KR20100068131A - System and method for authenticating one-time by index and recording medium - Google Patents

Abstract

PURPOSE: A system and a method for authenticating disposable use by an index and a recording medium therefor are provided to activate wireless communication disposable authentication function of a wireless terminal through a user authentication information, thereby improving security of wireless terminal. CONSTITUTION: If OTP(One Time Password) realization menu is inputted, a wireless terminal outputs user authentication information input interface on a screen(1005,1010). If a user authentication information is inputted, the wireless terminal activates wireless communication disposable authenticator function(1015,1020). The wireless terminal checks authentication index information and wireless terminal intrinsic wireless terminal information from a memory unit(1035). The wireless terminal transmits the authentication index information and the wireless terminal intrinsic information to authentication server(1040).

Description

System and Method for Authenticating One-Time by Index and Recording Medium}

1 is a diagram illustrating a system configuration for providing a one-time authentication code based security authentication function using an index associated with one-time authentication code generation information.

2 is a view showing a functional configuration of a wireless terminal 200 to implement a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

3 is a diagram illustrating an information registration system for registering wireless terminal registration information to implement a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

4 is a diagram illustrating a process of registering wireless terminal registration information according to an embodiment of the present invention.

5 is a diagram illustrating a process of registering wireless terminal registration information according to another embodiment of the present invention.

6 is a diagram illustrating a configuration of an authentication code index providing system according to an exemplary embodiment of the present invention.

7 is a diagram illustrating a process of providing an authentication code index according to an embodiment of the present invention.

8 is a diagram illustrating a process of providing a part of one-time authentication code generation information associated with authentication code index information according to an embodiment of the present invention.

9 is a diagram illustrating a one-time authentication code authentication system configuration for implementing a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

10 is a diagram illustrating a process of transmitting an authentication code index in a wireless terminal according to an embodiment of the present invention.

11 is a diagram illustrating a process of providing one-time authentication code generation information after approval of using a wireless terminal as a wireless communication disposable authenticator according to an embodiment of the present invention.

12 is a view showing a process of generating a one-time authentication code according to an embodiment of the present invention.

13 is a diagram illustrating a process of generating a one-time authentication code according to another embodiment of the present invention.

14 is a view showing a one-time authentication code authentication process according to an embodiment of the present invention.

15 is a diagram illustrating a function of a wireless terminal 1500 for implementing a one-time authentication code through an authentication code index according to an embodiment of the present invention.

16 is a diagram illustrating an information registration system for registering wireless terminal registration information to implement a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

17 is a diagram illustrating a process of registering wireless terminal registration information according to an embodiment of the present invention.

18 is a diagram illustrating a process of registering wireless terminal registration information according to another embodiment of the present invention.

19 is a diagram illustrating a configuration of an authentication code index providing system according to an exemplary embodiment of the present invention.

20 is a diagram illustrating a process of providing an authentication code index according to an embodiment of the present invention.

21 is a diagram illustrating a process of providing a part of one-time authentication code generation information associated with authentication code index information according to an embodiment of the present invention.

22 is a diagram illustrating a one-time authentication code authentication system configuration for implementing a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

23 is a diagram illustrating a process of transmitting an authentication code index in a wireless terminal according to an embodiment of the present invention.

24 is a diagram illustrating a process of providing one-time authentication code generation information after approval of using a wireless terminal as a wireless communication disposable authenticator according to an embodiment of the present invention.

25 is a diagram illustrating a process of generating a one-time authentication code according to an embodiment of the present invention.

26 is a diagram illustrating a process of generating a one-time authentication code according to another embodiment of the present invention.

27 is a view showing a one-time authentication code authentication process according to an embodiment of the present invention.

<Description of main parts of drawing>

100: authentication code index providing means

105: index information receiving means

110: wireless terminal authentication means

115: one-time authentication code generation information verification means

120: one-time authentication code generation information providing means

125: authentication means

130: storage medium

135: wireless terminal

140: authentication request terminal

The present invention provides a step of providing authentication code index information associated with the one-time authentication code generation information to the wireless terminal to be used as a one-time authenticator, receiving the authentication code index information from the wireless terminal and associated with the authentication code index information It relates to a one-time authentication method through the index comprising providing the one-time authentication code generation information to the wireless terminal.

With the continuous development of information and communication technology, non-face-to-face financial transactions using the communication network are frequently increasing, various security functions for securing the reliability of the non-face-to-face financial transactions are expanding, and the safest and most reliable way of security functions of the non-face-to-face financial transactions. Is a one-time password.

However, the conventional method of authenticating the validity of the non-face-to-face financial transaction through the one-time authentication code has been inconvenient in that a customer purchases a one-time authenticator manufactured separately and always possesses the one-time authenticator.

Of course, a method of using a customer's mobile phone as a one-time authenticator has been proposed to solve the inconvenience, but a conventional mobile phone-based one-time authenticator is connected to a wireless communication network as compared to the separately manufactured one-time authenticator, so that the security function is weak. In addition, the wireless network includes a problem that a negative wireless terminal can be used as a one-time authenticator.

An object of the present invention for solving the above problems, authentication code index providing means for providing authentication code index information associated with the one-time authentication code generation information to the wireless terminal to be used as a one-time authentication, and the authentication code index information from the wireless terminal The present invention provides a one-time authentication system through an index including an index information receiving means for receiving a one-time authentication code generation information providing means for providing the wireless terminal with one-time authentication code generation information associated with the authentication code index information.

According to the present invention, the one-time authentication method through the index may include providing authentication code index information associated with one-time authentication code generation information to a wireless terminal to be used as a one-time authentication, and receiving the authentication code index information from the wireless terminal. And providing the wireless terminal with one-time authentication code generation information associated with the authentication code index information.

The one-time authentication method through the index according to the present invention is characterized in that it further comprises the step of storing the one or more authentication code index information and the one-time authentication code generation information in a storage medium in association with each.

In the one-time authentication method through the index according to the present invention, when the authentication code index information and the wireless terminal unique information is stored in a storage medium, receiving the unique information of the wireless terminal of the wireless terminal transmitting the authentication code index information And comparing the authentication code index information, the wireless terminal unique information, and the wireless terminal unique information and the authentication code index information stored in the storage medium to approve the use of the wireless terminal as a one-time authenticator.

The one-time authentication method through the index according to the present invention comprises the steps of receiving a one-time authentication code (N) of N (N> = 2) digits generated through the one-time authentication code generation information from the terminal, and provided to the wireless terminal Generating N-digit one-time verification code (N) through the one-time authentication code generation information, comparing the received one-time authentication code (N) and the one-time verification code (N) and the one-time authentication code (N) ) And outputting (or storing) the comparison result of the one-time verification code (N).

In the one-time authentication method through the index according to the present invention, the step of receiving the authentication code index information from the wireless terminal, if the authentication code index information is encrypted (or data structure is changed), the authentication code index information And restoring the authentication code index information by decrypting (or restoring the data structure).

On the other hand, the one-time authentication method through the index according to the present invention, the step of storing the authentication code index information in the memory unit, when using the wireless terminal as a disposable authentication, the authentication code index information stored in the memory unit to the authentication server Transmitting, receiving, from the authentication server, one-time authentication code generation information corresponding to the authentication code index information, and one-time authentication code of N (N> = 2) digits through the one-time authentication code generation information. ) And outputting the generated one-time authentication code (N).

In the one-time authentication method through the index according to the present invention, if two or more pieces of authentication code index information is stored in the memory unit, checking the transmission target authentication code index information of any one or more pieces of authentication code index information stored in the memory unit; Characterized in that further comprises.

In the one-time authentication method through the index according to the present invention, the step of transmitting the authentication code index information stored in the memory unit to the authentication server, characterized in that for transmitting the unique information of the wireless terminal.

In the one-time authentication method through the index according to the present invention, the step of transmitting the authentication code index information stored in the memory unit to the authentication server, encrypting the authentication code index information, or the data structure of the authentication code index information Characterized in that the transmission to change.

In the one-time authentication method through the index according to the present invention, the step of transmitting the authentication code index information stored in the memory unit to the authentication server, when further transmitting the unique information of the wireless terminal, the authentication code index information and the wireless terminal Or encrypts the unique information or changes the data structure of the authentication code index information and the unique information of the radio terminal.

On the other hand, it includes a computer-readable recording medium, characterized in that the program for executing the one-time authentication method through the above-described index recorded.

On the other hand, the one-time authentication system through the index according to the present invention, authentication code index providing means for providing authentication code index information associated with the one-time authentication code generation information to the wireless terminal to be used as a one-time authentication, and the authentication code from the wireless terminal Index information receiving means for receiving the index information and the one-time authentication code generation information providing means for providing the one-time authentication code generation information associated with the authentication code index information to the wireless terminal.

The one-time authentication system through the index according to the present invention is characterized in that it further comprises a storage medium for storing one or more authentication code index information and one-time authentication code generation information in association with each other.

In the one-time authentication system through the index according to the present invention, the index information receiving means, when the authentication code index information and the wireless terminal unique information is stored in a storage medium in association with, transmitting the authentication code index information from the wireless terminal And further receiving unique information of the radio terminal of the radio terminal.

The one-time authentication system using the index according to the present invention compares the received wireless terminal specific information with the wireless terminal specific information stored in the storage medium, and associates the received authentication code index information with the wireless terminal specific information on the storage medium. And a wireless terminal authentication means for comparing the stored authentication code index information to approve the use of the wireless terminal as a one-time authenticator.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. In addition, terms to be described below are terms defined in consideration of functions in the present invention, which may vary according to a user's or operator's intention or custom. Therefore, the definition should be made based on the contents throughout the present invention.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify, integrate, or separate the terminology so that those skilled in the art to which the present invention pertains may clearly understand the present invention. The present invention is by no means limited thereto. In other words, each means constituting the present invention is a server (or terminal) provided on the system shown in the following embodiments, or a predetermined functional configuration provided in at least one or more servers (or terminals), or at least It may be an association of at least two or more functional components provided in one or more servers (or terminals). In addition, the server (or terminal) shown in the following embodiment is shown to include at least two or more functional components for achieving the technical features of the present invention for convenience, the functional component shown in the server (or terminal) Matched with the above-described means may be provided in two or more different servers (or terminals) according to the role and function of each functional component and the corresponding server (or terminal) operator (or operator), whereby the present invention is not limited No.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram illustrating a system configuration that provides a one-time authentication code based security authentication function using an index associated with one-time authentication code generation information.

Referring to Figure 1, the one-time authentication code-based security system using the index associated with the one-time authentication code generation information, the wireless terminal 135 used as a wireless communication disposable authenticator, the customer of the customer using the wireless terminal 135 Information, unique information of the radio terminal 135 corresponding to the radio terminal 135 (communication company information connected to the radio terminal 135), one or more authentication code index information, and one or more one-time authentication associated with the authentication code index. Authentication code that provides authentication code index information associated with one or more disposable authentication code generation information to the storage medium 130 and the wireless terminal 135 in association with the code generation information (e.g. Seed value) to store; It is characterized by comprising an index providing means (100).

In addition, the one-time authentication code-based security system using the index associated with the one-time authentication code generation information, when using the wireless terminal 135 as a wireless communication disposable authenticator, the authentication code index providing means 100 from the wireless terminal 135 Index information receiving means 105 for receiving the authentication code index information of any one of the authentication code index provided by the) and the unique information of the radio terminal 135 corresponding to the radio terminal 135, and the received authentication code index Wireless terminal 135 authentication means 110 for authenticating the use of the wireless terminal 135 as a wireless communication disposable authenticator through the information and the unique information of the wireless terminal 135, and the wireless terminal 135 using the wireless communication disposable When authenticating with an authenticator, confirming the one-time authentication code generation information confirming the one-time authentication code generation information associated with the received authentication code index from the storage medium 130. End 115 and, characterized in that it comprises a one-time authentication code generation information providing means 120 for transmitting the confirmed one-time authentication code generation information to the wireless terminal 135, in the wireless terminal 135 When the one-time authentication code (N) having N (N> = 2) digits is generated through the one-time authentication code generation information and provided to the authentication request terminal 140, the N-digit number is linked to the authentication request terminal 140. Characterized in that the authentication means 125 for providing a security authentication function through the one-time authentication code (N).

Figure 2 is a diagram showing the functional configuration of the wireless terminal 200 to implement a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

In more detail, FIG. 2 illustrates a case in which the wireless terminal 200 connected to a mobile communication network operating based on Code Division Multiple Access (CDMA) / Wide CDMA (WCDMA) is used as the wireless communication disposable authenticator. 200 through one-time authentication code authentication system shown in Figure 9 through the authentication code index information provided through the authentication code index providing system shown in Figure 6 and the unique information of the wireless terminal 200 of the wireless terminal 200 Received the authentication code generation information, showing the functional configuration to generate and output the N-digit one-time authentication code (N) through the one-time authentication code generation information, a person having ordinary knowledge in the technical field to which the present invention belongs If the other terminal device (for example, HSDPA-based wireless network to implement a one-time authentication code through the authentication code index by referring to and / or modified in Figure 2; It is possible to infer an implementation method for various functional configurations corresponding to the characteristics of each terminal device) and a wireless terminal device for accessing, or a wireless terminal device for accessing the IEEE 802.16x-based portable Internet. It is made, including the implementation method, the technical features are not limited only to the implementation method shown in FIG.

According to an embodiment of the present invention, the wireless terminal 200 providing a CDMA / WCDMA-based mobile communication service has a physical body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), and an antenna in terms of hardware. And a battery 225 and the like, and internally include a modem chip (CDMA) modem, a CPU / MPU (Central Processing Unit / Micro Processing Unit), a vocoder, or a built-in modem chip (for example, the US Qualcomm's MSM series modem chips), various memory devices, duplexer filters that separate transmission and reception signals from one antenna, power amplifiers for amplifying transmission signals, high power amplifiers (HPAs), and high power transmission signals Isolator that prevents the return of signals, RF / IF SAW filter to remove unwanted out-of-band unwanted signals, frequency up-circuit of transmission path, frequency of reception path Down-conversion circuit, Voltage Controlled Temperature Compensated X-tal Oscillator (VCTCXO) corresponding to the reference clock source, UHF frequency synthesizer used as local signal of frequency up-down conversion, and codec chip for converting analog voice signal into digital signal The internal components are gradually integrated into the modem chip, and the modem chip provides various multimedia services or additional services in addition to the core components for the mobile communication service. Various functions are being integrated together.

Referring to FIG. 2, the wireless terminal 200 implementing the one-time authentication code through the authentication code index may include a control unit 205 corresponding to the modem chip and a screen output unit corresponding to an LCD (Liquid Crystal Display). 210, a sound processor 215 corresponding to a microphone / speaker, a key input unit 220 corresponding to a keypad, a radio processor 230 corresponding to an antenna and various RF modules, and a nonvolatile memory The memory unit 240 and a battery 225 for power supply is characterized in that it comprises.

In addition, the wireless terminal 200 further includes a camera unit (not shown) for reading image information for providing various multimedia services or various additional services corresponding thereto, or for connecting a short range communication channel with a short range device. It is preferable to further provide a near field communication part (not shown).

In addition, the wireless terminal 200 is an IC chip (eg, integrated IC) mounted or detached from the wireless terminal 200 to provide various financial (or payment) services or various additional services corresponding thereto. A chip, or a USIM (Universal Subscriber Identity Module)) and an IC chip reader unit 235 for reading / writing information (or data) is preferably provided on the IC chip.

The control unit 205 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, a program routine for providing a function specific to the wireless terminal 200 from a memory device, Or a bus BUS for inputting / outputting program data and an electronic circuit (or an integrated circuit) provided therefor, and the software from the memory unit 240 or a memory device (or chipset). Program routines that are loaded into execution memory and processed by the processor to perform specific functions, or generic terms of program data (hence, the wireless terminal 200 to implement a one-time authentication code through the authentication code index). The program routine recorded on the recording medium is illustrated as being provided in the control unit 205 for convenience. The program routine included in the control unit 205 is basically an operating system routine (not shown) and at least one system management routine (eg, a power management routine, a channel (forward / reverse) management routine, a handoff routine, etc.) It is characterized in that it comprises a), characterized in that the various functional configurations to be implemented in the wireless terminal 200 by the control unit 205 is characterized.

According to the exemplary embodiment of the present invention, after power is supplied to the wireless terminal 200, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are stored in the controller ( By loading into the execution memory included in the step 205 and arithmetic processing by the processor, the wireless terminal 200 according to the booting process, the system setting detailed state, the pilot channel acquisition detailed state, the synchronization channel acquisition detailed state and the timing conversion detailed state An operation mode corresponding to the "mobile station initialization state" is set.

After performing the booting procedure, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are loaded into the execution memory included in the controller 205 and loaded into the processor. By the arithmetic processing, the wireless terminal 200 is set to an operation mode corresponding to a "mobile station call waiting state", "system access state", or "call channel state", and so on. Call Processing) procedure.

According to an embodiment of the present invention, the function of implementing a one-time authentication code through the authentication code index is initiated (or realized) through a key input in an operation mode in which the wireless terminal 200 corresponds to the "mobile station call waiting state". Is preferred.

The screen output unit 210 is a function configuration unit for checking the operation mode operation and the operation state corresponding to the operation mode of the wireless terminal 200, at least one including an LCD provided in the wireless terminal 200 And at least one key data input through the key input unit 220 in conjunction with the control unit 205, or a driver for driving the screen output device. Outputs a menu screen, a function processing screen, and a function processing result screen corresponding to at least one or more functions (or programs) included in the wireless terminal 200, or at least provided (or downloaded) to the wireless terminal 200 At least one content (eg, text content, image content, multimedia content) is output.

According to the embodiment of the present invention, the screen output unit 210 is a menu screen corresponding to a function for implementing a one-time authentication code through the authentication code index, a function processing screen for implementing the one-time authentication code (N) and It is preferable to perform the function of the screen output means for outputting the function processing result screen for outputting the one-time authentication code (N).

The sound processor 215 is a functional component that processes input and output of sound in each operation mode of the wireless terminal 200. The sound processor 215 decodes at least one or more encoded sound data and is provided in the wireless terminal 200. Or a vocoder and a codec for encoding and encoding a sound signal input through a microphone provided in the wireless terminal 200 or through a microphone provided in the wireless terminal 200.

According to an exemplary embodiment of the present invention, the sound processor 215 may output sound data corresponding to a ring back tone through the speaker in an operation mode corresponding to the “system access state” of each operation mode of the wireless terminal 200. The audio signal may be decoded and output, or the audio signal may be encoded and input through a microphone in an operation mode corresponding to the "call channel state", or the audio signal may be decoded and output through a speaker.

In addition, the sound processing unit 215 when playing at least one or more sound content or multimedia content provided (or downloaded) in the wireless terminal 200 in at least one operating mode including the "mobile station call waiting state", Preferably, the sound data corresponding to the reproduced content is decoded and output.

The key input unit 220 includes a key input device including at least one key button including a number key, a character key, or a function key, and the And a driver for driving a key input device, thereby detecting at least one key input signal generated by clicking (or entering) the key button in the key input device.

According to the present invention, when a key input signal is detected from a key button provided in the key input device in the input mode controlled by the control unit 205 or at least one or more operation modes, the key input unit 220 detects the detection. Generate a key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the generated key input signal, and provide the generated key event to the controller 205, wherein the controller 205 is provided with the wireless terminal. Read key data corresponding to the key event in the current input mode or operation mode of 200 (eg, store at least one key data corresponding to a specific key event in each input mode or operation mode) Read key data from the key table to the key event), or execute a function defined by matching the key event. And the characterized in that the shipping dock.

According to the exemplary embodiment of the present invention, the key input unit 220 inputs a telephone number in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 200, and presses the "call" button. By inputting, it is preferable to change the operation mode of the radio terminal 200 to an operation mode corresponding to the "system access state".

In addition, the key input unit 220 inputs a function key (for example, a menu key) in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 200, thereby providing the wireless terminal 200. It is desirable to execute the various functions provided in).

According to an embodiment of the present invention, the key input unit 220 preferably performs a function of key input means for inputting at least one or more key data corresponding to a function of implementing a one-time authentication code through the authentication code index. .

