KR20100056950A - System and method for providing one-time authentication code using authentication code index, wireless terminal and recording medium - Google Patents

Abstract

PURPOSE: A system and a method for providing a one-time authentication code using an authentication code index, a wireless terminal and a recording medium are provided to generate a disposable authentication code by suing an authentication code index. CONSTITUTION: An authentication server authenticates a wireless terminal with a disposable authentication key, and confirms and transmits disposable password generation information based on authentication code index information. A reception unit(160) receives disposable authentication coded generation information corresponding to the authentication code index information. A disposable password generation unit(165) generates the disposable authentication code having N digits through the disposable authentication generation code. An output processing unit(170) outputs the generated disposable authentication code to the screen of the wireless terminal.

Description

Method and system for providing one-time authentication code using authentication code index and wireless terminal and recording medium therefor {System and Method for Providing One-Time Authentication Code using Authentication Code Index, Wireless Terminal and Recording Medium}

1 is a view showing a wireless terminal function configuration for implementing a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

2 is a diagram illustrating an information registration system for registering wireless terminal registration information to implement a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

3 is a diagram illustrating a process of registering wireless terminal registration information according to an embodiment of the present invention.

4 is a diagram illustrating a process of registering wireless terminal registration information according to another embodiment of the present invention.

5 is a diagram illustrating a configuration of a system for providing an authentication code index according to an embodiment of the present invention.

6 is a diagram illustrating a process of providing an authentication code index according to an embodiment of the present invention.

7 is a diagram illustrating a process of providing a part of one-time authentication code generation information associated with authentication code index information according to an embodiment of the present invention.

8 is a view showing a one-time authentication code authentication system configuration for implementing a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

9 is a diagram illustrating a process of transmitting an authentication code index in a wireless terminal according to an embodiment of the present invention.

10 is a diagram illustrating a process of providing one-time authentication code generation information after approval of using a wireless terminal as a wireless communication disposable authenticator according to an embodiment of the present invention.

11 is a view showing a process of generating a one-time authentication code according to an embodiment of the present invention.

12 is a view showing a process of generating a one-time authentication code according to another embodiment of the present invention.

13 is a view showing a one-time authentication code authentication process according to an embodiment of the present invention.

14 is a view showing a wireless terminal function configuration for implementing a one-time authentication code through the authentication code index in accordance with another embodiment of the present invention.

15 is a diagram illustrating an information registration system for registering wireless terminal registration information to implement a one-time authentication code through the authentication code index in accordance with another embodiment of the present invention.

16 is a diagram illustrating a process of registering wireless terminal registration information according to another embodiment of the present invention.

17 is a diagram illustrating a process of registering wireless terminal registration information according to another exemplary embodiment of the present invention.

18 is a diagram illustrating a configuration of an authentication code index providing system according to another exemplary embodiment of the present invention.

19 is a diagram illustrating a process of providing an authentication code index according to another embodiment of the present invention.

20 is a diagram illustrating a process of providing a part of one-time authentication code generation information associated with authentication code index information according to another embodiment of the present invention.

21 is a diagram illustrating a one-time authentication code authentication system configuration for implementing a one-time authentication code through the authentication code index in accordance with another embodiment of the present invention.

22 is a diagram illustrating a process of transmitting an authentication code index in a wireless terminal according to another embodiment of the present invention.

23 is a diagram illustrating a process of providing disposable authentication code generation information after approval of using a wireless terminal as a wireless communication disposable authenticator according to another embodiment of the present invention.

24 is a view showing a process of generating a one-time authentication code according to an embodiment of another embodiment of the present invention.

25 is a view showing a process of generating a one-time authentication code according to another embodiment of another embodiment of the present invention.

26 is a view showing a one-time authentication code authentication process according to another embodiment of the present invention.

<Description of main parts of drawing>

100: wireless terminal 105: control unit

110: screen output unit 115: sound processing unit

120: key input unit 125: battery

130: wireless processing unit 135: IC chip reader unit

140: memory unit 145: information input unit

150: authentication processing unit 155: transmission unit

160: receiver 165: authentication code generation unit

170: output processing unit 175: authentication server

The present invention provides a memory unit for storing the wireless terminal unique information authenticated by the wireless communication disposable authenticator and the authentication code index information for confirming (or generating) the one-time authentication code generation information, and the wireless terminal as the wireless communication disposable authenticator. In use, a transmission unit for extracting the authentication code index information and the wireless terminal unique information from the memory unit and transmits to the authentication server via a wireless communication network, the authentication server to check the unique information of the wireless terminal wireless communication to the wireless terminal Receiving unit for receiving one-time authentication code generation information corresponding to the authentication code index information through the wireless communication network after confirming (or generating) the one-time authentication code generation information through the authentication code index information after approval with the one-time authentication device. And N (N> = 2) digits disposable through the one-time authentication code generation information. It provides a wireless terminal providing a one-time authentication code using an authentication code index including an authentication code generation unit for generating an authentication code (N) and an output processing unit for outputting the generated one-time authentication code (N) on the wireless terminal screen. Is in.

With the continuous development of information and communication technology, non-face-to-face financial transactions using the communication network are frequently increasing, various security functions for securing the reliability of the non-face-to-face financial transactions are expanding, and the safest and most reliable way of security functions of the non-face-to-face financial transactions. Is a one-time password.

However, the conventional method of authenticating the validity of the non-face-to-face financial transaction through the one-time authentication code has been inconvenient in that a customer purchases a one-time authenticator manufactured separately and always possesses the one-time authenticator.

Of course, a method of using a customer's mobile phone as a one-time authenticator has been proposed to solve the inconvenience, but the conventional mobile phone-based one-time authenticator is connected to a wireless communication network as compared to the separately manufactured one-time authenticator, so that the security function is weak. In addition, the wireless network includes a problem that a negative wireless terminal can be used as a one-time authenticator.

An object of the present invention for solving the above problems, authentication for identifying (or generating) the wireless terminal unique information to be used as a wireless communication disposable authenticator and the one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless communications disposable authenticator. Storing code in the storage medium in association with the code index information, and providing authentication code index information associated with the unique information of the wireless terminal to the wireless terminal, when using the wireless terminal as a wireless communication disposable authenticator, the authentication from the wireless terminal. Receiving code index information and unique information of the wireless terminal, and acknowledging the wireless terminal corresponding to the unique information of the wireless terminal through the authentication code index information and the unique information of the wireless terminal through the authentication code index information and the unique information of the wireless terminal in association with a storage medium. And, if the wireless terminal is approved as a wireless communication disposable authenticator, Confirming (or generating) one-time authentication code generation information corresponding to the verification code index information, and transmitting the one-time authentication code generation information to the wireless terminal through a wireless communication network. In providing the method.

The wireless terminal providing a one-time authentication code using the authentication code index according to the present invention, the wireless terminal unique information authenticated by the wireless communication disposable authenticator, and authentication code index information for confirming (or generating) one-time authentication code generation information A memory unit for linking and storing, a transmission unit for extracting the authentication code index information and unique information of the wireless terminal from the memory unit and transmitting the authentication code index information from the memory unit to the authentication server through a wireless communication network; After confirming the unique information of the wireless terminal in the server and approving the wireless terminal with a wireless communication disposable authenticator, after confirming (or generating) the one-time authentication code generation information through the authentication code index information, the wireless communication network Receiving the one-time authentication code generation information corresponding to the authentication code index information Outputs the authentication code generation unit for generating a one-time authentication code (N) of N (N> = 2) digits through the receiving unit, the one-time authentication code generation information and the generated one-time authentication code (N) on the wireless terminal screen And an output processing unit.

The wireless terminal for providing a one-time authentication code using the authentication code index according to the present invention, an information input unit for inputting user authentication information for activating the wireless one-time authentication device function and the user authentication information by authenticating the wireless communication disposable It further comprises an authentication processing unit for activating the authenticator function.

On the other hand, the method of providing a one-time authentication code using the authentication code index according to the present invention, the wireless terminal unique information to be used as a wireless communication disposable authenticator, and the one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless communication disposable authenticator ( Or generating authentication code index information in association with the storage medium and providing the authentication code index information associated with the unique information of the wireless terminal to the wireless terminal, and using the wireless terminal as a wireless one-time authenticator. Receiving the authentication code index information and wireless terminal unique information from the wireless terminal, and wirelessly communicating the wireless terminal corresponding to the wireless terminal unique information through the authentication code index information and the wireless terminal unique information in association with a storage medium. Approving with a one-time authenticator, the wireless terminal once wireless communication If the authenticator is approved, comprising the steps of: verifying (or generating) one-time authentication code generation information corresponding to the authentication code index information and transmitting the one-time authentication code generation information to the wireless terminal through a wireless communication network; It is characterized by.

Method for providing a one-time authentication code using the authentication code index according to the present invention, the step of receiving a one-time authentication code (N) of N (N> = 2) digits generated through the one-time authentication code generation information from the terminal, and Generating an N-digit one-time verification code (N) through the one-time authentication code generation information provided to a wireless terminal, comparing the received one-time authentication code (N) with the one-time verification code (N) and the one-time use And outputting (or storing) the comparison result of the authentication code (N) and the one-time verification code (N).

On the other hand, the method for providing a one-time authentication code using the authentication code index according to the present invention, the authentication code index for confirming (or generating) the unique information of the wireless terminal and the one-time authentication code generation information authenticated by the wireless communication disposable authenticator in the wireless terminal Storing information in a memory in association with the information, and using the wireless terminal as a wireless communication disposable authenticator, extracting the authentication code index information and the unique information of the wireless terminal from the memory in the wireless terminal and transmitting the information to the authentication server through a wireless communication network. And confirming the unique information of the wireless terminal in the authentication server, approving the wireless terminal as a wireless communication disposable authenticator, and confirming (or generating) the one-time authentication code generation information through the authentication code index information. The terminal corresponding to the authentication code index information through a wireless communication network Receiving a disposable authentication code generation information, generating a one-time authentication code (N) having N (N> = 2) digits through the one-time authentication code generation information at the wireless terminal, and generating the one-time authentication generated at the wireless terminal And outputting a code (N) to the screen of the wireless terminal.

On the other hand, it includes a computer-readable recording medium, characterized in that for recording a program for executing the method of providing a one-time authentication code using the above-described authentication code index.

On the other hand, the one-time authentication code providing system using the authentication code index according to the present invention, the wireless terminal unique information to be used as a wireless communication disposable authenticator, and the one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless communication disposable authenticator ( Or a storage medium for storing the authentication code index information in association with the storage medium, authentication code index information providing means for providing the authentication code index information to the wireless terminal, and the wireless terminal when the wireless terminal is used as a wireless one-time authenticator. Index information receiving means for receiving the authentication code index information and radio terminal unique information from a terminal, and the radio terminal corresponding to the radio terminal specific information through the authentication code index information and radio terminal unique information in association with the storage medium; Wireless terminal certification number approved by wireless communication disposable authenticator And, if the wireless terminal is approved as a wireless communication disposable authenticator, the one-time authentication code generation information confirmation / generation means for confirming (or generating) the one-time authentication code generation information corresponding to the authentication code index information and the one-time through the wireless communication network And one-time authentication code generation information providing means for transmitting authentication code generation information to the wireless terminal.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. In addition, terms to be described below are terms defined in consideration of functions in the present invention, which may vary according to a user's or operator's intention or custom. Therefore, the definition should be made based on the contents throughout the present invention.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify, integrate, or separate the terminology so that those skilled in the art to which the present invention pertains may clearly understand the present invention. The present invention is by no means limited thereto. In other words, each means constituting the present invention is a server (or terminal) provided on the system shown in the following embodiments, or a predetermined functional configuration provided in at least one or more servers (or terminals), or at least It may be an association of at least two or more functional components provided in one or more servers (or terminals). In addition, the server (or terminal) shown in the following embodiment is shown to include at least two or more functional components for achieving the technical features of the present invention for convenience, the functional component shown in the server (or terminal) Matched with the above-described means may be provided in two or more different servers (or terminals) according to the role and function of each functional component and the corresponding server (or terminal) operator (or operator), whereby the present invention is not limited No.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram showing a functional configuration of a wireless terminal 100 to implement a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

In more detail, FIG. 1 illustrates a case in which a wireless terminal 100 connected to a mobile communication network operating based on Code Division Multiple Access (CDMA) / Wide CDMA (WCDMA) is used as the wireless communication disposable authenticator. 100 through a one-time authentication code authentication system shown in Figure 8 through the authentication code index information provided through the authentication code index providing system shown in Figure 5 and the unique information of the wireless terminal 100 of the wireless terminal 100 Received the authentication code generation information, showing the functional configuration to generate and output the N-digit one-time authentication code (N) through the one-time authentication code generation information, a person having ordinary knowledge in the technical field to which the present invention belongs If the other terminal device (for example, HSDPA-based wireless network to implement a one-time authentication code through the authentication code index by referring to and / or modified in Figure 1; It is possible to infer an implementation method for various functional configurations corresponding to the characteristics of each terminal device) and a wireless terminal device for accessing, or a wireless terminal device for accessing the IEEE 802.16x-based portable Internet. It is made, including the implementation method, the technical features are not limited only to the implementation method shown in FIG.

According to an embodiment of the present invention, the wireless terminal 100 providing a CDMA / WCDMA based mobile communication service has a physical body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), and an antenna in terms of hardware. And a battery 125 and the like, and internally include a modem chip (CDMA) modem, a CPU / MPU (Central Processing Unit / Micro Processing Unit), a vocoder, or a built-in modem chip (for example, the US Qualcomm's MSM series modem chips), various memory devices, duplexer filters that separate transmission and reception signals from one antenna, power amplifiers for amplifying transmission signals, high power amplifiers (HPAs), and high power transmission signals. Isolator that prevents the return of signals, RF / IF SAW filter to remove unwanted out-of-band unwanted signals, frequency up-circuit of transmission path, frequency of reception path Down-conversion circuit, Voltage Controlled Temperature Compensated X-tal Oscillator (VCTCXO) corresponding to the reference clock source, UHF frequency synthesizer used as local signal of frequency up-down conversion, and codec chip for converting analog voice signal into digital signal The internal components are gradually integrated into the modem chip, and the modem chip provides various multimedia services or additional services in addition to the core components for the mobile communication service. Various functions are being integrated together.

Referring to FIG. 1, the wireless terminal 100 implementing the one-time authentication code through the authentication code index may include a control unit 105 corresponding to the modem chip and a screen output unit corresponding to an LCD (Liquid Crystal Display). 110, a sound processing unit 115 corresponding to a microphone / speaker, a key input unit 120 corresponding to a keypad, a wireless processing unit 130 corresponding to an antenna and various RF modules, and a nonvolatile memory It is characterized by comprising a memory unit 140 and a battery 125 for power supply.

In addition, the wireless terminal 100 further includes a camera unit (not shown) for reading image information for providing various multimedia services or various additional services corresponding thereto, or for connecting a short range communication channel with a short range device. It is preferable to further provide a near field communication part (not shown).

In addition, the wireless terminal 100 is an IC chip (for example, integrated IC) mounted or detached from the wireless terminal 100 to provide various financial (or payment) services or various additional services corresponding thereto. A chip, or a USIM (Universal Subscriber Identity Module), etc.) and an IC chip reader 135 for reading / writing information (or data) are preferably further provided on the IC chip.

The control unit 105 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, a program routine for providing a function specific to the wireless terminal 100 from a memory device, Or a bus (BUS) for inputting and outputting program data and an electronic circuit (or integrated circuit) provided therefor, and the software from the memory unit 140 or the memory device (or chipset). Program routines loaded into execution memory and processed by the processor to perform unique functions, or generic terms of program data (hence, recording of wireless terminal 100 to implement a one-time authentication code via the authentication code index). A program routine recorded on the medium will be described as being provided in the controller 105 for convenience.) For example, the program routine included in the controller 105 may basically include an operating system routine (not shown) and at least one system management routine (eg, a power management routine, a channel (forward / reverse) management routine, a handoff routine, etc.). Not shown), and the various functional configurations to be implemented in the wireless terminal 100 by the controller 105 are realized.

According to the exemplary embodiment of the present invention, after power is supplied to the wireless terminal 100, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are stored in the control unit ( By loading into the execution memory included in 105 and arithmetic processing by the processor, the wireless terminal 100 according to the booting process, the system setting detailed state, the pilot channel acquisition detailed state, the synchronization channel acquisition detailed state and the timing conversion detailed state. An operation mode corresponding to the "mobile station initialization state" is set.

After performing the booting procedure, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are loaded into the execution memory included in the controller 105 and loaded into the processor. By the arithmetic processing, the wireless terminal 100 is set to an operation mode corresponding to a "mobile station call waiting state", "system access state", or "call channel state", and so on. Call Processing) procedure.

According to an embodiment of the present invention, the function of implementing a one-time authentication code through the authentication code index is initiated (or realized) through a key input in an operation mode in which the wireless terminal 100 corresponds to the "mobile station call waiting state". Is preferred.

The screen output unit 110 is a function configuration unit for a screen for checking each operation mode operation and the corresponding operation state of the wireless terminal 100, at least one including an LCD provided in the wireless terminal 100 And at least one key data input through the key input unit 120 in conjunction with the controller 105, or the driver to drive the screen output device. Outputs a menu screen, a function processing screen, and a function processing result screen corresponding to at least one or more functions (or programs) included in the wireless terminal 100, or at least provided (or downloaded) to the wireless terminal 100 At least one content (eg, text content, image content, multimedia content) is output.

According to the method of the present invention, the screen output unit 110 is a menu screen corresponding to a function for implementing a one-time authentication code through the authentication code index, a function processing screen for implementing the one-time authentication code (N) and It is preferable to perform the function of the screen output means for outputting the function processing result screen for outputting the one-time authentication code (N).

The sound processor 115 is a functional component that processes input and output of sound in each operation mode of the wireless terminal 100. The sound processor 115 decodes at least one or more encoded sound data and is provided in the wireless terminal 100. Or a vocoder and a codec for encoding and encoding a sound signal input through a microphone provided in the wireless terminal 100 or through a microphone provided in the wireless terminal 100.

According to the exemplary embodiment of the present invention, the sound processing unit 115 receives sound data corresponding to the call connection sound through the speaker in an operation mode corresponding to the “system access state” among the operation modes of the wireless terminal 100. The audio signal may be decoded and output, or the audio signal may be encoded and input through a microphone in an operation mode corresponding to the "call channel state", or the audio signal may be decoded and output through a speaker.

In addition, the sound processor 115, when playing at least one or more sound content or multimedia content provided (or downloaded) in the wireless terminal 100 in at least one operation mode including the "mobile station call waiting state", Preferably, the sound data corresponding to the reproduced content is decoded and output.

The key input unit 120 includes a key input device including at least one key button including a number key, a character key, or a function key, and the And a driver for driving a key input device, thereby detecting at least one key input signal generated by clicking (or entering) the key button in the key input device.

According to the present invention, when a key input signal is detected from a key button provided in the key input device in the input mode controlled by the controller 105 or at least one operation mode, the key input unit 120 detects the detection. Generate a key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the generated key input signal, and provide the generated key event to the controller 105, wherein the controller 105 is provided with the wireless terminal. Read key data corresponding to the key event in the current input mode or operation mode of 100 (eg, store (manage) at least one or more key data corresponding to a specific key event in each input mode or operation mode) Read key data from the key table to the key event), or execute a function defined by matching the key event And the characterized in that the shipping dock.

According to the exemplary embodiment of the present invention, the key input unit 120 inputs a telephone number in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 100, and presses the "call" button. By inputting, it is preferable to change the operation mode of the radio terminal 100 to an operation mode corresponding to the "system access state".

In addition, the key input unit 120 inputs a function key (for example, a menu key) in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 100, thereby allowing the wireless terminal 100 to be input. It is desirable to execute the various functions provided in).

According to an embodiment of the present invention, the key input unit 120 preferably performs a function of key input means for inputting at least one or more key data corresponding to a function of implementing a one-time authentication code through the authentication code index. .

The wireless processor 130 is a functional component that connects a wireless channel with a base station on a mobile communication network in which the wireless terminal 100 operates based on CDMA / WCDMA, and includes a CDMA modem and various RF modules (eg, duplexer filter, power). Amplifiers, High Power Amplifiers (HPAs), Isolators, RF / IF SAW Filters, Frequency Up-Circuits, Frequency Down-Conversion Circuits, VCTCXOs, UHF Frequency Synthesizers, etc. for Reference Clock Sources) and Antennas And a location registration, slot mode, or power control corresponding to each operation mode of the wireless terminal 100 in conjunction with the control unit 105. Or, hand-off or call processing.

According to the exemplary embodiment of the present invention, the wireless processor 130 may transmit and receive a radio frequency signal transmission / reception function corresponding to a function of implementing a one-time authentication code through the authentication code index (eg, antenna control, modulation of radio frequency signals, synthesis, Amplification, filtering, etc.).

In particular, the wireless processing unit 130 processes or processes information or signals transmitted from the wireless terminal 100 to the base station in a CDMA stack or received from the base station to implement a one-time authentication code through the authentication code index. It is desirable to include the function of reading information or signals from the CDMA stack.

According to another exemplary embodiment of the present invention, if the wireless terminal 100 shown in FIG. 1 is a wireless terminal device accessing an HSDPA-based wireless network, the wireless processor 130 accesses the HSDPA-based wireless network and the authentication code. It is possible to include a wireless communication function configuration for implementing a one-time authentication code through the index, or if the wireless terminal 100 is a wireless terminal device connected to the IEEE 802.16x-based wireless network, the wireless processing unit 130 It is possible to include a wireless communication function configuration for implementing a one-time authentication code through the authentication code index by accessing the IEEE 802.16x-based wireless network, by which the present invention is not limited.

The IC chip reader unit 135 is an IC chip (eg, financial IC chip or USIM) mounted or detached from the wireless terminal 100 through an IC chip standard including ISO / IEC 7816 or ISO / IEC 14443. Etc.), and a functional component for exchanging at least one information (or data or command), the contact IC card reader corresponding to the ISO / IEC 7816 standard, or the contactless IC card corresponding to the ISO / IEC 14443 standard. And an IC card reader to exchange at least one information (or data or command) with the IC chip through an APDU (Application Protocol Data Unit).

Referring to the standards including ISO / IEC 7816 or ISO / IEC 14443, an IC chip mounted or detached from a customer wireless terminal may include a power supply (VCC), a reset signal (RST), a clock signal (CLK), An input / output interface (not shown) that communicates with the IC chip reader 135 (eg, exchanges commands or data) through a contact point such as ground (GND), programming power supply (VPP), or input / output (I / O), and the like. A processor unit (not shown) including at least one computing element including a central processing unit (CPU), a micro process unit (MPU), or a coprocessor, a read only memory (ROM), and a random access memory (RAM). And a memory (not shown) including at least one memory device including an access memory, an electrically erasable and programmable read only memory (EEPROM), a flash memory (FM), and the like, and in particular, at least one of the memory devices. (for example, In the ROM), a Chip Operating System (COS) for managing and operating an IC card internal resource is stored, and the power is supplied from the IC chip reader unit 135 through a power supply (VCC) contact point of the input / output interface. In this case, the COS stored in the memory is loaded into the execution memory to control the overall operation of the IC chip, and the APDU (Application Protocol Data Unit) based on the clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal CLK contact point. Control information or data exchange between the IC chip and the IC chip reader unit 135).

According to the present invention, the IC chip storage information (for example, IC chip program code and data) for implementing a one-time authentication code is stored in the memory of the IC chip, the IC chip storage information is A storage unit (not shown) that stores a data set corresponding to information or data that is read and read and / or used by a processor included in the customer wireless terminal, and an arithmetic function of the processor unit and an instruction set provided by the COS. A program routine (e.g., JAVA Applet in the case of Javacard) that interacts with the COS instruction set as driven or executed and operated by a processor included in the customer wireless terminal. Processing corresponding to an application made up of the calling code and the execution code processed by the processor unit A unit (not shown) is provided. In particular, the processing unit (not shown) reads an instruction provided from a processor included in the customer wireless terminal through the input / output interface through an APDU, and stores the instruction based on the read instruction. Read or record at least one or more information or data stored in the unit (not shown), and provide the result or read information or data to the processor provided in the customer wireless terminal via the input and output interface through the APDU It is characterized by.

Here, the memory of the IC chip includes a security structure based on ISO / IEC 10202. According to this, the memory includes a protection area in which secret information such as a chip serial number (CSN) is stored, a COS control area, and a user. It consists of an application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area. The IC chip storage information for the present invention is stored in an area except the protection area and the COS control area. desirable.

Further, according to ISO / IEC 7816 or ISO / IEC 14443 ICC standard, the memory includes one master file (MF) corresponding to a root file and at least one storage under the master file. Answer To Reset (ATR) including functional information about the information, at least one dedicated file (DF) corresponding to each ICC stored information, and disposed under the dedicated file for smart card service. It includes a file structure consisting of an element file (EF) including substantial information or data. The IC chip storage information for the present invention also includes the file structure as described above.

According to the exemplary embodiment of the present invention, the IC chip may include at least one user authentication IC chip storage information or terminal authentication IC chip storage information for authenticating the validity of the user of the wireless terminal 100.

The user authentication IC chip storage information, or the terminal authentication IC chip storage information is wireless, using user authentication information input through the key input unit 120 as an IC chip authentication code (for example, a personal identification number (PIN)). After authenticating the user of the terminal 100 (or the wireless terminal 100), it is preferable to return the user authentication result information, and if the person having ordinary knowledge in the technical field to which the present invention belongs, Technical features for authenticating the user of the wireless terminal 100 (or the wireless terminal 100) through an IC chip authentication code, and the user corresponding to the authentication result of the user of the wireless terminal 100 (or the wireless terminal 100). Since you will be familiar with the technical features of returning the authentication result information, a detailed description thereof will be omitted for convenience.

