unique information. Characterized in the first verification of the validity for the customer requesting the cash withdrawal.

According to an embodiment of the present invention, when the USIM unique information includes a self-authentication method, the first authentication unit 725 authenticates the self-authentication method of the USIM unique information to the customer who requested the cash withdrawal. It is desirable to first verify validity.

According to another exemplary embodiment of the present invention, when the authentication information includes the customer wireless terminal 115 information, the primary authentication unit 725 is connected to a communication company server corresponding to the customer wireless terminal 115 information. Receive the USIM unique information for the customer wireless terminal 115, and compares the received USIM unique information and the extracted USIM unique information it is preferable to first verify the validity of the customer requesting the cash withdrawal. .

According to another exemplary embodiment of the present invention, when the USIM unique information includes unique information associated with the financial company, the primary authentication unit 725 checks the unique information stored in the financial system, and receives the received USIM. It is preferable to first verify the validity of the customer requesting the cash withdrawal by comparing the unique information and the unique information.

When the validity of the customer who requested the cash withdrawal by the first authentication unit 725 is first authenticated, the second authentication unit 730 may check the cash through the validation of the one-time password included in the authentication information. It is characterized in that the second verification of the validity for the customer who requested the withdrawal.

According to an embodiment of the present invention, when the non-face-to-face banking server 100 shown in FIG. 2 stores the one-time password in a storage medium, the second authentication unit 730 stores the one-time password and the authentication information. It is preferable to second verify the validity of the customer who requested the cash withdrawal by comparing the one-time password retrieved and extracted from.

According to another exemplary embodiment of the present invention, the secondary authentication unit 730 generates a one-time password 2 matching the one-time password included in the authentication information according to the one-time password generation method shown in FIG. It is preferable to secondly verify the validity of the customer who requested the cash withdrawal by comparing the generated one-time password 2 and the one-time password included in the authentication information.

When the validity of the customer who requested the cash withdrawal is secondly authenticated by the second authentication unit 730, the withdrawal processing unit 735 is connected to the financial system in which the customer account shown in FIG. 2 is opened. A ledger process (eg, a ledger process corresponding to a financial transaction for withdrawing the cash withdrawal amount from the customer account shown in FIG. 2) is performed, wherein the cash withdrawal amount is withdrawn from an account; 740 is characterized in that for generating the cash withdrawal approval information corresponding to the results of the first half customer validity authentication and the 장 ›Chapter processing.

Here, the cash withdrawal approval information may include a cash payment command for processing the withdrawal and withdrawal of the cash withdrawal amount in the automated teller machine 110.

The information transmission unit 710 transmits the generated cash withdrawal approval information to the financial teller 110 through the interface unit 700, whereby the financial teller 110 The cash withdrawal amount is paid to the customer who requested the cash withdrawal.

8 is a diagram showing a cash withdrawal process using the USIM according to an embodiment of the present invention.

In more detail, FIG. 8 illustrates the authentication information generated by combining the one-time password and USIM unique information of the customer wireless terminal 115 in the customer wireless terminal 115 shown in FIG. 5. When outputting (for example, input or transmitting) to the automated device 110, the financial automation device 110 transmits the authentication information to the financial company server 105 shown in FIG. 7, and the financial company server 105 Regarding the process of approving the cash withdrawal using the USIM by authenticating the authentication information, a person having ordinary knowledge in the technical field to which the present invention pertains refers to the cash using the USIM by referring to and / or modifying FIG. While various methods of implementation of the withdrawal process (e.g., methods of implementation in which some components are omitted, subdivided, or combined) may be inferred, the present invention is directed to all It is made, including the implementation method, the technical features are not limited only to the implementation method shown in FIG.

For example, although the process of decrypting the authentication information is included in FIG. 8, the present invention is not limited thereto, and the decryption process can be omitted.

Referring to FIG. 8, the automated teller machine 110 shown in FIG. 7 inputs (or receives) authentication information generated by the customer wireless terminal 115 shown in FIG. 5, and inputs (or receives) the authentication information. The authentication information is transmitted to the financial institution server 105 through the CD network (800). In response, the financial institution server 105 receives and decrypts the authentication information through the CD network (805).