The wireless processor 230 is a functional component that connects a wireless channel with a base station on a mobile communication network in which the wireless terminal 200 operates based on CDMA / WCDMA, and includes a CDMA modem and various RF modules (eg, duplexer filter, power). Amplifiers, High Power Amplifiers (HPAs), Isolators, RF / IF SAW Filters, Frequency Up-Circuits, Frequency Down-Conversion Circuits, VCTCXOs, UHF Frequency Synthesizers, etc. for Reference Clock Sources) and Antennas And a location registration, a slot mode, or a power control corresponding to each operation mode of the wireless terminal 200 in association with the control unit 205. Or a hand-off or call processing procedure.

According to the exemplary embodiment of the present invention, the wireless processor 230 may transmit and receive a radio frequency signal transmission / reception function corresponding to a function of implementing a one-time authentication code through the authentication code index (eg, antenna control, modulation of radio frequency signals, synthesis, Amplification, filtering, etc.).

In particular, the wireless processor 230 processes or processes information or signals transmitted from the wireless terminal 200 to the base station in a CDMA stack or received from the base station to implement a one-time authentication code through the authentication code index. It is desirable to include the function of reading information or signals from the CDMA stack.

According to another exemplary embodiment of the present invention, if the wireless terminal 200 shown in FIG. 2 is a wireless terminal device accessing an HSDPA-based wireless network, the wireless processor 230 accesses the HSDPA-based wireless network and the authentication code. It is possible to include a wireless communication function configuration for implementing a one-time authentication code through the index, or if the wireless terminal 200 is a wireless terminal device connected to the IEEE 802.16x-based wireless network, the wireless processing unit 230 It is possible to include a wireless communication function configuration for implementing a one-time authentication code through the authentication code index by accessing the IEEE 802.16x-based wireless network, by which the present invention is not limited.

The IC chip reader unit 235 is an IC chip (eg, financial IC chip or USIM) mounted or detached from the wireless terminal 200 through an IC chip standard including ISO / IEC 7816 or ISO / IEC 14443. Etc.), and a functional component for exchanging at least one information (or data or command), the contact IC card reader corresponding to the ISO / IEC 7816 standard, or the contactless IC card corresponding to the ISO / IEC 14443 standard. And an IC card reader to exchange at least one information (or data or command) with the IC chip through an APDU (Application Protocol Data Unit).

Referring to the standards including ISO / IEC 7816 or ISO / IEC 14443, an IC chip mounted or detached from a customer wireless terminal may include a power supply (VCC), a reset signal (RST), a clock signal (CLK), I / O interface (not shown) to communicate with IC chip reader 235 (e.g. command or data exchange, etc.) via contact points such as ground (GND), programming power supply (VPP), or input / output (I / O), etc. And a processor unit (not shown) including at least one computing element including a central process unit (CPU), a micro process unit (MPU), a coprocessor, and the like, a read only memory (ROM), a RAM ( It consists of a memory (not shown) consisting of at least one or more memory elements, including random access memory (EEPROM), electrically erasable and programmable read only memory (EEPROM), flash memory (FM), in particular at least one of the memory elements Device (e.g., In the ROM), a Chip Operating System (COS) for managing and operating an IC card internal resource is stored, and power is supplied from the IC chip reader unit 235 through a power supply (VCC) contact point of the input / output interface. In this case, the COS stored in the memory is loaded into the execution memory to control the overall operation of the IC chip, and the APDU (Application Protocol Data Unit) based on the clock frequency (eg, 3.57 MHz or 4.9 MHz) of the clock signal CLK contact point. Control information or data exchange between the IC chip and the IC chip reader unit 235.

According to the present invention, the IC chip storage information (for example, IC chip program code and data) for implementing a one-time authentication code is stored in the memory of the IC chip, the IC chip storage information is A storage unit (not shown) that stores a data set corresponding to information or data that is read and read and / or used by a processor included in the customer wireless terminal, and an arithmetic function of the processor unit and an instruction set provided by the COS. A program routine (e.g., JAVA Applet in the case of Javacard) that interacts with the COS instruction set as driven or executed and operated by a processor included in the customer wireless terminal. The application corresponding to the application made up of the calling code and the execution code processed by the processor unit. A unit (not shown) is provided. In particular, the processing unit (not shown) reads an instruction provided from a processor provided in the customer wireless terminal through the input / output interface through an APDU, and stores the instruction based on the read command. Read or record at least one or more information or data stored in the unit (not shown), and provide the result or read information or data to the processor provided in the customer wireless terminal via the input and output interface through the APDU It is characterized by.

Here, the memory of the IC chip includes a security structure based on ISO / IEC 10202. According to this, the memory includes a protection area in which secret information such as a chip serial number (CSN) is stored, a COS control area, and a user. It consists of an application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area. The IC chip storage information for the present invention is stored in an area except the protection area and the COS control area. desirable.

Further, according to ISO / IEC 7816 or ISO / IEC 14443 ICC standard, the memory includes one master file (MF) corresponding to a root file and at least one storage under the master file. Answer To Reset (ATR) including functional information about the information, at least one dedicated file (DF) corresponding to each ICC stored information, and disposed under the dedicated file for smart card service. It includes a file structure consisting of an element file (EF) including substantial information or data. The IC chip storage information for the present invention also includes the file structure as described above.

According to an embodiment of the present invention, the IC chip is preferably provided with at least one user authentication IC chip storage information, or terminal authentication IC chip storage information for authenticating the validity of the user of the wireless terminal 200.

The user authentication IC chip storage information, or the terminal authentication IC chip storage information, the user authentication information input through the key input unit 220 using the IC chip authentication code (for example, PIN (Personal Identification Number)) to the wireless After authenticating the user of the terminal 200 (or the wireless terminal 200), it is preferable to return the user authentication result information, and if the person having ordinary knowledge in the technical field to which the present invention belongs, Technical features for authenticating the user of the wireless terminal 200 (or the wireless terminal 200) through an IC chip authentication code, and the user corresponding to the authentication result of the user of the wireless terminal 200 (or the wireless terminal 200). Since you will be familiar with the technical features of returning authentication result information, a detailed description thereof will be omitted for convenience.

The memory unit 240 is a non-volatile memory corresponding to a storage medium for storing at least one or more information (or data) in the wireless terminal 200, or a recording medium for recording program codes corresponding to at least one or more program routines. Is a generic term for a read only memory (ROM), a read / write flash memory (FM), an electrically erasable and programmable read only memory (EEPROM), and the like. It is done.

According to an exemplary embodiment of the present invention, system information that should not be deleted from the ROM is stored in the nonvolatile memory, and the flash memory stores various application programs provided through an operating system routine, a call processing program routine, or the wireless terminal 200. Program routines and information or data therefor are stored, and the EEPROM includes at least one extracted or generated during the execution of an application included in the terminal registration-related parameters and a phone number (eg, an address book) or the wireless terminal 200. Preferably, the information (or data) is stored.

According to an exemplary embodiment of the present invention, the memory unit 240 may provide authentication code index information and a wireless terminal 200 provided through an authentication code index providing system shown in FIG. 6 to implement a one-time authentication code through the authentication code index. It is desirable to store unique information in association.

Here, the unique information of the wireless terminal 200, the wireless terminal 200 telephone number corresponding to the customer's wireless terminal 200, the UICC (Universal IC Card) / USIM (Universal) mounted on the wireless terminal 200 Subscriber Identity) Use the information of the wireless terminal 200 including one or more serial numbers, a terminal serial number (for example, an electronic serial number (ESN)) assigned to the wireless terminal 200, and at least one opening number of the wireless terminal 200. Or, including one or more unique combination numbers generated by combining one or more of the radio terminal 200 telephone number, UICC / USIM serial number, terminal serial number, and wireless terminal 200 opening number (or part). It is preferable to make.

In addition, the memory unit 240 transmits the authentication code index information and the unique information of the wireless terminal 200 to use the wireless terminal 200 as a wireless communication disposable authenticator, or the authentication code index It is preferable to store the authentication server 280 information corresponding to the authentication server 280 to receive the one-time authentication code generation information corresponding to the information.

If the first partial one-time authentication code generation information is provided to the wireless terminal 200 through the authentication code index providing system shown in FIG. 6, the memory unit 240 implements the one-time authentication code through the authentication code index. It is preferable to further store the first partial one-time authentication code generation information provided through the authentication code index providing system shown in FIG.

Referring to FIG. 2, the wireless terminal 200 implementing the one-time authentication code through the authentication code index includes an information input unit 245 for receiving user authentication information through the key input unit 220. It is done.

In order to implement a one-time authentication code through the authentication code index, the information input unit 245 outputs a user authentication information input interface in association with the screen output unit 210, and the authentication code through the user authentication information input interface. Request for inputting user authentication information for implementing a one-time authentication code through an index, whereby the authentication processing unit 250 processes the user authentication information to be input to the user authentication information interface through the key input unit 220. It features.

The user authentication information may include at least one of a personal identification number (PIN) or a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal 200 in the authentication server 280. It is preferable to comprise as mentioned above.

Alternatively, the user authentication information, through the user authentication IC chip storage information, or terminal authentication IC chip storage information provided in the IC chip (or USIM) to authenticate the wireless communication disposable authenticator function of the wireless terminal 200. It is preferable to include at least one or more personal identification number (PIN), or password for activation.

Alternatively, the user authentication information, the wireless terminal 200 preferably comprises a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal 200, in this case, the user authentication information Is preferably stored in the memory unit 240 (not shown).

Referring to FIG. 2, the wireless terminal 200 based on the user authentication information input through the information input unit 245 to implement a one-time authentication code through the authentication code index, the wireless terminal 200. The authentication processing unit 250 for authenticating and activating the wireless communication disposable authenticator function provided at the) and, when the wireless communication disposable authenticator function is activated, confirms unique information of the wireless terminal 200 for the wireless terminal 200. A security processor 260 for encrypting or transmitting the authentication target index code information and the unique information of the wireless terminal 200 to the authentication server 280 or changing the data structure; and the wireless processor 230 It characterized in that it comprises a transmission unit 255 for transmitting the authentication code index information and the unique information of the wireless terminal 200 to the authentication server 280, Depending on the intended the security processing unit 260 can be omitted.

When user authentication information for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal 200 is input through the information input unit 245, the authentication processing unit 250 may operate the information input unit 245. Based on the user authentication information input through the wireless terminal 200 characterized in that to activate and authenticate the wireless communication disposable authenticator function provided.

When the authentication server 280 receives and authenticates the user authentication information according to an exemplary embodiment of the present invention, the authentication processing unit 250 is connected to the wireless processing unit 230 through the information input unit 245. Send the input user authentication information to the authentication server 280, and receives the user authentication result information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal 200 from the authentication server 280 It is desirable to.

When authenticating the user authentication information through the IC chip (or USIM) provided in the wireless terminal 200 according to another embodiment of the present invention, the authentication processing unit 250 is the IC chip reader unit 235 In conjunction with the providing the user authentication information input through the information input unit 245 to the IC chip (or USIM), the wireless communication one-time authentication provided in the wireless terminal 200 from the IC chip (or USIM) It is desirable to receive a user authentication result that authenticates and activates a function.

According to another exemplary embodiment of the present invention, when the wireless terminal 200 authenticates the user authentication information, the authentication processing unit 250 inputs the user authentication information and the memory input through the information input unit 245. It is preferable to check (or generate) a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal 200 by comparing the user authentication information (not shown) stored in the unit 240.

According to another exemplary embodiment of the present invention, the function of authenticating the user authentication information may be provided to the authentication server 280 (or a separate user authentication server) according to the type of the user authentication information (eg, password, ID / PW, etc.). Preferably, in this case, the authentication processing unit 250 transmits the user authentication information to the authentication server 280 (or separate user authentication server), and the authentication server 280 (or separate user authentication). Server, the authentication result of the user authentication information can be received, read and activated.

If the wireless communication disposable authenticator function provided in the wireless terminal 200 is activated based on the user authentication information, the security processing unit 260 provides the unique information of the wireless terminal 200 with respect to the wireless terminal 200. Confirm and encrypt the transmission target authentication code index information and wireless terminal 200 unique information to securely transmit to the authentication server 280, the key for encryption is the memory unit 240 Or stored in the USIM.

Alternatively, the security processing unit 260 transmits the transmission target authentication code index information and the wireless terminal 200 unique information to the authentication server 280 to securely transmit the authentication target authentication code index information and the unique information of the wireless terminal 200. It is preferred that the data structure of the data structure is changed, and the data structure change method includes a preset method or an arbitrarily set method.

According to the exemplary embodiment of the present invention, the security processing unit 260 recombines (or arranges) the data combination (or arrangement) of the transmission target authentication code index information and the unique information of the wireless terminal 200 according to a preset method or a predetermined method. Rearrangement), and when the transmission target authentication code index information and the wireless terminal 200 unique information are recombined (or rearranged) according to a random combination (or arrangement) method, the security processing unit 260 The original data of the original transmission target authentication code index information and the unique information of the wireless terminal 200 in the authentication server 280 in the recombined (or rearranged) transmission target authentication code index information and the wireless terminal 200 unique information. It is desirable to include data recovery information (eg, an identifier (or index) identifying a recombination (or rearrangement) scheme) for restoring the structure.

Here, the data recombination (or rearrangement) of the transmission target authentication code index information and the unique information of the wireless terminal 200 may be recombined by nibble, or by specific digit, or by byte, or by word, or by specific block. (Or rearrangement) is preferred.

According to an embodiment of the present invention, the security processing unit 260 may selectively secure any one of the transmission target authentication code index information and the wireless terminal 200 unique information, and the present invention provides the security. It is clearly to be understood that this includes all changeable implementation methods for the treatment.

When the transmission target authentication code index information and the wireless terminal 200 unique information are encrypted or the data structure is changed by the security processing unit 260, the transmission unit 255 stores the authentication stored in the memory unit 240. Checking the code index information, the unique information of the wireless terminal 200 and the authentication server 280 information, and the verified authentication to the authentication server 280 corresponding to the authentication server 280 information through the wireless processing unit 230 Code index information and the unique information of the radio terminal 200 is transmitted.

The authentication server 280 that has received the authentication code index information and the unique information of the wireless terminal 200 authenticates the wireless terminal 200 one-time by using the authentication code index information and the unique information of the wireless terminal 200. If it is approved to use, and the use of the wireless terminal 200 as a wireless communication disposable authenticator is approved, the one-time authentication code generation information corresponding to the authentication code index information (or second partial one-time authentication code generation information) Confirm (or create) and transmit to the wireless terminal (200).

Referring to FIG. 2, the wireless terminal 200 transmits the authentication code index information from the authentication server 280 in association with the wireless processing unit 230 to implement a one-time authentication code through the authentication code index. And a receiving unit 265 for receiving corresponding one-time authentication code generation information (or second partial one-time authentication code generation information).

When the authentication server 280 is approved to use the wireless terminal 200 as a wireless communication disposable authenticator, the receiving unit 265 is linked with the wireless processing unit 230 from the authentication server 280 the authentication code index And receiving one-time authentication code generation information corresponding to the information. If the first partial one-time authentication code generation information is stored in the memory unit 240, the authentication server 280 corresponds to authentication code index information. Preferably, the second partial one-time authentication code generation information is received.

According to the embodiment of the present invention, the one-time authentication code generation information (or second partial one-time authentication code generation information) is encrypted in the authentication server 280, or the data structure can be changed and transmitted, in this case The security processor 260 preferably decrypts the secured one-time authentication code generation information (or second partial one-time authentication code generation information) or restores the original data structure.

Referring to FIG. 2, the wireless terminal 200 generates one-time authentication code generation information (or second partial one-time authentication code generation information) from the authentication server 280 to implement a one-time authentication code through the authentication code index. ) Is received or decrypted (or restored), the one-time authentication code generation information (or the first partial one-time authentication code generation information stored in the memory 240 and the second partial one-time authentication code generation information is confirmed through (Or generated one-time authentication code generation information) through the authentication code generation unit 270 for generating an N-digit one-time authentication code (N) and the one-time authentication code generated in connection with the screen output unit 210 An output processing unit 275 for outputting (N) is provided.

When one-time authentication code generation information is received from the authentication server 280 according to an embodiment of the present invention, the authentication code generation unit 270 receives the one-time authentication code (N) from the received one-time authentication code generation information. Using as a seed value to generate (Seed Value) characterized in that for generating a one-time authentication code (N) of N digits according to a predetermined one-time authentication code generation standard.

When receiving the second partial one-time authentication code generation information from the authentication server 280 according to another embodiment of the present invention, the authentication code generation unit 270, the first partial one-time stored in the memory unit 240 Combination (or concatenation) of authentication code generation information and second one-time authentication code generation information to generate one-time authentication code generation information corresponding to the seed value for generating the one-time authentication code (N), or the first partial disposable Confirm the second one-time authentication code generation information through the authentication code generation information as a seed value for generating the one-time authentication code (N), and the generated (or confirmed) the one-time authentication code generation information is a one-time authentication code (N) Characterized by generating a one-time authentication code (N) of N digits in accordance with a predetermined one-time authentication code generation standard using the seed value (Seed Value) for generating a The.

If the first partial one-time authentication code generation information stored in the memory unit 240 is stored, the authentication code generation unit 270 is N-digit one-time authentication code (N) through the first partial one-time authentication code generation information Generate a one-time authentication code (n) of n (1 <= n <N) digits, and generate a (Nn) one-time authentication code (Nn) through the received second partial one-time authentication code generation information, By combining (or concatenating) the one-time authentication code (n) and the one-time authentication code (Nn) it is possible to generate an N-digit single-use authentication code (N), by which the present invention is not limited.

When the N-digit one-time authentication code N is generated by the authentication code generator 270, the output processor 275 is connected to the screen output unit 210 to generate the N-digit one-time authentication code ( N) is output to a predetermined area on the screen of the wireless terminal 200.

According to an exemplary embodiment of the present invention, the output processing unit 275 outputs a one-time authentication code output screen on the screen of the wireless terminal 200 in connection with the screen output unit 210, and the one-time authentication code output screen. It is preferable to output the generated N-digit one-time authentication code (N).

According to another exemplary embodiment of the present invention, the output processor 275 outputs a one-time authentication code output area to the screen area currently output on the screen of the wireless terminal 200 in association with the screen output unit 210 (or Assigning), and outputting the generated N-digit one-time authentication code (N) to the one-time authentication code output area.

According to another embodiment of the present invention, when the wireless terminal 200 is provided with a short-range communication unit (not shown), and the short-term communication channel and the authentication request terminal located in the short-range through the short-range communication unit, the wireless terminal ( 200 is capable of outputting the N-digit one-time authentication code (N) to the authentication request terminal through the short-range communication unit, whereby the present invention is not limited.

3 is a diagram illustrating an information registration system for registering wireless terminal registration information to implement a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

In more detail, Figure 3 is an information registration system for using a customer wireless terminal as a wireless one-time authentication device for implementing a one-time authentication code through the authentication code index wireless terminal registration including one or more customer information, wireless terminal information and carrier information When the information is provided, the information registration system is a wireless one-time use authenticator to implement a one-time authentication code through the authentication code index to the customer wireless terminal based on the customer information, wireless terminal information and carrier information included in the wireless terminal registration information Identifying (or generating) unique information of the customer's wireless terminal for authenticating use, and linking and processing the customer information, the unique information of the wireless terminal, and the communication company information, the storage medium 345 (for example, a financial ledger provided to a financial company, or Authentication through the database linked with the financial ledger and one-time authentication code A system configuration for registering to a storage medium 345 including one or more databases provided in a system to be managed by a user, and those skilled in the art to which the present invention pertains may refer to FIG. 3 and / or Various implementation methods for the configuration of the information registration system may be inferred by modification, but the present invention includes all the implementation methods inferred, and is not limited to the implementation method shown in FIG.