The memory unit 140 is a non-volatile memory corresponding to a storage medium for storing at least one or more information (or data) in the wireless terminal 100, or a recording medium for recording program codes corresponding to at least one or more program routines. Is a general term, and includes ROM (Read Only memory) corresponding to the read-only memory, Flash Memory (FM), EEPROM (Electrically Erasable and Programmable Read Only Memory), and the like. It features.

According to an exemplary embodiment of the present invention, system information that should not be deleted from the nonvolatile memory is stored, and the flash memory stores various application programs provided through an operating system routine, a call processing program routine, or the wireless terminal 100. Program routines and information or data therefor are stored therein, and the EEPROM includes at least one extracted or generated during the execution of an application included in the terminal registration-related parameters and a phone number (eg, an address book) or the wireless terminal 100. Preferably, the information (or data) is stored.

According to an exemplary embodiment of the present invention, the memory unit 140 provides authentication code index information and a wireless terminal 100 provided through an authentication code index providing system shown in FIG. 5 to implement a one-time authentication code through the authentication code index. It is desirable to store unique information in association.

Here, the unique information of the wireless terminal 100 may include a telephone number of the wireless terminal 100 corresponding to the wireless terminal 100 of the customer, a UICC (Universal IC Card) / USIM (Universal) mounted on the wireless terminal 100. Subscriber Identity) Use the information of the radio terminal 100 including one or more serial numbers, a terminal serial number (for example, an electronic serial number (ESN)) assigned to the radio terminal 100, and at least one opening number of the radio terminal 100. Or one or more unique combination numbers generated by combining one or more of the radio terminal 100 telephone number, UICC / USIM serial number, terminal serial number, and wireless terminal 100 opening number (or part). It is preferable to make.

In addition, the memory unit 140 transmits the authentication code index information and the unique information of the wireless terminal 100 to use the wireless terminal 100 as a wireless communication disposable authenticator, or the authentication code index. It is preferable to store the authentication server 175 information corresponding to the authentication server 175 to receive the one-time authentication code generation information corresponding to the information.

If the first partial one-time authentication code generation information is provided to the wireless terminal 100 through the authentication code index providing system shown in FIG. 5, the memory unit 140 implements the one-time authentication code through the authentication code index. It is preferable to further store the first partial one-time authentication code generation information provided through the authentication code index providing system shown in FIG.

Referring to FIG. 1, the wireless terminal 100 implementing the one-time authentication code through the authentication code index includes an information input unit 145 that receives user authentication information through the key input unit 120. It features.

In order to implement a one-time authentication code through the authentication code index, the information input unit 145 outputs a user authentication information input interface in association with the screen output unit 110, and the authentication code through the user authentication information input interface. Request for inputting user authentication information for implementing a one-time authentication code through an index, whereby the authentication processing unit 150 processes the user authentication information to be input to a user authentication information interface through the key input unit 120. It is characterized by.

The user authentication information may include at least one of a personal identification number (PIN) or a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal 100 in the authentication server 175. It is preferable to comprise as mentioned above.

Alternatively, the user authentication information, through the user authentication IC chip storage information, or terminal authentication IC chip storage information provided in the IC chip (or USIM) to authenticate the wireless communication one-time authentication function of the wireless terminal 100 It is preferable to include at least one or more personal identification number (PIN), or password for activation.

Alternatively, the user authentication information, the wireless terminal 100 preferably comprises a password for authenticating and activating the wireless communication disposable authenticator function of the wireless terminal 100, in this case, the user authentication information Is preferably stored in the memory unit 140 (not shown).

Referring to FIG. 1, the wireless terminal 100 based on the user authentication information input through the information input unit 145 to implement a one-time authentication code through the authentication code index, the wireless terminal 100. Authentication processing unit 150 for authenticating and activating the wireless communication disposable authenticator function provided in the) and, if the wireless communication disposable authenticator function is activated, authentication code index information and wireless terminal 100 stored in the memory unit 140 A transmission unit 155 for identifying the unique information and transmitting the authentication code index information and the unique information of the wireless terminal 100 to the authentication server 175 through the wireless processing unit 130. do.

When user authentication information for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal 100 is input through the information input unit 145, the authentication processing unit 150 controls the information input unit 145. On the basis of the user authentication information input through the wireless terminal 100 characterized in that to activate and authenticate the wireless communication disposable authenticator function provided.

When the authentication server 175 receives and authenticates the user authentication information according to an embodiment of the present invention, the authentication processing unit 150 is connected with the wireless processing unit 130 through the information input unit 145. Transmitting the input user authentication information to the authentication server 175, and receives user authentication result information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal 100 from the authentication server 175. It is desirable to.

According to another embodiment of the present invention, when authenticating the user authentication information through an IC chip (or USIM) provided in the wireless terminal 100, the authentication processing unit 150 is the IC chip reader unit 135 In conjunction with the providing the user authentication information input through the information input unit 145 to the IC chip (or USIM), the wireless communication one-time authentication provided in the wireless terminal 100 from the IC chip (or USIM) It is preferable to receive a user authentication result for authenticating and activating the existing function.

According to another exemplary embodiment of the present invention, when the wireless terminal 100 authenticates the user authentication information, the authentication processing unit 150 may input the user authentication information and the memory input through the information input unit 145. It is preferable to check (or generate) a user authentication result for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal 100 by comparing the user authentication information (not shown) stored in the unit 140.

If the wireless communication disposable authenticator function provided in the wireless terminal 100 is activated based on the user authentication information, the transmission unit 155 may include authentication code index information stored in the memory unit 140 and a wireless terminal ( 100 confirms the unique information and the authentication server 175 information, and through the wireless processing unit 130 to the authentication server 175 corresponding to the authentication server 175 information, the verified authentication code index information and the wireless terminal ( 100) characterized by transmitting the unique information.

The authentication server 175 receiving the authentication code index information and the unique information of the wireless terminal 100 converts the wireless terminal 100 into a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal 100. When the use is approved and the use of the wireless terminal 100 as a wireless communication disposable authenticator is confirmed, confirming the one-time authentication code generation information (or second partial one-time authentication code generation information) corresponding to the authentication code index information. It generates (or generates) and transmits to the wireless terminal 100.

Referring to FIG. 1, in order to implement a one-time authentication code through the authentication code index, the wireless terminal 100 connects to the authentication code index information from the authentication server 175 in association with the wireless processing unit 130. And a receiving unit 160 for receiving corresponding one-time authentication code generation information (or second partial one-time authentication code generation information).

When the authentication server 175 is approved to use the wireless terminal 100 as a wireless communication disposable authenticator, the receiving unit 160 in conjunction with the wireless processing unit 130, the authentication code index from the authentication server 175 And receiving one-time authentication code generation information corresponding to the information. If the first partial one-time authentication code generation information is stored in the memory unit 140, the authentication server 175 corresponds to authentication code index information. Preferably, the second partial one-time authentication code generation information is received.

Referring to FIG. 1, the wireless terminal 100 generates one-time authentication code generation information (or second partial one-time authentication code generation information) from the authentication server 175 to implement a one-time authentication code through the authentication code index. ) Is received, the one-time one-time authentication code generation information (or the one-time one-time one-time authentication code generation information stored in the memory unit 140 and the received second one-time one-time authentication code generation information (or generated) Authentication code generation information) through the authentication code generation unit 165 for generating an N-digit one-time authentication code (N), and outputs the generated one-time authentication code (N) in connection with the screen output unit 110 An output processor 170 is provided.

When one-time authentication code generation information is received from the authentication server 175 according to an embodiment of the present invention, the authentication code generation unit 165 converts the received one-time authentication code generation information into a one-time authentication code (N). Using as a seed value to generate (Seed Value) is characterized in that for generating a one-time authentication code (N) of N digits according to a predetermined one-time authentication code generation standard.

When receiving the second partial one-time authentication code generation information from the authentication server 175 according to another embodiment of the present invention, the authentication code generation unit 165, the first partial one-time stored in the memory unit 140 Combination (or concatenation) of authentication code generation information and second one-time authentication code generation information to generate one-time authentication code generation information corresponding to the seed value for generating the one-time authentication code (N), or the first partial disposable Confirm the second one-time authentication code generation information through the authentication code generation information as a seed value for generating the one-time authentication code (N), and the generated (or confirmed) the one-time authentication code generation information is a one-time authentication code (N) Characterized by generating a one-time authentication code (N) of N digits in accordance with a predetermined one-time authentication code generation standard using the seed value (Seed Value) for generating a The.

If the first partial one-time authentication code generation information stored in the memory unit 140 is stored, the authentication code generator 165 is N-digit one-time authentication code (N) through the first partial one-time authentication code generation information Generate a one-time authentication code (n) of n (1 <= n <N) digits, and generate a (Nn) one-time authentication code (Nn) through the received second partial one-time authentication code generation information, By combining (or concatenating) the one-time authentication code (n) and the one-time authentication code (Nn) it is possible to generate an N-digit single-use authentication code (N), by which the present invention is not limited.

When the N-digit one-time authentication code N is generated by the authentication code generator 165, the output processing unit 170 is connected to the screen output unit 110 to generate the N-digit one-time authentication code ( N) is output to a predetermined area on the screen of the wireless terminal 100.

According to an embodiment of the present invention, the output processing unit 170 outputs a one-time authentication code output screen on the screen of the wireless terminal 100 in association with the screen output unit 110, the one-time authentication code output screen It is preferable to output the generated N-digit one-time authentication code (N).

According to another exemplary embodiment of the present invention, the output processing unit 170 outputs the one-time authentication code output area to the screen area currently output on the screen of the wireless terminal 100 in association with the screen output unit 110 (or Assigning), and outputting the generated N-digit one-time authentication code (N) to the one-time authentication code output area.

2 is a diagram illustrating an information registration system for registering wireless terminal registration information to implement a one-time authentication code through an authentication code index according to an embodiment of the present invention.

In more detail, Figure 2 is an information registration system for using a customer wireless terminal as a wireless one-time use authenticator to implement a one-time authentication code through the authentication code index wireless terminal registration including one or more customer information, wireless terminal information and carrier information When the information is provided, the information registration system is a wireless one-time use authenticator to implement a one-time authentication code through the authentication code index to the customer wireless terminal based on the customer information, wireless terminal information and carrier information included in the wireless terminal registration information Identifying (or generating) the unique information of the customer's wireless terminal for authenticating use, and processing the customer information, the unique information of the wireless terminal and the communication company information in association with the storage medium 245 (for example, the financial ledger provided to the financial company, or Authentication through the database linked with the financial ledger and one-time authentication code The present invention relates to a system configuration for registering a storage medium 245 including one or more databases provided in a system to be managed by the present invention. Those skilled in the art may refer to and / or refer to FIG. It is possible to infer various implementation methods for the configuration of the information registration system by modifying, but the present invention includes all the implementation methods inferred, and is not limited to the implementation method shown in FIG.

Hereinafter, the wireless terminal registration information provided from the customer on the information registration system shown in FIG. 2 is stored in the storage medium 245 (for example, a financial ledger provided to a financial company, or a database associated with the financial ledger, a one-time authentication code). Components corresponding to one or more means and / or functional configurations for storage in a storage medium 245 including one or more databases provided in a system for processing authentication are referred to as " information registration server 200 " .

Referring to FIG. 2 according to an embodiment of the present invention, the information registration system includes any one of a window terminal provided at one or more branches of a financial institution, a wired terminal or a wireless terminal used by the customer. Characterized in that it comprises an information registration terminal 255, the information registration terminal 255 communicates with the information registration server 200 provided on the information registration system through a financial network (or communication network). The channel is connected.

According to an embodiment of the present invention, the customer visits the financial institution branch, and at least one application for registering the wireless terminal registration information through a window (or through a teller) provided at the financial institution branch ( For example, a document having a form for filling out one or more information items) is prepared, and when the completed application is submitted to a teller, the teller enters (or selects) the information written in the request through the teller terminal. The window terminal preferably transmits the input (or selected) information to the information registration server 200 provided on the information registration system through the financial network.

Here, the teller terminal preferably comprises an employee terminal used by a teller employee provided at the branch of the financial institution, and the information registration server 200 connected to the teller terminal is a server (eg, information system) in the financial system. Preferably, the financial network connecting the window terminal and the information registration server 200 comprises a branch network connecting the communication channel between the window terminal and the information registration server 200. Do.

According to another exemplary embodiment of the present invention, the customer accesses the information registration server 200 through at least one client terminal of a wired terminal connected to a wired communication network or a wireless terminal connected to a wireless communication network, and the information registration server 200 When the wireless terminal registration information is input (or selected) through one or more information registration interfaces provided by), the wireless terminal registers from the client terminal to the information registration server 200 provided on the information registration system through a communication network. It is desirable to transmit the information.

Here, a wired terminal connected to a wired communication network is a generic term for all terminal devices connected to a transmission control protocol / Internet protocol (TCP / IP) based communication network, and a desktop computer or notebook connected to the TCP / IP based communication network. Or a home appliance terminal (eg, Set-Top-Box) connected to the TCP / IP-based communication network, or a kiosk connected to the TCP / IP-based communication network. .

In addition, a wireless terminal connected to a wireless communication network is any terminal device connected to a CDMA-based mobile communication network, all terminal devices connected to an IEEE 802.16x-based mobile Internet, or a generic term connected to an HSDPA-based wireless data communication network. As one or more embodiments, a mobile phone connected to the CDMA-based mobile communication network, a mobile Internet terminal connected to the IEEE 802.16x-based mobile Internet, or a wireless communication terminal connected to the HSDPA-based wireless data communication network may be included.

According to an embodiment of the present invention, the client terminal outputs one or more information registration interfaces provided by the information registration server 200, and receives one or more information constituting the wireless terminal registration information through the information registration interface. A function configuration (for example, a browser program and a communication function or a communication program and communication function for communicating with the information registration server 200, etc.) for inputting (or selecting) and transmitting to the information registration server 200 is provided. It is preferable.

According to another embodiment of the present invention, the information registration terminal 255, in addition to the teller terminal or the client terminal, a cash automatic teller machine (ATM) connected to a financial network (for example, a financial common network). Call terminal connected to a wired telephone network such as a financial automatic device (not shown) including a cash dispenser (CD), a public switched telephone network (PSTN), and a voice over IP (VoIP) network ), A communication terminal (not shown) connected to a wireless telephone network such as a mobile communication network, a wireless VoIP network, and one or more terminals (or servers) (not shown) provided in one or more affiliated institutions affiliated with the financial institution. The present invention is not limited thereby.

The information registration server 200 provided on the information registration system is a one-time authentication code authentication system side information registration component shown in FIG. 8 connected to the information registration terminal 255 through a financial network (or a communication network). Collectively, at least one server (or device) provided at a financial institution, or at least one server (or device) included in a system for processing authentication through a one-time authentication code, or a recording medium provided at the server (or device). It may be implemented by one or more programs recorded in the present invention, whereby the present invention is not limited. According to an embodiment of the present invention, the information registration server 200 confirms the unique information of the wireless terminal to be used as a wireless communication disposable authenticator and the one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless communication disposable authenticator (or It is preferable to perform the function of the information registration means for storing in the storage medium 245 in association with the authentication code index information.

According to an embodiment of the present invention, the information registration server 200 is provided with an interface unit 205 for connecting and managing a communication channel with the information registration terminal 255 through the financial network (or communication network). It features.

According to an embodiment of the present invention, when the information registration terminal 255 is a window terminal connected to a financial network, the interface unit 205 communicates with the window terminal and a communication channel based on a protocol stack defined in the financial network. It is preferable to provide a communication interface for transmitting and receiving one or more information (or data) by using the communication protocol defined in the financial transaction-related program provided in the window terminal.

According to another exemplary embodiment of the present invention, when the information registration terminal 255 is a client terminal including a wired terminal connected to a wired communication network, the interface unit 205 is based on a protocol stack defined in the wired communication network. It is preferable to connect a communication channel with the client terminal, and to provide a communication interface for transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal.

For example, when the client terminal is provided with a browser program corresponding to the Hyper-Text Transfer Protocol (HTTP) protocol, the interface unit 205 connects a communication channel with the client terminal based on the TCP / IP protocol. The HTPP protocol defined in the browser program is used to provide a web page (eg, Hyper-Text Markup Language (HTML) compatible web page) or a communication interface for transmitting and receiving information.

Alternatively, when the client terminal is provided with a communication program for communicating with the information registration server 200, the interface unit 205 connects the communication channel with the client terminal based on the TCP / IP protocol, Provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in a communication program.

Alternatively, when the information registration terminal 255 is a client terminal including a wireless terminal connected to a wireless communication network, the interface unit 205 establishes a communication channel with the client terminal based on a protocol stack defined in the wireless communication network. It is preferable to provide a communication interface for connecting and transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal.

For example, when the client terminal is provided with a browser program corresponding to a WAP (Wireless Application Protocol) to the HTTP protocol, or a wireless protocol compatible with the WAP / HTTP, the interface unit 205 is provided with a wireless communication network. Connect a communication channel with the client terminal based on a communication protocol, and use a WAP / HTTP protocol (or a WAP / HTTP compatible protocol) defined in the browser program to connect a wireless web page (e.g., an HTML compatible web page or WML (Wireless). Markup Language) or communication interface for transmitting and receiving information.

Alternatively, when the client terminal is provided with a communication program for communicating with the information registration server 200, the interface unit 205 connects a communication channel with the client terminal based on the wireless communication protocol, and the communication Provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in the program.

Referring to FIG. 2, in the information registration server 200, the information registration terminal 255 connects a communication channel with the information registration server 200 through the interface unit 205, and through the communication channel. When requesting registration of wireless terminal registration information, an information registration interface is generated (or extracted) for inputting (or selecting) and transmitting wireless terminal registration information from the information registration terminal 255 in cooperation with the interface unit 205. Characterized in that it comprises an interface providing unit 210 provided to the information registration terminal 255.

The interface providing unit 210 connects a communication channel with the information registration server 200 through the interface unit 205 and requests registration of wireless terminal registration information through the communication channel. Information registration for inputting (or selecting) the wireless terminal registration information to the information registration server 200 through the financial network (or communication network) by using the function configuration provided in the information registration terminal 255. Create an interface or extract from a database (not shown), and the information registration interface 255 through the financial network (or communication network) the information registration interface generated (or extracted) in conjunction with the interface unit 205. It is characterized by providing in).

If a program having one or more information registration interfaces for inputting (or selecting) the wireless terminal registration information to the information registration terminal 255 and transmitting the information to the information registration server 200 through the financial network (or communication network). When provided, the interface providing unit 210 may omit the function of the interface providing unit 210 for providing the information registration interface to the information registration terminal 255, and the present invention is not limited thereto.

Thereafter, the information registration terminal 255 inputs (or selects) wireless terminal registration information including one or more of the customer information, wireless terminal information, and communication company information based on the information registration interface. The registered wireless terminal registration information to the information registration server 200 through the financial network (or communication network).

Referring to FIG. 2, when the information registration server 200 inputs (or selects) wireless terminal registration information through the information registration interface and transmits the information registration terminal 255, the information registration server 255 may communicate with the interface unit 205. An information receiving unit 215 for receiving wireless terminal registration information including at least one of the customer information, the wireless terminal information, and the communication company information, and reading the received wireless terminal registration information to generate an authentication code index for the customer wireless terminal. Validation unit 240 for confirming the validity of the wireless terminal for use as a wireless communication disposable authenticator to implement a one-time authentication code, and for authenticating the wireless terminal to be used as a wireless one-time authenticator from the validated wireless terminal registration information Wireless terminal unique information confirmation / generation unit 220 for identifying (or generating) unique terminal information, and the customer information and the wireless terminal At least one database provided in a storage medium 245 (eg, a financial ledger provided at a financial company, a database associated with the financial ledger, or a database provided in a system for processing authentication through a one-time authentication code) by linking and processing unique information and communication company information. And an information storage unit 235 for storing in the storage medium 245.

When the information registration terminal 255 inputs (or selects) and transmits radio terminal registration information through the information registration interface, the information receiving unit 215 cooperates with the interface unit 205 and the customer information and the wireless terminal. And receiving wireless terminal registration information including one or more information and communication company information.

The customer information includes one or more personal information of the customer (eg, name, resident registration number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in the storage medium 245. It is preferable.

According to an embodiment of the present invention, when the storage medium 245 is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through a customer ledger registered in the financial ledger. Preferably, the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes information on the communication company server 250 provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

When the wireless terminal registration information is received, the validity confirming unit 240 reads the received wireless terminal registration information to implement a wireless one-time use authenticator to implement a one-time authentication code through the customer wireless terminal authentication code index It is characterized by checking the validity of the terminal.

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

In addition, the wireless terminal validity check, by providing the customer information and the wireless terminal information to the carrier server 250 corresponding to the carrier information (or wireless terminal information) based on the customer information, wireless terminal information and carrier information. Preferably, the communication service provider includes the subscriber information including the customer information and the wireless terminal information.

When the validity of the wireless terminal is confirmed, the wireless terminal unique information confirmation / generation unit 220 implements the one-time authentication code for the customer wireless terminal through an authentication code index based on the wireless terminal information included in the wireless terminal registration information. Identifying the unique information of the wireless terminal for authenticating the use of the wireless communication disposable authenticator, or generating the unique information of the wireless client.

According to an embodiment of the present invention, the wireless terminal unique information confirmation / generation unit 220 is a wireless terminal telephone number corresponding to the wireless terminal of the customer, the UICC (Universal IC Card) / USIM (Universal) mounted on the wireless terminal Subscriber Identity) The wireless terminal information including one or more serial numbers, a terminal serial number (eg, an electronic serial number (ESN)) assigned to the wireless terminal, and a wireless terminal opening number is stored in the customer wireless terminal through an authentication code index. It is desirable to check the unique information of the customer wireless terminal for authenticating the use of the wireless communication disposable authenticator to implement the authentication code as the unique information of the wireless terminal.

Alternatively, the unique identification information / generation unit 220 is a unique combination generated by combining one or more of all (or part) of the radio terminal phone number, UICC / USIM serial number, terminal serial number, wireless terminal opening number It is preferable to generate a number and to process the customer wireless terminal as unique information for authenticating the use of the customer wireless terminal as a wireless communication disposable authenticator implementing a one-time authentication code through an authentication code index.

Thereafter, the information storage unit 235 is provided with a storage medium 245 (eg, in a financial company) by cooperatively processing the customer information included in the wireless terminal registration information, the wireless terminal specific information and the communication company information. The financial ledger, or a database associated with the financial ledger, a storage medium 245 including one or more databases provided in the system for processing authentication through a one-time authentication code).

According to an embodiment of the present invention, when the storage medium 245 is a financial ledger, the customer information is included in the customer ledger, and the unique information of the wireless terminal and the telecommunication company information are in the form of additional information ledger associated with the customer ledger. It is preferable to register in the ledger D / B.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, The information storage unit 235 preferably further stores the user authentication information in the storage medium 245 (not shown), and the present invention is not limited thereto.

Referring to FIG. 2, when the unique information of the wireless terminal is confirmed (or generated), the information registration server 200 confirms (or generates) authentication code index information to be associated with the unique information of the wireless terminal. And an information storage / retrieve unit 225 and an information storage unit 235 for storing the unique information of the wireless terminal and the identification (or generated) authentication code index information in the storage medium 245. It is characterized by.

When the unique information of the wireless terminal is confirmed (or generated), the authentication code index information checking / generating unit 225, the authentication code index management D / B so as not to duplicate the authentication code index information to be associated with the unique information of the wireless terminal (Not shown) to generate new authentication code index information that does not overlap with the verification code index or verified (or generated), the information storage unit 235 is the storage medium ( And linking the unique information stored in the wireless terminal with the identification code index information (or generated).

Referring to FIG. 2, when the information registration server 200 registers the one-time authentication code generation information for using the customer wireless terminal as a wireless communication disposable authenticator in advance in association with the authentication code index information, The one-time authentication code generation information confirmation / generation unit 230 for confirming (or generating) the one-time authentication code generation information to be associated with the authentication code index information, and the authentication code index information and the verified (or generated) one-time authentication code And an information storage unit 235 for storing the generated information in the storage medium 245.

When one-time authentication code generation information for using the customer wireless terminal as a wireless communication disposable authenticator is registered in advance in association with the authentication code index information, the one-time authentication code generation information checking / generating unit 230, When the customer wireless terminal is used as a wireless communication disposable authenticator, the one-time authentication code generation information to be provided to the customer wireless terminal is confirmed from the one-time authentication code generation information management D / B (not shown), so as not to be duplicated, or previously confirmed (Or generated) new one-time authentication code generation information that is not duplicated with the generated authentication code index, the information storage unit 235 is the authentication code index information (or wireless) stored in the storage medium 245 Terminal unique information) and the verification (or generated) authentication code index information in association .

According to another embodiment of the present invention, when the one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is generated. The functional configuration for checking (or generating) and storing in the storage medium 245 can be omitted, and the present invention is not limited thereto.

3 is a diagram illustrating a process of registering wireless terminal registration information according to an embodiment of the present invention.

In more detail, in FIG. 3, when a program having an information registration interface is provided in the information registration terminal 255 shown in FIG. 2, the information registration terminal 255 drives the program to operate the customer information and the wireless terminal. When the wireless terminal registration information including one or more information and carrier information is input (or selected) and transmitted, the wireless terminal registration information is used as a wireless one-time authentication device for implementing a one-time authentication code through the authentication code index. Identifying (or generating) unique information of the customer's wireless terminal for authenticating the information, and storing the customer information, the wireless terminal's unique information, and the carrier information in a storage medium 245 in association with the unique information of the wireless terminal, Check (or create) the code index information and the one-time authentication code generation information associated with the authentication code index information As a process of storing the information in the storage medium 245, for example, when the information registration terminal 255 is a window terminal, the wireless terminal registration information is registered through the window terminal. .