If the authentication information is normally received and decrypted (810), the financial institution server 105 restores and extracts the one-time password and USIM unique information for cash withdrawal using the USIM from the authentication information (815).

According to an embodiment of the present invention, when the authentication information is generated by concatenating the USIM unique information and the one-time password, the financial institution server 105 separates the USIM unique information and the one-time password from the USIM unique information. It is desirable to recover and extract one-time passwords.

According to another embodiment of the present invention, when the authentication information is generated by decomposing the respective configuration information of the USIM unique information and the one-time password and combining the decomposed configuration information according to a specified information combining method, the financial company server ( 105) reconstructs and restores the USIM unique information and the one time password according to the designated information combination method, and extracts the restored USIM unique information and the one time password.

According to another exemplary embodiment of the present invention, when the authentication information is generated in the form of a hash code that hashes the USIM unique information and the one-time password through a designated hash function, the financial institution server 105 may execute the authentication information and hash. Check the customer wireless terminal 115 information that is not included in the form, and confirms the USIM unique information corresponding to the customer wireless terminal 115 information from the carrier server through the customer wireless terminal 115 information, the confirmation Hashed one-time password generated by the USIM unique information and the non-face-to-face banking server 100 shown in FIG. 2 through the designated hash function to generate a hash verification code, and the hash code and the hash verification code match. The one-time password generated by the non-face-to-face banking server 100 shown in FIG. 2 and the USIM unique information confirmed from the communication company server are included in the authentication information. It is desirable to restore and extract USIM unique information and one-time password.

Those skilled in the art to which the present invention pertains, in addition to the method of restoring the USIM unique information and the one-time password as described above from the hash code type authentication information as another embodiment to restore the USIM unique information and one-time password information A method (eg, a method of storing the one-time password in association with the previously confirmed customer wireless terminal 115 information (or USIM information) in FIG. 2) may be inferred. It is clearly to be included.

Thereafter, the financial institution server 105 first authenticates the validity of the customer who requested the cash withdrawal through the validity authentication on the extracted USIM unique information (820).

When the USIM unique information includes a self-authentication method according to an embodiment of the present invention, the financial institution server 105 authenticates the validity of the customer who requested the cash withdrawal by authenticating according to the self-authentication method of the USIM unique information. It is preferable to authenticate first.

According to another exemplary embodiment of the present invention, when the authentication information includes the customer wireless terminal 115 information, the financial institution server 105 is connected with a communication company server corresponding to the customer wireless terminal 115 information. Receiving USIM unique information for the customer wireless terminal 115, it is preferable to first verify the validity of the customer requesting the cash withdrawal by comparing the received USIM unique information and the extracted USIM unique information.

According to another exemplary embodiment of the present invention, when the USIM unique information includes unique information associated with the financial company, the financial company server 105 checks the unique information stored in the financial system, and receives the received USIM unique information. It is preferable to first verify the validity of the customer requesting the cash withdrawal by comparing with the unique information.

If the validity of the customer who requested the cash withdrawal is not first authenticated (825), the financial institution server 105 generates cash withdrawal error information and transmits the information to the automated teller machine 110 through the CD network. (830).

On the other hand, when the validity of the customer who requested the cash withdrawal is first authenticated (825), the financial institution server 105 validates the validity of the customer who requested the cash withdrawal by validating the one-time password included in the authentication information. Second authentication (835).

According to an embodiment of the present invention, when the non-face-to-face banking server 100 shown in FIG. 2 stores the one-time password in a storage medium, the financial institution server 105 restores the stored one-time password and the authentication information. And secondly verifying the validity of the customer who requested the cash withdrawal by comparing the extracted one-time password.

According to another exemplary embodiment of the present invention, the financial company server 105 generates a one-time password 2 matching the one-time password included in the authentication information according to the one-time password generation method shown in FIG. It is preferable to secondly verify the validity of the customer who requested the cash withdrawal by comparing the generated one-time password 2 and the one-time password included in the authentication information.

If the validity of the customer who requested the withdrawal of the cash is not authenticated second (840), the financial institution server 105 generates cash withdrawal error information and transmits the information to the automated teller machine 110 through the CD network. (830).