Hereinafter, the wireless terminal registration information provided from the customer on the information registration system shown in FIG. 3 is stored in the storage medium 345 (for example, a financial ledger provided to a financial company, or a database associated with the financial ledger, a one-time authentication code). A component corresponding to one or more means and / or functional configurations for storing in a storage medium 345 including one or more databases provided in a system for processing authentication is referred to as "information registration server 300" for convenience. .

Referring to FIG. 3 according to an embodiment of the present invention, the information registration system includes a client terminal including at least one window terminal 355 provided at one or more financial institution branches, a wired terminal or a wireless terminal used by the customer. Characterized in that it comprises an information registration terminal 360 including any one, the information registration terminal 360 is provided on the information registration system 300 provided on the information registration system through a financial network (or communication network) ) And the communication channel are connected.

According to an embodiment of the present invention, the customer visits the financial institution branch, and at least one application for registering the wireless terminal registration information through a window (or through a teller) provided at the financial institution branch ( For example, when a document having a form for filling out one or more information items is prepared, and the completed application is submitted to the teller, the teller enters the information written in the request through the teller terminal 355 ( Or), and the window terminal 355 transmits the input (or selected) information to the information registration server 300 provided on the information registration system through the financial network.

Here, the teller terminal 355 preferably comprises an employee terminal used by the teller staff provided at the branch of the financial institution, the information registration server 300 connected to the teller terminal 355 is located on the financial system. It is preferable to include a server (for example, information system), the financial network connecting the window terminal 355 and the information registration server 300 is the communication between the window terminal 355 and the information registration server 300 It is preferable to include a network for connecting the channels.

According to another exemplary embodiment of the present invention, the customer accesses the information registration server 300 through at least one client terminal of a wired terminal connected to a wired communication network or a wireless terminal connected to a wireless communication network, and the information registration server 300 When the wireless terminal registration information is input (or selected) through one or more information registration interfaces provided by), the wireless terminal registers from the client terminal to the information registration server 300 provided on the information registration system through a communication network. It is desirable to transmit the information.

Here, a wired terminal connected to a wired communication network is a generic term for all terminal devices connected to a transmission control protocol / Internet protocol (TCP / IP) based communication network, and a desktop computer or notebook connected to the TCP / IP based communication network. Or a home appliance terminal (eg, a set-top-box) connected to the TCP / IP-based communication network, or a kiosk connected to the TCP / IP-based communication network.

In addition, a wireless terminal connected to a wireless communication network is any terminal device connected to a CDMA-based mobile communication network, all terminal devices connected to an IEEE 802.16x-based mobile Internet, or a generic term connected to an HSDPA-based wireless data communication network. As one or more embodiments, a mobile phone connected to the CDMA-based mobile communication network, a mobile Internet terminal connected to the IEEE 802.16x-based mobile Internet, or a wireless communication terminal connected to the HSDPA-based wireless data communication network may be included.

According to an embodiment of the present invention, the client terminal outputs one or more information registration interfaces provided by the information registration server 300, and receives one or more information constituting the wireless terminal registration information through the information registration interface. A function configuration (for example, a browser program and a communication function or a communication program and communication function for communicating with the information registration server 300, etc.) for inputting (or selecting) and transmitting to the information registration server 300 is provided. It is preferable.

According to another exemplary embodiment of the present invention, the information registration terminal 360, in addition to the teller terminal 355 to the client terminal, a cash automatic teller machine (Automatic Teller Machine) connected to a financial network (for example, a financial common network); Call terminals connected to wired telephone networks such as ATMs, ATMs, Cash Dispenser (CD), Public Switched Telephone Network (PSTN) and Voice over IP (VoIP) networks ( (Not shown), a communication terminal (not shown) connected to a wireless telephone network such as a mobile communication network, a wireless VoIP network, and one or more terminals (or servers) (not shown) provided in one or more affiliated institutions affiliated with the financial institution. In this regard, the present invention is not limited thereto.

The information registration server 300 provided on the information registration system is a one-time authentication code authentication system side information registration component shown in FIG. 9 connected to the information registration terminal 360 through a financial network (or a communication network). Collectively, at least one server (or device) provided at a financial institution, or at least one server (or device) included in a system for processing authentication through a one-time authentication code, or a recording medium provided at the server (or device). It may be implemented by one or more programs recorded in the present invention, whereby the present invention is not limited. According to the exemplary embodiment of the present invention, the information registration server 300 confirms the unique information of the wireless terminal to be used as a wireless communication disposable authenticator and the one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless communication disposable authenticator (or It is preferable to perform the function of the information registration means for storing in the storage medium 345 in association with the authentication code index information.

According to an embodiment of the present invention, the information registration server 300 is provided with an interface unit 305 for connecting and managing a communication channel with the information registration terminal 360 through the financial network (or communication network). It features.

According to an embodiment of the present invention, when the information registration terminal 360 is a window terminal 355 connected to a financial network, the interface unit 305 is based on the protocol stack defined in the financial network. It is preferable to provide a communication interface for transmitting and receiving one or more information (or data) by connecting a communication channel 355 and a communication protocol defined in a financial transaction related program included in the window terminal 355.

According to another exemplary embodiment of the present invention, when the information registration terminal 360 is a client terminal including a wired terminal connected to a wired communication network, the interface unit 305 is based on a protocol stack defined in the wired communication network. It is preferable to connect a communication channel with the client terminal, and to provide a communication interface for transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal.

For example, when the client terminal is provided with a browser program corresponding to the Hyper-Text Transfer Protocol (HTTP) protocol, the interface unit 305 connects a communication channel with the client terminal based on the TCP / IP protocol. Using the HTPP protocol defined in the browser program, a web page (eg, a Hyper-Text Markup Language (HTML) compatible web page) or a communication interface for transmitting and receiving information is provided.

Alternatively, when the client terminal is provided with a communication program for communicating with the information registration server 300, the interface unit 305 connects the communication channel with the client terminal based on the TCP / IP protocol, Provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in a communication program.

Alternatively, when the information registration terminal 360 is a client terminal including a wireless terminal connected to a wireless communication network, the interface unit 305 establishes a communication channel with the client terminal based on a protocol stack defined in the wireless communication network. It is preferable to provide a communication interface for connecting and transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal.

For example, when the client terminal is provided with a browser program corresponding to a WAP (Wireless Application Protocol) to the HTTP protocol, or a wireless protocol compatible with the WAP / HTTP, the interface unit 305 is a radio provided in the wireless communication network. Connect a communication channel with the client terminal based on a communication protocol, and use a WAP / HTTP protocol (or a WAP / HTTP compatible protocol) defined in the browser program to connect a wireless web page (e.g., an HTML compatible web page or WML (Wireless). Markup Language) or communication interface for transmitting and receiving information.

Alternatively, when the client terminal is provided with a communication program for communicating with the information registration server 300, the interface unit 305 connects the communication channel with the client terminal based on the wireless communication protocol, the communication Provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in the program.

Referring to FIG. 3, in the information registration server 300, the information registration terminal 360 connects a communication channel with the information registration server 300 through the interface unit 305, and through the communication channel. When requesting registration of wireless terminal registration information, the information registration interface generates (or extracts) an information registration interface for inputting (or selecting) and transmitting wireless terminal registration information from the information registration terminal 360 in cooperation with the interface unit 305. Characterized in that the interface providing unit 310 provided to the information registration terminal 360.

The interface provider 310 connects a communication channel with the information registration server 300 through the interface unit 305 through the interface registration unit 305, and requests registration of wireless terminal registration information through the communication channel. Information registration for inputting (or selecting) the wireless terminal registration information to the information registration server 300 through the financial network (or communication network) by using the function configuration provided in the information registration terminal 360. Create an interface, or extract from the database (not shown), and the information registration interface 360 through the financial network (or communication network) the information registration interface generated (or extracted) in conjunction with the interface unit 305 It is characterized by providing in).

If a program having one or more information registration interfaces for inputting (or selecting) the wireless terminal registration information to the information registration terminal 360 and transmitting the information to the information registration server 300 through the financial network (or communication network) When the interface providing unit 310 is provided, the function of the interface providing unit 310 for providing the information registration interface to the information registration terminal 360 may be omitted, and the present invention is not limited thereto.

Thereafter, the information registration terminal 360 inputs (or selects) wireless terminal registration information including one or more of the customer information, wireless terminal information, and communication company information based on the information registration interface, and inputs (or selects) the information. The wireless terminal registration information is transmitted to the information registration server 300 through the financial network (or communication network).

Referring to FIG. 3, when the information registration server 300 inputs (or selects) and transmits wireless terminal registration information through the information registration interface, the information registration terminal 360 and the interface unit 305 are connected to each other. An information receiving unit 315 for receiving wireless terminal registration information including at least one of the customer information, the wireless terminal information, and the carrier information, and reading the received wireless terminal registration information to generate an authentication code index for the customer wireless terminal. Validation unit 340 for confirming the validity of the wireless terminal for use as a wireless communication disposable authenticator to implement a one-time authentication code through, and for authenticating the wireless terminal to be used as a wireless communication disposable authenticator from the validated wireless terminal registration information Wireless terminal unique information confirmation / generation unit 320 for identifying (or generating) unique terminal information, and the customer information and the wireless terminal At least one database provided in a storage medium 345 (eg, a financial ledger provided by a financial institution, or a database associated with the financial ledger, a system for processing authentication through a one-time authentication code) by linking and processing unique information and communication company information. And an information storage unit 335 for storing in the storage medium 345).

When the information registration terminal 360 inputs (or selects) and transmits wireless terminal registration information through the information registration interface, the information receiving unit 315 wirelessly cooperates with the interface unit 305 and the customer information. And receiving wireless terminal registration information including one or more terminal information and communication company information.

The customer information includes one or more personal information (eg, name, resident registration number, address, contact information), member information (eg, member ID / PW information), and customer number registered in the storage medium 345. It is preferable.

According to an embodiment of the present invention, when the storage medium 345 is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through a customer ledger registered in the financial ledger. Preferably, the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes information of a communication company server 350 provided in the communication company.

According to an embodiment of the present invention, in the one-time authentication code authentication system shown in FIG. 9, when authenticating and activating a wireless communication disposable authenticator function provided in a wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

When the wireless terminal registration information is received, the validity check unit 340 reads the received wireless terminal registration information wireless for use as a wireless one-time use authenticator to implement a one-time authentication code through the customer wireless terminal authentication code index It is characterized by checking the validity of the terminal.

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

In addition, the wireless terminal validity check, by providing the customer information and the wireless terminal information to the carrier server 350 corresponding to the carrier information (or wireless terminal information) based on the customer information, wireless terminal information and carrier information. Preferably, the communication service provider includes the subscriber information including the customer information and the wireless terminal information.

When the validity of the wireless terminal is confirmed, the unique identification information / generation unit 320 implements the one-time authentication code for the customer wireless terminal through an authentication code index based on the wireless terminal information included in the wireless terminal registration information. Identifying the unique information of the wireless terminal for authenticating the use of the wireless communication disposable authenticator, or generating the unique information of the wireless client.

According to the embodiment of the present invention, the wireless terminal unique information confirmation / generation unit 320 is a wireless terminal telephone number corresponding to the customer's wireless terminal, the UICC (Universal IC Card) / USIM (mounted on the wireless terminal) Universal Subscriber Identity (Ultra Subscriber Identity), a terminal serial number (e.g., an ESN (Electronic Serial Number)) assigned to the wireless terminal, wireless terminal information including one or more wireless terminal opening number through the authentication code index of the customer wireless terminal It is preferable to confirm the unique information of the customer wireless terminal for authenticating the use of the wireless communication disposable authenticator to implement the one-time authentication code as unique information of the wireless terminal.

Alternatively, the unique identification information / generation unit 320 is a unique combination generated by combining one or more of all (or part) of the radio terminal phone number, UICC / USIM serial number, terminal serial number, wireless terminal opening number It is preferable to generate a number and to process the customer wireless terminal as unique information for authenticating the use of the customer wireless terminal as a wireless communication disposable authenticator implementing a one-time authentication code through an authentication code index.

Thereafter, the information storage unit 335 processes the customer information included in the wireless terminal registration information, the identified (or generated) wireless terminal unique information and the communication company information in association with the storage medium 345 (eg, provided to the financial company). The financial ledger, or a database associated with the financial ledger, a storage medium 345 including one or more databases provided in a system for processing authentication through a one-time authentication code).

According to an embodiment of the present invention, when the storage medium 345 is a financial ledger, the customer information is included in the customer ledger, and the unique information of the wireless terminal and the telecommunication company information are in the form of additional information ledger associated with the customer ledger. It is preferable to register in the ledger D / B.

According to an embodiment of the present invention, in the one-time authentication code authentication system shown in FIG. 9, when authenticating and activating a wireless communication disposable authenticator function provided in a wireless terminal provided with the authentication code index information through user authentication information, Preferably, the information storage unit 335 further stores the user authentication information in the storage medium 345 (not shown), and the present invention is not limited thereto.

Referring to FIG. 3, the information registration server 300, when the unique information of the radio terminal is confirmed (or generated), the authentication code index to verify (or generate) authentication code index information to be associated with the unique information of the radio terminal And an information storage unit 335 for storing the information confirmation / generation unit 325 and the wireless terminal unique information and the verified (or generated) authentication code index information in the storage medium 345. It is characterized by.

When the unique information of the wireless terminal is confirmed (or generated), the authentication code index information checking / generating unit 325, the authentication code index management D / B so as not to duplicate the authentication code index information to be associated with the unique information of the wireless terminal It is characterized by generating a new authentication code index information that is not duplicated with the identification number (not shown) or the previously confirmed (or generated) authentication code index, the information storage unit 335 is the storage medium The wireless terminal unique information stored in 345 and the identification (or generated) authentication code index information is stored in association.

Referring to FIG. 3, when the information registration server 300 registers the one time authentication code generation information for using the customer wireless terminal as a wireless communication disposable authenticator in advance in association with the authentication code index information, The one-time authentication code generation information confirmation / generation unit 330 for confirming (or generating) the one-time authentication code generation information to be associated with the authentication code index information, and the authentication code index information and the one-time authentication code confirmed (or generated). It characterized in that it further comprises an information storage unit 335 for storing the generated information in the storage medium 345.

When one-time authentication code generation information for using the customer wireless terminal as a wireless communication disposable authenticator is registered in advance in association with the authentication code index information, the one-time authentication code generation information checking / generation unit 330, When the customer wireless terminal is used as a wireless communication disposable authenticator, the one-time authentication code generation information to be provided to the customer wireless terminal is confirmed from the one-time authentication code generation information management D / B (not shown), so as not to be duplicated, or previously confirmed (Or generate) new one-time authentication code generation information that does not overlap with the generated authentication code index, the information storage unit 335 is the authentication code index information (or wireless) stored in the storage medium 345 Terminal unique information) and the verification (or generated) authentication code index information in association .

According to another embodiment of the present invention, when the one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is generated. The functional configuration of checking (or generating) and storing the data in the storage medium 345 can be omitted, and the present invention is not limited thereto.

4 is a diagram illustrating a process of registering wireless terminal registration information according to an embodiment of the present invention.

In more detail, FIG. 4 illustrates a case in which a program having an information registration interface is provided in the information registration terminal shown in FIG. 3, and the customer information, wireless terminal information, and communication company information are operated by driving the program in the information registration terminal. When inputting (or selecting) and transmitting the wireless terminal registration information including the above, the customer for authenticating the use of the customer wireless terminal as a wireless one-time authentication using a one-time authentication code through the authentication code index through the wireless terminal registration information Identifying (or generating) unique information of the wireless terminal, and storing the customer information, the unique information of the wireless terminal and the carrier information in a storage medium in association with the authentication information, the authentication code index information associated with the unique information of the wireless terminal, the authentication code index The storage medium by further confirming (or generating) the one-time authentication code generation information associated with the information As a process of storing the information in a screen, for example, in the case where the information registration terminal is a teller terminal, a method of registering the wireless terminal registration information through the teller terminal is shown.

Those skilled in the art to which the present invention pertains can deduce various implementation methods for registering the wireless terminal registration information by referring to and / or modifying the drawing 4, but the present invention is inferred from all It includes an implementation method and is not limited to the implementation method shown in FIG.

For example, when one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is checked (or generated). The process of storing in the storage medium can be omitted, whereby the present invention is not limited.

Hereinafter, in FIG. 4, the information registration terminal shown in FIG. 3 is called "terminal" for convenience, and the information registration server shown in FIG. 3 is called "server" for convenience.

Referring to FIG. 4, a terminal equipped with a program having the information registration interface authenticates an information registration authority (eg, a clerk's authority) by connecting a communication channel with the server, and the customer information, wireless terminal information, and a communication company. An information registration interface for inputting (or selecting) wireless terminal registration information including one or more information is output (400).

Thereafter, the terminal inputs (or selects) wireless terminal registration information including one or more customer information, wireless terminal information, and communication company information through the information registration interface (405).

If the terminal receives (or selects) the wireless terminal registration information including the customer information, the wireless terminal information, and the carrier information through the information registration interface (410), the terminal receives the input through the information registration authority ( Alternatively, the wireless terminal registration information including the selected customer information, wireless terminal information, and carrier information is transmitted to the server (415).

Preferably, the customer information includes one or more personal information of the customer (eg, name, social security number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in a storage medium. .

According to an embodiment of the present invention, when the storage medium is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through the customer ledger registered in the financial ledger. It is preferable that the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes communication company server information provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

Thereafter, the server receives and reads wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the carrier information to confirm the validity of the wireless terminal (420).

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

The wireless terminal validity check may be performed by providing the customer information and the wireless terminal information to a communication company server corresponding to the communication company information (or wireless terminal information) based on the customer information, the wireless terminal information, and the communication company information. It is preferable to include whether the subscriber information including the customer information and the wireless terminal information is subscribed to.

If the validity of the wireless terminal is not authenticated (425), the server generates information registration error information and transmits it to the terminal (430), and does not perform the wireless terminal registration information registration procedure.

On the other hand, if the validity of the wireless terminal is authenticated (425), the server is used as a wireless one-time use authenticator to implement the one-time authentication code through the authentication code index based on the wireless terminal information included in the wireless terminal registration information In operation 435, the client wireless terminal unique information for authenticating the information is confirmed, or the client wireless terminal unique information is generated.

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the unique information of the wireless terminal is confirmed (or generated) (440), the server stores the customer information included in the wireless terminal registration information and the wireless terminal unique information and the carrier information in association with the confirmed (or generated) Store to media (445).

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the server further stores the user authentication information in the storage medium (not shown), and the present invention is not limited thereto.

In addition, the server confirms (or generates) authentication code index information associated with the wireless terminal unique information and one-time authentication code generation information associated with the authentication code index information (450), and the wireless terminal unique information and authentication code. Storing the information on the storage medium in association with the index information and storing the authentication code index information and the one-time authentication code generation information in the storage medium in association with the storage information (455). 460) The registration procedure for the wireless terminal registration information is completed.

5 is a diagram illustrating a process of registering wireless terminal registration information according to another embodiment of the present invention.

In more detail, in FIG. 5, when the information registration terminal shown in FIG. 3 connects a communication channel with the information registration server shown in FIG. 3 through a communication network and requests registration of the wireless terminal registration information, the information registration server Provides an information registration interface for inputting (or selecting) wireless terminal registration information including one or more of the customer information, wireless terminal information, and carrier information to the information registration terminal, and wherein the information registration interface is provided through the information registration interface. When the wireless terminal registration information including one or more of the customer information, the wireless terminal information and the carrier information is input (or selected) and transmitted, the information registration server transmits the customer wireless terminal through the authentication code index through the wireless terminal registration information. Wireless authentication for use as a wireless one-time authenticator to implement a one-time authentication code Identify (or create) unique wireless terminal information and store the customer information in association with the wireless terminal specific information and the carrier information in a storage medium, wherein the authentication code index information associated with the unique wireless terminal information and the authentication code index The method relates to a process of further confirming (or generating) one-time authentication code generation information associated with the information and storing the information on the storage medium. For example, when the information registration terminal is a client terminal, the wireless terminal through the client terminal. The implementation method of registering registration information is shown.