Those skilled in the art will be able to infer various implementation methods for registering the wireless terminal registration information by referring to and / or modifying the drawing 3, but the present invention is inferred from all It includes an implementation method and is not limited to the implementation method shown in FIG.

For example, when one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is checked (or generated). The process of storing in the storage medium 245 can be omitted, whereby the present invention is not limited.

Hereinafter, in FIG. 3, the information registration terminal 255 shown in FIG. 2 is referred to as a "terminal" for convenience, and the information registration server 200 shown in FIG. 2 is referred to as a "server" for convenience.

Referring to FIG. 3, a terminal equipped with a program having an information registration interface authenticates an information registration authority (eg, a clerk's authority) by connecting a communication channel with the server, and the customer information, wireless terminal information, and a communication company. An information registration interface for inputting (or selecting) wireless terminal registration information including one or more information is output (300).

Thereafter, the terminal inputs (or selects) wireless terminal registration information including one or more customer information, wireless terminal information, and communication company information through the information registration interface (305).

If the terminal inputs (or selects) the wireless terminal registration information including the customer information, the wireless terminal information, and the carrier information through the information registration interface (310), the terminal receives the input through the information registration authority ( Alternatively, the wireless terminal registration information including the selected customer information, wireless terminal information, and carrier information is transmitted to the server (315).

The customer information includes one or more personal information of the customer (eg, name, resident registration number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in the storage medium 245. It is preferable.

According to an embodiment of the present invention, when the storage medium 245 is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through a customer ledger registered in the financial ledger. The customer wireless terminal preferably includes one or more pieces of customer unique information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes information on the communication company server 250 provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

Thereafter, the server receives and reads wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the communication company information to confirm the validity of the wireless terminal (320).

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

In addition, the wireless terminal validity check, by providing the customer information and the wireless terminal information to the carrier server 250 corresponding to the carrier information (or wireless terminal information) based on the customer information, wireless terminal information and carrier information. Preferably, the communication service provider includes the subscriber information including the customer information and the wireless terminal information.

If the validity of the radio terminal is not authenticated (325), the server generates information registration error information and transmits the information to the terminal (330), and does not perform the radio terminal registration information registration procedure.

On the other hand, if the validity of the wireless terminal is authenticated (325), the server is used as a wireless one-time use authenticator to implement the one-time authentication code through the authentication code index of the customer wireless terminal based on the wireless terminal information included in the wireless terminal registration information In operation 335, the wireless terminal specific information is checked for the unique information of the customer wireless terminal or the unique information is generated.

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the unique information of the wireless terminal is confirmed (or generated) (340), the server associates and processes the customer information included in the wireless terminal registration information, the unique information of the wireless terminal and the communication company information (or generated) The storage medium 245 is stored in 345.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the server further stores the user authentication information in the storage medium 245 (not shown), and the present invention is not limited thereto.

In addition, the server checks (or generates) authentication code index information associated with the unique information of the wireless terminal and one-time authentication code generation information associated with the authentication code index information (350), and the unique information and the authentication code of the wireless terminal. After storing the information in the storage medium 245 in association with the index information, and storing the authentication code index information and the one-time authentication code generation information in the storage medium 245 (355), and generates information registration history information By transmitting to the terminal 360, the registration procedure for the wireless terminal registration information is completed.

4 is a diagram illustrating a process of registering wireless terminal registration information according to another exemplary embodiment of the present invention.

In more detail, FIG. 4 illustrates a connection between the information registration server 200 shown in FIG. 2 and a communication channel through the communication network in the information registration terminal 255 shown in FIG. On request, the information registration server 200 provides an information registration interface for inputting (or selecting) wireless terminal registration information including one or more of the customer information, wireless terminal information, and carrier information from the information registration terminal 255. If the information registration terminal 255 receives (or selects) and transmits wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the telecommunication company information through the information registration interface, the information registration server ( In step 200), the wireless terminal registration information is used as a wireless one-time use authenticator to implement a one-time authentication code through the customer code using the authentication code index. Identifying (or generating) unique information of the customer's wireless terminal for authenticating the information, and storing the customer information, the unique information of the wireless terminal, and the carrier information in a storage medium 245, the authentication code associated with the unique information of the wireless terminal. Regarding the process of further checking (or generating) index information and one-time authentication code generation information associated with the authentication code index information and storing the index information in the storage medium 245, for example, the information registration terminal 255 may be used. In the case of a client terminal, it shows an implementation method of registering the wireless terminal registration information through the client terminal.

Those skilled in the art to which the present invention pertains can deduce various implementation methods for registering the wireless terminal registration information by referring to and / or modifying the drawing 4, but the present invention is inferred from all It includes an implementation method and is not limited to the implementation method shown in FIG.

For example, when one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is checked (or generated). The process of storing in the storage medium 245 can be omitted, whereby the present invention is not limited.

Hereinafter, in FIG. 4, the information registration terminal 255 shown in FIG. 2 is referred to as a "terminal" for convenience, and the information registration server 200 shown in FIG. 2 is referred to as a "server" for convenience.

Referring to FIG. 4, when the terminal requests a wireless terminal registration information registration by connecting a communication channel with the server (400), the server generates a web page including an information registration interface for registering the wireless terminal registration information. (Or extract) 405, and transmits and outputs a web page including the information registration interface to the terminal through the communication channel (410).

Thereafter, the terminal inputs (or selects) wireless terminal registration information including one or more customer information, wireless terminal information, and carrier information through the information registration interface (415).

If the terminal receives (or selects) wireless terminal registration information including the customer information, wireless terminal information, and carrier information through the information registration interface (420), the terminal receives the input through the information registration authority ( Alternatively, the wireless terminal registration information including the selected customer information, wireless terminal information, and carrier information is transmitted to the server (425).

The customer information includes one or more personal information of the customer (eg, name, resident registration number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in the storage medium 245. It is preferable.

According to an embodiment of the present invention, when the storage medium 245 is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through a customer ledger registered in the financial ledger. Preferably, the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes information on the communication company server 250 provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

Thereafter, the server confirms the validity of the wireless terminal by receiving and reading wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the carrier information.

According to an exemplary embodiment of the present invention, the wireless terminal validity checking may include checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to comprise.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

In addition, the wireless terminal validity check, by providing the customer information and the wireless terminal information to the carrier server 250 corresponding to the carrier information (or wireless terminal information) based on the customer information, wireless terminal information and carrier information. Preferably, the communication service provider includes the subscriber information including the customer information and the wireless terminal information.

If the validity of the wireless terminal is not authenticated (435), the server is a wireless one-time use authenticator to implement the one-time authentication code through the authentication code index to the customer wireless terminal based on the wireless terminal information included in the wireless terminal registration information In operation 445, the wireless terminal specific information is confirmed as the unique information of the wireless terminal for authenticating the use of the wireless terminal, or the unique information of the wireless client is generated (445).

Herein, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the unique information of the wireless terminal is confirmed (or generated) (450), the server stores and stores the customer information included in the wireless terminal registration information in association with the confirmed (or generated) wireless terminal unique information and the carrier information. Stored in medium 245 (455).

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the server further stores the user authentication information in the storage medium 245 (not shown), and the present invention is not limited thereto.

In addition, the server checks (or generates) authentication code index information associated with the unique information of the wireless terminal, one-time authentication code generation information associated with the authentication code index information (460), and unique information and authentication code of the wireless terminal. The index information is linked and stored in the storage medium 245, and the authentication code index information and the one-time authentication code generation information are linked and stored in the storage medium 245 (465).

5 is a diagram illustrating a configuration of an authentication code index providing system according to an exemplary embodiment of the present invention.

In more detail, FIG. 5 illustrates unique information of the customer wireless terminal 535 for authenticating the use of the customer wireless terminal 535 as a wireless communication disposable authenticator to the storage medium 530 through the information registration system shown in FIG. After the authentication code index information is registered, showing the system configuration for providing the authentication code index information to the wireless terminal 535 corresponding to the unique information of the customer wireless terminal 535, in the technical field to which the present invention belongs Those skilled in the art may refer to and / or modify this drawing 5 to infer various implementation methods (e.g., some implementations are omitted, subdivided, or combined) for the authentication code index provision system configuration. Although the present invention can be made, the present invention includes all the implementation methods inferred, and the technical features are only shown by the implementation method shown in FIG. This is not limited.

Hereinafter, components corresponding to one or more means and / or functional configurations for providing the authentication code index information to the customer wireless terminal 535 on the index providing system shown in FIG. 5 are referred to as "index providing server 500" for convenience. "

Referring to FIG. 5 according to an embodiment of the present invention, the authentication code index providing system is provided with the authentication code index information, and uses the wireless terminal 535 to be used as the wireless communication disposable authenticator and the wireless communication network. It is connected to the wireless terminal 535 and confirms the unique information and authentication code index information of the wireless terminal 535 registered in the storage medium 530 through the information registration system shown in Figure 2, and through the wireless communication network It characterized in that it comprises an index providing server 500 for providing the authentication code index information to the customer terminal.

The wireless terminal 535 to be used as the wireless communication disposable authenticator uses a memory to store authentication code index information provided from the index providing server 500 and the wireless communication network when the wireless terminal 535 is used as a wireless communications disposable authenticator. After providing the authentication code index information stored in the memory to the one-time authentication code authentication system shown in Figure 8, and after using the one-time authentication code authentication system to use the wireless terminal 535 as a wireless communication one-time authentication, When the one-time authentication code generation information (or first partial one-time authentication code generation information including a part of the one-time authentication code generation information) corresponding to the authentication code index information is transmitted, the one-time authentication code generation information is transmitted through the wireless communication network. Receiving, the received one-time authentication code generation information (or one-time authentication code A part of surname information) is a generic term for a wireless communication terminal having a function of generating a N (N> = 2) single-use authentication code (N). Reference will be made to FIG.

The index providing server 500 provided on the authentication code index providing system is a one-time authentication code authentication system side authentication code shown in FIG. 8 connected through a wireless communication network and a wireless terminal 535 to be used as the wireless communication disposable authentication device. Collectively, the index providing component may include one or more servers (or devices) provided in a financial institution, or one or more servers (or devices) provided in a system that processes authentication through a one-time authentication code, or the server (or devices). It may be implemented as one or more programs recorded on the recording medium provided, by which the present invention is not limited.

Referring to FIG. 5, the index providing server 500 may include a wireless terminal checking unit 505 (or a wireless terminal 535 checking unit) for confirming unique information of the wireless terminal 535 to be used as the wireless communication disposable authenticator. Authentication code index information verification unit 510 (or authentication code index) for confirming authentication code index information to be provided to the wireless terminal 535 corresponding to the unique information of the wireless terminal 535 in association with the storage medium 530. Information confirmation means) and a wireless terminal 535 to be used as the wireless communication disposable authenticator through a wireless communication network connected to the wireless terminal 535 (for example, a wireless communication network corresponding to carrier information stored in the storage medium 530). And an authentication code index information providing unit 515 (or authentication code index information providing means) for providing the verified authentication code index information. When the unique information of the wireless terminal 535 is not stored (for example, the unique information of the wireless terminal 535 may include the telephone number, the UICC / USIM serial number, the terminal serial number, and the wireless terminal 535 of the wireless terminal 535). Or a unique combination number generated by combining one or more of all the opening numbers), and the unique information of the wireless terminal 535 for transmitting the unique information of the wireless terminal 535 to the wireless terminal 535. Characterized in that it further comprises a study (or wireless terminal 535 unique information providing means).

The wireless terminal checking unit 505 may provide authentication code index information among the unique information of the wireless terminal 535 registered in the storage medium 530 through the information registration system shown in FIG. 2. When the unique information of the wireless terminal 535 is confirmed, the authentication code index information check unit 510 is unique to the wireless terminal 535 in association with the storage medium 530. Verifying (or extracting) authentication code index information to be provided to the wireless terminal 535 corresponding to the information. If the authentication code index information is not stored in the storage medium 530, the authentication is performed. The code index information checking unit 510 preferably generates the authentication code index information to be provided to the wireless terminal 535 so as not to overlap.

When the authentication code index information to be provided to the wireless terminal 535 is confirmed, the authentication code index information providing unit 515 is a wireless communication network connected to the wireless terminal 535 (for example, the storage medium 530). And providing the verified authentication code index information to the wireless terminal 535 to be used as the wireless communication disposable authenticator through a wireless communication network corresponding to the communication company information stored in the wireless communication network. It is preferably stored in the memory unit provided at 535.

When the unique information of the wireless terminal 535 is not stored in the wireless terminal 535 (for example, the unique information of the wireless terminal 535 may include the telephone number, the UICC / USIM serial number, and the terminal serial number of the wireless terminal 535). Number, a unique combination number generated by combining one or more of all (or part) of the wireless terminal 535 opening number), and the unique information providing unit of the wireless terminal 535 is stored in the wireless terminal 535 It is preferable to extract and transmit the unique information of the radio terminal 535 stored in the medium 530.

Referring to FIG. 5, the index providing server 500 is associated with authentication code index information provided to the wireless terminal 535 corresponding to the unique information of the wireless terminal 535 in association with the storage medium 530. Partial one-time authentication code generation information confirmation unit 520 (or partial one-time authentication code generation information confirmation means) for confirming the first partial one-time authentication code generation information including a part of the one-time authentication code generation information, and the wireless terminal 535 Part of the confirmed one-time authentication code generation information to the wireless terminal 535 to be used as the wireless one-time authentication through a wireless communication network (for example, a wireless communication network corresponding to communication information stored in the storage medium 530) connected to Partial one-time authentication code generation information providing unit for providing the first partial one-time authentication code generation information comprising 525 (or the number of partial one-time authentication code generation information provided And one-time authentication code generation information corresponding to the authentication code index information is not stored in the storage medium 530, or in the one-time authentication code authentication system shown in FIG. When providing the entire one-time authentication code generation information to the wireless terminal 535, a function of providing the first partial one-time authentication code generation information including a part of the one-time authentication code generation information to the wireless terminal 535 in advance. This can be omitted, and the present invention is not limited thereby.

The partial one-time authentication code generation information checking unit 520 may be connected to the storage medium 530 when the one-time authentication code generation information corresponding to the authentication code index information is generated and stored in the storage medium 530. The first partial disposable part includes a part of the one-time authentication code generation information to be provided to the wireless terminal 535 in association with the authentication code index information provided to the wireless terminal 535 corresponding to the unique information of the wireless terminal 535. Characterize the verification code generation information.

Here, the first partial one-time authentication code generation information, when using the wireless terminal 535 as a wireless communication disposable authenticator, a one-time authentication code to provide to the wireless terminal 535 in the one-time authentication code authentication system shown in Figure 8 Part of the generation information, the combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 535 in the one-time authentication code authentication system shown in Figure 8, when using the wireless terminal 535 as a wireless communication disposable authenticator, When the wireless terminal 535 is used as a wireless communication disposable authenticator, the one-time authentication code authentication system shown in FIG. 8 includes one or more verification values for verifying the one-time authentication code generation information provided to the wireless terminal 535. It is preferable.

When the first partial one-time authentication code generation information to be pre-provided to the wireless terminal 535 is confirmed, the partial one-time authentication code generation information providing unit 525 is connected to the wireless terminal 535 (for example, a wireless communication network). A first partial one-time authentication code including a part of the identified one-time authentication code generation information to a wireless terminal 535 to be used as the wireless one-time authentication device through a wireless communication network corresponding to the carrier information stored in the storage medium 530) Characterized by providing the generation information, it is preferable that a part of the one-time authentication code generation information is stored in the memory unit provided in the wireless terminal 535.

6 is a diagram illustrating a process of providing an authentication code index according to an embodiment of the present invention.

In more detail, FIG. 6 illustrates a process of providing authentication code index information to the wireless terminal 535 to use the wireless terminal 535 as a wireless single-use authenticator in the authentication code index providing system shown in FIG. Those skilled in the art to which the present invention pertains may refer to and / or modify this drawing 6 to infer various implementation methods for the authentication code index providing process, but the present invention is inferred from all It is made, including the implementation method, the technical features are not limited only to the implementation method shown in FIG.

Hereinafter, in FIG. 6, the index providing server 500 illustrated in FIG. 5 is referred to as a “server” for convenience.

Referring to FIG. 6, the server identifies a wireless terminal 535 to provide authentication code index information in response to the unique information of the wireless terminal 535 registered through the information registration system shown in FIG. 2 (600). In operation 605, the authentication code index information associated with the unique information of the wireless terminal 535 corresponding to the wireless terminal 535 to provide the authentication code index information in association with the storage medium 530 is checked.

If the unique information of the wireless terminal 535 is not stored in the wireless terminal 535 (for example, the unique information of the wireless terminal 535 may include the telephone number, the UICC / USIM serial number, and the terminal of the wireless terminal 535). A serial number, and a unique combination number generated by combining one or more of the opening (or part) of the wireless terminal 535 opening number), and the server provides the wireless terminal 535 from the storage medium 530. It is preferable to further check the unique information of the radio terminal 535 to be.

If the authentication code index information to be provided to the wireless terminal 535 to be used as the wireless communication disposable authenticator is confirmed (610), the server is connected to the wireless communication network (for example, the storage medium 530) connected to the wireless terminal 535 The authentication code index information is provided to the wireless terminal 535 to be used as the wireless one-time authenticator through the wireless communication network corresponding to the communication company information stored in the mobile terminal 535, and the authentication code index information is stored in the wireless terminal 535. It is preferably stored in the memory unit provided in).

If the unique information of the wireless terminal 535 is not stored in the wireless terminal 535 (for example, the unique information of the wireless terminal 535 may include the telephone number, the UICC / USIM serial number, and the terminal of the wireless terminal 535). A serial number, and a unique combination number generated by combining one or more of all (or a part) of the opening number of the wireless terminal 535), and the server transmits the unique information of the wireless terminal 535 to the wireless terminal 535. It is preferable to further transmit, and the unique information of the radio terminal 535 is preferably stored in the memory unit provided in the radio terminal 535.

7 is a diagram illustrating a process of providing a part of one-time authentication code generation information associated with authentication code index information according to an embodiment of the present invention.

In more detail, Figure 7 is a part of the one-time authentication code generation information associated with the authentication code index information provided to the wireless terminal 535 to be used as the wireless communication disposable authenticator through the process of providing the authentication code index information shown in FIG. A process of providing corresponding first partial one-time authentication code generation information to the wireless terminal 535 is illustrated, and a person having ordinary knowledge in the art to which the present invention pertains may refer to and / or modify the present invention. By various means can be inferred to the process of providing a part of the one-time authentication code generation information associated with the authentication code index information, the present invention comprises all the inferred implementation method, this figure 7 The technical features are not limited only to the implementation method shown in FIG.

Hereinafter, in FIG. 7, the index providing server 500 shown in FIG. 4 is referred to as a "server" for convenience.

Referring to FIG. 7, the server associates with the storage medium 530 and the authentication code index information provided to the wireless terminal 535 to be used as the wireless one-time authenticator through the process of providing authentication code index information shown in FIG. 6. The first partial one-time authentication code generation information corresponding to a part of the associated one-time authentication code generation information is confirmed (700).

Here, the first one-time authentication code generation information, when using the wireless terminal 535 as a wireless communication disposable authenticator, the one-time authentication code generation to provide to the wireless terminal 535 in the one-time authentication code authentication system shown in Figure 8 A part of the information, when the wireless terminal 535 is used as a wireless communication disposable authenticator, a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 535 in the one-time authentication code authentication system shown in FIG. When the wireless terminal 535 is used as a wireless communication disposable authenticator, the one-time authentication code authentication system shown in FIG. 8 includes one or more verification values for verifying the one-time authentication code generation information provided to the wireless terminal 535. It is preferable.

If the first partial one-time authentication code generation information corresponding to a part of the one-time authentication code generation information associated with the authentication code index information provided to the wireless terminal 535 to be used as the wireless communication one-time authentication is confirmed (705), the server The identified disposable is used as the wireless terminal 535 to be used as the wireless communication disposable authenticator through a wireless communication network connected to the wireless terminal 535 (for example, a wireless communication network corresponding to carrier information stored in the storage medium 530). Providing first partial one-time authentication code generation information corresponding to a part of the authentication code generation information (710), the first one-time authentication code generation information is preferably stored in the memory unit provided in the wireless terminal 535. .

8 is a view showing a one-time authentication code authentication system configuration for implementing a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

In more detail, FIG. 8 is approved after using the wireless terminal 855 as a wireless communication disposable authenticator through authentication code index information and wireless unique information provided from the wireless terminal 855 shown in FIG. Providing one-time authentication code generation information (or second partial one-time authentication code generation information) corresponding to the authentication code index information to the terminal 855 to the wireless terminal 855, the one-time authentication code in the wireless terminal 855 A system configuration for generating a one-time authentication code (N) having N (N> = 2) digits through generation information (or second partial one-time authentication code generation information), and authenticating the generated one-time authentication code (N) As illustrated, those of ordinary skill in the art to which the present invention pertains may implement a one-time authentication code through the authentication code index by referring to and / or modifying the drawing 8. It is possible to infer various implementation methods (e.g., implementation methods in which some components are omitted, subdivided, or combined) for the authentication code authentication system, but the present invention includes all the implementation methods inferred above, The technical features are not limited only to the implementation method shown in FIG.

Hereinafter, the authentication code index information and the wireless terminal 855 unique information transmitted from the customer wireless terminal 855 are received on the one-time authentication code authentication system shown in FIG. 8, and the authentication code index information and the wireless terminal ( 855) After approving the use of the wireless terminal 855 as a wireless communication disposable authenticator through the unique information, and providing the wireless terminal 855 with one-time authentication code generation information corresponding to the authentication code index information, the wireless terminal One or more means for authenticating the N-digit one-time authentication code N generated through the one-time authentication code generation information at 855 and / or a component corresponding to the functional configuration is referred to as an "index providing server" for convenience.

Referring to FIG. 8 according to an embodiment of the present invention, the authentication code index providing system includes a wireless terminal 855 to be used as the wireless communication disposable authenticator and the authentication code index transmitted from the customer wireless terminal 855. Receives the information and the unique information of the radio terminal 855, and after using the wireless terminal 855 as a wireless one-time use authenticator through the authentication code index information and the unique information of the radio terminal 855, the authentication code index information After providing the corresponding one-time authentication code generation information to the wireless terminal 855, the authentication server for authenticating the N-digit one-time authentication code (N) generated by the one-time authentication code generation information in the wireless terminal 855 It characterized by including the (800).

The wireless terminal 855 to be used as the wireless communication disposable authenticator stores the authentication code index information and the unique information of the wireless terminal 855 provided through the authentication code index providing system shown in FIG. 5, and the wireless terminal 855. When using a wireless communication disposable authenticator, the authentication code index information and wireless terminal 855 unique information through the wireless communication network to the authentication server 800, the authentication server 800 in the wireless terminal 855 Is approved for use as a wireless communication one-time authenticator, and then transmits the one-time authentication code generation information (or second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information) corresponding to the authentication code index information. When receiving the one-time authentication code generation information through the wireless communication network, the received one-time authentication code generation information (or one As a generic term for a wireless communication terminal having a function of generating a one-time authentication code (N) of N digits through the second partial one-time authentication code generation information including the remaining part of the disposable authentication code generation information, the wireless terminal ( 855) A detailed description of the function configuration will be made with reference to FIG.

The authentication server 800 provided on the authentication code index providing system receives the authentication code index information and the unique information of the wireless terminal 855 from the wireless terminal 855 to be used as the wireless communication disposable authenticator through a wireless communication network, After approval of using the wireless terminal 855 as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal 855, the wireless terminal 855 generates one-time authentication code generation information corresponding to the authentication code index information. After providing), the wireless terminal 855 as a collective name of the one-time authentication code authentication system side components for authenticating the N-digit one-time authentication code (N) generated through the one-time authentication code generation information, provided to the financial company One or more servers (or devices), or one or more servers (or devices) provided in the system for processing authentication via a one-time authentication code, or It may be implemented as one or more programs recorded on a recording medium provided in the server (or device), by which the present invention is not limited.

Referring to FIG. 8, the authentication server 800 receives authentication code index information and unique information of the radio terminal 855 from the radio terminal 855 to be used as the radio communication disposable authenticator, and transmits the radio to the radio terminal 855. It is characterized in that it comprises a wireless interface unit 805 for connecting a wireless data communication communication channel for providing one-time authentication code generation information, or exchange wireless messages.

According to an embodiment of the present invention, when the wireless communication network provides a data communication channel, the wireless interface unit 805 may be used from the wireless terminal 855 to be used as the wireless communication disposable authenticator according to the data communication protocol of the wireless communication network. It is preferable to connect the wireless communication channel for receiving the authentication code index information and the unique information of the radio terminal 855, and to provide the one-time authentication code generation information to the radio terminal (855).

When the wireless communication network provides a message exchange protocol according to another exemplary embodiment of the present invention, the wireless interface unit 805 is a wireless terminal 855 to be used as the wireless communication disposable authenticator according to the message exchange protocol of the wireless communication network. It is preferable to provide a message exchange interface for receiving authentication code index information and unique information of the radio terminal 855 from the terminal, and providing one-time authentication code generation information to the radio terminal 855.

Referring to FIG. 8, when the authentication server 800 transmits authentication code index information and unique information of the radio terminal 855 from the radio terminal 855 to be used as the radio communication disposable authenticator, the radio interface unit 805. Index information receiving unit 810 (or index information receiving means) for receiving the authentication code index information and the unique information of the radio terminal 855 through the, and the authentication code index information and radio terminal in association with the storage medium 850 (855) a wireless terminal authentication unit 815 (or wireless terminal 855 authentication means) for approving the wireless terminal 855 corresponding to the unique information of the wireless terminal 855 to the wireless communication disposable authenticator through the unique information; When the wireless terminal 855 is approved as a wireless communication disposable authenticator, the one-time authentication code generation information checking / generating unit 820 confirms (or generates) the one-time authentication code generation information corresponding to the authentication code index information. (Or one-time authentication code generation information check / generation means) and the one-time authentication code generation information providing unit 825 (or one-time authentication for providing the one-time authentication code generation information through the wireless communication network to the wireless terminal 855) Code generation information providing means).