On the other hand, if the validity of the customer who requested the cash withdrawal is secondly verified (840), the financial institution server 105 connects the cash withdrawal amount from the customer account in connection with the financial system in which the customer account shown in FIG. The withdrawal ledger process (for example, a ledger process corresponding to a financial transaction for withdrawing the cash withdrawal amount from the customer account shown in FIG. 2) is performed (845).

If the ledger processing in which the cash withdrawal amount is withdrawn is performed (850), the financial institution server 105 generates the cash withdrawal approval information corresponding to the 1 / 2th customer validity authentication result and the ledger processing result, and The generated cash withdrawal approval information is transmitted to the automated teller machine 110 (855), whereby the automated teller machine 110 pays the cash withdrawal amount to the customer who requested the cash withdrawal.

According to the present invention, separate card information is stored in a customer wireless terminal (= mobile phone) equipped with a USIM, or provided in the customer wireless terminal with a one-time password provided by the financial company without complicated non-face-to-face authentication process through a financial company server. The USIM can be used to conveniently withdraw cash from the automated teller machine.

Claims (4)

  1. When the cash withdrawal customer's mobile phone provides (or inputs) authentication information generated by combining USIM unique information provided on the customer's mobile phone and one-time password information transmitted from the financial company server to the customer's mobile phone, the financial automated device is provided. Receiving the authentication information from the server;
    Confirming USIM unique information included in the authentication information, and firstly authenticating the cash withdrawal customer validity through the USIM unique information;
    Secondly authenticating the cash withdrawal customer validity through one-time password information included in the authentication information when the first customer is authenticated;
    When the second customer authentication, cash withdrawal approval information generated by the step of transmitting to the automated teller machine; Cash withdrawal processing method using a USIM comprising a.
  2. The method of claim 1, wherein the authentication information,
    Generated by concatenating the unique USIM information and one-time password information, or
    Decompose each configuration information of the USIM unique information and one-time password information, and generates the combined configuration information by combining the USIM unique information and one-time password information in accordance with the specified information combination method to reconstruct the USIM unique information and one-time password information; , or
    The USIM unique information and one-time password information is generated in the form of a hash code hashed through a designated hash function to restore (or verify) the USIM unique information and one-time password information on the financial institution server, or
    Cash withdrawal processing method using a USIM, characterized in that encrypted with the encryption key that can be decrypted by the financial institution server.
  3. A computer-readable recording medium having recorded thereon a program for executing the method of claim 1.
  4. When the cash withdrawal customer's mobile phone provides (or inputs) authentication information generated by combining USIM unique information provided on the customer's mobile phone and one-time password information transmitted from the financial company server to the customer's mobile phone, the financial automated device is provided. Information receiving means for receiving the authentication information from the apparatus;
    Primary authentication means for verifying USIM unique information included in the authentication information, and firstly authenticating the cash withdrawal customer validity through the USIM unique information;
    Second authentication means for secondly authenticating the cash withdrawal customer validity through the one-time password information included in the authentication information during the first customer authentication;
    Cash withdrawal processing system using the USIM, characterized in that; during the second customer authentication, cash withdrawal approval means for generating the cash withdrawal approval information and transmits it to the automated teller machine.
KR1020080040290A 2008-04-30 2008-04-30 Method and System for Processing Cash Payment by Using USIM and Recording Medium KR20090114585A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020080040290A KR20090114585A (en) 2008-04-30 2008-04-30 Method and System for Processing Cash Payment by Using USIM and Recording Medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020080040290A KR20090114585A (en) 2008-04-30 2008-04-30 Method and System for Processing Cash Payment by Using USIM and Recording Medium

Publications (1)

Publication Number Publication Date
KR20090114585A true KR20090114585A (en) 2009-11-04

Family

ID=41555827

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020080040290A KR20090114585A (en) 2008-04-30 2008-04-30 Method and System for Processing Cash Payment by Using USIM and Recording Medium

Country Status (1)