Those skilled in the art to which the present invention pertains may deduce various implementation methods for registering the wireless terminal registration information by referring to and / or modifying the present invention, but the present invention is inferred from the above. It includes all implementation methods and is not limited to the implementation method shown in FIG.

For example, when one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is checked (or generated). The process of storing in the storage medium can be omitted, whereby the present invention is not limited.

Hereinafter, in FIG. 5, the information registration terminal shown in FIG. 3 is referred to as "terminal" for convenience, and the information registration server shown in FIG. 3 is referred to as "server" for convenience.

Referring to FIG. 5, when the terminal requests a wireless terminal registration information registration by connecting a communication channel with the server (500), the server generates a web page including an information registration interface for registering the wireless terminal registration information. (Or extract) 505, and transmits and outputs a web page including the information registration interface to the terminal through the communication channel (510).

Thereafter, the terminal inputs (or selects) wireless terminal registration information including one or more customer information, wireless terminal information, and communication company information through the information registration interface (515).

If the terminal receives (or selects) wireless terminal registration information including the customer information, the wireless terminal information, and the carrier information through the information registration interface (520), the terminal receives the input through the information registration authority ( Alternatively, the wireless terminal registration information including the selected customer information, wireless terminal information, and carrier information is transmitted to the server (525).

Preferably, the customer information includes one or more personal information of the customer (eg, name, social security number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in a storage medium. .

According to an embodiment of the present invention, when the storage medium is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through the customer ledger registered in the financial ledger. It is preferable that the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information includes a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and a terminal serial assigned to the wireless terminal. It is preferable to include a number (eg, an electronic serial number (ESN)) and one or more wireless terminal opening numbers.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes communication company server information provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

Thereafter, the server receives and reads wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the carrier information to confirm the validity of the wireless terminal (530).

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

The wireless terminal validity check may be performed by providing the customer information and the wireless terminal information to a communication company server corresponding to the communication company information (or wireless terminal information) based on the customer information, the wireless terminal information, and the communication company information. It is preferable to include whether the subscriber information including the customer information and the wireless terminal information is subscribed to.

If the validity of the wireless terminal is not authenticated (535), the server is a wireless one-time use authenticator that implements the one-time authentication code through the authentication code index of the customer wireless terminal based on the wireless terminal information included in the wireless terminal registration information. In operation 545, the wireless terminal specific information is checked for the unique wireless terminal specific information for authenticating the use, or the unique wireless terminal unique information is generated (545).

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the unique information of the wireless terminal is confirmed (or generated) (550), the server stores and stores the customer information included in the wireless terminal registration information in association with the confirmed (or generated) wireless terminal unique information and the carrier information. Save to media (555).

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in Figure 8 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the server further stores the user authentication information in the storage medium (not shown), and the present invention is not limited thereto.

In addition, the server checks (or generates) authentication code index information associated with the unique information of the wireless terminal, one-time authentication code generation information associated with the authentication code index information (560), and the unique information and authentication code of the wireless terminal. The index information is linked and stored in the storage medium, and the authentication code index information and the one-time authentication code generation information are linked and stored in the storage medium (565).

6 is a diagram illustrating a configuration of an authentication code index providing system according to an exemplary embodiment of the present invention.

In more detail, FIG. 6 shows unique information of the customer wireless terminal 635 for authenticating the use of the customer wireless terminal 635 as a wireless communication disposable authenticator to the storage medium 630 through the information registration system shown in FIG. After the authentication code index information is registered, showing the system configuration for providing the authentication code index information to the wireless terminal 635 corresponding to the unique information of the customer wireless terminal 635, in the technical field to which the present invention belongs Those skilled in the art may refer to and / or modify this drawing 6 to infer various implementation methods (e.g., some implementations are omitted, subdivided, or combined) for the authentication code index provision system configuration. Although the present invention can be made, the present invention includes all the implementation methods inferred, and the technical features are shown only by the implementation method shown in FIG. This is not limited.

Hereinafter, one or more means for providing the authentication code index information to the customer wireless terminal 635 and / or a component corresponding to a functional configuration on the index providing system shown in FIG. 6 will be referred to as "index providing server 600". "

Referring to FIG. 6 according to an embodiment of the present invention, the authentication code index providing system is provided with the authentication code index information, the wireless terminal 635 to be used as the wireless communication disposable authenticator, and through the wireless communication network Is connected to the wireless terminal 635 and confirms the unique information and authentication code index information of the wireless terminal 635 registered in the storage medium 630 through the information registration system shown in Figure 3, and through the wireless communication network It characterized in that it comprises an index providing server 600 for providing the authentication code index information to the customer terminal.

The wireless terminal 635 to be used as the wireless communication one-time authenticator includes a memory for storing authentication code index information provided from the index providing server 600 and the wireless communication network when the wireless terminal 635 is used as a wireless communication one-time authenticator. After providing the authentication code index information stored in the memory to the one-time authentication code authentication system shown in Figure 9, and in the one-time authentication code authentication system to approve the use of the wireless terminal 635 as a wireless communication disposable authenticator, When the one-time authentication code generation information (or first partial one-time authentication code generation information including a part of the one-time authentication code generation information) corresponding to the authentication code index information is transmitted, the one-time authentication code generation information is transmitted through the wireless communication network. Receiving, the received one-time authentication code generation information (or one-time authentication code A part of surname information) is a generic term for a wireless communication terminal having a function of generating a one-time authentication code (N) of N (N> = 2) digits. Reference will be made to FIG. 2.

The index providing server 600 provided on the authentication code index providing system is a one-time authentication code authentication system side authentication code shown in FIG. 9 connected through a wireless communication network and a wireless terminal 635 to be used as the wireless communication disposable authenticator. Collectively, the index providing component may include one or more servers (or devices) provided in a financial institution, or one or more servers (or devices) provided in a system that processes authentication through a one-time authentication code, or the server (or devices). It may be implemented as one or more programs recorded on the recording medium provided, by which the present invention is not limited.

Referring to FIG. 6, the index providing server 600 confirms a wireless terminal 635 identification unit 605 (or a wireless terminal 635) for confirming unique information of the wireless terminal 635 to be used as the wireless communication disposable authenticator. Means) and an authentication code index information verification unit (610) for confirming authentication code index information to be provided to the wireless terminal 635 corresponding to the unique information of the wireless terminal 635 in association with the storage medium 630 (or Authentication code index information checking means) and a wireless terminal to be used as the wireless one-time use authenticator through a wireless communication network (e.g., a wireless communication network corresponding to carrier information stored in the storage medium 630) connected to the wireless terminal 635. And an authentication code index information providing unit 615 (or authentication code index information providing means) for providing the verified authentication code index information to 635, wherein the wireless terminal 635 is provided. When the unique information of the wireless terminal 635 is not stored (for example, the unique information of the wireless terminal 635 is the telephone number, the UICC / USIM serial number, the terminal serial number, and the wireless terminal 635 of the wireless terminal 635). And a unique combination number generated by combining one or more of all of the opening numbers), and the unique information of the wireless terminal 635 transmitting the unique information of the wireless terminal 635 to the wireless terminal 635. Characterized in that it further comprises a study (or wireless terminal 635 unique information providing means).

The wireless terminal 635 confirming unit 605 may provide authentication code index information among the unique information of the wireless terminal 635 registered in the storage medium 630 through the information registration system shown in FIG. 3. 635, wherein the unique information is confirmed, and when the unique information of the wireless terminal 635 is confirmed, the authentication code index information confirming unit 610 is connected to the storage medium 630. 635) identifying (or extracting) authentication code index information to be provided to the wireless terminal 635 corresponding to the unique information, and if the authentication code index information is not stored in the storage medium 630, The authentication code index information checking unit 610 may generate the authentication code index information to be provided to the wireless terminal 635 so as not to overlap.

When the authentication code index information to be provided to the wireless terminal 635 is confirmed, the authentication code index information providing unit 615 is connected to a wireless communication network (for example, the storage medium 630) to which the wireless terminal 635 is connected. And providing the verified authentication code index information to the wireless terminal 635 to be used as the wireless one-time authenticator through the wireless communication network corresponding to the stored communication company information, wherein the authentication code index information is the wireless terminal 635. It is preferably stored in the memory unit provided in).

When the unique information of the wireless terminal 635 is not stored in the wireless terminal 635 (for example, the unique information of the wireless terminal 635 is the telephone number, the UICC / USIM serial number, and the terminal serial number of the wireless terminal 635). Number, a unique combination number generated by combining one or more of all (or a part) of the opening number of the wireless terminal 635), the unique information providing unit of the wireless terminal 635 is stored in the wireless terminal 635 It is preferable to extract and transmit the unique information of the wireless terminal 635 stored in the medium 630.

Referring to FIG. 6, the index providing server 600 is associated with authentication code index information provided to the wireless terminal 635 corresponding to the unique information of the wireless terminal 635 in association with the storage medium 630. Partial one-time authentication code generation information confirmation unit 620 (or partial one-time authentication code generation information confirmation means) for confirming the first partial one-time authentication code generation information including a part of the one-time authentication code generation information, and the wireless terminal 635 Part of the confirmed one-time authentication code generation information to the wireless terminal 635 to be used as the wireless one-time authentication through a wireless communication network (for example, a wireless communication network corresponding to communication information stored in the storage medium 630) connected thereto. Partial one-time authentication code generation information providing unit for providing the first partial one-time authentication code generation information including 625 (or the number of partial one-time authentication code generation information provided And one-time authentication code generation information corresponding to the authentication code index information is not stored in the storage medium 630, or in the one-time authentication code authentication system shown in FIG. When providing the entire one-time authentication code generation information to the wireless terminal 635, a function of providing the first partial one-time authentication code generation information including a part of the one-time authentication code generation information to the wireless terminal 635 in advance. This can be omitted, and the present invention is not limited thereby.

The partial one-time authentication code generation information checking unit 620 is connected to the storage medium 630 when the one-time authentication code generation information corresponding to the authentication code index information is generated and stored in the storage medium 630. The first partial disposable part includes a part of the one-time authentication code generation information to be provided to the wireless terminal 635 in association with the authentication code index information provided to the wireless terminal 635 corresponding to the unique information of the wireless terminal 635. Characterize the verification code generation information.

Here, the first partial one-time authentication code generation information, the one-time authentication to provide to the wireless terminal 635 in the one-time authentication code authentication system shown in Figure 9, when using the wireless terminal 635 as a wireless communication disposable authenticator Part of the code generation information, the combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 635 in the one-time authentication code authentication system shown in Figure 9 when using the wireless terminal 635 as a wireless communication disposable authenticator When using the wireless terminal 635 as a wireless communication disposable authenticator, at least one verification value for verifying the one-time authentication code generation information provided to the wireless terminal 635 in the one-time authentication code authentication system shown in FIG. It is preferable to make.

When the first partial one-time authentication code generation information to be pre-provided to the wireless terminal 635 is confirmed, the partial one-time authentication code generation information providing unit 625 may be connected to the wireless communication network (eg, the wireless terminal 635). A first partial one-time authentication code including a part of the confirmed one-time authentication code generation information to a wireless terminal 635 to be used as the wireless one-time authentication device through a wireless communication network corresponding to the carrier information stored in the storage medium 630; Characterized by providing the generation information, a portion of the one-time authentication code generation information is preferably stored in the memory unit provided in the wireless terminal 635.

7 is a diagram illustrating a process of providing an authentication code index according to an embodiment of the present invention.

In more detail, Figure 7 illustrates a process of providing authentication code index information to a wireless terminal to use the wireless terminal as a wireless communication disposable authenticator in the authentication code index providing system shown in Figure 6, the present invention Those skilled in the art will be able to infer various implementation methods for the authentication code index providing process by referring to and / or modifying the drawing 7, but the present invention includes all the implementation methods inferred The technical features are not limited only to the implementation method illustrated in FIG. 7.

Hereinafter, in FIG. 7, the index providing server shown in FIG. 6 is referred to as "server" for convenience.

Referring to FIG. 7, the server identifies a wireless terminal for providing authentication code index information in response to the unique information of the wireless terminal registered through the information registration system shown in FIG. 3 (700) and associates with the storage medium. In operation 705, the authentication code index information associated with the unique information of the wireless terminal corresponding to the wireless terminal to provide the authentication code index information is checked.

If the radio terminal specific information is not stored in the radio terminal (for example, the radio terminal unique information is the whole (or part) of the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal opening number) In the case of including a unique combination number generated by combining one or more), it is preferable that the server further checks the unique information of the radio terminal to be provided to the radio terminal from the storage medium.

If the authentication code index information to be provided to the wireless terminal to be used as the wireless one-time authenticator is confirmed (710), the server is a wireless communication network connected to the wireless terminal (for example, a wireless communication network corresponding to the carrier information stored in the storage medium) It is preferable to provide the verified authentication code index information to the wireless terminal to be used as the wireless communication disposable authenticator (715), the authentication code index information is preferably stored in the memory unit provided in the wireless terminal.

If the radio terminal specific information is not stored in the radio terminal (for example, the radio terminal unique information is the whole (or part) of the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal opening number) (C) including a unique combination number generated by combining one or more), the server further transmits the unique information of the wireless terminal to the wireless terminal, wherein the unique information of the wireless terminal is a memory provided in the wireless terminal. It is preferred to be stored in the department.

8 is a diagram illustrating a process of providing a part of one-time authentication code generation information associated with authentication code index information according to an embodiment of the present invention.

In more detail, FIG. 8 is a view corresponding to a part of the one-time authentication code generation information associated with the authentication code index information provided to the wireless terminal to be used as the wireless communication disposable authenticator through the process of providing the authentication code index information shown in FIG. 1 shows a process of providing one-time one-time authentication code generation information to the wireless terminal, and a person having ordinary knowledge in the technical field to which the present invention pertains refers to and / or modifyes the authentication code index information with reference to FIG. Various implementation methods for the process of providing a part of the one-time authentication code generation information associated with the can be inferred, but the present invention comprises all the implementation methods inferred, with only the implementation method shown in FIG. The technical features are not limited.

Hereinafter, in FIG. 8, the index providing server shown in FIG. 3 is referred to as " server " for convenience.

Referring to FIG. 8, the server generates a one-time authentication code associated with authentication code index information provided to a wireless terminal to be used as the wireless one-time authentication through the process of providing authentication code index information shown in FIG. 7 in association with a storage medium. The first partial one-time authentication code generation information corresponding to a part of the information is confirmed (800).

Here, the first one-time authentication code generation information is a portion of the one-time authentication code generation information to be provided to the wireless terminal in the one-time authentication code authentication system shown in Figure 9, when using the wireless terminal as a wireless communication disposable authenticator, the wireless When using the terminal as a wireless communication disposable authenticator, the combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal in the one-time authentication code authentication system shown in Figure 9, when using the wireless terminal as a wireless one-time authentication, It is preferable that the one-time authentication code authentication system shown in Figure 9 comprises one or more verification values for verifying the one-time authentication code generation information provided to the wireless terminal.

If the first partial one-time authentication code generation information corresponding to a part of the one-time authentication code generation information associated with the authentication code index information provided to the wireless terminal to be used as the wireless communication one-time authentication is confirmed (805), the server is the wireless A first portion corresponding to a part of the confirmed one-time authentication code generation information by a wireless terminal to be used as the wireless one-time authentication device through a wireless communication network (for example, a wireless communication network corresponding to the carrier information stored in the storage medium) connected to the terminal; Providing one-time authentication code generation information (810), the first one-time authentication code generation information is preferably stored in the memory unit provided in the wireless terminal.

9 is a view showing a one-time authentication code authentication system configuration for implementing a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

In more detail, FIG. 9 illustrates that the wireless terminal 960 is approved for use as a wireless communication disposable authenticator through authentication code index information and wireless unique information provided from the wireless terminal 960 shown in FIG. The one-time authentication code generation information (or second partial one-time authentication code generation information) corresponding to the authentication code index information to the terminal 960 is provided to the wireless terminal 960, and the one-time authentication code in the wireless terminal 960. A system configuration for generating a one-time authentication code (N) having N (N> = 2) digits through generation information (or second partial one-time authentication code generation information), and authenticating the generated one-time authentication code (N) As illustrated, those of ordinary skill in the art to which the present invention pertains may implement a one-time authentication code through the authentication code index by referring to and / or modifying the drawing 9. It is possible to infer various implementation methods (e.g., implementation methods in which some components are omitted, subdivided, or combined) for the authentication code authentication system, but the present invention includes all the implementation methods inferred above, The technical features are not limited only to the implementation method shown in FIG.

Hereinafter, the authentication code index information and the wireless terminal 960 unique information transmitted from the customer wireless terminal 960 are received on the one-time authentication code authentication system shown in FIG. 9, and the authentication code index information and the wireless terminal ( 960) After approving the use of the wireless terminal 960 as a wireless communication disposable authenticator through the unique information, and providing the wireless terminal 960 with one-time authentication code generation information corresponding to the authentication code index information, the wireless terminal A component corresponding to one or more means and / or functional configurations for authenticating the N-digit one-time authentication code N generated through the one-time authentication code generation information at 960 is referred to as an "index providing server" for convenience.

Referring to FIG. 9 according to an embodiment of the present invention, the authentication code index providing system includes a wireless terminal 960 to be used as the wireless communication disposable authenticator and the authentication code index transmitted from the customer wireless terminal 960. Information and the unique information of the wireless terminal 960, and the wireless terminal 960 is approved for use as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal 960. After providing the corresponding one-time authentication code generation information to the wireless terminal 960, the authentication server for authenticating the N-digit one-time authentication code (N) generated by the one-time authentication code generation information in the wireless terminal 960 It characterized in that it comprises a (900).

The wireless terminal 960 to be used as the wireless communication disposable authenticator stores the authentication code index information and the wireless terminal 960 unique information provided through the authentication code index providing system shown in FIG. 6, and the wireless terminal 960. When using as a wireless communication disposable authenticator, the authentication code index information and the wireless terminal 960 unique information through the wireless communication network to the authentication server 900, the wireless server 960 in the authentication server (900) Is approved for use as a wireless communication one-time authenticator, and then transmits the one-time authentication code generation information (or second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information) corresponding to the authentication code index information. If one receives the one-time authentication code generation information through the wireless communication network, the received one-time authentication code generation information (or one As a generic term for a wireless communication terminal having a function of generating a one-time authentication code (N) of N digits through the second partial one-time authentication code generation information including the remaining part of the disposable authentication code generation information, the wireless terminal ( 960) A detailed description of the functional configuration will be made with reference to FIG.

The authentication server 900 provided on the authentication code index providing system receives the authentication code index information and the unique information of the wireless terminal 960 from the wireless terminal 960 to be used as the wireless communication disposable authenticator through a wireless communication network, After approving use of the wireless terminal 960 as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal 960, the wireless terminal 960 generates one-time authentication code generation information corresponding to the authentication code index information. After providing), the wireless terminal 960 as a collective name of the one-time authentication code authentication system side components for authenticating the N-digit one-time authentication code (N) generated through the one-time authentication code generation information, provided to the financial company One or more servers (or devices), or one or more servers (or devices) provided in the system for processing authentication via a one-time authentication code, or It may be implemented as one or more programs recorded on a recording medium provided in the server (or device), by which the present invention is not limited.

Referring to FIG. 9, the authentication server 900 receives authentication code index information and unique information of the wireless terminal 960 from the wireless terminal 960 to be used as the wireless communication disposable authenticator, and transmits to the wireless terminal 960. It is characterized in that it comprises a wireless interface 905 for connecting a wireless data communication communication channel for providing one-time authentication code generation information, or exchange wireless messages.

When the wireless communication network provides a data communication channel according to an embodiment of the present invention, the wireless interface unit 905 may be used from the wireless terminal 960 to be used as the wireless communication disposable authenticator according to the data communication protocol of the wireless communication network. It is preferable to connect the wireless communication channel for receiving the authentication code index information and the unique information of the radio terminal 960, and to provide the one-time authentication code generation information to the radio terminal 960.

When the wireless communication network provides a message exchange protocol according to another exemplary embodiment of the present invention, the wireless interface unit 905 uses the wireless terminal 960 to be used as the wireless one-time authenticator according to the message exchange protocol of the wireless communication network. It is desirable to provide a message exchange interface for receiving authentication code index information and unique information of the wireless terminal 960 from the terminal, and providing the one-time authentication code generation information to the wireless terminal 960.