In the wireless terminal 855 shown in FIG. 1, the authentication code index information and the unique information of the wireless terminal 855 are transmitted through a wireless communication network in order to use the wireless terminal 855 as the wireless communication disposable authenticator. The index information receiving unit 810 may receive the authentication code index information and the unique information of the radio terminal 855 through the air interface unit 805.

The wireless terminal authentication unit 815 checks whether the unique information of the wireless terminal 855 is registered on the storage medium 850 that stores the unique information of the wireless terminal 855 in association with the storage medium 850. When the unique information of the wireless terminal 855 is registered in the storage medium 850, the authentication code index information associated with the unique information of the wireless terminal 855 is checked from the storage medium 850, and the storage information is stored in the storage medium 850. By comparing the authentication code index information confirmed from the medium 850 and the authentication code index information received from the wireless terminal 855, the received authentication code index information and the unique information of the wireless terminal 855 are stored in the storage medium 850. If it is confirmed that stored in the), it is characterized in that the wireless terminal 855 corresponding to the unique information of the wireless terminal 855 to the wireless communication disposable authenticator.

If the wireless terminal 855 is approved as a wireless communication disposable authenticator, the one-time authentication code generation information checking / generating unit 820 generates one-time authentication code generation information corresponding to the authentication code index information from the storage medium 850. Or confirm or dynamically generate one-time authentication code generation information corresponding to the authentication code index information.

According to an exemplary embodiment of the present invention, a one-time authentication code corresponding to the authentication code index information is generated in the storage medium 850 through the information registration system shown in FIG. 2 or the authentication code index providing system shown in FIG. When the information is stored, the one-time authentication code generation information checking / generating unit 820 preferably checks the one-time authentication code generation information corresponding to the authentication code index information from the storage medium 850.

According to another exemplary embodiment of the present invention, when the one-time authentication code generation information is not stored in the storage medium 850 and dynamically generates the one-time authentication code generation information corresponding to the authentication code index information, the one-time authentication code The generation information checking / generating unit 820 preferably generates real-time one-time authentication code generation information corresponding to the authentication code index information that has approved the wireless terminal 855 as a wireless communication disposable authenticator.

A first portion including a part of the one-time authentication code generation information to the wireless terminal 855 (for example, the wireless terminal 855 to be used as the wireless communication disposable authenticator) through the authentication code index providing system shown in FIG. When the one-time authentication code generation information is provided, the one-time authentication code generation information checking / generating unit 820 is a part of the remaining one-time authentication code generation information matching the partial one-time authentication code generation information previously provided to the wireless terminal 855. It is preferable to confirm (or generate) the second partial one-time authentication code generation information including the.

According to an embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 855 is a part of the one-time authentication code generation information to be provided to the wireless terminal 855, the one-time authentication code generation The information checking / generating unit 820 preferably checks (or generates) the second partial one-time authentication code generation information to provide the remaining portion of the one-time authentication code generation information to the wireless terminal 855.

According to another embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 855 is a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 855, the The one-time authentication code generation information confirmation / generation unit 820 confirms (or generates) the one-time authentication code generation information to be combined with the combination code as the second partial one-time authentication code generation information to be provided to the wireless terminal 855. desirable.

According to another exemplary embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 855 is a verification value for verifying the one-time authentication code generation information, confirming / generating the one-time authentication code generation information. The unit 820 preferably checks (or generates) one-time authentication code generation information that can be verified by the verification value as second partial one-time authentication code generation information to be provided to the wireless terminal 855.

If the one-time authentication code generation information confirmation / generation unit 820 confirms (or generates) the one-time authentication code generation information corresponding to the authentication code index information, the one-time authentication code generation information providing unit 825 is The one-time authentication code generation information is transmitted to the wireless terminal 855 (for example, the wireless terminal 855 to be used as the wireless communication disposable authenticator) via the wireless communication network through the wireless interface unit 805. .

Alternatively, when the second partial one-time authentication code generation information is confirmed (or generated) by the one-time authentication code generation information checking / generating unit 820, the one-time authentication code generation information providing unit 825 is the wireless interface unit. It is preferable to transmit the remaining part of the one-time authentication code generation information to the wireless terminal 855 (for example, the wireless terminal 855 to be used as the wireless communication disposable authenticator) via the wireless communication network through 805.

The one-time authentication code generation information providing unit 825 by the wireless terminal 855 (for example, the wireless terminal 855 to be used as the wireless communication disposable authenticator) the one-time authentication code generation information (or second partial one-time authentication code generation Information) is provided, the wireless terminal 855 is the one-time authentication code generation information (or the first partial one-time authentication code generation information and the one-time authentication code generation information providing unit 825 previously provided to the wireless terminal 855) And generating and outputting N-digit one-time authentication code (N) through the combination (or verification) of the one-time authentication code generation information based on the second partial one-time authentication code generation information provided by the one-time authentication. Code N is a one-time authentication code input is output to the authentication request terminal 860 (for example, a general term of a wired terminal or a wireless terminal requesting authentication through a one-time authentication code) Is input through the interface is characterized in that the transmission through a communications network.

Referring to FIG. 8, the authentication server 800 includes an N-digit one-time authentication code generated by the wireless terminal 855 to be used as the wireless communication one-time authenticator through the one-time authentication code input interface at the authentication request terminal 860 ( When N is input and transmitted through a communication network, the one-time authentication code receiving unit 830 (or one-time authentication code receiving means) for receiving the one-time authentication code N from the authentication request terminal 860 through the communication network, and the Verification code generation unit 835 (or verification code generating means) for generating an N-digit one-time verification code (N) through the one-time authentication code generation information provided to the wireless terminal 855, and from the authentication request terminal 860 The one-time authentication code authentication unit 840 (or one-time authentication code authentication means) for comparing the received one-time authentication code (N) and the generated one-time authentication code (N), and the one-time authentication code (N) and disposable sword That obtained by having a code (N) authentication result processing unit 845 (or the authentication result processing unit) to store the comparison result output by the authentication request, the terminal 860, or based on a set of media features.

When the authentication request terminal 860 inputs the N-digit one-time authentication code (N) generated by the wireless terminal 855 to be used as the wireless one-time authentication device through the one-time authentication code input interface, and transmits it through the communication network, the one-time authentication Code receiving unit 830 is characterized in that for receiving the N-digit one-time authentication code (N) from the authentication request terminal 860 through the communication network.

When the one-time authentication code (N) is received, the verification code generation unit 835 receives the one-time authentication code generation information provided to the wireless terminal 855 to be used as a wireless communication disposable authenticator to generate the one-time authentication code (N). After confirming, the wireless terminal 855 generates N-digit one-time verification code N through the one-time authentication code generation information in the same manner as that of generating the one-time authentication code N.

If the one-time authentication code (N) is received, and the one-time verification code (N) is generated, the one-time authentication code authentication unit 840 and the one-time authentication code (N) received from the authentication request terminal 860 and By comparing the generated one-time verification code (N) and confirming whether or not match, characterized in that to authenticate the received one-time authentication code (N), the authentication result processing unit 845 is the one-time authentication code (N) ) And the result of comparing the one-time verification code (N) to the authentication request terminal (860) and output or store in a predetermined medium, so that post-processing according to the authentication result of the one-time authentication code (N) is provided. Characterized in that.

9 is a diagram illustrating a process of transmitting an authentication code index in a wireless terminal 855 according to an embodiment of the present invention.

In more detail, Figure 9 is a one-time use after the wireless terminal 855 approved for use as a wireless communication disposable authenticator through the one-time authentication code authentication system shown in Figure 8 in the wireless terminal 855 shown in Figure 1 8 shows authentication code index information and wireless terminal 855 unique information provided from the authentication code index providing system shown in FIG. 5 to receive authentication code generation information (or second partial one-time authentication code generation information). As shown in the transmission process to the authentication server 800, if one of ordinary skill in the art to which the present invention pertains, referring to and / or modified this figure 9 authentication code index in the wireless terminal 855 Various implementation methods (for example, some steps may be omitted or the order may be changed) may be inferred for the process of transmitting the present invention. It is made to include all the implementation methods that are inferred, the technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 9, the wireless terminal 855 checks whether a menu (or key button) for implementing a one-time authentication code is input through an authentication code index (900). When (or a key button) is input (905), the wireless terminal 855 outputs a user authentication information input interface on the screen of the wireless terminal 855, and user authentication information is input through the user authentication information input interface. Check whether it is (910).

The user authentication information may include at least a personal identification number (PIN) or a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal 855 in the authentication server 800. It is preferable to include one or more.

Alternatively, the user authentication information, through the user authentication IC chip storage information, or terminal authentication IC chip storage information provided in the IC chip (or USIM) to authenticate the wireless communication disposable authenticator function of the wireless terminal 855 It is preferable to include at least one or more personal identification number (PIN), or password for activation.

Alternatively, the user authentication information, preferably in the wireless terminal 855 includes a password for authenticating and activating the wireless communication disposable authenticator function of the wireless terminal 855, in this case the user authentication information Is preferably stored in the memory unit (not shown).

If it is confirmed that the user authentication information is input (915), the wireless terminal 855 authenticates and activates the wireless communication disposable authenticator function provided in the wireless terminal 855 based on the user authentication information ( 920).

When the authentication server 800 receives and authenticates the user authentication information according to an embodiment of the present invention, the wireless terminal 855 associates the input user authentication information with the wireless processing unit to the authentication server. It is preferable to transmit to the 800, the user authentication result information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal 855 from the authentication server 800.

According to another embodiment of the present invention, when authenticating the user authentication information through an IC chip (or USIM) provided in the wireless terminal 855, the wireless terminal 855 is connected to the IC chip reader unit The user authentication result of providing the input user authentication information to the IC chip (or USIM), and authenticates and activates the wireless communication disposable authenticator function provided in the wireless terminal 855 from the IC chip (or USIM). It is desirable to receive.

According to another exemplary embodiment of the present invention, when the wireless terminal 855 authenticates the user authentication information, the wireless terminal 855 may store the input user authentication information and the user authentication information stored in the memory unit. It is preferable to confirm (or generate) a user authentication result of authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal 855 by comparing the illustration.

If the wireless one-time authenticator function provided in the wireless terminal 855 is not activated (925), the wireless terminal 855 deactivates (or initializes) the wireless one-time authenticator function of the wireless terminal 855. (930).

On the other hand, if the wireless communication disposable authenticator function provided in the wireless terminal 855 is activated (925), the wireless terminal 855 is an authentication code index provided from the memory unit through the one-time authentication code authentication system shown in FIG. The information and the unique information of the wireless terminal 855 (or extracted) (935), the authentication code index information and the unique information of the wireless terminal (855), the authentication (800) through the wireless communication network authentication server 800 Transmit (940).

10 is a diagram illustrating a process of providing one-time authentication code generation information after approval of using a wireless terminal 855 as a wireless communication disposable authenticator according to an embodiment of the present invention.

In more detail, in FIG. 10, if the authentication code index information and the unique information of the radio terminal 855 are transmitted from the radio terminal 855 shown in FIG. 1 through the authentication code index transmission process shown in FIG. The authentication server 800 shown in FIG. 8 receives the authentication code index information and the unique information of the wireless terminal 855, and wirelessly transmits the wireless terminal 855 through the authentication code index information and the unique information of the wireless terminal 855. After approving use as a communication disposable authenticator, a process of providing one-time authentication code generation information (or second partial one-time authentication code generation information) to the wireless terminal 855 is shown, which is common in the art. In the process of providing a one-time authentication code generation information after approving the use of the wireless terminal 855 as a wireless communication disposable authenticator by referring to and / or modifying the drawing 10. One may implement various implementation methods (e.g., implementation steps in which some steps are omitted or reordered), but the present invention includes all implementation methods inferred from the above, and the implementation method shown in FIG. The technical features are not limited only.

Referring to FIG. 10, when the authentication code index information and the wireless terminal 855 unique information are transmitted from the wireless terminal 855 shown in FIG. 1 through the authentication code index transmission process illustrated in FIG. 9, the authentication server In operation 800, the authentication code index information and the unique information of the wireless terminal 855 transmitted from the wireless terminal 855 are received through the wireless communication network.

Here, the unique information of the radio terminal 855 is a radio terminal 855 telephone number corresponding to the radio terminal 855 of the customer, a UICC (Universal IC Card) / USIM (Universal) mounted on the radio terminal 855 Subscriber Identity) Use the information of the radio terminal 855 as it is, including one or more of a serial number, a terminal serial number (eg, an ESN (Electronic Serial Number)) assigned to the radio terminal 855, and a radio terminal 855 opening number. Or one or more unique combination numbers generated by combining one or more of the radio terminal 855 phone number, UICC / USIM serial number, terminal serial number, and wireless terminal 855 opening number (or part). It is preferable to make.

Thereafter, the authentication server 800 checks whether the unique information of the wireless terminal 855 is registered on the storage medium 850, and the unique information of the wireless terminal 855 is registered in the storage medium 850. In this case, the authentication code index information associated with the unique information of the wireless terminal 855 is confirmed from the storage medium 850, and the authentication code index information confirmed from the storage medium 850 and received from the wireless terminal 855. Comparing the received authentication code index information, when it is confirmed that the received authentication code index information and the wireless terminal 855 unique information are stored in the storage medium 850, the wireless corresponding to the unique information of the wireless terminal 855 Approved to use the terminal 855 as a wireless communication disposable authenticator (1005).

If the wireless terminal 855 is not approved for use as a wireless communication disposable authenticator 1010, the authentication server 800 transmits the validity error information of the wireless terminal 855 to the wireless terminal 855 through a wireless communication network. Output (1015).

On the other hand, if the wireless terminal 855 is approved for use as a wireless communication disposable authenticator (1010), the authentication server 800 is a one-time authentication code generation information to provide to the wireless terminal 855 approved for use as the wireless communication disposable authenticator ( Or the second one-time authentication code generation information) (or generated) (1020).

According to an embodiment of the present invention, when the one-time authentication code generation information corresponding to the authentication code index information is stored in the storage medium 850, the authentication server 800 is the authentication code index from the storage medium 850 It is preferable to confirm the one-time authentication code generation information corresponding to the information.

According to another embodiment of the present invention, if the one-time authentication code generation information is not stored in the storage medium 850, and dynamically generates one-time authentication code generation information corresponding to the authentication code index information, the authentication server ( 800 preferably dynamically generates real-time one-time authentication code generation information corresponding to the authentication code index information that approved the wireless terminal 855 as a wireless communication disposable authenticator.

A first portion including a part of the one-time authentication code generation information to the wireless terminal 855 (for example, the wireless terminal 855 to be used as the wireless communication disposable authenticator) through the authentication code index providing system shown in FIG. When one-time authentication code generation information is previously provided, the authentication server 800 includes a second partial one-time use including the remaining part of the one-time authentication code generation information matching the partial one-time authentication code generation information previously provided to the wireless terminal 855. It is preferable to confirm (or generate) authentication code generation information.

When the first partial one-time authentication code generation information previously provided to the wireless terminal 855 is part of the one-time authentication code generation information to be provided to the wireless terminal 855 according to one embodiment of the present invention, the authentication server 800 ) Confirms (or generates) the second portion of the one time authentication code generation information with the second partial one time authentication code generation information to be provided to the wireless terminal 855.

According to another embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 855 is a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 855, the The authentication server 800 preferably confirms (or generates) the one-time authentication code generation information to be combined with the combination code as the second partial one-time authentication code generation information to be provided to the wireless terminal 855.

According to another exemplary embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 855 is a verification value for verifying the one-time authentication code generation information, the authentication server 800 performs the verification. It is preferable to confirm (or generate) the one-time authentication code generation information that can be verified by the value with the second partial one-time authentication code generation information to be provided to the wireless terminal 855.

If the one-time authentication code generation information (or second one-time authentication code generation information) to be provided to the wireless terminal 855 approved for use as the wireless communication disposable authenticator is confirmed (or generated) (1025), the authentication server 800 In operation 1030, the one-time authentication code generation information (or the second one-time authentication code generation information) is transmitted to the wireless terminal 855 through the wireless communication network.

11 is a view showing a process of generating a one-time authentication code according to an embodiment of the present invention.

In more detail, in FIG. 11, when the one-time authentication code generation information is provided to the wireless terminal 855 shown in FIG. 1 through the process of providing the one-time authentication code generation information shown in FIG. 10, the wireless terminal 855 As the process for generating a one-time authentication code (N) of N digits through the one-time authentication code generation information, and those skilled in the art to which the present invention pertains, reference and / or modification of this figure 11 It will be possible to infer various implementation methods (for example, some steps are omitted, or the order is changed) for the process of generating the one-time authentication code, but the present invention includes all the implementation methods inferred The technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 11, when the one-time authentication code generation information is provided to the wireless terminal 855 shown in FIG. 1 through the process of providing the one-time authentication code generation information shown in FIG. 10, the wireless terminal 855 The one-time authentication code generation information is received from the authentication server 800 (1100). If the one-time authentication code generation information is received (1105), the wireless terminal 855 uses the received one-time authentication code generation information. Using the seed value (Seed Value) for generating the authentication code (N) to generate a one-time authentication code (N) of N digits according to a predetermined one-time authentication code generation standard (1110).

If the one-time authentication code (N) is generated (1115), the wireless terminal 855 outputs the generated N-digit one-time authentication code (N) to a predetermined area on the screen of the wireless terminal (855) (1120). ).

12 is a view showing a process of generating a one-time authentication code according to another embodiment of the present invention.

In detail, FIG. 12 illustrates that the second terminal disposable authentication code generation information is provided to the wireless terminal 855 shown in FIG. 1 through the process of providing the disposable authentication code generation information shown in FIG. As shown in FIG. 855, a process of generating an N-digit one-time authentication code N based on the first partial one-time authentication code generation information and the second partial one-time authentication code generation information stored in the memory unit is described. Those skilled in the art may refer to and / or modify this drawing 12 to implement various methods for generating the one-time authentication code (for example, some steps may be omitted or the order may be changed). It may be inferred that, but the present invention is made to include all the implementation method inferred above, the technical only by the implementation method shown in FIG. Jing is not limited.

Referring to FIG. 12, when the second partial one-time authentication code generation information is provided to the wireless terminal 855 shown in FIG. 1 through the process of providing the disposable authentication code generation information shown in FIG. 10, the wireless terminal 855 ) Receives the second partial one-time authentication code generation information from the authentication server 800 (1200), and if the second partial one-time authentication code generation information is received (1205), the wireless terminal 855 is the By combining (or concatenating) the first partial one-time authentication code generation information and the second one-time authentication code generation information stored in the memory unit, the one-time authentication code generation information corresponding to the seed value for generating the one-time authentication code N is generated. Alternatively, the second one-time authentication code generation information is confirmed as a seed value for generating the one-time authentication code N through the first partial one-time authentication code generation information (1210).

If the one-time authentication code generation information is not generated (or confirmed) through the first partial one-time authentication code generation information and the second partial one-time authentication code generation information (1215), the wireless terminal 855 generates a one-time authentication code error. The information is output (1220).

On the other hand, if the one-time authentication code generation information is generated (or confirmed) through the first partial one-time authentication code generation information and the second partial one-time authentication code generation information (1215), the wireless terminal 855 is the generation (or confirmation) The single-use authentication code generation information is used as a seed value for generating the one-time authentication code (N) to generate a one-time authentication code (N) of N digits according to a preset one-time authentication code generation standard (1225). .

If the first partial one-time authentication code generation information stored in the memory unit is stored, the wireless terminal 855 is n (1 <of N-digit one-time authentication code N) through the first partial one-time authentication code generation information. = n <N) generates a one-time authentication code (n) of digits, generates a one-time authentication code (Nn) of (Nn) digits through the received second partial one-time authentication code generation information, and the one-time authentication code ( It is possible to generate an N-digit one-time authentication code (N) by combining (or concatenating) n) and the one-time authentication code (Nn), whereby the present invention is not limited.

If the one-time authentication code (N) is generated (1230), the wireless terminal 855 outputs the generated N-digit one-time authentication code (N) to a predetermined area on the screen of the wireless terminal (855) (1235). ).

13 is a view showing a one-time authentication code authentication process according to an embodiment of the present invention.

In more detail, in Figure 13, N-digit one-time authentication code (N) is generated in the wireless terminal 855 shown in Figure 1 through the process of generating a one-time authentication code shown in Figure 11 or Figure 12, authentication request The one-time authentication code (N) is input from the terminal 860 and transmitted to the authentication server 800 shown in FIG. 8, and correspondingly, the authentication server 800 is matched with the one-time authentication code (N). As showing the process of authenticating the one-time authentication code (N) by generating a one-time verification code (N), if you have ordinary knowledge in the technical field to which the present invention belongs, with reference to and / or modified this figure 13 Various implementation methods (for example, some steps may be omitted or the order may be changed) may be inferred for the one-time authentication code authentication process, but the present invention includes all the implementation methods inferred. W is made, the technical features are not limited only with the exemplary method shown in the figure 13.

Referring to FIG. 13, if the N-digit one-time authentication code (N) is generated in the wireless terminal 855 shown in FIG. 1 through the process of generating the one-time authentication code shown in FIG. 11 or 12, the authentication request terminal 860 outputs a one-time authentication code input interface on the screen (1300), and after processing the input of the N-digit one-time authentication code (N) generated by the wireless terminal 855 through the one-time authentication code input interface In operation 1305, the input disposable authentication code N is transmitted to the authentication server 800 through a communication network in operation 1310.

The authentication server 800 receives the one-time authentication code N through a communication network, and confirms one-time authentication code generation information corresponding to the received one-time authentication code N (1315).

If the one-time authentication code generation information is confirmed (1320), the authentication server 800 generates N-digit one-time verification code (N) through the confirmed one-time authentication code generation information (1325).

If the one-time verification code generation information is generated (1320), the authentication server 800 authenticates the one-time authentication code by comparing the one-time authentication code (N) and one-time verification code (N) (1335).

If the one-time authentication code is not authenticated (1340), the authentication server 800 outputs by providing one-time authentication code authentication error information to the authentication request terminal 860 (1345).

On the other hand, if the one-time authentication code is authenticated (1340), the authentication server 800 outputs the one-time authentication code authentication result to the authentication request terminal 860, and outputs, and the medium that requires authentication through the one-time authentication code The terminal outputs or stores the one-time authentication code authentication result (1350).

14 is a diagram illustrating a function of a wireless terminal 1400 for implementing a one-time authentication code through an authentication code index according to another embodiment of the present invention.

In more detail, FIG. 14 illustrates a case in which a wireless terminal 1400 connected to a mobile communication network operating based on Code Division Multiple Access (CDMA) / Wide CDMA (WCDMA) is used as the wireless communication disposable authenticator. 1400, through the authentication code index information of any one or more of the two or more authentication code index information provided through the authentication code index providing system shown in FIG. 18 and the unique information of the wireless terminal 1400 of the wireless terminal 1400. Received the one-time authentication code generation information through the one-time authentication code authentication system shown in 21, and showing the functional configuration to generate and output the N-digit one-time authentication code (N) through the one-time authentication code generation information, Those skilled in the art to which the invention pertains, refer to and / or modify this drawing 14 once through the authentication code index Other terminal devices (e.g., wireless terminal devices that access HSDPA-based wireless networks, or wireless terminal devices that access IEEE 802.16x-based mobile Internet, etc.) and implement various function configurations It will be possible to infer an implementation method for the present invention, but the present invention includes all the implementation methods inferred above, and the technical features are not limited only to the implementation method shown in FIG.

According to an embodiment of the present invention, the wireless terminal 1400 that provides a CDMA / WCDMA based mobile communication service has a physical body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), and an antenna in terms of hardware. And a battery 1425 and the like, and internally include a modem chip (CDMA) modem, a CPU / MPU (Central Processing Unit / Micro Processing Unit), a vocoder, or a built-in modem chip (for example, the US Qualcomm's MSM series modem chips), various memory devices, duplexer filters that separate transmission and reception signals from one antenna, power amplifiers for amplifying transmission signals, high power amplifiers (HPAs), and high power transmission signals. Isolator that prevents the return of signals, RF / IF SAW filter to remove unwanted out-of-band unwanted signals, frequency up-circuit of transmission path, frequency of receiving path Down-conversion circuit, Voltage Controlled Temperature Compensated X-tal Oscillator (VCTCXO) corresponding to the reference clock source, UHF frequency synthesizer used as local signal of frequency up-down conversion, and codec chip for converting analog voice signal into digital signal The internal components are gradually integrated into the modem chip, and the modem chip provides various multimedia services or additional services in addition to the core components for the mobile communication service. Various functions are being integrated together.

Referring to FIG. 14, the wireless terminal 1400 implementing the one-time authentication code through the authentication code index may include a control unit 1405 corresponding to the modem chip and a screen output unit corresponding to a liquid crystal display (LCD). 1410, a sound processor 1415 corresponding to a microphone / speaker, a key input unit 1420 corresponding to a keypad, a wireless processor 1430 corresponding to an antenna and various RF modules, and a nonvolatile memory The memory unit 1440 and a battery 1425 for power supply are characterized in that it comprises.

In addition, the wireless terminal 1400 further includes a camera unit (not shown) for reading image information for providing various multimedia services or various additional services corresponding thereto, or for connecting a short range communication channel with a short range device. It is preferable to further provide a near field communication part (not shown).

In addition, the wireless terminal 1400 is an IC chip (for example, integrated IC) mounted or detached from the wireless terminal 1400 to provide various financial (or payment) services or various additional services corresponding thereto. A chip, or a USIM (Universal Subscriber Identity Module), etc.) and an IC chip reader unit 1435 for reading / writing information (or data) are preferably provided on the IC chip.