Country Link
KR (1) KR20090114585A (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20120076593A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment, system, terminal and communication management apparatus therefor
KR20120076591A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment by using subscriber information and security token, system, terminal and communication management apparatus therefor
KR20120076589A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment by using subscriber information and subscriber identification module, system, terminal and communication management apparatus therefor
KR20120076590A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment by using personal information and subscriber identification module, system, terminal and communication management apparatus therefor
KR20120076592A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment based on subscriber information, system and communication management apparatus therefor
KR101250091B1 (en) * 2011-05-20 2013-04-09 사단법인 금융결제원 Method for Processing Transaction of Electronic Cash by using Near Field Communication, Handheld Device and Automatic Teller Machine
KR101435188B1 (en) * 2012-05-04 2014-08-29 정기운 Method of network-based delivery pari-mutuel ticket and apparatus thereof
KR101500906B1 (en) * 2014-08-08 2015-03-10 주식회사 엘지유플러스 Mobile terminal containded usim chip, crypto verification server, system and method for authenticating user using usim chip

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20120076593A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment, system, terminal and communication management apparatus therefor
KR20120076591A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment by using subscriber information and security token, system, terminal and communication management apparatus therefor
KR20120076589A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment by using subscriber information and subscriber identification module, system, terminal and communication management apparatus therefor
KR20120076590A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment by using personal information and subscriber identification module, system, terminal and communication management apparatus therefor
KR20120076592A (en) * 2010-12-06 2012-07-09 에스케이플래닛 주식회사 Method for providing electronic payment based on subscriber information, system and communication management apparatus therefor
KR101250091B1 (en) * 2011-05-20 2013-04-09 사단법인 금융결제원 Method for Processing Transaction of Electronic Cash by using Near Field Communication, Handheld Device and Automatic Teller Machine
KR101435188B1 (en) * 2012-05-04 2014-08-29 정기운 Method of network-based delivery pari-mutuel ticket and apparatus thereof
KR101500906B1 (en) * 2014-08-08 2015-03-10 주식회사 엘지유플러스 Mobile terminal containded usim chip, crypto verification server, system and method for authenticating user using usim chip

Similar Documents

Publication Publication Date Title
EP2761553B1 (en) Payment system
US9390413B2 (en) System and method for making electronic payments from a wireless mobile device
KR20060103797A (en) System and method for authenticating user, server for transacting merchandise(or contents) and recording medium
KR101140223B1 (en) Device for Processing a Payment
US20090157558A1 (en) Information home electric appliance
KR20120040693A (en) Method for setting payment means
CN105260886B (en) Payment processing method and device, NFC portable terminal and wearable terminal
CA2972895C (en) Security for mobile payment applications
KR101125088B1 (en) System and Method for Authenticating User, Server for Authenticating User and Recording Medium
KR100856514B1 (en) System for sevice authentication
WO2016118896A1 (en) Transaction utilizing anonymized user data
KR20040009428A (en) Apparatus and method for mobile banking
KR20070020772A (en) System and Method for Processing Financial Transaction by Using Mobile Number, Devices for Processing Financial Transaction, Terminals for Financial Transaction, Devices and Recording Medium
KR20090080417A (en) Wireless Terminal for Embodying Once Authentication Code by Multimedia Authentication and Media Authentication Server, Method for Embodying Once Authentication Code and Recording Medium
KR101301571B1 (en) Method for 2-Channel Certificating
KR20130061165A (en) Method for providing network type one time password by using a medium for near field communication
US20100024025A1 (en) Authentication system and authentication server device
KR20090114585A (en) Method and System for Processing Cash Payment by Using USIM and Recording Medium
KR20110029032A (en) Method for processing issue public certificate of attestation, terminal and recording medium
KR101463451B1 (en) System for Processing Transaction by using Token Code
KR20090036058A (en) Method for confirming wireless one-time authentication location and mobile phone, recording medium
KR101615686B1 (en) Method for Providing Mobile OTP based on Location
KR20100106256A (en) Method for processing financial transaction by using mobile terminal
KR20060108155A (en) System and method for operating payment means data, server and recording medium
KR101171235B1 (en) Method for Operating Certificate

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E601 Decision to refuse application
J201 Request for trial against refusal decision
J801 Dismissal of trial

Free format text: REJECTION OF TRIAL FOR APPEAL AGAINST DECISION TO DECLINE REFUSAL REQUESTED 20100920

Effective date: 20101208