Referring to FIG. 9, when the authentication server 900 transmits authentication code index information and unique information of the radio terminal 960 in the radio terminal 960 to be used as the radio communication disposable authenticator, the radio interface unit 905. Index information receiving unit 910 (or index information receiving means) for receiving the authentication code index information and the unique information of the wireless terminal 960 through the; and the authentication code index information and wireless in association with the storage medium 955 Authentication of the wireless terminal 960 authentication unit 915 (or wireless terminal 960) to approve the wireless terminal 960 corresponding to the unique information of the wireless terminal 960 through the terminal 960 unique information as a wireless communication disposable authenticator. Means), and when the wireless terminal 960 is approved as a wireless communication disposable authenticator, confirming / generating one-time authentication code generation information for confirming (or generating) one-time authentication code generation information corresponding to the authentication code index information. 920 (or one-time authentication code generation information confirmation / generation means), and the one-time authentication code generation information providing unit 930 for providing the one-time authentication code generation information through the wireless communication network (or 960) (or And one-time authentication code generation information providing means. If the received authentication code index information and the wireless terminal 960 unique information are received through security processing (or data structure change), the The original authentication code index information and the radio terminal 960 unique information are restored by decrypting the secured authentication code index information and the radio terminal 960 unique information (or data structure restoration), and generating the authentication code generation information (or When the second partial one-time authentication code generation information is provided to the wireless terminal 960 by the security process, the authentication code generation information (or second It is characterized in that it further comprises a security processing unit 925 (or security processing means) for securely processing the one-time authentication code generation information) through encryption (or data structure change), according to the intention of those skilled in the art When the user authentication information is transmitted from 960, a user authentication unit (or user authentication means, not shown) that authenticates the user authentication information and provides an authentication result for the user authentication information to the wireless terminal 960. It is preferable to further comprise.

In the wireless terminal 960 shown in FIG. 2, the authentication code index information and the wireless terminal 960 unique information are transmitted through a wireless communication network in order to use the wireless terminal 960 as the wireless communication disposable authenticator. The index information receiving unit 910 may receive the authentication code index information and the unique information of the radio terminal 960 through the air interface unit 905.

If the received authentication code index information and unique information of the wireless terminal 960 are encrypted and received, the security processor 925 decrypts the secured authentication code index information and unique information of the wireless terminal 960 to obtain the original information. The authentication code index information and the radio terminal 960 unique information may be restored.

Alternatively, when the received authentication code index information and the wireless terminal 960 unique information are secured and received through a data structure change, the security processing unit 925 receives the secured authentication code index information and the wireless terminal 960. The original authentication code index information and the wireless terminal 960 unique information may be restored by restoring the data structure of the unique information.

The wireless terminal 960 authentication unit 915 registers the unique information of the wireless terminal 960 on a storage medium 955 that stores the unique information of the wireless terminal 960 in association with the storage medium 955. If the unique information of the wireless terminal 960 is registered in the storage medium 955, check the authentication code index information associated with the unique information of the wireless terminal 960 from the storage medium 955, By comparing the authentication code index information confirmed from the storage medium 955 and the authentication code index information received from the wireless terminal 960, the received authentication code index information and the unique information of the wireless terminal 960 is the storage medium. If it is confirmed that the stored in 955, the wireless terminal 960 corresponding to the unique information of the wireless terminal 960, characterized in that the wireless communication disposable authenticator.

If the wireless terminal 960 is approved as a wireless communication disposable authenticator, the one-time authentication code generation information checking / generating unit 920 generates one-time authentication code generation information corresponding to the authentication code index information from the storage medium 955. Or confirm or dynamically generate one-time authentication code generation information corresponding to the authentication code index information.

According to an exemplary embodiment of the present invention, a one-time authentication code corresponding to the authentication code index information is generated in the storage medium 955 through the information registration system shown in FIG. 3 or the authentication code index providing system shown in FIG. When the information is stored, the one-time authentication code generation information check / generation unit 920 preferably checks the one-time authentication code generation information corresponding to the authentication code index information from the storage medium 955.

According to another embodiment of the present invention, when the one-time authentication code generation information is not stored in the storage medium 955 and dynamically generates one-time authentication code generation information corresponding to the authentication code index information, the one-time authentication code The generation information checking / generating unit 920 preferably dynamically generates real-time one-time authentication code generation information corresponding to the authentication code index information that has approved the wireless terminal 960 as a wireless communication disposable authenticator.

A first portion including a part of the one-time authentication code generation information to the wireless terminal 960 (for example, the wireless terminal 960 to be used as the wireless communication disposable authenticator) through the authentication code index providing system shown in FIG. When the one-time authentication code generation information is provided, the one-time authentication code generation information checking / generating unit 920 is a part of the remaining one-time authentication code generation information matching the partial one-time authentication code generation information previously provided to the wireless terminal 960. It is preferable to confirm (or generate) the second partial one-time authentication code generation information including the.

If the first partial one-time authentication code generation information previously provided to the wireless terminal 960 is part of the one-time authentication code generation information to be provided to the wireless terminal 960 according to an embodiment of the present invention, the one-time authentication code generation The information checking / generating unit 920 preferably confirms (or generates) the second partial one-time authentication code generation information to be provided to the wireless terminal 960 with the remaining part of the one-time authentication code generation information.

According to another embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 960 is a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 960, The one-time authentication code generation information confirmation / generation unit 920 confirms (or generates) the one-time authentication code generation information to be combined with the combination code as the second partial one-time authentication code generation information to be provided to the wireless terminal 960. desirable.

According to another exemplary embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 960 is a verification value for verifying the one-time authentication code generation information, confirming / generating the one-time authentication code generation information. The unit 920 preferably confirms (or generates) one-time authentication code generation information that can be verified by the verification value as second partial one-time authentication code generation information to be provided to the wireless terminal 960.

If the authentication code generation information (or second partial one-time authentication code generation information) is provided to the wireless terminal 960 by performing the security process, the authentication by the one-time authentication code generation information checking / generating unit 920 When the one-time authentication code generation information corresponding to the code index information is confirmed (or generated), the security processing unit 925 encrypts the authentication code generation information (or the second partial one-time authentication code generation information) or changes the data structure. It characterized in that the security process through.

When the data structure of the authentication code generation information (or second partial one-time authentication code generation information) is secured by changing the data structure according to an embodiment of the present invention, the security processing unit 925 may perform the authentication code generation information (or second). It is preferable to recombine (or rearrange) the data combination (or arrangement) of the partial one-time authentication code generation information according to a predetermined method or a predetermined method, and the authentication code generation information (or second partial one-time authentication code generation information). ) Is recombined (or rearranged) according to an arbitrary combination (or arrangement) method, the security processing unit 925 generates the recombined (or rearranged) authentication code generation information (or second partial one-time authentication code generation information). In the authentication server 900 to restore the original data structure for the original authentication code generation information (or second partial one-time authentication code generation information) To include the data restoration information (e. G., A recombinant (or reorder) the identifier (or index identifying the type)) is preferred.

Here, the data recombination (or rearrangement) of the authentication code generation information (or the second partial one-time authentication code generation information) may be performed in nibble units, specific digit units, byte units, word units, or specific block units. It is preferred to be recombinant (or rearranged).

According to the embodiment of the present invention, the security processing unit 925 may selectively secure any one of the authentication code generation information (or second partial one-time authentication code generation information), the present invention is the It is evident that all changes are made to the security process.

If the one-time authentication code generation information is confirmed (or generated) or secured, the one-time authentication code generation information providing unit 930 is the wireless terminal 960 via the wireless communication network through the wireless interface unit 905. It is characterized in that for transmitting the one-time authentication code generation information to (for example, the wireless terminal 960 to be used as the wireless communication one-time authenticator).

Alternatively, when the second partial one-time authentication code generation information is confirmed (or generated) or secured, the one-time authentication code generation information providing unit 930 may be configured to pass through the wireless communication network through the wireless interface unit 905. It is preferable to transmit the remaining part of the one-time authentication code generation information to the wireless terminal 960 (for example, the wireless terminal 960 to be used as the wireless communication disposable authenticator).

The one-time authentication code generation information providing unit 930 by the wireless terminal 960 (for example, the wireless terminal 960 to be used as the wireless communication disposable authenticator) the one-time authentication code generation information (or second partial one-time authentication code) When the generation information) is provided, the wireless terminal 960 generates the one-time authentication code generation information (or the first partial one-time authentication code generation information previously provided to the wireless terminal 960 and the one-time authentication code generation information providing unit 930. N-digit one-time authentication code (N) is generated and output through the combination (or verification) of the one-time authentication code generation information based on the second partial one-time authentication code generation information provided by The authentication code (N) is a one-time authentication code input is output to the authentication request terminal 965 (for example, a general term of a wired terminal or a wireless terminal requesting authentication through a one-time authentication code) It is input through the interface, characterized in that transmitted through a communication network.

9, the authentication server 900, the N-digit one-time authentication code generated by the wireless terminal 960 to be used as the wireless communication disposable authenticator through the one-time authentication code input interface at the authentication request terminal (965) When N is input and transmitted through the communication network, the one-time authentication code receiving unit 935 (or one-time authentication code receiving means) for receiving the one-time authentication code (N) from the authentication request terminal 965 through the communication network, and Verification code generation unit 940 (or verification code generating means) for generating an N-digit one-time verification code (N) through the one-time authentication code generation information provided to the wireless terminal 960, and from the authentication request terminal 965 The one-time authentication code authentication unit 945 (or one-time authentication code authentication means) for comparing the received one-time authentication code (N) and the generated one-time authentication code (N), and the one-time authentication code (N) and disposable sword That obtained by having a code (N) authentication result processing unit 950 (or the authentication result processing unit) to store the comparison result output by the authentication request terminal (965), or based on a set of media features.

When the authentication request terminal 965 inputs the N-digit one-time authentication code N generated by the wireless terminal 960 to be used as the wireless one-time authentication device through a one-time authentication code input interface and transmits it through a communication network, the one-time authentication. Code receiving unit 935 is characterized in that for receiving the N-digit one-time authentication code (N) from the authentication request terminal 965 through the communication network.

When the one-time authentication code (N) is received, the verification code generation unit 940 receives the one-time authentication code generation information provided to the wireless terminal 960 to be used as a wireless communication disposable authenticator to generate the one-time authentication code (N). After confirming, the wireless terminal 960 generates a one-time verification code (N) of N-digits through the one-time authentication code generation information in the same manner as the one-time authentication code (N) is generated.

If the one-time authentication code (N) is received, and the one-time verification code (N) is generated, the one-time authentication code authentication unit 945 and the one-time authentication code (N) received from the authentication request terminal 965 Comparing the generated one-time verification code (N) by checking whether or not, by verifying the received one-time authentication code (N), characterized in that, the authentication result processing unit 950 is the one-time authentication code ( The post-processing according to the authentication result of the one-time authentication code (N) is provided by transmitting and outputting the comparison result of N) and the one-time verification code (N) to the authentication request terminal (965) or by storing it in a predetermined medium. It is characterized by that.

10 is a diagram illustrating a process of transmitting an authentication code index in a wireless terminal according to an embodiment of the present invention.

In more detail, FIG. 10 is a one-time authentication code generation information (or first) after the wireless terminal shown in FIG. 2 is approved for use as a wireless communication disposable authenticator through the one-time authentication code authentication system shown in FIG. (2 partial one-time authentication code generation information) to transmit the authentication code index information and radio terminal unique information provided from the authentication code index providing system shown in FIG. 6 to the authentication server shown in FIG. As those skilled in the art to which the present invention pertains, various implementation methods (eg, some steps are omitted) for transmitting the authentication code index in the wireless terminal by referring to and / or modifying the drawing 10. May be inferred, or the order of implementation may be changed. It is made, including the implementation method, the technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 10, the wireless terminal checks whether a menu (or key button) for implementing a one-time authentication code is input through an authentication code index (1000), and if a menu (or key) for implementing the one-time authentication code is input. Button), the wireless terminal outputs a user authentication information input interface on the screen of the wireless terminal, and checks whether user authentication information is input through the user authentication information input interface (1010).

The user authentication information may include at least one or more personal identification numbers (PINs) or passwords for authenticating and activating the wireless communication disposable authenticator function of the wireless terminal in the authentication server. Do.

Alternatively, the user authentication information may be activated by authenticating the wireless communication disposable authenticator function of the wireless terminal through the user authentication IC chip storage information or the terminal authentication IC chip storage information included in the IC chip (or USIM). It is preferable to include at least one or more personal identification number (PIN), or password for.

Alternatively, the user authentication information may include a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal in the wireless terminal. In this case, the user authentication information is stored in the memory unit. (Not shown) is preferable.

If it is confirmed that the user authentication information is input (1015), the wireless terminal authenticates and activates the wireless communication disposable authenticator function provided in the wireless terminal based on the user authentication information (1020).

When the authentication server receives and authenticates the user authentication information according to an embodiment of the present invention, the wireless terminal transmits the input user authentication information to the authentication server in association with the wireless processing unit, and authenticates the authentication server. It is preferable to receive user authentication result information for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal from a server.

According to another embodiment of the present invention, when authenticating the user authentication information through an IC chip (or USIM) provided in the wireless terminal, the wireless terminal is connected to the IC chip reader unit to input the user authentication. It is desirable to provide information to the IC chip (or USIM) and to receive a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal from the IC chip (or USIM).

According to another embodiment of the present invention, when authenticating the user authentication information in the wireless terminal, the wireless terminal compares the input user authentication information with user authentication information (not shown) stored in the memory unit. It is preferable to confirm (or generate) a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal.

If the wireless communication disposable authenticator function provided in the wireless terminal is not activated (1025), the wireless terminal deactivates (or initializes) the wireless communications disposable authenticator function of the wireless terminal (1030).

On the other hand, if the wireless communication disposable authenticator function provided in the wireless terminal is activated (1025), the wireless terminal is the authentication code index information and wireless terminal unique information provided from the memory unit through the one-time authentication code authentication system shown in FIG. Confirm (or extract) 1035, and transmits the verified (or extracted) authentication code index information and radio terminal specific information to the authentication server through a wireless communication network (1040).

11 is a diagram illustrating a process of providing one-time authentication code generation information after approval of using a wireless terminal as a wireless communication disposable authenticator according to an embodiment of the present invention.

In more detail, in FIG. 11, if the authentication code index information and the wireless terminal unique information are transmitted from the wireless terminal shown in FIG. 2 through the authentication code index transmission process shown in FIG. 20, the authentication shown in FIG. Receives the authentication code index information and the unique information of the wireless terminal at the server, and approves the use of the wireless terminal as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal, and generates a one-time authentication code with the wireless terminal. As a process of providing information (or second partial one-time authentication code generation information), a person having ordinary knowledge in the art to which the present invention pertains may refer to and / or modify the wireless terminal to refer to the present invention. Various implementation methods (eg, for providing a one-time authentication code generation information after approval of use as a wireless communication one-time authenticator) Some steps may be omitted, or the order of implementation may be changed), but the present invention includes all the implementation methods inferred, and the technical features are not limited to the implementation method shown in FIG. No.

Referring to FIG. 11, when the authentication code index information and the wireless terminal unique information are transmitted from the wireless terminal illustrated in FIG. 2 through the process of transmitting the authentication code index shown in FIG. The authentication code index information and radio terminal unique information transmitted from the radio terminal are received (1100).

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio It is preferable to include one or more unique combination numbers generated by combining one or more of the terminal opening number (or part).

Thereafter, the authentication server checks whether the wireless terminal specific information is registered on the storage medium. If the wireless terminal specific information is registered on the storage medium, the authentication server authenticates the wireless terminal specific information from the storage medium. Confirming the code index information, and comparing the authentication code index information checked from the storage medium with the authentication code index information received from the wireless terminal, the received authentication code index information and the wireless terminal unique information are stored in the storage medium. If it is confirmed, the wireless terminal corresponding to the unique information of the wireless terminal is approved for use as a wireless communication disposable authenticator (1105).

If the wireless terminal is not approved for use as a wireless communication disposable authenticator (1110), the authentication server transmits and outputs wireless terminal validity error information to the wireless terminal through a wireless communication network (1115).

On the other hand, if the wireless terminal is approved for use as a wireless communication disposable authenticator (1110), the authentication server is a one-time authentication code generation information (or second one-time authentication code generation information to provide to the wireless terminal approved for use as the wireless communication disposable authenticator) (1120).

When one-time authentication code generation information corresponding to the authentication code index information is stored in the storage medium, the authentication server generates one-time authentication code generation information corresponding to the authentication code index information from the storage medium. It is desirable to check.

According to another exemplary embodiment of the present invention, when the one-time authentication code generation information is not stored in the storage medium and the one-time authentication code generation information corresponding to the authentication code index information is dynamically generated, the authentication server may be configured as the wireless terminal. It is desirable to dynamically generate real-time one-time authentication code generation information corresponding to the authentication code index information approved by the wireless communication disposable authenticator.

The first partial one-time authentication code generation information including a part of the one-time authentication code generation information to the wireless terminal (for example, the wireless terminal to be used as the wireless communication disposable authenticator) through the authentication code index providing system shown in FIG. If provided, the authentication server is to confirm (or generate) the second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information matching the partial one-time authentication code generation information previously provided to the wireless terminal. desirable.

According to an embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is part of the one-time authentication code generation information to be provided to the wireless terminal, the authentication server is configured to generate the one-time authentication code generation information. It is preferable to check (or generate) the second partial one-time authentication code generation information to be provided to the wireless terminal.

According to another embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal, the authentication server is the combination code. It is preferable to confirm (or generate) the one-time authentication code generation information to be combined with the second partial one-time authentication code generation information to be provided to the wireless terminal.

According to another exemplary embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is a verification value for verifying the one-time authentication code generation information, the authentication server may be verified by the verification value. It is preferable to confirm (or generate) authentication code generation information with second partial one-time authentication code generation information to be provided to the wireless terminal.

If the one-time authentication code generation information (or second one-time authentication code generation information) to be provided to the wireless terminal approved for use as the wireless communication disposable authenticator is confirmed (or generated) (1125), the authentication server through the wireless communication network The one-time authentication code generation information (or second one-time authentication code generation information) is transmitted to the wireless terminal (1130).

12 is a view showing a process of generating a one-time authentication code according to an embodiment of the present invention.

In more detail, Figure 12 is a one-time authentication code generation information is provided to the wireless terminal shown in Figure 2 through the process of providing the one-time authentication code generation information shown in Figure 21, the one-time authentication code generation information in the wireless terminal Through showing the process of generating an N-digit one-time authentication code (N) through, if you have ordinary knowledge in the art, the one-time authentication code by referring to and / or modified in this figure 12 Various implementation methods (for example, some steps may be omitted or the order may be changed) for the generating process may be inferred, but the present invention includes all the implementation methods inferred above, The technical features are not limited only to the illustrated embodiment.

Referring to FIG. 12, when the one-time authentication code generation information is provided to the wireless terminal illustrated in FIG. 2 through the process of providing the one-time authentication code generation information illustrated in FIG. 21, the wireless terminal may perform the one-time authentication from the authentication server. Receives the code generation information (1200), and if the one-time authentication code generation information is received (1205), the wireless terminal seed value for generating a one-time authentication code (N) the received one-time authentication code generation information Using the (Seed Value) to generate a one-time authentication code (N) of N digits according to the predetermined one-time authentication code generation standard (1210).

If the one-time authentication code (N) is generated (1215), the wireless terminal outputs the generated N-digit one-time authentication code (N) to a predetermined area on the screen of the wireless terminal (1220).

13 is a view showing a process of generating a one-time authentication code according to another embodiment of the present invention.