The control unit 1405 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, a program routine for providing functions specific to the radio terminal 1400 from a memory device, Or a bus BUS for inputting / outputting program data and an electronic circuit (or an integrated circuit) provided therefor, and the software from the memory unit 1440 or the memory device (or chipset). Program routines loaded into execution memory and processed by the processor to perform unique functions, or generic terms of program data (hence, recording of wireless terminal 1400 to implement a one-time authentication code via the authentication code index). The program routine recorded on the medium is shown as being provided in the control unit 1405 for convenience. The program routine included in the controller 1405 basically includes an operating system routine (not shown) and at least one system management routine (eg, a power management routine, a channel (forward / reverse) management routine, a handoff routine). Etc.), and various functional configurations intended to be implemented in the wireless terminal 1400 by the controller 1405 are realized.

According to the exemplary embodiment of the present invention, after power is supplied to the wireless terminal 1400, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are stored in the controller ( By loading into the execution memory included in 1405 and arithmetic processing by the processor, the wireless terminal 1400 is in a system setting detail state, a pilot channel acquisition detail state, a synchronization channel acquisition detail state, and a timing conversion detail state according to a booting procedure. An operation mode corresponding to the "mobile station initialization state" is set.

After performing the booting procedure, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are loaded into the execution memory included in the controller 1405 and loaded into the processor. The mobile terminal 1400 is set to an operation mode corresponding to a "mobile station call waiting state", a "system access state", a "call channel state", and the like. Call Processing) procedure.

According to an embodiment of the present invention, the function of implementing a one-time authentication code through the authentication code index is initiated (or realized) through a key input in an operation mode in which the wireless terminal 1400 corresponds to the "mobile station call waiting state". Is preferred.

The screen output unit 1410 is a function configuration unit for checking the operation of each operation mode and the corresponding operation state of the wireless terminal 1400, one or more including a LCD provided in the wireless terminal 1400 And at least one key data input through the key input unit 1420 in connection with the control unit 1405, or a driver for driving the screen output device. Outputs a menu screen, a function processing screen, and a function processing result screen corresponding to at least one or more functions (or programs) included in the wireless terminal 1400, or at least provided (or downloaded) to the wireless terminal 1400. At least one content (eg, text content, image content, multimedia content) is output.

According to the embodiment of the present invention, the screen output unit 1410 is a menu screen corresponding to a function for implementing a one-time authentication code through the authentication code index, a function processing screen for implementing the one-time authentication code (N) And it is preferable to perform the function of the screen output means for outputting the function processing result screen for outputting the one-time authentication code (N).

The sound processor 1415 is a functional component that processes input and output of sound in each operation mode of the wireless terminal 1400, and decodes at least one or more encoded sound data to be provided in the wireless terminal 1400. Or a vocoder and a codec for encoding and encoding a sound signal input through a microphone provided in the wireless terminal 1400 or the microphone provided in the wireless terminal 1400.

According to the exemplary embodiment of the present invention, the sound processor 1415 receives sound data corresponding to the ring back tone through the speaker in an operation mode corresponding to the “system access state” among the operation modes of the wireless terminal 1400. The audio signal may be decoded and output, or the audio signal may be encoded and input through a microphone in an operation mode corresponding to the "call channel state", or the audio signal may be decoded and output through a speaker.

In addition, the sound processor 1415 is configured to play at least one sound content or multimedia content provided (or downloaded) by the wireless terminal 1400 in at least one operation mode including the "mobile station call waiting state." It is preferable to decode and output sound data corresponding to the reproduced content.

The key input unit 1420 may include a key input device including at least one key button including a number key, a character key, or a function key; And a driver for driving a key input device, thereby detecting at least one key input signal generated by clicking (or entering) the key button in the key input device.

According to the present invention, when a key input signal is detected from a key button provided in the key input device in the input mode controlled by the controller 1405 or at least one or more operation modes, the key input unit 1420 detects the detection. Generate a key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the generated key input signal, and provide the generated key event to the controller 1405, wherein the controller 1405 is provided with the wireless terminal. Read key data corresponding to the key event in the current input mode or operation mode of 1400 (eg, store at least one key data corresponding to a specific key event in each input mode or operation mode) Read key data from the key table) or execute a function defined in accordance with the key event. It characterized in that the instruction is a shipping dock.

According to the exemplary embodiment of the present invention, the key input unit 1420 inputs a telephone number in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 1400, and presses the "call" button. By input, it is preferable to change the operation mode of the wireless terminal 1400 to an operation mode corresponding to the "system access state".

In addition, the key input unit 1420 inputs a function key (for example, a menu key) in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 1400, thereby providing the wireless terminal 1400. It is desirable to execute the various functions provided in).

According to the embodiment of the present invention, the key input unit 1420 preferably performs a function of key input means for inputting at least one or more key data corresponding to a function of implementing a one-time authentication code through the authentication code index. .

The wireless processor 1430 is a functional component that connects a wireless channel with a base station on a mobile communication network in which the wireless terminal 1400 operates based on CDMA / WCDMA, and a CDMA modem and various RF modules (eg, a duplexer filter, Power amplifiers, high power amplifiers (HPAs), isolators, RF / IF SAW filters, frequency up- circuits, frequency down-conversion circuits, VCTCXOs, UHF frequency synthesizers, etc. for reference clock sources) and antennas It is characterized in that it comprises a driver for driving, in accordance with the operation mode of the wireless terminal 1400 in conjunction with the control unit 1405, location registration, slot mode, or power control (Power Control) ), Or hand-off, or call processing.

According to the embodiment of the present invention, the radio processor 1430 is a radio frequency signal transmission / reception function corresponding to a function of implementing a one-time authentication code through the authentication code index (for example, antenna control, modulation of radio frequency signals, synthesis, Amplification, filtering, etc.).

In particular, the wireless processing unit 1430 processes or processes information or signals transmitted from the wireless terminal 1400 to the base station in the CDMA stack or received from the base station to implement a one-time authentication code through the authentication code index. It is desirable to include the function of reading information or signals from the CDMA stack.

According to another exemplary embodiment of the present invention, if the wireless terminal 1400 shown in FIG. 14 is a wireless terminal device accessing an HSDPA-based wireless network, the wireless processing unit 1430 is connected to the HSDPA-based wireless network to provide the authentication code. It is possible to include a wireless communication function configuration for implementing a one-time authentication code through the index, or if the wireless terminal 1400 is a wireless terminal device connected to the IEEE 802.16x-based wireless network, the wireless processing unit 1430 It is possible to include a wireless communication function configuration for implementing a one-time authentication code through the authentication code index by accessing the IEEE 802.16x-based wireless network, by which the present invention is not limited.

The IC chip reader unit 1435 is an IC chip (eg, financial IC chip or USIM) mounted or detached from the wireless terminal 1400 through an IC chip standard including ISO / IEC 7816 or ISO / IEC 14443. Etc.), and a functional component for exchanging at least one information (or data or command), the contact IC card reader corresponding to the ISO / IEC 7816 standard, or the contactless IC card corresponding to the ISO / IEC 14443 standard. And an IC card reader to exchange at least one information (or data or command) with the IC chip through an APDU (Application Protocol Data Unit).

Referring to the standard including ISO / IEC 7816 or ISO / IEC 14443, an IC chip mounted or detached from a customer wireless terminal may include a power supply (VCC), a reset signal (RST), and a clock signal (CLK). Input / output interface (not shown) that communicates with the IC chip reader 1435 (e.g., exchanges commands or data) via a contact point such as ground (GND), programming power supply (VPP), or input / output (I / O), etc. And a processor unit (not shown) including at least one computing element including a central process unit (CPU), a micro process unit (MPU), a coprocessor, and the like, a read only memory (ROM), a RAM ( It consists of a memory (not shown) consisting of at least one or more memory elements, including random access memory (EEPROM), electrically erasable and programmable read only memory (EEPROM), flash memory (FM), in particular at least one of the memory elements Device (eg , A chip operating system (COS) for managing and operating an IC card internal resource, is supplied from the IC chip reader unit 1435 through a power supply (VCC) contact point of the input / output interface. When the COS stored in the memory is loaded into the execution memory to control the overall operation of the IC chip, the APDU (Application Protocol Data) based on the clock frequency (for example, 3.57MHz or 4.9MHz) of the clock signal (CLK) contact point Unit) to control the exchange of information or data between the IC chip and the IC chip reader 1435.

According to the present invention, the IC chip storage information (for example, IC chip program code and data) for implementing a one-time authentication code is stored in the memory of the IC chip, the IC chip storage information is A storage unit (not shown) for storing a data set corresponding to information or data that is read and read and / or used by a processor included in the customer wireless terminal, and an operation set provided by the arithmetic function and COS of the processor unit. A program routine (e.g., a JAVA Applet in the case of a Javacard) that interacts with the COS instruction set and is driven or executed and operated by a processor included in the customer wireless terminal. An application corresponding to an application made up of an instruction call code and execution code that is processed by the processor unit. A unit (not shown) is provided. In particular, the processing unit (not shown) reads an instruction provided from a processor provided in the customer wireless terminal through the input / output interface through an APDU, and stores the instruction based on the read command. Read or record at least one or more information or data stored in the unit (not shown), and provide the result or read information or data to the processor provided in the customer wireless terminal via the input and output interface through the APDU It is characterized by.

Here, the memory of the IC chip includes a security structure based on ISO / IEC 10202. According to this, the memory includes a protection area in which secret information such as a chip serial number (CSN) is stored, a COS control area, and a user. It consists of an application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area. The IC chip storage information for the present invention is stored in an area except the protection area and the COS control area. desirable.

Further, according to ISO / IEC 7816 or ISO / IEC 14443 ICC standard, the memory includes one master file (MF) corresponding to a root file and at least one storage under the master file. Answer To Reset (ATR) including functional information about the information, at least one dedicated file (DF) corresponding to each ICC stored information, and disposed under the dedicated file for smart card service. It includes a file structure consisting of an element file (EF) including substantial information or data. The IC chip storage information for the present invention also includes the file structure as described above.

According to the exemplary embodiment of the present invention, the IC chip may include at least one user authentication IC chip storage information or terminal authentication IC chip storage information for authenticating the validity of the user of the wireless terminal 1400.

The user authentication IC chip storage information or the terminal authentication IC chip storage information may be obtained by using the user authentication information input through the key input unit 1420 as an IC chip authentication code (eg, a personal identification number (PIN)). After authenticating the user of the terminal 1400 (or the wireless terminal 1400), it is preferable to return the user authentication result information, and if the person having ordinary knowledge in the technical field to which the present invention belongs, Technical features for authenticating the user of the wireless terminal 1400 (or the wireless terminal 1400) through an IC chip authentication code, and a user corresponding to an authentication result of the user of the wireless terminal 1400 (or the wireless terminal 1400). Since you will be familiar with the technical features of returning the authentication result information, a detailed description thereof will be omitted for convenience.

The memory unit 1440 is a non-volatile memory corresponding to a storage medium for storing at least one or more information (or data) in the wireless terminal 1400 or a recording medium for recording program codes corresponding to at least one or more program routines. Is a generic term for a read only memory (ROM), a read / write flash memory (FM), an electrically erasable and programmable read only memory (EEPROM), and the like. It is done.

According to an exemplary embodiment of the present invention, system information that should not be deleted from the ROM of the nonvolatile memory is stored, and various applications provided through an operating system routine, a call processing program routine, or the wireless terminal 1400 are stored in the flash memory. Program routines and information or data therefor are stored therein, and the EEPROM includes at least one extracted or generated during the execution of an application provided in the wireless terminal 1400, a terminal registration related parameter and a telephone number (for example, an address book) or the wireless terminal 1400. Preferably, the information (or data) is stored.

According to an embodiment of the present invention, the memory unit 1440 is wirelessly provided with two or more authentication code index information provided through the authentication code index providing system shown in FIG. 18 to implement a one-time authentication code through the authentication code index. Preferably, the terminal 1400 stores unique information in association.

In this case, the unique information of the wireless terminal 1400 may include a telephone number corresponding to the wireless terminal 1400 of the customer, a UICC (Universal IC Card) / USIM (Universal) mounted on the wireless terminal 1400. Subscriber Identity) Use the information of the wireless terminal 1400 including one or more serial numbers, a terminal serial number (for example, an electronic serial number (ESN)) assigned to the wireless terminal 1400, and one or more opening numbers of the wireless terminal 1400. Or one or more unique combination numbers generated by combining one or more of the radio terminal 1400 telephone number, the UICC / USIM serial number, the terminal serial number, and the radio terminal 1400 opening number. It is preferable to make.

In addition, the memory unit 1440 stores the transmission target authentication code index information and the unique information of the wireless terminal 1400 of any one or more of the two or more authentication code index information to use the wireless terminal 1400 as a wireless communication disposable authenticator. It is preferable to store the authentication server 1485 information corresponding to the authentication server 1485 to be transmitted or the authentication server 1485 to receive the disposable authentication code generation information corresponding to the transmission target authentication code index information.

If the first partial one-time authentication code generation information is provided to the wireless terminal 1400 through the authentication code index providing system illustrated in FIG. 18, the memory unit 1440 may generate the one-time authentication code through the authentication code index. In order to implement, it is preferable to further store the first partial one-time authentication code generation information provided through the authentication code index providing system shown in FIG.

Referring to FIG. 14, the wireless terminal 1400 implementing the one-time authentication code through the authentication code index includes an information input unit 1445 for receiving user authentication information through the key input unit 1420. It is done.

In order to implement a one-time authentication code through the authentication code index, the information input unit 1445 outputs a user authentication information input interface in association with the screen output unit 1410 and the authentication code through the user authentication information input interface. Request for inputting user authentication information for implementing a one-time authentication code through an index, whereby the authentication processing unit 1450 processes the user authentication information to be input to the user authentication information interface through the key input unit 1420. It features.

The user authentication information may include at least one of a personal identification number (PIN) or a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal 1400 in the authentication server 1485. It is preferable to include the above.

Alternatively, the user authentication information, through the user authentication IC chip storage information, or the terminal authentication IC chip storage information provided in the IC chip (or USIM) to authenticate the wireless communication disposable authenticator function of the wireless terminal 1400. It is preferable to include at least one or more personal identification number (PIN), or password for activation.

Alternatively, the user authentication information, the wireless terminal 1400 preferably comprises a password for authenticating and activating the wireless communication disposable authenticator function of the wireless terminal 1400, in this case the user authentication information Is preferably stored in the memory unit 1440 (not shown).

Referring to FIG. 14, the wireless terminal 1400 based on the user authentication information input through the information input unit 1445 to implement a one-time authentication code through the authentication code index, the wireless terminal 1400. The authentication processing unit 1450 for authenticating and activating the wireless communication disposable authenticator function provided in the present invention), and when the wireless communication disposable authenticator function is activated, the transmission target among two or more authentication code index information stored in the memory unit 1440. Index identification unit 1455 for verifying the authentication code index information, and confirms the unique information of the radio terminal 1400 for the radio terminal 1400, and the authentication code index information and the radio terminal 1400 unique information A security processing unit 1465 that encrypts or changes the data structure to securely transmit the data to the authentication server 1485, and the secured transmission target authentication code. And a transmitter 1460 which transmits index information and unique information of the radio terminal 1400 to the authentication server 1485 through the radio processor 1430. The security processor according to the intention of a person skilled in the art 1465 may be omitted.

According to the embodiment of the present invention, the security processing unit 1465 may be included in the functional configuration shown in FIG. 1, whereby the present invention is not limited thereto.

When user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal 1400 is input through the information input unit 1445, the authentication processing unit 1450 may operate the information input unit 1445. Characterize and activate the wireless communication disposable authenticator function provided in the wireless terminal 1400 based on the user authentication information input through.

When the authentication server 1485 receives and authenticates the user authentication information according to an embodiment of the present invention, the authentication processing unit 1450 is connected to the wireless processing unit 1430 through the information input unit 1445. The user authentication information input is transmitted to the authentication server 1485, and user authentication result information for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal 1400 is received from the authentication server 1485. It is desirable to.

According to another exemplary embodiment of the present invention, when authenticating the user authentication information through an IC chip (or USIM) provided in the wireless terminal 1400, the authentication processor 1450 is the IC chip reader 1435. The wireless terminal 1400 provides the user authentication information input through the information input unit 1445 to the IC chip (or USIM) in association with the wireless terminal 1400 from the IC chip (or USIM). It is preferable to receive a user authentication result for authenticating and activating the existing function.

According to another exemplary embodiment of the present invention, when the wireless terminal 1400 authenticates the user authentication information, the authentication processing unit 1450 may input the user authentication information and the memory input through the information input unit 1445. The user authentication information (not shown) stored in the unit 1440 may be compared to confirm (or generate) a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal 1400.

According to another embodiment of the present invention, the function of authenticating the user authentication information is based on the type of the user authentication information (for example, password, ID / PW, etc.) authentication server 1485 (or separate user authentication server) Preferably, the authentication processor 1450 transmits the user authentication information to the authentication server 1485 (or a separate user authentication server), and the authentication server 1485 (or a separate user). It is possible to receive, read and activate the authentication result of the user authentication information from the authentication server. The authentication function of the authentication processing unit 1450 as described above may be provided in the authentication processing related function configuration shown in FIG. 1, and thus the present invention is not limited thereto.

If the wireless communication disposable authenticator function provided in the wireless terminal 1400 is activated on the basis of the user authentication information, the index checker 1455 of the at least two authentication code index information stored in the memory unit 1440. Characterized in that any one of the transmission target authentication code index information, characterized in that the transmission target authentication code index information is randomly selected and confirmed from two or more authentication code index information stored in the memory unit 1440, or It is preferable to select and confirm according to the set authentication code index information selection policy.

If the transmission target authentication code index information is confirmed by the index checking unit 1455, the security processing unit 1465 checks the unique information of the wireless terminal 1400 for the wireless terminal 1400, and the transmission target authentication code. And index information and unique information of the wireless terminal 1400 for secure delivery to the authentication server 1485. The key for encryption is stored in the memory unit 1440 or in the USIM. It is preferable to be.

Alternatively, the security processing unit 1465 may transmit the authentication target authentication code index information and the wireless terminal 1400 unique information to the authentication server 1485 to securely transmit the authentication target authentication code index information and the wireless terminal 1400 unique information. It is preferred that the data structure of the data structure is changed, and the data structure change method includes a preset method or an arbitrarily set method.

According to the exemplary embodiment of the present invention, the security processing unit 1465 recombines (or arranges) the data combination (or arrangement) of the transmission target authentication code index information and the wireless terminal 1400 unique information according to a preset method or a predetermined method. Rearrangement), and when the transmission target authentication code index information and the radio terminal 1400 unique information are recombined (or rearranged) according to any combination (or arrangement) method, the security processing unit 1465 may The original data of the original transmission target authentication code index information and the unique information of the wireless terminal 1400 in the authentication server 1485 in the recombined (or rearranged) transmission target authentication code index information and the wireless terminal 1400 unique information. It is desirable to include data recovery information (eg, an identifier (or index) identifying a recombination (or rearrangement) scheme) for restoring the structure.

Here, the data recombination (or rearrangement) of the transmission target authentication code index information and the radio terminal 1400 unique information may be recombined in nibble units, specific digit units, byte units, word units, or specific block units. (Or rearrangement) is preferred.

According to an embodiment of the present invention, the security processing unit 1465 may selectively secure any one of the transmission target authentication code index information and the wireless terminal 1400 unique information, and the present invention provides the security. It is clearly to be understood that this includes all changeable implementation methods for the treatment.

When the transmission target authentication code index information and the wireless terminal 1400 unique information are encrypted or the data structure is changed by the security processing unit 1465, the transmission unit 1460 transmits the secure transmission target authentication code index. The information and the unique information of the wireless terminal 1400 may be transmitted to the authentication server 1485 through the wireless processing unit 1430.

The authentication server 1485 that has received the transmission target authentication code index information and the unique information of the wireless terminal 1400, performs wireless communication with the wireless terminal 1400 through the authentication code index information and the unique information of the wireless terminal 1400. If it is approved to use as an authenticator and the use of the wireless terminal 1400 as a wireless communication disposable authenticator is approved, the disposable authentication code generation information corresponding to the authentication code index information (or second partial one-time authentication code generation information) ) Is confirmed (or generated) and transmitted to the wireless terminal 1400.

Referring to FIG. 14, the wireless terminal 1400 performs the authentication code index information from the authentication server 1485 in cooperation with the wireless processing unit 1430 to implement a one-time authentication code through the authentication code index information. It characterized in that it comprises a receiving unit 1470 for receiving the one-time authentication code generation information (or second partial one-time authentication code generation information) corresponding to the.

When the authentication server 1485 is approved to use the wireless terminal 1400 as a wireless communication disposable authenticator, the receiving unit 1470 is linked with the wireless processing unit 1430 from the authentication server 1485 the authentication code index And receiving one-time authentication code generation information corresponding to the information, and if the first partial one-time authentication code generation information is stored in the memory unit 1440, corresponding to the authentication code index information from the authentication server 1485. Preferably, the second partial one-time authentication code generation information is received.

According to an embodiment of the present invention, the one-time authentication code generation information (or second partial one-time authentication code generation information) may be encrypted in the authentication server 1485, or the data structure may be changed and transmitted. The security processor 1465 preferably decrypts the secured one-time authentication code generation information (or second partial one-time authentication code generation information) or restores the original data structure.

Referring to FIG. 14, the wireless terminal 1400 generates one-time authentication code generation information secured from the authentication server 1485 (or second partial one-time authentication) to implement a one-time authentication code through the authentication code index. When the code generation information is received or decrypted (or restored), the one-time authentication code generation information (or the first partial one-time authentication code generation information and the second partial one-time authentication code generation information stored in the memory unit 1440). The authentication code generation unit 1475 for generating an N-digit one-time authentication code N through the identification (or generation) of the one-time authentication code generation information) and the generated one-time authentication in connection with the screen output unit 1410. An output processor 1480 for outputting the code N is provided.

When one-time authentication code generation information is received from the authentication server 1485 according to one embodiment of the present invention, the authentication code generation unit 1475 converts the received one-time authentication code generation information into a one-time authentication code (N). Using as a seed value to generate (Seed Value) is characterized in that for generating a one-time authentication code (N) of N digits according to a predetermined one-time authentication code generation standard.

When the second partial one-time authentication code generation information is received from the authentication server 1485 according to another exemplary embodiment of the present invention, the authentication code generation unit 1475 stores the first partial one-time stored in the memory unit 1440. Combination (or concatenation) of authentication code generation information and second one-time authentication code generation information to generate one-time authentication code generation information corresponding to the seed value for generating the one-time authentication code (N), or the first partial disposable Confirm the second one-time authentication code generation information through the authentication code generation information as a seed value for generating the one-time authentication code (N), and the generated (or confirmed) the one-time authentication code generation information is a one-time authentication code (N) Characterized by generating a one-time authentication code (N) of N digits in accordance with a predetermined one-time authentication code generation standard using the seed value (Seed Value) for generating a do.

If the first partial one-time authentication code generation information stored in the memory unit 1440 is stored, the authentication code generation unit 1475 is N-digit one-time authentication code (N) through the first partial one-time authentication code generation information Generate a one-time authentication code (n) of n (1 <= n <N) digits, and generate a (Nn) one-time authentication code (Nn) through the received second partial one-time authentication code generation information, By combining (or concatenating) the one-time authentication code (n) and the one-time authentication code (Nn) it is possible to generate an N-digit single-use authentication code (N), by which the present invention is not limited.

When the N-digit one-time authentication code N is generated by the authentication code generator 1475, the output processor 1480 is connected to the screen output unit 1410 and generates the N-digit one-time authentication code ( N) is output to a predetermined area on the screen of the wireless terminal 1400.

According to an exemplary embodiment of the present invention, the output processor 1480 outputs a one-time authentication code output screen on the screen of the wireless terminal 1400 in connection with the screen output unit 1410, and the one-time authentication code output screen. It is preferable to output the generated N-digit one-time authentication code (N).

According to another exemplary embodiment of the present invention, the output processor 1480 outputs the one-time authentication code output area to the screen area currently output on the screen of the wireless terminal 1400 in association with the screen output unit 1410 (or Assigning), and outputting the generated N-digit one-time authentication code (N) to the one-time authentication code output area.

According to another exemplary embodiment of the present invention, when the wireless terminal 1400 is provided with a short range communication unit (not shown), and the short distance communication channel is connected to the authentication request terminal located at a short distance through the short range communication unit, the wireless terminal ( 1400 is capable of outputting the N-digit one-time authentication code (N) to the authentication request terminal through the short-range communication unit, whereby the present invention is not limited.

15 is a diagram illustrating an information registration system for registering wireless terminal registration information to implement a one-time authentication code through an authentication code index according to another embodiment of the present invention.

In more detail, Figure 15 is an information registration system for using a customer wireless terminal as a wireless one-time authentication device that implements a one-time authentication code through the authentication code index wireless terminal registration including one or more customer information, wireless terminal information and carrier information When the information is provided, the information registration system is a wireless one-time use authenticator to implement a one-time authentication code through the authentication code index to the customer wireless terminal based on the customer information, wireless terminal information and carrier information included in the wireless terminal registration information Identifying (or generating) unique information of the customer's wireless terminal for authenticating use, and linking and processing the customer information, the unique information of the wireless terminal, and the communication company information, the storage medium 1545 (for example, a financial ledger provided to a financial company, or Authentication through the database linked with the financial ledger and one-time authentication code System configuration for registering to a storage medium (1545) including one or more databases provided in the processing system, and a person skilled in the art to which the present invention pertains can refer to FIG. 15 and / or Various implementation methods for the information registration system configuration may be inferred by modification, but the present invention includes all the implementation methods inferred, and is not limited to the implementation method shown in FIG.