In more detail, when FIG. 13 provides the second partial one-time authentication code generation information to the wireless terminal shown in FIG. 2 through the process of providing the one-time authentication code generation information shown in FIG. 21, the memory unit in the wireless terminal. As a process for generating an N-digit one-time authentication code (N) based on the first partial one-time authentication code generation information and the second partial one-time authentication code generation information stored in the present invention, the general knowledge in the art If you have a person with, it will be able to infer various implementation methods (for example, some steps omitted, or changed order) for the process of generating the one-time authentication code by referring to and / or modified in this figure 13 The present invention includes all the implementation methods inferred, and the technical features thereof are only shown in the implementation method shown in FIG. It shall be defined.

Referring to FIG. 13, when the second partial one-time authentication code generation information is provided to the wireless terminal illustrated in FIG. 2 through the process of providing the one-time authentication code generation information illustrated in FIG. 21, the wireless terminal may receive information from the authentication server. The second partial one-time authentication code generation information is received (1300), and if the second partial one-time authentication code generation information is received (1305), the wireless terminal is the first partial one-time authentication code generation information stored in the memory unit And combining (or concatenating) the second one-time authentication code generation information to generate the one-time authentication code generation information corresponding to the seed value for generating the one-time authentication code N, or the first partial one-time authentication code generation information. The second one-time authentication code generation information is confirmed as a seed value for generating the one-time authentication code (N) through 1310.

If one-time authentication code generation information is not generated (or confirmed) through the first partial one-time authentication code generation information and the second partial one-time authentication code generation information (1315), the wireless terminal outputs one-time authentication code generation error information. (1320).

On the other hand, when the one-time authentication code generation information is generated (or confirmed) through the first partial one-time authentication code generation information and the second partial one-time authentication code generation information (1315), the wireless terminal generates the one-time authentication (or confirmation) Using the code generation information as a seed value for generating the one-time authentication code (N) generates a one-time authentication code (N) of N digits in accordance with a predetermined one-time authentication code generation standard (1325).

If the first partial one-time authentication code generation information stored in the memory unit is stored, the wireless terminal through the first partial one-time authentication code generation information n of the N-digit one-time authentication code (N) (1 <= n < N) generates a one-time authentication code (n) of digits, and generates a (Nn) one-time authentication code (Nn) through the received second partial one-time authentication code generation information, and the one-time authentication code (n) and It is possible to generate the N-digit single-use authentication code (N) by combining (or concatenating) the one-time authentication code (Nn), whereby the present invention is not limited.

If the one-time authentication code (N) is generated (1330), the wireless terminal outputs the generated N-digit one-time authentication code (N) to a predetermined area on the screen of the wireless terminal (1335).

14 is a view showing a one-time authentication code authentication process according to an embodiment of the present invention.

In detail, FIG. 14 illustrates that the N-digit one-time authentication code N is generated in the wireless terminal shown in FIG. 2 through the process of generating the one-time authentication code shown in FIG. 22 or 23. Input the one-time authentication code (N) to the authentication server shown in Figure 9, and in response to the one-time authentication by generating a one-time verification code (N) matching the one-time authentication code (N) in the authentication server As illustrating the process of authenticating the code (N), those of ordinary skill in the art to which the present invention pertains, various implementation methods for the one-time authentication code authentication process by referring to and / or modified in this figure 14 For example, some steps may be omitted, or the order of implementation may be changed), but the present invention includes all the methods of inferring the above. However, the technical features are not limited only to the implementation method shown in FIG.

Referring to FIG. 14, when the one-time authentication code (N) of N digits is generated in the wireless terminal shown in FIG. 2 through the one-time authentication code generation process shown in FIG. 22 or FIG. 23, the authentication request terminal is displayed on the screen. After outputting the one-time authentication code input interface to the (1400), and through the one-time authentication code input interface to process the N-digit one-time authentication code (N) generated in the wireless terminal (1405), the authentication server through the communication network The input one-time authentication code (N) is transmitted to (1410).

The authentication server receives the one-time authentication code (N) through a communication network, and confirms the one-time authentication code generation information corresponding to the received one-time authentication code (N) (1415).

If the one-time authentication code generation information is confirmed (1420), the authentication server generates N-digit one-time verification code (N) through the confirmed one-time authentication code generation information (1425).

If the one-time verification code generation information is generated (1420), the authentication server compares the one-time authentication code (N) and one-time verification code (N) to authenticate the one-time authentication code (1435).

If the one-time authentication code is not authenticated (1440), the authentication server provides and outputs one-time authentication code authentication error information to the authentication request terminal (1445).

On the other hand, if the one-time authentication code is authenticated (1440), the authentication server provides a one-time authentication code authentication result to the authentication request terminal and outputs, and the one-time authentication code authentication to the terminal as a medium requiring authentication through the one-time authentication code Output or store the result (1450).

15 is a diagram illustrating a function of a wireless terminal 1500 for implementing a one-time authentication code through an authentication code index according to an embodiment of the present invention.

In more detail, FIG. 15 illustrates a case in which a wireless terminal 1500 connected to a mobile communication network operating based on Code Division Multiple Access (CDMA) / Wide CDMA (WCDMA) is used as the wireless communication disposable authenticator. 1500 through the identification code index information of any one of the two or more authentication code index information provided through the authentication code index providing system shown in FIG. 19 and the unique information of the wireless terminal 1500 of the wireless terminal 1500. Received the one-time authentication code generation information through the one-time authentication code authentication system shown in 22, showing the functional configuration to generate and output the N-digit one-time authentication code (N) through the one-time authentication code generation information, Those skilled in the art to which the invention pertains, once through the authentication code index by referring to and / or modified in this figure 15 Other terminal devices (e.g., wireless terminal devices that access HSDPA-based wireless networks, or wireless terminal devices that access IEEE 802.16x-based mobile Internet, etc.) and implement various function configurations It will be possible to infer an implementation method for the present invention, but the present invention includes all the implementation methods inferred above, and the technical features are not limited only to the implementation method shown in FIG.

According to an embodiment of the present invention, the wireless terminal 1500 providing a CDMA / WCDMA-based mobile communication service has a physical body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), and an antenna in terms of hardware. And a battery 1525 and the like, and internally include a modem chip (for example, a code division multiple access (CDMA) modem, a central processing unit / micro processing unit (CPU / MPU), a vocoder, etc.) Qualcomm's MSM series modem chips), various memory devices, duplexer filters that separate transmission and reception signals from one antenna, power amplifiers for amplifying transmission signals, high power amplifiers (HPA), and high power transmission. Isolator to prevent the signal from returning in reverse, RF / IF SAW filter to remove unwanted out-of-band unwanted signal, frequency up circuit in transmission path, frequency of reception path Down-conversion circuit, Voltage Controlled Temperature Compensated X-tal Oscillator (VCTCXO) corresponding to the reference clock source, UHF frequency synthesizer used as local signal of frequency up-down conversion, and codec chip for converting analog voice signal into digital signal The internal components are gradually integrated into the modem chip, and the modem chip provides various multimedia services or additional services in addition to the core components for the mobile communication service. Various functions are being integrated together.

Referring to FIG. 15, the wireless terminal 1500 implementing the one-time authentication code through the authentication code index may include a control unit 1505 corresponding to the modem chip and a screen output unit corresponding to a liquid crystal display (LCD). 1510, a sound processor 1515 corresponding to a microphone / speaker, a key input unit 1520 corresponding to a keypad, a wireless processor 1530 corresponding to an antenna and various RF modules, and a nonvolatile memory It is characterized by comprising a memory unit 1540 and a battery 1525 for power supply.

In addition, the wireless terminal 1500 may further include a camera unit (not shown) for reading image information for providing various multimedia services or various additional services corresponding thereto, or for connecting a short distance communication channel with a short range device. It is preferable to further provide a near field communication part (not shown).

In addition, the wireless terminal 1500 may be an IC chip (for example, an integrated circuit (IC)) mounted on or detached from the wireless terminal 1500 in order to provide various financial (or payment) services or various additional services corresponding thereto. A chip, or a USIM (Universal Subscriber Identity Module), etc.) and an IC chip reader unit 1535 for reading / writing information (or data) are preferably provided on the IC chip.

The controller 1505 includes a processor and an execution memory including a CPU / MPU provided in the modem chip in hardware, a program routine for providing a function specific to the wireless terminal 1500 from a memory device, Or a bus BUS for inputting / outputting program data and an electronic circuit (or an integrated circuit) provided therefor, and the software from the memory unit 1540 or the memory device (or chipset). Program routines loaded into execution memory and processed by the processor to perform specific functions, or generic terms of program data (hence, recording of wireless terminal 1500 to implement a one-time authentication code via the authentication code index). Program routines recorded on the medium are shown as provided in the control unit 1505 for convenience. The program routine included in the controller 1505 is basically an operating system routine (not shown) and at least one system management routine (eg, a power management routine, a channel (forward / reverse) management routine, a handoff routine). Etc.), and various functional configurations intended to be implemented in the wireless terminal 1500 by the controller 1505 are realized.

According to the exemplary embodiment of the present invention, after power is supplied to the wireless terminal 1500, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are stored in the controller ( By loading into the execution memory included in the 1505 and arithmetic processing by the processor, the wireless terminal 1500 according to the booting process, the detailed system configuration state, the pilot channel acquisition detail state, the synchronization channel acquisition detail state and the timing conversion detail state An operation mode corresponding to the "mobile station initialization state" is set.

After performing the booting procedure, the operating system routine (not shown), at least one system management routine (not shown), and various system variables corresponding thereto are loaded into the execution memory included in the controller 1505 and loaded into the processor. The mobile terminal 1500 is set to an operation mode corresponding to a "mobile station call waiting state", a "system access state", a "call channel state", or the like, thereby performing mobile communication based wireless connection and call processing ( Call Processing) procedure.

According to an embodiment of the present invention, the function of implementing a one-time authentication code through the authentication code index is initiated (or realized) through a key input in an operation mode in which the wireless terminal 1500 corresponds to the "mobile station call waiting state". Is preferred.

The screen output unit 1510 is a function configuration unit for confirming operation of each operation mode of the wireless terminal 1500 and a corresponding operation state, and at least one including an LCD provided in the wireless terminal 1500. And at least one key data input through the key input unit 1520 in association with the control unit 1505, or a driver for driving the screen output device. Outputs a menu screen, a function processing screen, and a function processing result screen corresponding to at least one or more functions (or programs) included in the wireless terminal 1500, or at least provided (or downloaded) to the wireless terminal 1500 At least one content (eg, text content, image content, multimedia content) is output.

According to the exemplary embodiment of the present invention, the screen output unit 1510 may include a menu screen corresponding to a function for implementing a one-time authentication code through the authentication code index, a function processing screen for implementing the one-time authentication code N, and It is preferable to perform the function of the screen output means for outputting the function processing result screen for outputting the one-time authentication code (N).

The sound processor 1515 is a functional component that processes input and output of sound in each operation mode of the wireless terminal 1500. The sound processor 1515 decodes at least one or more encoded sound data and is provided in the wireless terminal 1500. Or a vocoder and a codec for encoding and encoding a sound signal input through a microphone provided in the wireless terminal 1500 or by encoding the sound signal.

According to an exemplary embodiment of the present invention, the sound processor 1515 receives sound data corresponding to a ring back tone through the speaker in an operation mode corresponding to the “system access state” of each operation mode of the wireless terminal 1500. The audio signal may be decoded and output, or the audio signal may be encoded and input through a microphone in an operation mode corresponding to the "call channel state", or the audio signal may be decoded and output through a speaker.

In addition, the sound processor 1515 plays at least one sound content or multimedia content provided (or downloaded) by the wireless terminal 1500 in at least one operation mode including the "mobile station call waiting state." Preferably, the sound data corresponding to the reproduced content is decoded and output.

The key input unit 1520 may include a key input device including at least one key button including a number key, a character key, or a function key; And a driver for driving a key input device, thereby detecting at least one key input signal generated by clicking (or entering) the key button in the key input device.

According to the present invention, if a key input signal is detected from a key button provided in the key input device in the input mode controlled by the controller 1505 or at least one or more operation modes, the key input unit 1520 detects the detection. Generate a key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the generated key input signal, and provide the generated key event to the controller 1505, wherein the controller 1505 is provided with the wireless terminal. Read key data corresponding to the key event in the current input mode or operation mode of 1500 (eg, store (manage) at least one or more key data corresponding to a specific key event in each input mode or operation mode) Read key data from the key table), or execute a function defined by matching the key event. It characterized in that the instruction is a shipping dock.

According to an embodiment of the present invention, the key input unit 1520 inputs a phone number in an operation mode corresponding to the "mobile station call waiting state" of each operation mode of the wireless terminal 1500, and presses the "call" button. By inputting, it is preferable to change the operation mode of the radio terminal 1500 to an operation mode corresponding to the "system access state".

In addition, the key input unit 1520 inputs a function key (for example, a menu key) in an operation mode corresponding to the “mobile station call waiting state” among the operation modes of the wireless terminal 1500, thereby providing the wireless terminal 1500. It is desirable to execute the various functions provided in).

According to the exemplary embodiment of the present invention, the key input unit 1520 may perform a function of key input means for inputting at least one or more key data corresponding to a function of implementing a one-time authentication code through the authentication code index. .

The wireless processor 1530 is a functional component that connects a wireless channel with a base station on a mobile communication network operated by the wireless terminal 1500 based on CDMA / WCDMA, and includes a CDMA modem and various RF modules (eg, a duplexer filter, Power amplifiers, high power amplifiers (HPAs), isolators, RF / IF SAW filters, frequency up- circuits, frequency down-conversion circuits, VCTCXOs, UHF frequency synthesizers, etc. for reference clock sources) and antennas It is characterized in that it comprises a driver for driving, in conjunction with the control unit 1505 corresponding to each operation mode of the wireless terminal 1500, location registration, slot mode (Slot Mode), or power control (Power Control) ), Or hand-off, or call processing.

According to the exemplary embodiment of the present invention, the radio processor 1530 may transmit / receive a radio frequency signal transmission / reception function corresponding to a function of implementing a one-time authentication code through the authentication code index (eg, antenna control, modulation of radio frequency signals, synthesis, Amplification, filtering, etc.).

In particular, the wireless processor 1530 processes or processes information or signals transmitted from the wireless terminal 1500 to the base station in a CDMA stack or received from the base station to implement a one-time authentication code through the authentication code index. It is desirable to include the function of reading information or signals from the CDMA stack.

According to another embodiment of the present invention, if the wireless terminal 1500 shown in FIG. 15 is a wireless terminal device accessing an HSDPA-based wireless network, the wireless processing unit 1530 accesses the HSDPA-based wireless network and the authentication code. It is possible to include a wireless communication function configuration for implementing a one-time authentication code through the index, or if the wireless terminal 1500 is a wireless terminal device connected to the IEEE 802.16x-based wireless network, the wireless processing unit 1530 is It is possible to include a wireless communication function configuration for implementing a one-time authentication code through the authentication code index by accessing the IEEE 802.16x-based wireless network, by which the present invention is not limited.

The IC chip reader unit 1535 is an IC chip (eg, financial IC chip or USIM) mounted or detached from the wireless terminal 1500 through an IC chip standard including ISO / IEC 7816 or ISO / IEC 14443. Etc.), and a functional component for exchanging at least one information (or data or command), the contact IC card reader corresponding to the ISO / IEC 7816 standard, or the contactless IC card corresponding to the ISO / IEC 14443 standard. And an IC card reader to exchange at least one information (or data or command) with the IC chip through an APDU (Application Protocol Data Unit).

Referring to the standard including ISO / IEC 7816 or ISO / IEC 14443, an IC chip mounted or detached from a customer wireless terminal may include a power supply (VCC), a reset signal (RST), and a clock signal (CLK). Input / output interface (not shown) that communicates with the IC chip reader 1535 (e.g., exchanges commands or data) via a contact point such as ground (GND), programming power supply (VPP), or input / output (I / O), etc. And a processor unit (not shown) including at least one computing element including a central process unit (CPU), a micro process unit (MPU), a coprocessor, and the like, a read only memory (ROM), a RAM ( It consists of a memory (not shown) consisting of at least one or more memory elements, including random access memory (EEPROM), electrically erasable and programmable read only memory (EEPROM), flash memory (FM), in particular at least one of the memory elements Device (eg , A chip operating system (COS) for managing and operating an IC card internal resource, which is supplied from the IC chip reader unit 1535 through a power supply (VCC) contact point of the input / output interface. When the COS stored in the memory is loaded into the execution memory to control the overall operation of the IC chip, the APDU (Application Protocol Data) based on the clock frequency (for example, 3.57MHz or 4.9MHz) of the clock signal (CLK) contact point Unit) to control the exchange of information or data between the IC chip and the IC chip reader unit 1535.

According to the present invention, the IC chip storage information (for example, IC chip program code and data) for implementing a one-time authentication code is stored in the memory of the IC chip, the IC chip storage information is A storage unit (not shown) that stores a data set corresponding to information or data that is read and read and / or used by a processor included in the customer wireless terminal, and an operation set provided by the operation unit and the COS of the processor unit. A program routine (e.g., a JAVA Applet in the case of a Javacard) that interacts with the COS instruction set and is driven or executed and operated by a processor included in the customer wireless terminal. An application corresponding to an application made up of an instruction call code and execution code that is processed by the processor unit. A unit (not shown) is provided. In particular, the processing unit (not shown) reads an instruction provided from a processor provided in the customer wireless terminal through the input / output interface through an APDU, and stores the instruction based on the read command. Read or record at least one or more information or data stored in the unit (not shown), and provide the result or read information or data to the processor provided in the customer wireless terminal via the input and output interface through the APDU It is characterized by.

Here, the memory of the IC chip includes a security structure based on ISO / IEC 10202. According to this, the memory includes a protection area in which secret information such as a chip serial number (CSN) is stored, a COS control area, and a user. It consists of an application area, a read / write access area, an application program area, and a FAT (File Allocation Table) management area. The IC chip storage information for the present invention is stored in an area except the protection area and the COS control area. desirable.

Further, according to ISO / IEC 7816 or ISO / IEC 14443 ICC standard, the memory includes one master file (MF) corresponding to a root file and at least one storage under the master file. Answer To Reset (ATR) including functional information about the information, at least one dedicated file (DF) corresponding to each ICC stored information, and disposed under the dedicated file for smart card service. It includes a file structure consisting of an element file (EF) including substantial information or data. The IC chip storage information for the present invention also includes the file structure as described above.

According to the exemplary embodiment of the present invention, the IC chip may include at least one user authentication IC chip storage information or terminal authentication IC chip storage information for authenticating the validity of the user of the wireless terminal 1500.

The user authentication IC chip storage information or the terminal authentication IC chip storage information may be obtained by using the user authentication information input through the key input unit 1520 as an IC chip authentication code (eg, a personal identification number (PIN)). After authenticating the user of the terminal 1500 (or the wireless terminal 1500), it is preferable to return the user authentication result information, and if the person having ordinary knowledge in the technical field to which the present invention belongs, Technical features for authenticating the user of the wireless terminal 1500 (or the wireless terminal 1500) through an IC chip authentication code and a user corresponding to the authentication result of the user of the wireless terminal 1500 (or the wireless terminal 1500). Since you will be familiar with the technical features of returning the authentication result information, a detailed description thereof will be omitted for convenience.

The memory unit 1540 is a non-volatile memory corresponding to a storage medium for storing at least one or more information (or data) in the wireless terminal 1500 or a recording medium for recording program codes corresponding to at least one or more program routines. Is a generic term for a read only memory (ROM), a read / write flash memory (FM), an electrically erasable and programmable read only memory (EEPROM), and the like. It is done.

According to an embodiment of the present invention, the ROM information of the nonvolatile memory is not to be stored, and the flash memory stores various application programs provided through an operating system routine, a call processing program routine, or the wireless terminal 1500. Program routines and information or data therefor are stored therein. The EEPROM includes at least one extracted or generated during execution of an application included in the terminal registration related parameters and a phone number (eg, an address book) or the wireless terminal 1500. Preferably, the information (or data) is stored.

According to an embodiment of the present invention, the memory unit 1540 is wirelessly provided with two or more authentication code index information provided through the authentication code index providing system shown in FIG. 19 to implement a one-time authentication code through the authentication code index. Preferably, the terminal 1500 stores the unique information in association.