Hereinafter, the wireless terminal registration information provided from the customer on the information registration system shown in FIG. 15 is stored in the storage medium 1545 (eg, the financial ledger provided to the financial company, or the database associated with the financial ledger, and the one-time authentication code). A component corresponding to one or more means and / or functional configurations for storing in a storage medium 1545 including one or more databases provided in a system for processing authentication is referred to as "information registration server 1500" for convenience. .

Referring to FIG. 15 according to an embodiment of the present invention, the information registration system includes a client terminal including one or more window terminals 1555 provided at one or more financial institution branches, a wired terminal or a wireless terminal used by the customer. And an information registration terminal 1560 including any one of the above. The information registration terminal 1560 is an information registration server 1500 provided on the information registration system through a financial network (or a communication network). ) And the communication channel are connected.

According to an embodiment of the present invention, the customer visits the financial institution branch, and at least one application for registering the wireless terminal registration information through a window (or through a teller) provided at the financial institution branch ( For example, when a document having a form for filling out one or more information items is prepared and the completed application is submitted to a teller, the teller enters the information written in the request through the teller terminal 1555 ( Or), and the window terminal 1555 transmits the input (or selected) information to the information registration server 1500 provided on the information registration system through the financial network.

Here, the teller terminal 1555 preferably comprises an employee terminal used by a teller employee provided at the financial institution branch, and the information registration server 1500 connected to the teller terminal 1555 is located on the financial system. It is preferable to include a server (for example, an information system), and the financial network connecting the window terminal 1555 and the information registration server 1500 communicates between the window terminal 1555 and the information registration server 1500. It is preferable to include a network for connecting the channels.

According to another exemplary embodiment of the present invention, the customer accesses the information registration server 1500 through at least one client terminal of a wired terminal connected to a wired communication network or a wireless terminal connected to a wireless communication network, and the information registration server 1500 When the wireless terminal registration information is input (or selected) through one or more information registration interfaces provided by), the wireless terminal registers from the client terminal to the information registration server 1500 provided on the information registration system through a communication network. It is desirable to transmit the information.

Here, a wired terminal connected to a wired communication network is a general term for all terminal devices connected to a TCP / IP based communication network, and a desktop computer or a notebook computer connected to the TCP / IP based communication network. ), Or a home appliance terminal (eg, a set-top-box) connected to the TCP / IP based communication network, or a kiosk connected to the TCP / IP based communication network. .

In addition, a wireless terminal connected to a wireless communication network is any terminal device connected to a CDMA-based mobile communication network, all terminal devices connected to an IEEE 802.16x-based mobile Internet, or a generic term connected to an HSDPA-based wireless data communication network. As one or more embodiments, a mobile phone connected to the CDMA-based mobile communication network, a mobile Internet terminal connected to the IEEE 802.16x-based mobile Internet, or a wireless communication terminal connected to the HSDPA-based wireless data communication network may be included.

According to an embodiment of the present invention, the client terminal outputs one or more information registration interfaces provided by the information registration server 1500, and receives one or more information constituting the wireless terminal registration information through the information registration interface. A function configuration (for example, a browser program and a communication function, or a communication program and a communication function communicating with the information registration server 1500, etc.) for inputting (or selecting) and transmitting to the information registration server 1500 is provided. It is preferable.

According to another exemplary embodiment of the present invention, the information registration terminal 1560, in addition to the teller terminal 1555 to the client terminal, a cash automatic teller machine connected to a financial network (for example, a financial common network); Call terminals connected to wired telephone networks such as ATMs, ATMs, Cash Dispenser (CD), Public Switched Telephone Network (PSTN) and Voice over IP (VoIP) networks ( (Not shown), a communication terminal (not shown) connected to a wireless telephone network such as a mobile communication network, a wireless VoIP network, and one or more terminals (or servers) (not shown) provided in one or more affiliated institutions affiliated with the financial institution. In this regard, the present invention is not limited thereto.

The information registration server 1500 provided on the information registration system is a one-time authentication code authentication system side information registration component shown in FIG. 21 connected to the information registration terminal 1560 through a financial network (or a communication network). Collectively, at least one server (or device) provided at a financial institution, or at least one server (or device) included in a system for processing authentication through a one-time authentication code, or a recording medium provided at the server (or device). It may be implemented by one or more programs recorded in the present invention, whereby the present invention is not limited. According to the embodiment of the present invention, the information registration server 1500, the wireless terminal unique information to be used as a wireless communication disposable authenticator, and the one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless communication disposable authenticator (or It is preferable to perform the function of the information registration means for storing in the storage medium 1545 in association with the authentication code index information.

According to the embodiment of the present invention, the information registration server 1500 is provided with an interface unit 1505 for connecting and managing a communication channel with the information registration terminal 1560 through the financial network (or communication network). It features.

According to an embodiment of the present invention, when the information registration terminal 1560 is a window terminal 1555 connected to a financial network, the interface unit 1505 is based on the protocol stack defined in the financial network. It is preferable to provide a communication interface for connecting one or more communication channels with one or more information (or data) using a communication protocol defined in a financial transaction related program included in the window terminal 1555.

According to another exemplary embodiment of the present invention, when the information registration terminal 1560 is a client terminal including a wired terminal connected to a wired communication network, the interface unit 1505 is based on a protocol stack defined in the wired communication network. It is preferable to connect a communication channel with the client terminal, and to provide a communication interface for transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal.

For example, when the client terminal is provided with a browser program corresponding to the Hyper-Text Transfer Protocol (HTTP) protocol, the interface unit 1505 connects a communication channel with the client terminal based on the TCP / IP protocol, Using the HTPP protocol defined in the browser program, a web page (eg, a Hyper-Text Markup Language (HTML) compatible web page) or a communication interface for transmitting and receiving information is provided.

Alternatively, when the client terminal is provided with a communication program for communicating with the information registration server 1500, the interface unit 1505 connects a communication channel with the client terminal based on the TCP / IP protocol, Provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in a communication program.

Alternatively, when the information registration terminal 1560 is a client terminal including a wireless terminal connected to a wireless communication network, the interface unit 1505 establishes a communication channel with the client terminal based on a protocol stack defined in the wireless communication network. It is preferable to provide a communication interface for connecting and transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal.

For example, when the client terminal is provided with a browser program corresponding to a WAP (Wireless Application Protocol) to the HTTP protocol, or a wireless protocol compatible with the WAP / HTTP, the interface unit 1505 is a radio provided in the wireless communication network. Connect a communication channel with the client terminal based on a communication protocol, and use a WAP / HTTP protocol (or a WAP / HTTP compatible protocol) defined in the browser program to connect a wireless web page (e.g., an HTML compatible web page or WML (Wireless). Markup Language) or communication interface for transmitting and receiving information.

Alternatively, when the client terminal is provided with a communication program for communicating with the information registration server 1500, the interface unit 1505 connects a communication channel with the client terminal based on the wireless communication protocol, and the communication Provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in the program.

Referring to FIG. 15, in the information registration server 1500, the information registration terminal 1560 connects a communication channel with the information registration server 1500 through the interface unit 1505, and through the communication channel. When requesting registration of wireless terminal registration information, an information registration interface is generated (or extracted) to transmit (or select) wireless terminal registration information from the information registration terminal 1560 in cooperation with the interface unit 1505. Characterized in that it is provided with an interface providing unit 1510 provided to the information registration terminal 1560.

The interface providing unit 1510 connects a communication channel with the information registration server 1500 through the interface unit 1505 and requests registration of wireless terminal registration information through the communication channel. Information registration for inputting (or selecting) the wireless terminal registration information to the information registration server 1500 via the financial network (or communication network) by using the function configuration provided in the information registration terminal 1560. Create an interface or extract from a database (not shown), and the information registration interface 1560 via the financial network (or communication network) the information registration interface generated (or extracted) in conjunction with the interface unit 1505. It is characterized by providing in).

If a program having one or more information registration interfaces for inputting (or selecting) the wireless terminal registration information to the information registration terminal 1560 and transmitting the information to the information registration server 1500 through the financial network (or communication network) In the case where the interface providing unit 1510 provides the information registration interface to the information registration terminal 1560, the function of the interface providing unit 1510 may be omitted, and the present invention is not limited thereto.

Thereafter, the information registration terminal 1560 inputs (or selects) wireless terminal registration information including one or more of the customer information, wireless terminal information, and communication company information based on the information registration interface, and inputs (or selects) the information. The wireless terminal registration information is transmitted to the information registration server 1500 through the financial network (or a communication network).

Referring to FIG. 15, when the information registration server 1500 inputs (or selects) and transmits radio terminal registration information through the information registration interface, the information registration terminal 1500 transmits the information to the interface unit 1505. An information receiving unit 1515 for receiving wireless terminal registration information including at least one of the customer information, the wireless terminal information, and the telecommunication company information, and reading the received wireless terminal registration information to generate an authentication code index. Validation unit for checking the validity of the wireless terminal for use as a wireless one-time authenticator to implement a one-time authentication code through; and for authenticating a wireless terminal to be used as a wireless one-time authenticator from the validated wireless terminal registration information A wireless terminal unique information verification / generation unit 1520 for identifying (or generating) unique wireless terminal information, and the customer information. A storage medium 1545 (e.g., a financial ledger provided to a financial company, a database linked to the financial ledger, or a database provided in a system for processing authentication through a one-time authentication code) by linking and processing unique terminal information and communication company information. And an information storage unit 1535 stored in the storage medium 1545 including the above.

When the information registration terminal 1560 inputs (or selects) and transmits wireless terminal registration information through the information registration interface, the information receiving unit 1515 cooperates with the interface unit 1505 and the customer information and the wireless terminal. And receiving wireless terminal registration information including one or more information and communication company information.

The customer information includes one or more personal information of the customer (eg, name, social security number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in the storage medium 1545. It is preferable.

According to an embodiment of the present invention, when the storage medium 1545 is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through a customer ledger registered in the financial ledger. Preferably, the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes information of a communication company server 1550 provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

When the wireless terminal registration information is received, the validity check unit 1540 reads the received wireless terminal registration information and wireless for use as a wireless communication one-time authenticator to implement a one-time authentication code through a customer wireless terminal authentication code index It is characterized by checking the validity of the terminal.

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

In addition, the validity check of the wireless terminal, by providing the customer information and wireless terminal information to the communication company server 1550 corresponding to the carrier information (or wireless terminal information) based on the customer information, wireless terminal information and carrier information. Preferably, the communication service provider includes the subscriber information including the customer information and the wireless terminal information.

When the validity of the wireless terminal is confirmed, the wireless terminal unique information checking / generating unit 1520 implements the one-time authentication code for the customer wireless terminal through an authentication code index based on the wireless terminal information included in the wireless terminal registration information. Identifying the unique information of the wireless terminal for authenticating the use of the wireless communication disposable authenticator, or generating the unique information of the wireless client.

According to an embodiment of the present invention, the wireless terminal unique information verification / generation unit 1520 is a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (mounted on the wireless terminal) Universal Subscriber Identity (Ultra Subscriber Identity), a terminal serial number (e.g., an ESN (Electronic Serial Number)) assigned to the wireless terminal, wireless terminal information including one or more wireless terminal opening number through the authentication code index of the customer wireless terminal It is preferable to confirm the unique information of the customer wireless terminal for authenticating the use of the wireless communication disposable authenticator to implement the one-time authentication code as the unique information of the wireless terminal.

Alternatively, the unique identification information / generation unit 1520 is a unique combination generated by combining one or more of the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal opening number (one or more) It is preferable to generate a number and to process the customer wireless terminal as unique information for authenticating the use of the customer wireless terminal as a wireless communication disposable authenticator implementing a one-time authentication code through an authentication code index.

Thereafter, the information storage unit 1535 associates the customer information included in the wireless terminal registration information with the identified (or generated) wireless terminal unique information and the communication company information and is provided in the storage medium 1545 (eg, in a financial company). The financial ledger, or a database associated with the financial ledger, a storage medium 1545 including one or more databases provided in a system for processing authentication through a one-time authentication code).

According to an embodiment of the present invention, when the storage medium 1545 is a financial ledger, the customer information is included in the customer ledger, and the unique information of the wireless terminal and the telecommunication company information are in the form of additional information ledger associated with the customer ledger. It is preferable to register in the ledger D / B.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, The information storage unit 1535 preferably further stores the user authentication information in the storage medium 1545 (not shown), and the present invention is not limited thereto.

Referring to FIG. 15, the information registration server 1500 may verify (or generate) two or more pieces of authentication code index information to be associated with the unique information of the wireless terminal when the unique information of the wireless terminal is confirmed (or generated). An information storage unit 1535 for storing the code index information checking / generating unit 1525 and the wireless terminal unique information and two or more identification code index information identified (or generated) in the storage medium 1545. It is characterized by further comprising.

When the unique information of the wireless terminal is confirmed (or generated), the authentication code index information checking / generating unit 1525 may manage the authentication code index so that two or more pieces of authentication code index information to be associated with the unique information of the wireless terminal do not overlap. / B (not shown) is characterized in that for generating two or more new authentication code index information that is not duplicated or confirmed, or duplicated with the previously confirmed (or generated) authentication code index, the information storage unit 1535 The wireless terminal may store the unique information of the wireless terminal stored in the storage medium 1545 and the identification (or generation) of two or more authentication code index information in association with each other.

Referring to FIG. 15, the information registration server 1500 registers two or more one-time authentication code generation information for using the customer wireless terminal as a wireless communication disposable authenticator in advance with each other in association with two or more authentication code index information. If so, the one-time authentication code generation information confirmation / generation unit 1530 for identifying (or generating) two or more one-time authentication code generation information to be linked to each of the two or more authentication code index information to be linked, and the two or more authentication codes And an information storage unit 1535 for storing in the storage medium 1545 the index information and the identified one-time authentication code generation information in association with each other.

In the case where two or more one-time authentication code generation information for using the customer wireless terminal as a wireless communication disposable authenticator is registered in the ledger in association with two or more authentication code index information, respectively, the one-time authentication code generation information checking / generating unit ( 1530, when the customer wireless terminal is used as a wireless communication disposable authenticator, the number of times from the one-time authentication code generation information management D / B (not shown) so as not to duplicate the two or more disposable authentication code generation information to be provided to the customer wireless terminal; Or to generate two or more new one-time authentication code generation information that does not overlap with the previously verified (or generated) authentication code index, and the information storage unit 1535 may be configured in the storage medium 1545. Stored two or more authentication code index information (or radio terminal specific information) and the identification (or generation) The authentication code index information is characterized by storing in association with each.

According to another exemplary embodiment of the present invention, when the one-time authentication code generation information corresponding to the two or more authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the two or more authentications are performed. A function configuration for identifying (or generating) two or more single-use authentication code generation information associated with code index information and storing the information on the storage medium 1545 may be omitted, and the present invention is not limited thereto.

16 is a diagram illustrating a process of registering wireless terminal registration information according to another embodiment of the present invention.

In more detail, in FIG. 16, when a program having an information registration interface is provided in the information registration terminal shown in FIG. 15, the information registration terminal drives the program to include customer information, wireless terminal information, and communication company information. When inputting (or selecting) and transmitting the wireless terminal registration information including the above, the customer for authenticating the use of the customer wireless terminal as a wireless one-time authentication using a one-time authentication code through the authentication code index through the wireless terminal registration information Identifying (or generating) unique information of the wireless terminal, and storing the customer information, the unique information of the wireless terminal and the carrier information in association with the storage medium, authentication code index information associated with the unique information of the wireless terminal, the authentication code index information Further check (or generate) the one-time authentication code generation information associated with the storage As for the process of storing the body, for example, if the information registering terminal to the service area terminal, showing the exemplary method for registering the mobile station registration information through the window terminal.

Those skilled in the art will be able to infer various implementation methods for registering the wireless terminal registration information by referring to and / or modifying this figure 16, but the present invention is inferred from all It includes an implementation method and is not limited to the implementation method shown in FIG.

For example, when one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is checked (or generated). The process of storing in the storage medium can be omitted, whereby the present invention is not limited.

Hereinafter, in FIG. 16, the information registration terminal shown in FIG. 15 is called "terminal" for convenience, and the information registration server shown in FIG. 15 is called "server" for convenience.

Referring to FIG. 16, a terminal equipped with a program having the information registration interface authenticates an information registration authority (eg, a clerk's authority) by connecting a communication channel with the server, and the customer information, wireless terminal information, and a communication company. An information registration interface for inputting (or selecting) wireless terminal registration information including one or more information is output (1600).

Thereafter, the terminal inputs (or selects) wireless terminal registration information including one or more customer information, wireless terminal information, and communication company information through the information registration interface (1605).

If the terminal receives (or selects) wireless terminal registration information including the customer information, the wireless terminal information, and the carrier information through the information registration interface (1610), the terminal receives the input through the information registration authority ( Or (1615) wireless terminal registration information including the selected customer information, wireless terminal information, and carrier information.

Preferably, the customer information includes one or more personal information of the customer (eg, name, social security number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in a storage medium. .

According to an embodiment of the present invention, when the storage medium is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through the customer ledger registered in the financial ledger. It is preferable that the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes communication company server information provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

Thereafter, the server receives and reads wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the carrier information to confirm the validity of the wireless terminal (1620).

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

The wireless terminal validity check may be performed by providing the customer information and the wireless terminal information to a communication company server corresponding to the communication company information (or wireless terminal information) based on the customer information, the wireless terminal information, and the communication company information. It is preferable to include whether the subscriber information including the customer information and the wireless terminal information is subscribed to.

If the validity of the wireless terminal is not authenticated (1625), the server generates information registration error information and transmits it to the terminal (1630), and does not perform the wireless terminal registration information registration procedure.

On the other hand, if the validity of the wireless terminal is authenticated (1625), the server uses the customer wireless terminal as a one-time wireless communication one-time authenticator to implement the one-time authentication code through the authentication code index based on the wireless terminal information included in the wireless terminal registration information. The client wireless terminal unique information for authenticating the information is confirmed, or the unique information of the customer wireless terminal is generated (1635).

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the unique information of the wireless terminal is confirmed (or generated) (1640), the server stores and stores the customer information included in the wireless terminal registration information in association with the confirmed (or generated) wireless terminal unique information and the carrier information. Store on the medium (1645).

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the server further stores the user authentication information in the storage medium (not shown), and the present invention is not limited thereto.

In addition, the server checks (or generates) two or more authentication code index information associated with the unique information of the wireless terminal, and two or more one-time authentication code generation information respectively associated with the two or more authentication code index information (1650), After storing the unique information of the wireless terminal and authentication code index information in association with the storage medium, and storing the authentication code index information and one-time authentication code generation information in association with the storage medium (1655), information registration history information By generating and transmitting to the terminal (1660), the registration procedure for the wireless terminal registration information is completed.

17 is a diagram illustrating a process of registering wireless terminal registration information according to another embodiment of another embodiment of the present invention.

In more detail, in FIG. 17, when the information registration terminal shown in FIG. 15 connects a communication channel with the information registration server shown in FIG. 15 through a communication network, and requests registration of the wireless terminal registration information, the information registration server Provides an information registration interface for inputting (or selecting) wireless terminal registration information including one or more of the customer information, wireless terminal information, and carrier information to the information registration terminal, and wherein the information registration interface is provided through the information registration interface. When the wireless terminal registration information including one or more of the customer information, the wireless terminal information and the carrier information is input (or selected) and transmitted, the information registration server transmits the customer wireless terminal through the authentication code index through the wireless terminal registration information. Wireless authentication to implement the one-time authentication code for authentication to use as a one-time authenticator Identifying (or generating) unique information of the customer's wireless terminal, and storing the customer information, the wireless terminal's unique information and the carrier information in a storage medium in association with the authentication information, the authentication code index information associated with the wireless terminal's unique information, the authentication code index The method relates to a process of further confirming (or generating) one-time authentication code generation information associated with the information and storing the information on the storage medium. For example, when the information registration terminal is a client terminal, The implementation method of registering terminal registration information is shown.

Those skilled in the art to which the present invention pertains will be able to infer various implementation methods for registering the wireless terminal registration information by referring to and / or modifying the drawing 17, but the present invention is inferred from all It includes an implementation method and is not limited to the implementation method shown in FIG.

For example, when one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is checked (or generated). The process of storing in the storage medium can be omitted, whereby the present invention is not limited.

Hereinafter, in FIG. 17, the information registration terminal shown in FIG. 15 is called "terminal" for convenience, and the information registration server shown in FIG. 15 is called "server" for convenience.

Referring to FIG. 17, when the terminal requests a wireless terminal registration information registration by connecting a communication channel with the server (1700), the server may display a web page including an information registration interface for registering the wireless terminal registration information. It generates (or extracts) (1705) and transmits and outputs a web page including the information registration interface to the terminal through the communication channel (1710).

Thereafter, the terminal inputs (or selects) wireless terminal registration information including one or more customer information, wireless terminal information, and carrier information through the information registration interface (1715).

If the terminal receives (or selects) wireless terminal registration information including the customer information, the wireless terminal information, and the carrier information through the information registration interface (1720), the terminal receives the input through the information registration authority ( Alternatively, the wireless terminal registration information including the selected customer information, wireless terminal information, and carrier information is transmitted to the server (1725).

Preferably, the customer information includes one or more personal information of the customer (eg, name, social security number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in a storage medium. .

According to an embodiment of the present invention, when the storage medium is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through the customer ledger registered in the financial ledger. It is preferable that the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes communication company server information provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further comprises user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

Thereafter, the server receives and reads wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the carrier information to confirm the validity of the wireless terminal (1730).

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

The wireless terminal validity check may be performed by providing the customer information and the wireless terminal information to a communication company server corresponding to the communication company information (or wireless terminal information) based on the customer information, the wireless terminal information, and the communication company information. It is preferable to include whether the subscriber information including the customer information and the wireless terminal information is subscribed to.

If the validity of the wireless terminal is not authenticated (1735), the server is a wireless one-time use authenticator that implements the one-time authentication code through the authentication code index based on the wireless terminal information included in the wireless terminal registration information. The unique information of the customer wireless terminal for authenticating the use of the wireless terminal is confirmed, or the unique information of the customer wireless terminal is generated (1745).

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the unique information of the wireless terminal is confirmed (or generated) (1750), the server stores the customer information included in the wireless terminal registration information and the wireless terminal unique information and the communication company information in association with the confirmed (or generated) Store in media (1755).

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the server further stores the user authentication information in the storage medium (not shown), and the present invention is not limited thereto.

In addition, the server checks (or generates) two or more authentication code index information associated with the unique information of the wireless terminal, one-time authentication code generation information associated with each of the two or more authentication code index information (1760), and the wireless terminal. The unique information and the authentication code index information are stored in the storage medium in association with each other, and the authentication code index information and the one-time authentication code generation information are stored in the storage medium in association with each other (1765).

18 is a diagram illustrating a configuration of an authentication code index providing system according to another exemplary embodiment of the present invention.

In more detail, FIG. 18 shows unique information of the customer wireless terminal 1835 for authenticating the use of the customer wireless terminal 1835 as a wireless communication disposable authenticator to the storage medium 1830 through the information registration system shown in FIG. And after two or more pieces of authentication code index information are registered, a system configuration for providing the two or more pieces of authentication code index information to the wireless terminal 1835 corresponding to the unique information of the customer wireless terminal 1835 is provided. Those skilled in the art may refer to and / or modify this drawing 18 to implement various methods of implementing the authentication code index providing system (for example, some components may be omitted, subdivided, or combined). Method) may be inferred, but the present invention includes all implementation methods inferred, as shown in FIG. Only exemplary method is not limited that technical feature.

Hereinafter, one or more means for providing the two or more pieces of authentication code index information to the customer wireless terminal 1835 on the index providing system shown in FIG. 18 and / or a component corresponding to the functional configuration may be referred to as an "index providing server ( 1800).

Referring to FIG. 18 according to an embodiment of the present invention, the authentication code index providing system receives the two or more authentication code index information, and uses a wireless terminal 1835 and a wireless communication network to be used as the wireless communication disposable authenticator. Communication with the wireless terminal 1835 is confirmed through the information registration system shown in FIG. 15 to identify the unique information and the two or more authentication code index information of the wireless terminal 1835 registered in the storage medium 1830, It characterized in that it comprises an index providing server 1800 for providing the at least two pieces of authentication code index information to the customer terminal through a wireless communication network.

The wireless terminal 1835 to be used as the wireless communication disposable authenticator includes a memory for storing two or more authentication code index information provided from the index providing server 1800 and the wireless terminal 1835 as a wireless disposable communication authenticator. Providing the transmission target authentication code index information of any two or more authentication code index information stored in the memory through a communication network to the one-time authentication code authentication system shown in Figure 21, the wireless terminal 1835 in the one-time authentication code authentication system ) Is approved for use as a wireless communication one-time authenticator, and then transmits the one-time authentication code generation information (or first partial one-time authentication code generation information including a part of the one-time authentication code generation information) corresponding to the authentication code index information. The one-time authentication code generation information through the wireless communication network. And a wireless communication terminal having a function of generating a one-time authentication code (N) having N (N> = 2) digits through the received one-time authentication code generation information (or a part of the one-time authentication code generation information). As a generic term, a detailed description of the radio terminal 1835 function configuration will be made with reference to FIG. 14.

The index providing server 1800 provided on the authentication code index providing system is a one-time authentication code authentication system side authentication code shown in FIG. 21 connected to a wireless terminal 1835 to be used as the wireless communication disposable authenticator and a wireless communication network. Collectively, the index-providing component may include one or more servers (or devices) in a financial institution, or one or more servers (or devices) in a system that processes authentication through a one-time authentication code, or the servers (or devices). It may be implemented by one or more programs recorded on the recording medium provided in the, by which the invention is not limited.

Referring to FIG. 18, the index providing server 1800 checks a radio terminal 1835 confirmation unit 1805 (or a radio terminal 1835) for confirming unique information of the radio terminal 1835 to be used as the radio communication disposable authenticator. Means) and an authentication code index information verification unit 1810 for identifying at least two pieces of authentication code index information to be provided to the wireless terminal 1835 corresponding to the unique information of the wireless terminal 1835 in association with the storage medium 1830. (Or authentication code index information checking means) and a wireless communication network connected to the wireless terminal 1835 (for example, a wireless communication network corresponding to carrier information stored in the storage medium 1830), to be used as the wireless one-time use authenticator. And an authentication code index information providing unit 1815 (or authentication code index information providing means) for providing the at least two pieces of authentication code index information identified by the wireless terminal 1835. When the unique information of the wireless terminal 1835 is not stored in the wireless terminal 1835 (for example, the unique information of the wireless terminal 1835 is the wireless terminal 1835 telephone number and a UICC / USIM sequence). A unique combination number generated by combining one or more of a number, a terminal serial number, and a whole (or part) of a wireless terminal 1835 opening number), and unique information of the wireless terminal 1835 to the wireless terminal 1835. It is characterized in that it further comprises a wireless terminal 1835 unique information providing unit (or wireless terminal 1835 unique information providing means) for transmitting the.

The wireless terminal 1835 confirming unit 1805 may provide authentication code index information among the unique information of the wireless terminal 1835 registered in the storage medium 1830 through the information registration system illustrated in FIG. 15. (1835) confirming the unique information, and if the unique information of the wireless terminal 1835 is confirmed, the authentication code index information verification unit 1810, in conjunction with the storage medium 1830, the wireless terminal ( 1835) identifying (or extracting) at least two pieces of authentication code index information to be provided to the wireless terminal 1835 corresponding to the unique information, and if the at least two pieces of authentication code index information are stored in the storage medium 1830 If not, the authentication code index information checking unit 1810 preferably generates two or more pieces of authentication code index information to be provided to the wireless terminal 1835 so as not to overlap.

When two or more pieces of authentication code index information to be provided to the wireless terminal 1835 are confirmed, the authentication code index information providing unit 1815 is a wireless communication network (eg, the storage medium 1830) connected to the wireless terminal 1835. The at least two authentication code index information is provided to the wireless terminal 1835 to be used as the wireless one-time authenticator through the wireless communication network corresponding to the communication company information stored in the), wherein the at least two authentication code index information Is stored in a memory unit provided in the wireless terminal 1835.

When the unique information of the wireless terminal 1835 is not stored in the wireless terminal 1835 (for example, the unique information of the wireless terminal 1835 may include the telephone number, the UICC / USIM serial number, and the terminal of the wireless terminal 1835). Or a unique combination number generated by combining one or more of a serial number, a wireless terminal 1835 opening number, or the like, and the wireless terminal 1835 provides information to the wireless terminal 1835. It is preferable to extract and transmit unique information of the wireless terminal 1835 stored in the storage medium 1830.

Referring to FIG. 18, the index providing server 1800 may include at least two pieces of authentication code index information provided to the wireless terminal 1835 corresponding to the unique information of the wireless terminal 1835 in association with the storage medium 1830. Partial one-time authentication code generation information confirmation unit 1820 (or partial one-time authentication code generation information confirmation means) for confirming the first partial one-time authentication code generation information including a part of each associated one-time authentication code generation information, and the wireless Generate the confirmed one-time authentication code to the wireless terminal 1835 to be used as the wireless one-time authenticator through a wireless communication network (for example, a wireless communication network corresponding to the carrier information stored in the storage medium 1830) connected to the terminal 1835. Partial one-time authentication code generation information providing unit 1825 (or partial one-time providing for providing the first partial one-time authentication code generation information including a portion of the information And identification code generation information providing means), wherein the storage medium 1830 does not store one-time authentication code generation information corresponding to the two or more authentication code index information, or is illustrated in FIG. 21. When the one-time authentication code authentication system provides the entirety of the one-time authentication code generation information to the wireless terminal 1835, the first partial one-time authentication code generation information including a part of the one-time authentication code generation information, the wireless The function provided in advance to the terminal 1835 can be omitted, and the present invention is not limited thereto.

The partial one-time authentication code generation information checking unit 1820, in the storage medium 1830, when two pieces of one-time authentication code generation information corresponding to each of the at least two authentication code index information is generated and stored in advance, the storage medium 1830 Of at least two pieces of one-time authentication code generation information to be provided to the wireless terminal 1835 in advance in connection with two or more authentication code index information provided to the wireless terminal 1835 corresponding to the unique information of the wireless terminal 1835 in association with Characterizing the first partial one-time authentication code generation information including a part.

Here, the first partial one-time authentication code generation information, the one-time authentication code to provide to the wireless terminal 1835 in the one-time authentication code authentication system shown in Figure 21, when using the wireless terminal 1835 as a wireless communication disposable authenticator. A part of the generated information, the combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 1835 in the one-time authentication code authentication system shown in Figure 21, when using the wireless terminal 1835 as a wireless one-time authentication, When the wireless terminal 1835 is used as a wireless communication disposable authenticator, the one-time authentication code authentication system illustrated in FIG. 21 includes one or more verification values for verifying the one-time authentication code generation information provided to the wireless terminal 1835. It is preferable.

When the first partial one-time authentication code generation information to be pre-provided to the wireless terminal 1835 is confirmed, the partial one-time authentication code generation information providing unit 1825 is a wireless communication network (eg, connected to the wireless terminal 1835). A first partial one-time authentication code including a part of the confirmed one-time authentication code generation information to a wireless terminal 1835 to be used as the wireless one-time authentication device through a wireless communication network corresponding to the carrier information stored in the storage medium 1830 Characterized by providing the generation information, a portion of the one-time authentication code generation information is preferably stored in the memory unit provided in the wireless terminal (1835).

19 is a diagram illustrating a process of providing an authentication code index according to another embodiment of the present invention.

More specifically, FIG. 19 illustrates a process of providing two or more pieces of authentication code index information to a wireless terminal to use the wireless terminal as a wireless communication disposable authenticator in the system for providing an authentication code index shown in FIG. 18. Those skilled in the art will be able to infer various implementation methods for the authentication code index providing process by referring to and / or modifying the drawing 19, but the present invention includes all the implementation methods inferred. The technical features of the present invention are not limited only to the practical method shown in FIG.

In the following figure 19, the index providing server shown in figure 18 is referred to as " server " for convenience.

Referring to FIG. 19, the server identifies a wireless terminal to provide two or more authentication code index information corresponding to the unique information of the wireless terminal registered through the information registration system shown in FIG. 15 (1900), and the storage medium. In operation 1905, the at least two pieces of authentication code index information associated with the unique information of the radio terminal corresponding to the radio terminal to provide the at least two pieces of authentication code index information are identified.

If the radio terminal specific information is not stored in the radio terminal (for example, the radio terminal unique information is the whole (or part) of the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal opening number) In the case of including a unique combination number generated by combining one or more), it is preferable that the server further checks the unique information of the radio terminal to be provided to the radio terminal from the storage medium.

If at least two pieces of authentication code index information to be provided to the wireless terminal to be used as the one-time wireless communication authenticator are confirmed (1910), the server corresponds to a wireless communication network (for example, carrier information stored in the storage medium) to which the wireless terminal is connected. (2) providing the at least two verification code index information to the wireless terminal to be used as the wireless one-time authenticator through the wireless communication network (1915). It is preferable.

If the radio terminal specific information is not stored in the radio terminal (for example, the radio terminal unique information is the whole (or part) of the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal opening number) (C) including a unique combination number generated by combining one or more), the server further transmits the unique information of the wireless terminal to the wireless terminal, wherein the unique information of the wireless terminal is a memory provided in the wireless terminal. It is preferred to be stored in the department.

20 is a diagram illustrating a process of providing a part of one-time authentication code generation information associated with authentication code index information according to another embodiment of the present invention.

In more detail, FIG. 20 illustrates two or more one-time authentication code generation information associated with two or more authentication code index information provided to a wireless terminal to be used as the wireless communication disposable authenticator through the process of providing authentication code index information shown in FIG. 19. A process of providing two or more pieces of first partial one-time authentication code generation information corresponding to a part to the wireless terminal is illustrated, and a person having ordinary knowledge in the art to which the present invention pertains may refer to and / or see FIG. 20. By modifying it can be inferred various implementation methods for the process of providing a part of the one-time authentication code generation information associated with the authentication code index information, but the present invention comprises all the inferred implementation methods, The technical features are not limited only to the implementation method shown in FIG.

In the following figure 20, the index providing server shown in Fig. 15 is referred to as " server " for convenience.

Referring to FIG. 20, the server is associated with at least two pieces of authentication code index information provided to a wireless terminal to be used as the wireless one-time authentication through the process of providing authentication code index information shown in FIG. 19 in association with a storage medium. Two or more first partial one-time authentication code generation information corresponding to a part of the one-time one-time authentication code generation information is confirmed (2000).

Here, the first one-time authentication code generation information is a portion of the one-time authentication code generation information to be provided to the wireless terminal in the one-time authentication code authentication system shown in Figure 21, when using the wireless terminal as a wireless communication disposable authenticator, the wireless When using the terminal as a wireless communication disposable authenticator, the combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal in the one-time authentication code authentication system shown in Figure 21, when using the wireless terminal as a wireless communication disposable authenticator, Figure 21 In the one-time authentication code authentication system shown in Figure 1 preferably comprises a verification value for verifying the one-time authentication code generation information provided to the wireless terminal.

If two or more first partial one-time authentication code generation information corresponding to a portion of two or more authentication code index information provided to the wireless terminal to be used as the wireless communication one-time authentication and each of the two or more one-time authentication code generation information is confirmed (2005) The server may be configured to generate the one-time authentication code generation information that has been verified by the wireless terminal to be used as the wireless one-time authentication device through a wireless communication network (for example, a wireless communication network corresponding to communication information stored in the storage medium) to which the wireless terminal is connected. Two or more first partial one-time authentication code generation information corresponding to a part is provided (2010), and the first one-time authentication code generation information is preferably stored in a memory unit provided in the wireless terminal.

21 is a view showing a one-time authentication code authentication system configuration for implementing a one-time authentication code through the authentication code index in accordance with another embodiment of the present invention.

In more detail, after FIG. 21 approves using the wireless terminal 2160 as a wireless communication disposable authenticator through authentication code index information and wireless unique information provided from the wireless terminal 2160 shown in FIG. Providing one-time authentication code generation information (or second partial one-time authentication code generation information) corresponding to the authentication code index information to the terminal 2160 to the wireless terminal 2160, the one-time authentication code in the wireless terminal 2160 A system configuration for generating a one-time authentication code (N) having N (N> = 2) digits through generation information (or second partial one-time authentication code generation information), and authenticating the generated one-time authentication code (N) As illustrated, those of ordinary skill in the art to which the present invention pertains refer to and / or modify this drawing 21 to implement a one-time authentication code through the authentication code index. While various implementation methods (eg, some components may be omitted, subdivided, or combined) for a one-time authentication code authentication system may be inferred, the present invention includes all implementation methods inferred above, The technical features are not limited only to the implementation method shown in FIG.

Hereinafter, the authentication code index information and the wireless terminal 2160 unique information transmitted from the customer wireless terminal 2160 are received on the one-time authentication code authentication system shown in FIG. 21, and the authentication code index information and the wireless terminal ( 2160) After approving the use of the wireless terminal 2160 as a wireless communication disposable authenticator through the unique information, and providing the one-time authentication code generation information corresponding to the authentication code index information to the wireless terminal 2160, the wireless terminal A component corresponding to one or more means and / or functional configurations for authenticating the N-digit one-time authentication code N generated through the one-time authentication code generation information at 2160 is referred to as an "index providing server" for convenience.

Referring to FIG. 21 according to the embodiment of the present invention, the authentication code index providing system includes a wireless terminal 2160 to be used as the wireless communication disposable authenticator and the authentication code index transmitted from the customer wireless terminal 2160. Information and the unique information of the wireless terminal 2160, and the wireless terminal 2160 is approved for use as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal 2160, and then to the authentication code index information. After providing the corresponding one-time authentication code generation information to the wireless terminal 2160, the authentication server for authenticating the N-digit one-time authentication code (N) generated through the one-time authentication code generation information in the wireless terminal (2160) It characterized in that it comprises (2100).

The wireless terminal 2160 to be used as the wireless communication disposable authenticator stores the authentication code index information and the unique information of the wireless terminal 2160 provided through the authentication code index providing system shown in FIG. 18, and the wireless terminal 2160. Is used as a wireless communication disposable authenticator, provides the authentication code index information and the unique information of the wireless terminal 2160 to the authentication server 2100 through the wireless communication network, and the authentication server 2100 in the wireless terminal 2160 Is approved for use as a wireless communication one-time authenticator, and then transmits the one-time authentication code generation information (or second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information) corresponding to the authentication code index information. Receive the one-time authentication code generation information through the wireless communication network, and receives the received one-time authentication code generation information ( Is a generic term for a wireless communication terminal having a function of generating a one-time authentication code (N) of N-digits through second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information, wherein the wireless terminal A detailed description of the function configuration will be made with reference to FIG. 14.

The authentication server 2100 provided on the authentication code index providing system receives the authentication code index information and the unique information of the wireless terminal 2160 from the wireless terminal 2160 to be used as the wireless communication disposable authenticator through a wireless communication network, After approval of using the wireless terminal 2160 as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal 2160, the wireless terminal 2160 generates one-time authentication code generation information corresponding to the authentication code index information. After providing), the wireless terminal 2160 as a generic term for the one-time authentication code authentication system side components for authenticating the N-digit one-time authentication code (N) generated through the one-time authentication code generation information, provided to the financial company One or more servers (or devices), or one or more servers (or devices) provided in the system for processing authentication through a one-time authentication code, Alternatively, the present invention may be implemented by one or more programs recorded on a recording medium provided in the server (or apparatus), and the present invention is not limited thereto.

Referring to FIG. 21, the authentication server 2100 receives authentication code index information and unique information of the wireless terminal 2160 from the wireless terminal 2160 to be used as the wireless communication disposable authenticator, and transmits the authentication code index information to the wireless terminal 2160. It is characterized in that it comprises a wireless interface 2105 for connecting a wireless data communication communication channel for providing one-time authentication code generation information, or exchange wireless messages.

According to an embodiment of the present invention, when the wireless communication network provides a data communication channel, the wireless interface unit 2105 may be used from the wireless terminal 2160 to be used as the wireless communication disposable authenticator according to the data communication protocol of the wireless communication network. It is preferable to connect the wireless communication channel for receiving the authentication code index information and the unique information of the wireless terminal 2160, and provide the one-time authentication code generation information to the wireless terminal (2160).

When the wireless communication network provides a message exchange protocol according to another embodiment of the present invention, the wireless interface unit 2105 is a wireless terminal 2160 to be used as the wireless communication disposable authenticator according to the message exchange protocol of the wireless communication network. It is preferable to provide a message exchange interface for receiving authentication code index information and unique information of the wireless terminal 2160 from the terminal, and providing the one-time authentication code generation information to the wireless terminal (2160).

Referring to FIG. 21, when the authentication server 2100 transmits authentication code index information and unique information of the wireless terminal 2160 in the wireless terminal 2160 to be used as the wireless communication disposable authenticator, the wireless interface unit 2105 An index information receiver 2110 (or index information receiving means) for receiving the authentication code index information and the unique information of the wireless terminal 2160 through the wireless terminal 2160 in association with the storage medium 2155. Wireless to confirm whether the received authentication code index information of the at least two authentication code index information associated with the unique information is included in the wireless terminal 2160 corresponding to the unique information of the wireless terminal 2160 to the wireless communication disposable authenticator When the terminal 2160 authentication unit 2115 (or wireless terminal 2160 authentication means) and the wireless terminal 2160 is approved as a wireless communication disposable authenticator, stored in the storage medium 2155 The one-time authentication code generation information (or second partial one-time authentication code generation information) associated with the received authentication code index information among the one or more one-time one-time authentication code generation information (or second partial one-time authentication code generation information), the wireless terminal ( 2160 confirms the authentication code generation information (or second partial one-time authentication code generation information) to be provided, or authentication code generation information (or second partial one-time authentication code generation information) corresponding to the received authentication code index information. Providing the one-time authentication code generation information confirmation / generation unit 2120 (or one-time authentication code generation information confirmation / generation means) for generating a and the one-time authentication code generation information through the wireless communication network to the wireless terminal 2160 Characterized in that it comprises a one-time authentication code generation information providing unit 2130 (or one-time authentication code generation information providing means) If the received authentication code index information and unique information of the wireless terminal 2160 are securely received through encryption (or data structure change), the secured authentication code index information and unique information of the wireless terminal 2160 are received. Restores the original authentication code index information and the unique information of the wireless terminal 2160 through decryption (or data structure restoration), and securely processes the authentication code generation information (or second partial one-time authentication code generation information). When provided to the wireless terminal 2160, the security processing unit 2125 (or security processing means) for securely processing the authentication code generation information (or second partial one-time authentication code generation information) through encryption (or data structure change) It is characterized in that it further comprises, if the user authentication information is transmitted from the wireless terminal 2160 according to the intention of the skilled person, Here it is formed by further comprising: a user authentication unit for authenticating the provided authentication information, and an authentication result of the user authentication information to the wireless terminal 2160 (or the user authentication means, not shown) are preferred.

According to the embodiment of the present invention, the security processing function of the security processing unit 2125 may be included in the server function of FIG. 8 according to the intention of the skilled person, and the present invention is not limited thereto.

In the wireless terminal 2160 shown in FIG. 14, the authentication code index information and the unique information of the wireless terminal 2160 are transmitted through a wireless communication network in order to use the wireless terminal 2160 as the wireless communication disposable authenticator. The index information receiving unit 2110 may receive the authentication code index information and the unique information of the radio terminal 2160 through the air interface unit 2105.

If the received authentication code index information and unique information of the wireless terminal 2160 are encrypted and received, the security processing unit 2125 decrypts the secured authentication code index information and the unique information of the wireless terminal 2160 to the original. It is characterized by restoring the authentication code index information and unique information of the wireless terminal (2160).

Alternatively, when the received authentication code index information and the unique information of the wireless terminal 2160 are securely received by changing the data structure, the security processing unit 2125 performs the secured authentication code index information and the wireless terminal 2160. The original authentication code index information and the radio terminal 2160 unique information may be restored by restoring the data structure of the unique information.

The wireless terminal 2160 authentication unit 2115 stores the received information in a storage medium 2155 that stores unique information of the wireless terminal 2160 and two or more authentication code index information through the information registration system shown in FIG. When the validity of the unique information of the terminal 2160 is confirmed and the validity of the unique information of the wireless terminal 2160 is confirmed, the unique information of the wireless terminal 2160 is provided through the authentication code index providing system illustrated in FIG. Check whether the received authentication code index information is included in the at least two authentication code index information stored in the storage medium 2155 in association with each other, and two associated with the received authentication code index information and the unique information of the wireless terminal 2160. If it is confirmed by the authentication code index information of the director, the wireless terminal 2160 corresponding to the unique information of the wireless terminal (2160) to approve to the wireless communication disposable authenticator The features.

If the wireless terminal 2160 is approved as a wireless communication disposable authenticator, the one-time authentication code generation information checking / generating unit 2120 performs two or more one-time authentication stored in the storage medium 2155 in association with the authentication code index information. Provide one-time authentication code generation information (or second partial one-time authentication code generation information) associated with the received authentication code index information among code generation information (or second partial one-time authentication code generation information) to the wireless terminal 2160. Confirm with the authentication code generation information (or second partial one-time authentication code generation information) to be performed, or dynamically generate authentication code generation information (or second partial one-time authentication code generation information) corresponding to the received authentication code index information. Characterized in that.

According to an exemplary embodiment of the present invention, the information registration system shown in FIG. 15 or the authentication code index providing system shown in FIG. 18 respectively correspond to the two or more pieces of authentication code index information on the storage medium 2155. When the one-time authentication code generation information is stored, the one-time authentication code generation information checking / generating unit 2120 confirms the one-time authentication code generation information corresponding to the received authentication code index information from the storage medium 2155. desirable.

According to another embodiment of the present invention, when the one-time authentication code generation information is not stored in the storage medium 2155 and dynamically generates the one-time authentication code generation information corresponding to the received authentication code index information, the one-time use The authentication code generation information check / generation unit 2120 preferably dynamically generates real-time one-time authentication code generation information corresponding to the authentication code index information that approved the wireless terminal 2160 as a wireless communication disposable authenticator.

A first portion including a part of the one-time authentication code generation information to the wireless terminal 2160 (for example, the wireless terminal 2160 to be used as the wireless one-time authenticator) through the authentication code index providing system shown in FIG. When one-time authentication code generation information is previously provided, the one-time authentication code generation information checking / generating unit 2120 is part of the remaining one-time authentication code generation information matching the partial one-time authentication code generation information previously provided to the wireless terminal 2160. It is preferable to confirm (or generate) the second partial one-time authentication code generation information including the.

When the first partial one-time authentication code generation information previously provided to the wireless terminal 2160 is part of the one-time authentication code generation information to be provided to the wireless terminal 2160 according to an embodiment of the present invention, the one-time authentication code generation The information checking / generating unit 2120 preferably checks (or generates) the second portion of the one-time authentication code generation information as the second partial one-time authentication code generation information to be provided to the wireless terminal 2160.

According to another embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 2160 is a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 2160, the The one-time authentication code generation information checking / generating unit 2120 confirms (or generates) the one-time authentication code generation information to be combined with the combination code as the second partial one-time authentication code generation information to be provided to the wireless terminal 2160. desirable.

According to another exemplary embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 2160 is a verification value for verifying the one-time authentication code generation information, confirming / generating the one-time authentication code generation information. The unit 2120 preferably confirms (or generates) one-time authentication code generation information that can be verified by the verification value as second partial one-time authentication code generation information to be provided to the wireless terminal 2160.

If the authentication code generation information (or second partial one-time authentication code generation information) is provided to the wireless terminal 2160 by the security process, the authentication by the one-time authentication code generation information confirmation / generation unit 2120 When the one-time authentication code generation information corresponding to the code index information is confirmed (or generated), the security processing unit 2125 encrypts the authentication code generation information (or the second partial one-time authentication code generation information) or changes the data structure. It characterized in that the security process through.

When the data structure of the authentication code generation information (or second partial one-time authentication code generation information) is changed and secured according to an embodiment of the present invention, the security processing unit 2125 may include the authentication code generation information (or second). It is preferable to recombine (or rearrange) the data combination (or arrangement) of the partial one-time authentication code generation information according to a predetermined method or a predetermined method, and the authentication code generation information (or second partial one-time authentication code generation information). ) Is recombined (or rearranged) according to an arbitrary combination (or arrangement) method, the security processing unit 2125 generates the recombined (or rearranged) authentication code generation information (or second partial one-time authentication code generation information). To restore the original data structure for the original authentication code generation information (or second partial one-time authentication code generation information) in the authentication server 2100 to To include a data recovery information (e.g., identifier identifying a recombinant (or rearranged) scheme (or index)) is preferred.

Here, the data recombination (or rearrangement) of the authentication code generation information (or the second partial one-time authentication code generation information) may be performed in nibble units, specific digit units, byte units, word units, or specific block units. It is preferred to be recombinant (or rearranged).

According to the embodiment of the present invention, the security processing unit 2125 may selectively secure any one of the authentication code generation information (or the second partial one-time authentication code generation information), and the present invention is It is evident that all changes are made to the security process.

If the one-time authentication code generation information is confirmed (or generated) or secured, the one-time authentication code generation information providing unit 2130 may transmit the wireless terminal 2160 via the wireless communication network through the wireless interface unit 2105. It is characterized in that for transmitting the one-time authentication code generation information to (for example, a wireless terminal 2160 to be used as the wireless communication one-time authenticator).

Alternatively, when the second partial one-time authentication code generation information is confirmed (or generated) or secured, the one-time authentication code generation information providing unit 2130 may be configured to pass through the wireless communication network through the wireless interface unit 2105. It is preferable to transmit the remaining part of the one-time authentication code generation information to the wireless terminal 2160 (for example, the wireless terminal 2160 to be used as the wireless communication disposable authenticator).

The one-time authentication code generation information providing unit 2130 by the wireless terminal 2160 (for example, the wireless terminal 2160 to be used as the wireless communication disposable authenticator) the one-time authentication code generation information (or second partial one-time authentication code generation Information), the wireless terminal 2160 is the one-time authentication code generation information (or the first partial one-time authentication code generation information provided to the wireless terminal 2160 and the one-time authentication code generation information providing unit 2130) And generating and outputting N-digit one-time authentication code (N) through the combination (or verification) of the one-time authentication code generation information based on the second partial one-time authentication code generation information provided by the one-time authentication. Code N is a one-time authentication code input to the authentication request terminal 2165 (for example, a generic term for a wired terminal or a wireless terminal that requests authentication through a one-time authentication code). It is characterized in that it is input through the output interface and transmitted through the communication network.

Referring to FIG. 21, the authentication server 2100 may include an N-digit one-time authentication code generated by the wireless terminal 2160 to be used as the wireless one-time authentication device through the one-time authentication code input interface at the authentication request terminal 2165. When N is input and transmitted through a communication network, the one-time authentication code receiving unit 2135 (or one-time authentication code receiving means) for receiving the one-time authentication code N from the authentication request terminal 2165 through the communication network, and Verification code generation unit 2140 (or verification code generating means) for generating a one-time authentication code (N) of the N-digit through the one-time authentication code generation information provided to the wireless terminal 2160, and from the authentication request terminal 2165 The one-time authentication code authentication unit 2145 (or one-time authentication code authentication means) for comparing the received one-time authentication code (N) and the generated one-time authentication code (N), and the one-time authentication code (N) And the comparison result of the verifying code (N) characterized in that obtained by having the authentication request to the terminal 2165 outputs, or both the authentication result processing unit 2150 (or the authentication result processing unit) for storing the set medium.