In this case, the unique information of the wireless terminal 1500 may include a telephone number of the wireless terminal 1500 corresponding to the wireless terminal 1500 of the customer, and a UICC (Universal IC Card) / USIM (Universal) mounted on the wireless terminal 1500. Subscriber Identity) Use the information of the wireless terminal 1500 including one or more of a serial number, a terminal serial number (for example, an electronic serial number (ESN)) assigned to the wireless terminal 1500, and at least one opening number of the wireless terminal 1500. Or one or more unique combination numbers generated by combining one or more of the radio terminal 1500 telephone number, the UICC / USIM serial number, the terminal serial number, and the whole (or part) of the radio terminal 1500 opening number. It is preferable to make.

In addition, the memory unit 1540 may transmit the transmission target authentication code index information of the at least two pieces of authentication code index information and the unique information of the wireless terminal 1500 to use the wireless terminal 1500 as a wireless communication disposable authenticator. It is preferable to store the authentication server 1585 information corresponding to the authentication server 1585 to be transmitted or the authentication server 1585 to receive the disposable authentication code generation information corresponding to the transmission target authentication code index information.

If the first partial one-time authentication code generation information is provided to the wireless terminal 1500 through the authentication code index providing system shown in FIG. 19, the memory unit 1540 implements the one-time authentication code through the authentication code index. To this end, it is preferable to further store the first partial one-time authentication code generation information provided through the authentication code index providing system shown in FIG.

Referring to FIG. 15, the wireless terminal 1500 implementing the one-time authentication code through the authentication code index includes an information input unit 1545 for receiving user authentication information through the key input unit 1520. It is done.

In order to implement a one-time authentication code through the authentication code index, the information input unit 1545 outputs a user authentication information input interface in association with the screen output unit 1510, and the authentication code through the user authentication information input interface. Request for inputting user authentication information for implementing a one-time authentication code through an index, whereby the authentication processing unit 1550 processes the user authentication information to be input to the user authentication information interface through the key input unit 1520. It features.

The user authentication information may include at least a personal identification number (PIN) or a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal 1500 in the authentication server 1585. It is preferable to include one or more.

Alternatively, the user authentication information, through the user authentication IC chip storage information, or terminal authentication IC chip storage information provided in the IC chip (or USIM) to authenticate the wireless communication disposable authenticator function of the wireless terminal 1500 It is preferable to include at least one or more personal identification number (PIN), or password for activation.

Alternatively, the user authentication information, preferably, a password for authenticating and activating the wireless communication disposable authenticator function of the wireless terminal 1500 in the wireless terminal 1500, in this case the user authentication information Is preferably stored in the memory unit 1540 (not shown).

Referring to FIG. 15, the wireless terminal 1500 may implement the one-time authentication code through the authentication code index, based on the user authentication information input through the information input unit 1545. The authentication processing unit 1550 for authenticating and activating the wireless communication disposable authenticator function provided in the present invention), and when the wireless communication disposable authenticator function is activated, the transmission target among two or more authentication code index information stored in the memory unit 1540. Index identification unit 1555 for verifying the authentication code index information, and confirms the unique information of the radio terminal 1500 for the radio terminal 1500, and the identification information of the transmission target authentication code index and the radio terminal 1500 A security processing unit 1565 that encrypts or changes a data structure for secure delivery to the authentication server 1585, and the secured transmission target authentication code. And a transmission unit 1560 for transmitting index information and unique information of the wireless terminal 1500 to the authentication server 1585 through the wireless processing unit 1530, and according to the intention of the person skilled in the art. 1565 can be omitted.

When user authentication information for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal 1500 is input through the information input unit 1545, the authentication processing unit 1550 may operate the information input unit 1545. Based on the user authentication information input through the wireless terminal 1500, characterized in that for activating and activating the wireless communication disposable authenticator function provided.

When the authentication server 1585 receives and authenticates the user authentication information according to an exemplary embodiment of the present invention, the authentication processing unit 1550 is connected to the wireless processing unit 1530 through the information input unit 1545. Sends the input user authentication information to the authentication server 1585, and receives user authentication result information for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal 1500 from the authentication server 1585. It is desirable to.

According to another embodiment of the present invention, when authenticating the user authentication information through an IC chip (or USIM) provided in the wireless terminal 1500, the authentication processing unit 1550 is the IC chip reader unit 1535 In conjunction with the information providing the user authentication information input via the information input unit 1545 to the IC chip (or USIM), the wireless communication one-time authentication provided in the wireless terminal 1500 from the IC chip (or USIM) It is preferable to receive a user authentication result for authenticating and activating the existing function.

According to another exemplary embodiment of the present invention, when the wireless terminal 1500 authenticates the user authentication information, the authentication processor 1550 may input the user authentication information and the memory input through the information input unit 1545. The user authentication information (not shown) stored in the unit 1540 may be compared to confirm (or generate) a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal 1500.

According to another embodiment of the present invention, the function of authenticating the user authentication information is provided to the authentication server 1585 (or a separate user authentication server) according to the type of the user authentication information (for example, password, ID / PW, etc.). Preferably, in this case, the authentication processing unit 1550 transmits the user authentication information to the authentication server 1585 (or a separate user authentication server), and the authentication server 1585 (or separate user authentication). Server, the authentication result of the user authentication information can be received, read and activated.

If the wireless communication disposable authenticator function provided in the wireless terminal 1500 is activated on the basis of the user authentication information, the index checker 1555 of the at least two authentication code index information stored in the memory unit 1540. Characterized in that any one of the transmission target authentication code index information, characterized in that the transmission target authentication code index information is randomly selected and confirmed from two or more authentication code index information stored in the memory unit 1540, or It is preferable to select and confirm according to the set authentication code index information selection policy.

If the transmission target authentication code index information is confirmed by the index check unit 1555, the security processing unit 1565 checks the unique information of the wireless terminal 1500 for the wireless terminal 1500, and the transmission target authentication code. And index information and unique information of the wireless terminal 1500 for secure transmission to the authentication server 1585. The key for encryption is stored in the memory unit 1540 or in the USIM. It is preferable to be.

Alternatively, the security processing unit 1565 may transmit the authentication target authentication code index information and the wireless terminal 1500 unique information to the authentication server 1585 to securely transmit the authentication target authentication code index information and the wireless terminal 1500 unique information. It is preferred that the data structure of the data structure is changed, and the data structure change method includes a preset method or an arbitrarily set method.

According to an embodiment of the present invention, the security processing unit 1565 may recombine (or arrange) the data combination (or arrangement) of the transmission target authentication code index information and the wireless terminal 1500 unique information according to a preset method or a predetermined method. Rearrangement), and when the transmission target authentication code index information and the wireless terminal 1500 unique information are recombined (or rearranged) according to a random combination (or arrangement) method, the security processor 1565 The original data of the original transmission target authentication code index information and the unique information of the wireless terminal 1500 in the authentication server 1585 in the recombined (or rearranged) transmission target authentication code index information and the wireless terminal 1500 unique information. It is desirable to include data recovery information (eg, an identifier (or index) identifying a recombination (or rearrangement) scheme) for restoring the structure.

Here, the data recombination (or rearrangement) of the transmission target authentication code index information and the unique information of the wireless terminal 1500 may be recombined by nibble, or by specific digit unit, or by byte, or by word, or by specific block unit. (Or rearrangement) is preferred.

According to the embodiment of the present invention, the security processing unit 1565 may selectively secure any one of the transmission target authentication code index information and the wireless terminal 1500 unique information, and the present invention provides the security. It is clearly to be understood that this includes all changeable implementation methods for the treatment.

When the transmission target authentication code index information and the wireless terminal 1500 unique information are encrypted or the data structure is changed by the security processing unit 1565, the transmission unit 1560 transmits the secure transmission target authentication code index. Information and unique information of the wireless terminal 1500 are transmitted to the authentication server 1585 through the wireless processing unit 1530.

The authentication server 1585 having received the transmission target authentication code index information and the unique information of the wireless terminal 1500 may perform wireless communication with the wireless terminal 1500 through the authentication code index information and the unique information of the wireless terminal 1500. If it is approved to use as an authenticator and the use of the wireless terminal 1500 as a wireless communication disposable authenticator is approved, the disposable authentication code generation information corresponding to the authentication code index information (or second partial one-time authentication code generation information) Check (or create) and transmit to the wireless terminal 1500.

Referring to FIG. 15, the wireless terminal 1500 may provide the authentication code index information from the authentication server 1585 in association with the wireless processing unit 1530 to implement a one-time authentication code through the authentication code index information. It characterized in that it comprises a receiving unit 1570 for receiving the one-time authentication code generation information (or second partial one-time authentication code generation information) corresponding to the.

If the authentication server 1585 is approved to use the wireless terminal 1500 as a wireless communication disposable authenticator, the receiving unit 1570 is linked with the wireless processing unit 1530 from the authentication server 1585 the authentication code index And receiving one-time authentication code generation information corresponding to the information, and if the first partial one-time authentication code generation information is stored in the memory unit 1540, corresponding to the authentication code index information from the authentication server 1585. Preferably, the second partial one-time authentication code generation information is received.

According to the embodiment of the present invention, the one-time authentication code generation information (or second partial one-time authentication code generation information) is encrypted in the authentication server 1585, or the data structure can be changed and transmitted, in this case The security processor 1565 preferably decrypts the secured one-time authentication code generation information (or second partial one-time authentication code generation information) or restores the original data structure.

Referring to FIG. 15, the wireless terminal 1500 may generate one-time authentication code generation information (or second partial one-time authentication code generation information) from the authentication server 1585 to implement a one-time authentication code through the authentication code index. ) Is received or decrypted (or restored), the one-time authentication code generation information (or the first partial one-time authentication code generation information stored in the memory unit 1540 and the second partial one-time authentication code generation information is confirmed (or Generated one-time authentication code generation information) to generate an N-digit one-time authentication code (N) and the authentication code generation unit 1575 and the generated one-time authentication code (N) in association with the screen output unit 1510 It is characterized by comprising an output processing unit 1580 for outputting a).

When one-time authentication code generation information is received from the authentication server 1585 according to one embodiment of the present invention, the authentication code generation unit 1575 receives the one-time authentication code (N) from the received one-time authentication code generation information. Using as a seed value to generate (Seed Value) is characterized in that for generating a one-time authentication code (N) of N digits according to a predetermined one-time authentication code generation standard.

According to another exemplary embodiment of the present invention, when the second partial one-time authentication code generation information is received from the authentication server 1585, the authentication code generation unit 1575 stores the first partial one-time stored in the memory unit 1540. Combine (or concatenate) authentication code generation information and second one-time authentication code generation information to generate one-time authentication code generation information corresponding to a seed value for generating the one-time authentication code N, or the first part once Confirming the second one-time authentication code generation information through the authentication code generation information for the seed value for generating the one-time authentication code (N), and the generated (or confirmed) the generated one-time authentication code generation information (one-time authentication code (N) ) Generates a one-time authentication code (N) of N digits according to a preset one-time authentication code generation standard by using as a seed value (Seed Value) for generating The.

If the first partial one-time authentication code generation information stored in the memory unit 1540 is stored, the authentication code generation unit 1575 through the first partial one-time authentication code generation information N-digit one-time authentication code (N) Generate a one-time authentication code (n) of n (1 <= n <N) digits, and generate a (Nn) one-time authentication code (Nn) through the received second partial one-time authentication code generation information, By combining (or concatenating) the one-time authentication code (n) and the one-time authentication code (Nn) it is possible to generate an N-digit single-use authentication code (N), by which the present invention is not limited.

When the N-digit one-time authentication code N is generated by the authentication code generation unit 1575, the output processor 1580 is connected to the screen output unit 1510 and generates the N-digit one-time authentication code ( N) is output to a predetermined area on the screen of the wireless terminal 1500.

According to an exemplary embodiment of the present invention, the output processor 1580 outputs a one-time authentication code output screen on the screen of the wireless terminal 1500 in connection with the screen output unit 1510, and the one-time authentication code output screen. It is preferable to output the generated N-digit one-time authentication code (N).

According to another exemplary embodiment of the present invention, the output processor 1580 outputs the one-time authentication code output area to the screen area currently output on the screen of the wireless terminal 1500 in connection with the screen output unit 1510 (or Assigning), and outputting the generated N-digit one-time authentication code (N) to the one-time authentication code output area.

According to another embodiment of the present invention, when the wireless terminal 1500 is provided with a short-range communication unit (not shown), and the short-term communication channel and the authentication request terminal located in the short-range through the short-range communication unit, the wireless terminal ( 1500 may output the N-digit one-time authentication code N through the short range communication unit to the authentication request terminal, whereby the present invention is not limited thereto.

16 is a diagram illustrating an information registration system for registering wireless terminal registration information to implement a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

In more detail, Figure 16 is an information registration system for using a customer wireless terminal as a wireless one-time authentication device for implementing a one-time authentication code through the authentication code index wireless terminal registration including one or more customer information, wireless terminal information and carrier information When the information is provided, the information registration system is a wireless one-time use authenticator to implement a one-time authentication code through the authentication code index to the customer wireless terminal based on the customer information, wireless terminal information and carrier information included in the wireless terminal registration information Identifying (or generating) unique information of the customer's wireless terminal for authenticating use, and linking and processing the customer information, the unique information of the wireless terminal, and the communication company information, the storage medium 1645 (for example, a financial ledger provided to a financial company, or Authentication through the database linked with the financial ledger and one-time authentication code A system configuration for registering to a storage medium (1645) including one or more databases provided in a processing system, and a person skilled in the art to which the present invention pertains can refer to FIG. 16 and / or Various implementation methods for the information registration system configuration may be inferred by modification, but the present invention includes all the implementation methods inferred, and is not limited to the implementation method shown in FIG.

Hereinafter, the wireless terminal registration information provided from the customer on the information registration system shown in FIG. 16 is stored in the storage medium 1645 (for example, a financial ledger provided at a financial company, a database associated with the financial ledger, and a one-time authentication code). A component corresponding to one or more means and / or functional configurations for storage in a storage medium 1645 comprising one or more databases provided in a system for processing authentication through the information registration server 1600 for convenience. do.

Referring to FIG. 16 according to an embodiment of the present invention, the information registration system includes a client terminal including one or more window terminals 1655 provided at one or more financial institution branches, a wired terminal or a wireless terminal used by the customer. And an information registration terminal 1660 including any one of the above. The information registration terminal 1660 is an information registration server 1600 provided on the information registration system through a financial network (or a communication network). ) And the communication channel are connected.

According to an embodiment of the present invention, the customer visits the financial institution branch, and at least one application for registering the wireless terminal registration information through a window (or through a teller) provided at the financial institution branch ( For example, a document having a form for filling out one or more information items) is prepared, and when the completed application is submitted to a teller, the teller can enter the application information through the teller terminal 1655 ( Or), and the window terminal 1655 transmits the input (or selected) information to the information registration server 1600 provided on the information registration system through the financial network.

Here, the teller terminal 1655 preferably includes an employee terminal used by a teller employee provided at the branch of the financial institution, and the information registration server 1600 connected to the teller terminal 1655 is located on the financial system. It is preferable to include a server (for example, an information system), and the financial network connecting the window terminal 1655 and the information registration server 1600 communicates between the window terminal 1655 and the information registration server 1600. It is preferable to include a network for connecting the channels.

According to another exemplary embodiment of the present invention, the customer accesses the information registration server 1600 through at least one client terminal of a wired terminal connected to a wired communication network or a wireless terminal connected to a wireless communication network, and the information registration server 1600 When the wireless terminal registration information is input (or selected) through one or more information registration interfaces provided by), the wireless terminal registers from the client terminal to the information registration server 1600 provided on the information registration system through a communication network. It is desirable to transmit the information.

Here, a wired terminal connected to a wired communication network is a generic term for all terminal devices connected to a transmission control protocol / Internet protocol (TCP / IP) based communication network, and a desktop computer or notebook connected to the TCP / IP based communication network. Or a home appliance terminal (eg, a set-top-box) connected to the TCP / IP-based communication network, or a kiosk connected to the TCP / IP-based communication network.

In addition, a wireless terminal connected to a wireless communication network is any terminal device connected to a CDMA-based mobile communication network, all terminal devices connected to an IEEE 802.16x-based mobile Internet, or a generic term connected to an HSDPA-based wireless data communication network. As one or more embodiments, a mobile phone connected to the CDMA-based mobile communication network, a mobile Internet terminal connected to the IEEE 802.16x-based mobile Internet, or a wireless communication terminal connected to the HSDPA-based wireless data communication network may be included.

According to an embodiment of the present invention, the client terminal outputs one or more information registration interfaces provided by the information registration server 1600, and receives one or more information constituting the wireless terminal registration information through the information registration interface. A function configuration (for example, a browser program and a communication function, or a communication program and a communication function communicating with the information registration server 1600, etc.) for inputting (or selecting) and transmitting to the information registration server 1600 is provided. It is preferable.

According to another exemplary embodiment of the present invention, the information registration terminal 1660 may include an automatic teller machine connected to a financial network (for example, a financial common network) in addition to the counter terminal 1655 to a client terminal; Call terminals connected to wired telephone networks such as ATMs, ATMs, Cash Dispenser (CD), Public Switched Telephone Network (PSTN) and Voice over IP (VoIP) networks ( (Not shown), a communication terminal (not shown) connected to a wireless telephone network such as a mobile communication network, a wireless VoIP network, and one or more terminals (or servers) (not shown) provided in one or more affiliated institutions affiliated with the financial institution. In this regard, the present invention is not limited thereto.

The information registration server 1600 provided on the information registration system is a one-time authentication code authentication system side information registration component shown in FIG. 22 connected to the information registration terminal 1660 through a financial network (or a communication network). Collectively, at least one server (or device) provided at a financial institution, or at least one server (or device) included in a system for processing authentication through a one-time authentication code, or a recording medium provided at the server (or device). It may be implemented by one or more programs recorded in the present invention, whereby the present invention is not limited. According to the embodiment of the present invention, the information registration server 1600, the unique information of the wireless terminal to be used as a wireless communication disposable authenticator, and the one-time authentication code generation information to be provided to the wireless terminal to be used as the wireless communication disposable authenticator (or It is preferable to perform the function of the information registration means for storing in the storage medium 1645 in association with the authentication code index information.

According to an embodiment of the present invention, the information registration server 1600 is provided with an interface unit 1605 for connecting and managing a communication channel with the information registration terminal 1660 through the financial network (or communication network). It features.

According to an embodiment of the present invention, when the information registration terminal 1660 is a window terminal 1655 connected to a financial network, the interface unit 1605 is based on the protocol stack defined in the financial network. It is preferable to provide a communication interface for connecting one or more communication channels with one or more information (or data) by using a communication protocol defined in a financial transaction related program included in the window terminal 1655.

According to another exemplary embodiment of the present invention, when the information registration terminal 1660 is a client terminal including a wired terminal connected to a wired communication network, the interface unit 1605 is based on a protocol stack defined in the wired communication network. It is preferable to connect a communication channel with the client terminal, and to provide a communication interface for transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal.

For example, if the client terminal is equipped with a browser program corresponding to the Hyper-Text Transfer Protocol (HTTP) protocol, the interface unit 1605 connects a communication channel with the client terminal based on the TCP / IP protocol, Using the HTPP protocol defined in the browser program, a web page (eg, a Hyper-Text Markup Language (HTML) compatible web page) or a communication interface for transmitting and receiving information is provided.

Alternatively, when the client terminal is provided with a communication program for communicating with the information registration server 1600, the interface unit 1605 connects a communication channel with the client terminal based on the TCP / IP protocol, Provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in a communication program.

Alternatively, when the information registration terminal 1660 is a client terminal including a wireless terminal connected to a wireless communication network, the interface unit 1605 establishes a communication channel with the client terminal based on a protocol stack defined in the wireless communication network. It is preferable to provide a communication interface for connecting and transmitting and receiving one or more information (or data) using a communication protocol defined in a communication program provided in the client terminal.