When the authentication request terminal 2165 inputs the N-digit one-time authentication code N generated by the wireless terminal 2160 to be used as the wireless one-time authentication device through the one-time authentication code input interface and transmits it through the communication network, Authentication code receiving unit 2135 is characterized in that for receiving the N-digit one-time authentication code (N) from the authentication request terminal 2165 through the communication network.

When the one-time authentication code (N) is received, the verification code generation unit 2140 receives the one-time authentication code generation information provided to the wireless terminal 2160 to be used as a wireless communication disposable authenticator to generate the one-time authentication code (N). Check and generate the N-digit one-time verification code (N) through the one-time authentication code generation information in the same manner as the method for generating the one-time authentication code (N) in the wireless terminal (2160).

If the one-time authentication code (N) is received, and the one-time verification code (N) is generated, the one-time authentication code authentication unit 2145 and the one-time authentication code (N) received from the authentication request terminal 2165 By comparing the generated one-time verification code (N) by checking whether or not to match, characterized in that to authenticate the received one-time authentication code (N), the authentication result processing unit 2150 is the one-time authentication code (N) ) And the result of comparing the one-time verification code (N) to the authentication request terminal (2165) and output or store in a predetermined medium, so that the post-processing according to the authentication result of the one-time authentication code (N) is provided. Characterized in that.

22 is a diagram illustrating a process of transmitting an authentication code index in a wireless terminal according to another embodiment of the present invention.

More specifically, FIG. 22 is a one-time authentication code generation information (or first) after the wireless terminal shown in FIG. 14 is approved for use as a wireless communication disposable authenticator through the one-time authentication code authentication system shown in FIG. 21. 2-part one-time authentication code generation information) to confirm the transmission target authentication code index information of any one or more of the two or more authentication code index information provided from the authentication code index providing system shown in Figure 18, and the confirmed transmission target A process of transmitting the authentication code index information and the wireless terminal unique information to the authentication server shown in FIG. 21 is shown. If a person of ordinary skill in the art belongs to the present invention, refer to FIG. 22 and / or Various implementation methods for the process of modifying and transmitting the authentication code index in the wireless terminal (For example, some steps may be omitted, or the order of implementation may be changed), but the present invention includes all the implementation methods inferred above, and the technical features thereof are only shown in the implementation method shown in FIG. This is not limited.

Referring to FIG. 22, the wireless terminal checks whether a menu (or key button) for implementing a one-time authentication code is input through an authentication code index (2200), and if a menu (or key) for implementing the one-time authentication code is input. Button), the wireless terminal outputs a user authentication information input interface on the screen of the wireless terminal, and checks whether user authentication information is input through the user authentication information input interface (2210).

The user authentication information may include at least one or more personal identification numbers (PINs) or passwords for authenticating and activating the wireless communication disposable authenticator function of the wireless terminal in the authentication server. Do.

Alternatively, the user authentication information may be activated by authenticating the wireless communication disposable authenticator function of the wireless terminal through the user authentication IC chip storage information or the terminal authentication IC chip storage information included in the IC chip (or USIM). It is preferable to include at least one or more personal identification number (PIN), or password for.

Alternatively, the user authentication information may include a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal in the wireless terminal. In this case, the user authentication information is stored in the memory unit. (Not shown) is preferable.

If it is confirmed that the user authentication information is input (2215), the wireless terminal authenticates and activates the wireless communication disposable authenticator function provided in the wireless terminal based on the user authentication information (2220).

When the authentication server receives and authenticates the user authentication information according to an embodiment of the present invention, the wireless terminal transmits the input user authentication information to the authentication server in association with the wireless processing unit, and authenticates the authentication server. It is preferable to receive user authentication result information for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal from a server.

According to another embodiment of the present invention, when authenticating the user authentication information through an IC chip (or USIM) provided in the wireless terminal, the wireless terminal is connected to the IC chip reader unit to input the user authentication. It is desirable to provide information to the IC chip (or USIM) and to receive a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal from the IC chip (or USIM).

According to another embodiment of the present invention, when authenticating the user authentication information in the wireless terminal, the wireless terminal compares the input user authentication information with user authentication information (not shown) stored in the memory unit. It is preferable to check (or generate) a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal.

If the wireless communication disposable authenticator function provided in the wireless terminal is not activated (2225), the wireless terminal deactivates (or initializes) the wireless communications disposable authenticator function of the wireless terminal (2230).

On the other hand, if the wireless communication one-time authentication function provided in the wireless terminal is activated (2225), the wireless terminal is provided through the one-time authentication code authentication system shown in Figure 21 any of two or more authentication code index information stored in the memory One piece of transmission target authentication code index information is selected (2235).

According to an embodiment of the present invention, the wireless terminal randomly selects any one piece of authentication code index information from two or more pieces of authentication code index information stored in the memory unit, or according to a predetermined authentication code index information selection policy. Preferably, one piece of authentication code index information is selected, and a different index value is selected every time the transmission target authentication code index information is selected.

If the transmission target authentication code index information is selected (2240), the wireless terminal checks (or extracts) the transmission target authentication code index information and radio terminal unique information (2245).

If the transmission target authentication code index information and radio terminal unique information is secured (2250), the wireless terminal encrypts the transmission target authentication code index information and radio terminal unique information to securely transmit the authentication server, or A security process for changing the data structure of the transmission target authentication code index information and radio terminal unique information is performed (2255).

When the data structure of the transmission target authentication code index information and radio terminal unique information is changed according to an embodiment of the present invention, the wireless terminal may combine (or arrange) data of the transmission target authentication code index information and radio terminal unique information. It is preferable to recombine (or rearrange) according to a predetermined method or a predetermined method, wherein the transmission target authentication code index information and radio terminal unique information are recombined (or rearranged) according to a random combination (or arrangement) method. In this case, the wireless terminal includes the original data structure of the original transmission target authentication code index information and the wireless terminal unique information in the authentication server in the recombined (or rearranged) transmission target authentication code index information and wireless terminal unique information. Identification that identifies the data retrieval information (eg, recombination (or rearrangement) method for reconstruction That the inclusion of (or index)) is preferred.

Here, the data recombination (or rearrangement) of the transmission target authentication code index information and the radio terminal unique information may be recombined (or reconstructed by nibble unit, specific digit unit, byte unit, word unit, or specific block unit). Arrangement).

According to the embodiment of the present invention, the wireless terminal can selectively secure any one of the transmission target authentication code index information and the wireless terminal unique information, and the present invention can change all of the security processing. It is clearly understood that this is done including the method of implementation.

If the transmission target authentication code index information and the wireless terminal unique information is secured (2255), or the security processing is omitted (2250), the wireless terminal uses the transmission target authentication code index information and the wireless terminal unique information. The authentication server transmits the data to the authentication server through a wireless communication network (2250).

23 is a diagram illustrating a process of providing one-time authentication code generation information after approval of using a wireless terminal as a wireless communication disposable authenticator according to another embodiment of the present invention.

More specifically, FIG. 23 shows the authentication server shown in FIG. 21 when the authentication code index information and the wireless terminal unique information are transmitted from the wireless terminal shown in FIG. 14 through the process of transmitting the authentication code index shown in FIG. Receives the authentication code index information and the wireless terminal unique information, and after using the wireless terminal as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal, and then the one-time authentication code generation information to the wireless terminal (Or the second partial one-time authentication code generation information) is shown, if the person of ordinary skill in the art to which the present invention pertains, referring to and / or modifying the present Figure 23 wireless radio terminal Various implementation methods for providing a one-time authentication code generation information after approval of use as a communication one-time authenticator (for example However, some steps may be omitted, or the order of implementation may be changed), but the present invention includes all the implementation methods inferred, and the technical features are limited only to the implementation method shown in FIG. Not.

Referring to FIG. 23, if the authentication code index information and the wireless terminal unique information are transmitted from the wireless terminal illustrated in FIG. 14 through the process of transmitting the authentication code index shown in FIG. The authentication code index information and radio terminal unique information transmitted from the radio terminal are received (2300).

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio It is preferable to include one or more unique combination numbers generated by combining one or more of the terminal opening number (or part).

If the authentication code index information and the wireless terminal unique information is transmitted in a secure process through encryption (or a data structure change) in the wireless terminal (2305), the authentication server transmits the secured authentication code index information and the wireless terminal. The original authentication code index information and the radio terminal unique information are restored by decrypting the unique information (or restoring the data structure) (2310).

Thereafter, the authentication server identifies the wireless terminal unique information matching the received wireless terminal unique information in association with the storage medium (2315).

If the wireless terminal unique information matching the received unique wireless terminal information from the storage medium is not confirmed (2320), the authentication server transmits and outputs wireless terminal validity error information to the wireless terminal through a wireless communication network ( 2325).

On the other hand, if the wireless terminal unique information matching the unique wireless terminal information received from the storage medium is confirmed (2320), the authentication server is linked to the wireless terminal unique information of the at least two authentication code index information stored in the storage medium; Check whether the received authentication code index information is included (2330).

If it is not confirmed that the received authentication code index information among two or more authentication code index information stored in the storage medium is included (2335), the authentication server transmits wireless terminal validity error information to the wireless terminal through a wireless communication network. And outputs it (2325).

On the other hand, if it is confirmed that the received authentication code index information among the two or more authentication code index information stored in the storage medium (2335), the authentication server uses the wireless terminal as a wireless communication disposable authenticator (2340). .

If the wireless terminal is not approved for use as a wireless communication disposable authenticator (2345), the authentication server transmits and outputs wireless terminal validity error information to the wireless terminal through a wireless communication network (2325).

On the other hand, when the wireless terminal is approved for use as a wireless communication disposable authenticator (2345), the authentication server generates one-time authentication code generation information (or second one-time authentication code generation information) to be provided to the wireless terminal approved for use as the wireless communication disposable authenticator. Verify (or create) 2350.

When one-time authentication code generation information corresponding to the authentication code index information is stored in the storage medium, the authentication server generates one-time authentication code generation information corresponding to the authentication code index information from the storage medium. It is desirable to check.

According to another exemplary embodiment of the present invention, when the one-time authentication code generation information is not stored in the storage medium and the one-time authentication code generation information corresponding to the authentication code index information is dynamically generated, the authentication server may be configured as the wireless terminal. It is desirable to dynamically generate real-time one-time authentication code generation information corresponding to the authentication code index information approved by the wireless communication disposable authenticator.

First partial one-time authentication code generation information including a part of the one-time authentication code generation information to the wireless terminal (for example, a wireless terminal to be used as the wireless communication disposable authenticator) through the authentication code index providing system shown in FIG. If provided, the authentication server is to confirm (or generate) the second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information matching the partial one-time authentication code generation information previously provided to the wireless terminal. desirable.

According to an embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is part of the one-time authentication code generation information to be provided to the wireless terminal, the authentication server is configured to generate the one-time authentication code generation information. It is preferable to check (or generate) the second partial one-time authentication code generation information to be provided to the wireless terminal.

According to another embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal, the authentication server is the combination code. It is preferable to confirm (or generate) the one-time authentication code generation information to be combined with the second partial one-time authentication code generation information to be provided to the wireless terminal.

According to another exemplary embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is a verification value for verifying the one-time authentication code generation information, the authentication server may be verified by the verification value. It is preferable to confirm (or generate) authentication code generation information with second partial one-time authentication code generation information to be provided to the wireless terminal.

If one-time authentication code generation information (or second one-time authentication code generation information) to be provided to the wireless terminal approved for use as the wireless communication one-time authentication is confirmed (or generated) (2355), the one-time authentication code generation information (or second) 2 one-time authentication code generation information) securely (2360), the authentication server encrypts the one-time authentication code generation information (or second one-time authentication code generation information) to the authentication server securely, or the one-time The security process of changing the data structure of the authentication code generation information (or the second one-time authentication code generation information) is performed (2365).

When changing the data structure of the one-time authentication code generation information (or second one-time authentication code generation information) according to the embodiment of the present invention, the authentication server is the one-time authentication code generation information (or second one-time authentication code generation information) It is preferable to recombine (or rearrange) the data combination (or arrangement) of the data according to a predetermined method or a predetermined method, and the one-time authentication code generation information (or the second one-time authentication code generation information) is any combination (or When recombination (or rearrangement) is performed according to an arrangement) method, the authentication server uses the recombination (or rearrangement) one-time authentication code generation information (or second one-time authentication code generation information) as the original one-time authentication at the authentication server. Data restoration information (eg, to restore the original data structure for the code generation information (or the second one-time authentication code generation information) For example, it is preferable to include an identifier (or index) that identifies a recombination (or rearrangement) mode.

Here, the data recombination (or rearrangement) of the one-time authentication code generation information (or the second one-time authentication code generation information) may be performed in nibble units, specific digit units, byte units, word units, or specific block units. It is preferred to be recombinant (or rearranged).

According to the embodiment of the present invention, the authentication server may selectively secure any one of the one-time authentication code generation information (or the second one-time authentication code generation information), and the present invention may be applied to the security processing. It is clearly to be understood that this includes all possible modifications to the implementation.

If the one-time authentication code generation information (or the second one-time authentication code generation information) is secured (2365), or if the security processing is omitted (2360), the authentication server to the wireless terminal through the wireless communication network The one-time authentication code generation information (or second one-time authentication code generation information) is transmitted (2370).

24 is a view showing a process of generating a one-time authentication code according to an embodiment of another embodiment of the present invention.

In more detail, FIG. 24 illustrates that the one-time authentication code generation information is provided to the wireless terminal shown in FIG. 14 through the one-time authentication code generation information providing process shown in FIG. Through showing the process of generating an N-digit one-time authentication code (N) through, if the person of ordinary skill in the art to which the present invention pertains, the one-time authentication code by referring to and / or modified this figure 24 Various implementation methods (for example, some steps may be omitted or changed in order) may be inferred for the process of generating the present invention. However, the present invention may include all the implementation methods inferred from the drawing. The technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 24, when the one-time authentication code generation information is provided to the wireless terminal illustrated in FIG. 14 through the process of providing the one-time authentication code generation information illustrated in FIG. 23, the wireless terminal may perform the one-time authentication from the authentication server. The code generation information is received (2400).

If the one-time authentication code generation information is received (2405), and the one-time authentication code generation information is transmitted securely through encryption (or data structure change) in the authentication server (2410), the wireless terminal is the security The original one-time authentication code generation information is restored through decryption (or data structure restoration) of the processed one-time authentication code generation information (2415).

If the one-time authentication code generation information is restored to the original one-time authentication code generation information through decryption (or data structure restoration) (2415), or if the security processing of the one-time authentication code generation information is omitted (2410), the wireless The terminal generates the one-time authentication code (N) of N digits according to a preset one-time authentication code generation standard using the received one-time authentication code generation information as a seed value for generating the one-time authentication code (N). (2420).

If the one-time authentication code (N) is generated (2425), the wireless terminal outputs the generated N-digit one-time authentication code (N) to a predetermined area on the screen of the wireless terminal (2430).

According to another exemplary embodiment of the present invention, when the wireless terminal is provided with a short-range communication function, and the authentication request terminal and the short-range communication channel are connected through the short-range communication, the wireless terminal is disposable for the N-digit number through the short-range communication. It is possible to output the authentication code (N) to the authentication request terminal, whereby the present invention is not limited.

25 is a view showing a process of generating a one-time authentication code according to another embodiment of another embodiment of the present invention.

In more detail, when the second partial one-time authentication code generation information is provided to the wireless terminal illustrated in FIG. 14 through the process of providing the one-time authentication code generation information illustrated in FIG. 23, the memory unit may be configured in the wireless terminal. As a process of generating an N-digit one-time authentication code (N) based on the first partial one-time authentication code generation information and the second partial one-time authentication code generation information stored in the conventional art in the art. Those skilled in the art will be able to infer various implementation methods (eg, some steps are omitted or changed in order) for generating the one-time authentication code by referring to and / or modifying the drawing 25. However, the present invention includes all the implementation methods inferred above, the technical features of only the implementation method shown in FIG. It is not limited.

Referring to FIG. 25, when the second partial one-time authentication code generation information is provided to the wireless terminal shown in FIG. 14 through the process of providing the one-time authentication code generation information shown in FIG. 23, the wireless terminal may receive information from the authentication server. The second partial one-time authentication code generation information is received (2500).

If the second partial one-time authentication code generation information is received (2505), and when the second partial one-time authentication code generation information is secured through encryption (or data structure change) is transmitted (2510), The wireless terminal restores the original second partial one-time authentication code generation information through decryption (or data structure restoration) of the secured second partial one-time authentication code generation information (2515).

If the second partial one-time authentication code generation information is restored to the original second partial one-time authentication code generation information through decryption (or data structure restoration) (2515), or the security processing of the second partial one-time authentication code generation information. Is omitted (2510), the wireless terminal generates the one-time authentication code (N) by combining (or concatenating) the first partial one-time authentication code generation information and the second one-time authentication code generation information stored in the memory unit. Generating one-time authentication code generation information corresponding to the seed value for the second or confirming the second one-time authentication code generation information through the first partial one-time authentication code generation information as the seed value for generating the one-time authentication code (N); (2520).

If one-time authentication code generation information is not generated (or confirmed) through the first partial one-time authentication code generation information and the second partial one-time authentication code generation information (2525), the wireless terminal outputs one-time authentication code generation error information. (2530).

On the other hand, when the one-time authentication code generation information is generated (or confirmed) through the first partial one-time authentication code generation information and the second partial one-time authentication code generation information (2525), the wireless terminal generates the one-time authentication (or confirmation) Using the code generation information as a seed value for generating the one-time authentication code (N) to generate a one-time authentication code (N) of N digits according to a predetermined one-time authentication code generation standard (2535).

If the first partial one-time authentication code generation information stored in the memory unit is stored, the wireless terminal through the first partial one-time authentication code generation information n of the N-digit one-time authentication code (N) (1 <= n < N) generates a one-time one-time authentication code (n), and generates the (Nn) one-time one-time authentication code (Nn) through the received second partial one-time authentication code generation information, the one-time authentication code (n) It is possible to generate an N-digit single-use authentication code (N) by combining (or concatenating) and the one-time authentication code (Nn), whereby the present invention is not limited.

If the one-time authentication code (N) is generated (2540), the wireless terminal outputs the generated N-digit one-time authentication code (N) to a predetermined area on the screen of the wireless terminal (2545).

According to another exemplary embodiment of the present invention, when the wireless terminal is provided with a short-range communication function, and the authentication request terminal and the short-range communication channel are connected through the short-range communication, the wireless terminal is disposable for the N-digit number through the short-range communication. It is possible to output the authentication code (N) to the authentication request terminal, whereby the present invention is not limited.

26 is a view showing a one-time authentication code authentication process according to another embodiment of the present invention.

In more detail, in FIG. 26, when the single-use authentication code N is generated in the wireless terminal illustrated in FIG. 14 through the process of generating the disposable authentication code illustrated in FIG. 24 or FIG. 25, the authentication request terminal The one-time authentication code (N) is input and transmitted to the authentication server shown in FIG. 21, and correspondingly, the one-time verification code (N) is matched with the one-time authentication code (N) in the authentication server to generate the one-time use. As showing the process of authenticating the authentication code (N), those skilled in the art to which the present invention belongs, various implementation methods for the one-time authentication code authentication process by referring to and / or modified in this figure 26 (Eg, some steps may be omitted, or the order of implementation may be altered), but the present invention may include all implementation methods inferred above. , Only the exemplary method shown in the figure 26 is not limited its technical characteristics.

Referring to FIG. 26, when a one-time authentication code (N) of N digits is generated in the wireless terminal shown in FIG. 14 through the process of generating the one-time authentication code shown in FIG. 24 or FIG. 25, the authentication request terminal is displayed on the screen. After outputting the one-time authentication code input interface (2600), and processing the input of the N-digit one-time authentication code (N) generated in the wireless terminal through the one-time authentication code input interface (2605), the authentication server through the communication network The input one-time authentication code (N) is transmitted to (2610).

The authentication server receives the one-time authentication code N through a communication network and confirms one-time authentication code generation information corresponding to the received one-time authentication code N (2615).

If the one-time authentication code generation information is confirmed (2620), the authentication server generates the N-digit one-time verification code (N) through the confirmed one-time authentication code generation information (2625).

If the one-time verification code generation information is generated (2620), the authentication server compares the one-time authentication code (N) and one-time verification code (N) to authenticate the one-time authentication code (2635).

If the one-time authentication code is not authenticated (2640), the authentication server provides one-time authentication code authentication error information to the authentication request terminal and outputs it (2645).

On the other hand, if the one-time authentication code is authenticated (2640), the authentication server provides a one-time authentication code authentication result to the authentication request terminal and outputs, and the one-time authentication code authentication to the terminal as a medium requiring authentication through the one-time authentication code Output or store the result (2650).

According to the present invention, after activating the wireless communication one-time authentication function provided in the wireless terminal through the user authentication information, and after using the wireless terminal as a wireless communication disposable authenticator through the unique information and authentication code index information of the wireless terminal, the By generating a one-time authentication code through a wireless terminal, there is an advantage that the wireless terminal is connected to a wireless communication network has a weak security function, there is an advantage to solve the problem that a negative wireless terminal can be used as a one-time authentication through the communication network, While eliminating the problem, the one-time authentication code generation method activates the wireless communication one-time authentication function provided in the wireless terminal through user authentication information, and is automatically processed without a separate user authentication process. have.

Claims (7)

A memory unit for storing wireless terminal unique information authenticated with a wireless communication disposable authenticator and authentication code index information for confirming (or generating) one-time authentication code generation information; When using the wireless terminal as a wireless communication disposable authenticator, a transmission unit for extracting the authentication code index information and the unique information of the wireless terminal from the memory unit and transmits to the authentication server through a wireless communication network; After confirming the unique information of the wireless terminal in the authentication server, and approving the wireless terminal as a wireless communication disposable authenticator, after confirming (or generating) one-time authentication code generation information through the authentication code index information, the wireless communication network is transmitted. Receiving unit for receiving the one-time authentication code generation information corresponding to the authentication code index information through; Authentication code generation unit for generating a one-time authentication code (N) of N (N> = 2) digits through the one-time authentication code generation information; And Output terminal for outputting the generated one-time authentication code (N) on the screen of the wireless terminal; Wireless terminal providing a one-time authentication code using an authentication code index comprising a. The method of claim 1, An information input unit for inputting user authentication information for activating the wireless communication one-time authenticator function; And An authentication processing unit for activating the wireless communication disposable authenticator function by authenticating the user authentication information; Wireless terminal providing a one-time authentication code using an authentication code index, characterized in that further comprises. Storing in a storage medium by linking unique information of a wireless terminal to be used as a wireless one-time authenticator and authentication code index information for identifying (or generating) one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless one-time authenticator. Providing authentication code index information associated with the unique information of the wireless terminal to the wireless terminal; When the wireless terminal is used as a wireless communication disposable authenticator, receiving the authentication code index information and the wireless terminal unique information from the wireless terminal; Approving a wireless terminal corresponding to the wireless terminal unique information through the authentication code index information and the wireless terminal unique information in association with a storage medium to a wireless communication disposable authenticator; Confirming (or generating) one-time authentication code generation information corresponding to the authentication code index information when the wireless terminal is approved as a wireless communication one-time authenticator; And Transmitting the one-time authentication code generation information to the wireless terminal through a wireless communication network; Method of providing a one-time authentication code using an authentication code index, characterized in that it comprises a. The method of claim 3, wherein Receiving a one-time authentication code (N) having N (N> = 2) digits generated through the one-time authentication code generation information from a terminal; Generating an N-digit one-time verification code (N) through the one-time authentication code generation information provided to the wireless terminal; Comparing the received one-time authentication code (N) with the one-time verification code (N); And Outputting (or storing) the comparison result of the one-time authentication code (N) and one-time verification code (N); Method of providing a one-time authentication code using the authentication code index, characterized in that it further comprises. Storing in the memory a wireless terminal unique information authenticated by the wireless communication disposable authenticator in the wireless terminal and authentication code index information for identifying (or generating) the disposable authentication code generation information; When using the wireless terminal as a wireless communication disposable authenticator, extracting the authentication code index information and the unique information of the wireless terminal from the memory in the wireless terminal and transmitting the extracted authentication code to the authentication server through a wireless communication network; When the authentication server confirms the unique information of the wireless terminal and approves the wireless terminal with a wireless communication disposable authenticator, the wireless terminal checks (or generates) one-time authentication code generation information through the authentication code index information. Receiving one-time authentication code generation information corresponding to the authentication code index information through a wireless communication network; Generating a one-time authentication code (N) having N (N> = 2) digits through the one-time authentication code generation information in a wireless terminal; And And outputting the generated one-time authentication code (N) in the wireless terminal on the screen of the wireless terminal. A computer-readable recording medium having recorded thereon a program for executing the method of any one of claims 3 to 5. A storage medium for storing the unique information of the mobile terminal to be used as a wireless communication disposable authenticator and authentication code index information for identifying (or generating) the one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless communication disposable authenticator; Authentication code index information providing means for providing the authentication code index information to the wireless terminal; Index information receiving means for receiving the authentication code index information and the unique information of the wireless terminal from the wireless terminal when the wireless terminal is used as a wireless communication disposable authenticator; Wireless terminal authentication means for approving a wireless terminal corresponding to the unique information of the wireless terminal through the authentication code index information and the wireless terminal specific information in association with the storage medium with a wireless communication disposable authenticator; A one-time authentication code generation information checking / generating means for confirming (or generating) the one-time authentication code generation information corresponding to the authentication code index information when the wireless terminal is approved by the wireless communication disposable authenticator; And And a one-time authentication code generation information providing means for transmitting the one-time authentication code generation information to the wireless terminal through a wireless communication network.

Images