For example, when the client terminal is provided with a browser program corresponding to a WAP (Wireless Application Protocol) to the HTTP protocol, or a wireless protocol compatible with the WAP / HTTP, the interface unit 1605 may include a radio provided in the wireless communication network. Connect a communication channel with the client terminal based on a communication protocol, and use a WAP / HTTP protocol (or a WAP / HTTP compatible protocol) defined in the browser program to wireless web page (eg, HTML compatible web page, WML (Wireless) Markup Language) or communication interface for transmitting and receiving information.

Alternatively, when the client terminal is provided with a communication program for communicating with the information registration server 1600, the interface unit 1605 connects a communication channel with the client terminal based on the wireless communication protocol, and the communication Provides a communication interface for transmitting and receiving information (or data) using a communication protocol defined in the program.

Referring to FIG. 16, in the information registration server 1600, the information registration terminal 1660 connects a communication channel with the information registration server 1600 through the interface unit 1605, and through the communication channel. When requesting registration of wireless terminal registration information, an information registration interface is generated (or extracted) for inputting (or selecting) and transmitting wireless terminal registration information from the information registration terminal 1660 in cooperation with the interface unit 1605. It is characterized in that it comprises an interface providing unit 1610 provided to the information registration terminal 1660.

The interface providing unit 1610 connects a communication channel with the information registration server 1600 through the interface unit 1605 and requests registration of wireless terminal registration information through the communication channel. Information registration for inputting (or selecting) the wireless terminal registration information to the information registration server 1600 via the financial network (or communication network) by using the functional configuration provided in the information registration terminal 1660. Create an interface or extract from the database (not shown), and the information registration interface (1660) via the financial network (or communication network) the information registration interface generated (or extracted) in conjunction with the interface unit 1605 It is characterized by providing in).

If a program having one or more information registration interfaces for inputting (or selecting) the wireless terminal registration information to the information registration terminal 1660 and transmitting the information to the information registration server 1600 through the financial network (or communication network); When provided, the interface providing unit 1610 may omit a function of the interface providing unit 1610 that provides the information registration interface to the information registration terminal 1660, and the present invention is not limited thereto.

Thereafter, the information registration terminal 1660 inputs (or selects) wireless terminal registration information including one or more of the customer information, wireless terminal information, and carrier information based on the information registration interface, and inputs (or selects) the information. The registered wireless terminal registration information to the information registration server 1600 through the financial network (or communication network).

Referring to FIG. 16, when the information registration server 1600 inputs (or selects) and transmits wireless terminal registration information through the information registration interface, the information registration server 1600 and the interface unit 1605 communicate with each other. An information receiving unit 1615 for receiving wireless terminal registration information including at least one of the customer information, the wireless terminal information, and the communication company information, and reading the received wireless terminal registration information to generate an authentication code index for the customer wireless terminal. Validation unit for checking the validity of the wireless terminal for use as a wireless one-time authenticator to implement a one-time authentication code through; and for authenticating the wireless terminal to be used as a wireless one-time authenticator from the validated wireless terminal registration information A wireless terminal unique information verification / generation unit 1620 for identifying (or generating) unique wireless terminal information, and the customer information. A storage medium 1645 (e.g., a financial ledger provided at a financial company, a database associated with the financial ledger, or a database provided in a system for processing authentication through a one-time authentication code) by linking and processing unique terminal information and communication company information. And an information storage unit 1635 stored in the storage medium 1645 including the above.

When the information registration terminal 1660 inputs (or selects) wireless terminal registration information through the information registration interface and transmits the information, the information receiving unit 1615 interworks with the interface 1605 of the customer information and the wireless terminal. And receiving wireless terminal registration information including one or more information and communication company information.

The customer information includes one or more personal information of the customer (eg, name, social security number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in the storage medium 1645. It is preferable.

According to an embodiment of the present invention, when the storage medium 1645 is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through a customer ledger registered in the financial ledger. Preferably, the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes information on the communication company server 1650 provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 22 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through the user authentication information. Preferably, the wireless terminal registration information further comprises user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

When the wireless terminal registration information is received, the validity checker 1640 reads the received wireless terminal registration information and uses a wireless one-time use authenticator to implement a one-time authentication code through the customer wireless terminal authentication code index. It is characterized by checking the validity of the terminal.

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

In addition, the validity check of the wireless terminal, by providing the customer information and the wireless terminal information to the carrier server 1650 corresponding to the carrier information (or wireless terminal information) based on the customer information, wireless terminal information and carrier information. Preferably, the communication service provider includes the subscriber information including the customer information and the wireless terminal information.

When the validity of the wireless terminal is confirmed, the unique identification information / generation unit 1620 implements the one-time authentication code through the authentication code index on the customer wireless terminal based on the wireless terminal information included in the wireless terminal registration information. Identifying the unique information of the wireless terminal for authenticating the use of the wireless communication disposable authenticator, or generating the unique information of the wireless client.

According to an embodiment of the present invention, the wireless terminal unique information verification / generation unit 1620 includes a wireless terminal telephone number corresponding to the wireless terminal of the customer, a UICC (Universal IC Card) / USIM (Universal) mounted on the wireless terminal. Subscriber Identity) The wireless terminal information including one or more serial numbers, a terminal serial number (eg, an electronic serial number (ESN)) assigned to the wireless terminal, and a wireless terminal opening number is stored in the customer wireless terminal through an authentication code index. It is desirable to confirm the unique information of the customer's wireless terminal for authenticating the use of the wireless communication disposable authenticator to implement the authentication code as the unique information of the wireless terminal.

Alternatively, the unique identification information / generation unit 1620 is a unique combination generated by combining one or more of the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal opening number (one or more) It is preferable to generate a number and to process the customer wireless terminal as unique information for authenticating the use of the customer wireless terminal as a wireless communication disposable authenticator implementing a one-time authentication code through an authentication code index.

Thereafter, the information storage unit 1635 is provided with a storage medium 1645 (eg, in a financial company) by cooperatively processing the customer information included in the wireless terminal registration information, the wireless terminal unique information and the communication company information. The financial ledger, or a database associated with the financial ledger, a storage medium 1645 including one or more databases provided in a system for processing authentication through a one-time authentication code).

According to an embodiment of the present invention, when the storage medium 1645 is the financial ledger, the customer information is included in the customer ledger, and the unique information of the wireless terminal and the telecommunication company information are in the form of additional information ledger associated with the customer ledger. It is preferable to register in the ledger D / B.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 22 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through the user authentication information. Preferably, the information storage unit 1635 further stores the user authentication information in the storage medium 1645 (not shown), and the present invention is not limited thereto.

Referring to FIG. 16, the information registration server 1600 verifies (or generates) at least two pieces of authentication code index information to be associated with the unique information of the wireless terminal when the unique information of the wireless terminal is confirmed (or generated). An information storage unit 1635 for storing the code index information checking / generating unit 1625 and the unique information of the wireless terminal and the two or more identification code index information identified (or generated) in the storage medium 1645. It is characterized by further comprising.

When the unique information of the wireless terminal is confirmed (or generated), the authentication code index information checking / generating unit 1625 controls the authentication code index so that two or more pieces of authentication code index information to be associated with the unique information of the wireless terminal do not overlap. / B (not shown) is characterized in that generating two or more new authentication code index information that is not confirmed or duplicated with the previously verified (or generated) authentication code index, the information storage unit 1635 The wireless terminal unique information stored in the storage medium 1645 and the identified (or generated) two or more authentication code index information are linked and stored.

Referring to FIG. 16, the information registration server 1600 registers two or more one-time authentication code generation information for using the customer wireless terminal as a wireless one-time authentication device with two or more authentication code index information, respectively, in advance in the ledger. If so, the one-time authentication code generation information checking / generating unit 1630 for identifying (or generating) two or more one-time authentication code generation information to be associated with each of the two or more authentication code index information, and the two or more authentication codes And an information storage unit 1635 which stores the index information and the checked (or generated) one-time authentication code generation information in the storage medium 1645 in association with each other.

In the case where two or more one-time authentication code generation information for using the customer wireless terminal as a wireless communication disposable authenticator is registered in the ledger in association with two or more authentication code index information, respectively, the one-time authentication code generation information checking / generating unit ( 1630, when using the customer wireless terminal as a wireless communication disposable authenticator, the two or more one-time authentication code generation information to be provided to the customer wireless terminal from the one-time authentication code generation information management D / B (not shown) Or generating two or more new one-time authentication code generation information that is not duplicated with the verified or verified authentication code index. The information storage unit 1635 is stored in the storage medium 1645. Two or more pieces of authentication code index information (or radio terminal specific information) and the identification (or generation) The authentication code index information is stored in association with each other.

According to another exemplary embodiment of the present invention, when the one-time authentication code generation information corresponding to the two or more authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the two or more authentications are performed. A function configuration for identifying (or generating) two or more single-use authentication code generation information associated with code index information and storing the information on the storage medium 1645 may be omitted, and the present invention is not limited thereto.

17 is a diagram illustrating a process of registering wireless terminal registration information according to an embodiment of the present invention.

In more detail, in FIG. 17, when a program having an information registration interface is provided in the information registration terminal illustrated in FIG. 16, the information registration terminal runs the program to provide customer information, wireless terminal information, and communication company information. When inputting (or selecting) and transmitting the wireless terminal registration information including the above, the customer for authenticating the use of the customer wireless terminal as a wireless one-time authentication using a one-time authentication code through the authentication code index through the wireless terminal registration information Identifying (or generating) unique information of the wireless terminal, and storing the customer information, the unique information of the wireless terminal and the carrier information in a storage medium in association with the authentication information, the authentication code index information associated with the unique information of the wireless terminal, the authentication code index Further check (or generate) the one-time authentication code generation information associated with the information and store the information As for the process of storing the body, for example, if the information registering terminal to the service area terminal, showing the exemplary method for registering the mobile station registration information through the window terminal.

Those skilled in the art to which the present invention pertains will be able to infer various implementation methods for registering the wireless terminal registration information by referring to and / or modifying the drawing 17, but the present invention is inferred from all It includes an implementation method and is not limited to the implementation method shown in FIG.

For example, when one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is checked (or generated). The process of storing in the storage medium can be omitted, whereby the present invention is not limited.

Hereinafter, in FIG. 17, the information registration terminal shown in FIG. 16 is called "terminal" for convenience, and the information registration server shown in FIG. 16 is called "server" for convenience.

Referring to FIG. 17, a terminal equipped with a program having the information registration interface authenticates an information registration authority (eg, a clerk's authority) by connecting a communication channel with the server, and the customer information, wireless terminal information, and a communication company. An information registration interface for inputting (or selecting) wireless terminal registration information including one or more information is output (1700).

Thereafter, the terminal inputs (or selects) wireless terminal registration information including one or more customer information, wireless terminal information, and communication company information through the information registration interface (1705).

If the terminal receives (or selects) wireless terminal registration information including the customer information, wireless terminal information, and carrier information through the information registration interface (1710), the terminal receives the input through the information registration authority ( Alternatively, the wireless terminal registration information including the selected customer information, wireless terminal information, and carrier information is transmitted to the server (1715).

Preferably, the customer information includes one or more personal information of the customer (eg, name, social security number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in a storage medium. .

According to an embodiment of the present invention, when the storage medium is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through the customer ledger registered in the financial ledger. It is preferable that the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes communication company server information provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

Thereafter, the server receives and reads wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the communication company information to confirm the validity of the wireless terminal (1720).

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

The wireless terminal validity check may be performed by providing the customer information and the wireless terminal information to a communication company server corresponding to the communication company information (or wireless terminal information) based on the customer information, the wireless terminal information, and the communication company information. It is preferable to include whether the subscriber information including the customer information and the wireless terminal information is subscribed to.

If the validity of the wireless terminal is not authenticated (1725), the server generates information registration error information and transmits it to the terminal (1730), and does not perform the wireless terminal registration information registration procedure.

On the other hand, if the validity of the wireless terminal is authenticated (1725), the server uses the customer wireless terminal as a one-time wireless communication one-time authentication to implement the one-time authentication code through the authentication code index based on the wireless terminal information included in the wireless terminal registration information. In operation 1735, the client wireless terminal unique information for authenticating the information is confirmed, or the client wireless terminal unique information is generated.

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the unique information of the wireless terminal is confirmed (or generated) (1740), the server stores the customer information included in the wireless terminal registration information, the wireless terminal unique information and the communication company information in association with the confirmed (or generated) Save to media (1745).

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the server further stores the user authentication information in the storage medium (not shown), and the present invention is not limited thereto.

In addition, the server confirms (or generates) two or more authentication code index information associated with the unique information of the wireless terminal, and two or more one-time authentication code generation information respectively associated with the two or more authentication code index information (1750), After storing the unique information of the wireless terminal and the authentication code index information in association with the storage medium, and storing the authentication code index information and one-time authentication code generation information in association with the storage medium (1755), information registration history information By generating and transmitting to the terminal (1760), the registration procedure for the radio terminal registration information is completed.

18 is a diagram illustrating a process of registering wireless terminal registration information according to another embodiment of the present invention.

In more detail, FIG. 18 illustrates that when the information registration terminal shown in FIG. 16 connects a communication channel with the information registration server shown in FIG. 16 through a communication network and requests registration of the wireless terminal registration information, the information registration server Provides an information registration interface for inputting (or selecting) wireless terminal registration information including one or more of the customer information, wireless terminal information, and carrier information to the information registration terminal, and wherein the information registration interface is provided through the information registration interface. When the wireless terminal registration information including one or more of the customer information, the wireless terminal information and the carrier information is input (or selected) and transmitted, the information registration server transmits the customer wireless terminal through the authentication code index through the wireless terminal registration information. Wireless authentication to implement the one-time authentication code for authentication to use as a one-time authenticator Identifying (or generating) unique information of the customer's wireless terminal, and storing the customer information, the wireless terminal's unique information and the carrier information in a storage medium in association with the authentication information, the authentication code index information associated with the wireless terminal's unique information, the authentication code index The method relates to a process of further confirming (or generating) one-time authentication code generation information associated with the information and storing the information on the storage medium. For example, when the information registration terminal is a client terminal, the wireless terminal through the client terminal. The implementation method of registering registration information is shown.

Those skilled in the art will be able to infer various implementation methods for registering the wireless terminal registration information by referring to and / or modifying the drawing 18, but the present invention is inferred from the above It includes all implementation methods and is not limited to the implementation method shown in FIG.

For example, when one-time authentication code generation information corresponding to the authentication code index information is dynamically generated in real time in the process of using the customer wireless terminal as a wireless communication disposable authenticator, the one-time authentication code generation information is checked (or generated). The process of storing in the storage medium can be omitted, whereby the present invention is not limited.

Hereinafter, in FIG. 18, the information registration terminal shown in FIG. 16 is called "terminal" for convenience, and the information registration server shown in FIG. 16 is called "server" for convenience.

Referring to FIG. 18, when the terminal requests a wireless terminal registration information registration by connecting a communication channel with the server (1800), the server generates a web page including an information registration interface for registering the wireless terminal registration information. (Or extract) (1805), and transmits and outputs a web page including the information registration interface to the terminal through the communication channel (1810).

Thereafter, the terminal inputs (or selects) wireless terminal registration information including one or more customer information, wireless terminal information, and carrier information through the information registration interface (1815).

If the terminal receives (or selects) wireless terminal registration information including the customer information, the wireless terminal information, and the carrier information through the information registration interface (1820), the terminal receives the input through the information registration authority ( Alternatively, the wireless terminal registration information including the selected customer information, wireless terminal information, and carrier information is transmitted to the server (1825).

Preferably, the customer information includes one or more personal information of the customer (eg, name, social security number, address, contact information), member information (eg, member ID / PW information), and one or more customer numbers registered in a storage medium. .

According to an embodiment of the present invention, when the storage medium is a financial ledger, the customer information may include one or more customer unique information for identifying the customer through the customer ledger registered in the financial ledger. It is preferable that the customer wireless terminal includes one or more pieces of customer specific information matching with subscriber information registered in a registered carrier.

The wireless terminal information may include a wireless terminal telephone number corresponding to the customer's wireless terminal, a UICC (Universal IC Card) / USIM (Universal Subscriber Identity) serial number mounted on the wireless terminal, and a terminal serial number assigned to the wireless terminal. (E.g., an ESN (Electronic Serial Number)) and a wireless terminal opening number are preferably included.

The communication company information is information for identifying a wireless communication company to which a wireless terminal corresponding to the wireless terminal unique information is subscribed, and preferably includes communication company server information provided in the communication company.

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the wireless terminal registration information further includes user authentication information for authenticating and activating the wireless communication disposable authenticator function provided in the wireless terminal in the one-time authentication code authentication system.

Thereafter, the server receives and reads wireless terminal registration information including one or more of the customer information, the wireless terminal information, and the carrier information to confirm the validity of the wireless terminal (1830).

According to an embodiment of the present invention, the wireless terminal validity check includes checking whether one or more ledger information matching the wireless terminal registration information is registered in the ledger D / B on the financial system associated with the information registration system. It is preferable to make it.

For example, the validity check of the wireless terminal may include checking whether the customer information included in the wireless terminal registration information is registered in the customer ledger provided in the ledger D / B on the financial system associated with the information registration system. desirable.

The wireless terminal validity check may be performed by providing the customer information and the wireless terminal information to a communication company server corresponding to the communication company information (or wireless terminal information) based on the customer information, the wireless terminal information, and the communication company information. It is preferable to include whether the subscriber information including the customer information and the wireless terminal information is subscribed to.

If the validity of the wireless terminal is not authenticated (1835), the server is a wireless one-time use authenticator that implements the one-time authentication code through the authentication code index on the customer wireless terminal based on the wireless terminal information included in the wireless terminal registration information. The unique information of the customer wireless terminal for authenticating the use is confirmed with the unique information of the wireless terminal, or the unique information of the customer wireless terminal is generated (1845).

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the unique information of the wireless terminal is confirmed (or generated) (1850), the server stores the customer information included in the wireless terminal registration information in association with the confirmed (or generated) wireless terminal unique information and communication company information. Store on media (1855).

According to an embodiment of the present invention, when the one-time authentication code authentication system shown in FIG. 21 authenticates and activates the wireless communication one-time authenticator function provided in the wireless terminal provided with the authentication code index information through user authentication information, Preferably, the server further stores the user authentication information in the storage medium (not shown), and the present invention is not limited thereto.

In addition, the server checks (or generates) two or more authentication code index information associated with the unique information of the wireless terminal, one-time authentication code generation information associated with each of the two or more authentication code index information (1860), and the wireless terminal. The unique information and the authentication code index information are stored in the storage medium in association with each other, and the authentication code index information and the one-time authentication code generation information are stored in the storage medium in association with each other (1865).

19 is a diagram illustrating a configuration of a system for providing an authentication code index according to an embodiment of the present invention.

In more detail, FIG. 19 shows unique information of the customer wireless terminal 1935 for authenticating the use of the customer wireless terminal 1935 as a wireless communication disposable authenticator to the storage medium 1930 through the information registration system shown in FIG. After the two or more pieces of authentication code index information is registered, showing the system configuration for providing the two or more pieces of authentication code index information to the wireless terminal (1935) corresponding to the unique information of the customer wireless terminal (1935), Those skilled in the art may refer to and / or modify this drawing 19 to implement various methods of implementing the authentication code index providing system (for example, some components may be omitted, subdivided, or combined). Method) can be inferred, but the present invention includes all implementation methods inferred, as shown in FIG. Only exemplary method is not limited that technical feature.

Hereinafter, one or more means for providing the at least two pieces of authentication code index information to the customer wireless terminal 1935 and / or a component corresponding to the functional configuration on the index providing system shown in FIG. 1900).

Referring to FIG. 19 according to an embodiment of the present invention, the authentication code index providing system receives the two or more authentication code index information, and uses a wireless terminal 1935 and a wireless communication network to be used as the wireless communication disposable authenticator. It is connected to the wireless terminal 1935 and through the information registration system shown in FIG. 16 to identify the unique information and the two or more authentication code index information of the wireless terminal 1935 registered in the storage medium 1930, And an index providing server 1900 for providing the at least two pieces of authentication code index information to the customer terminal through a wireless communication network.

The wireless terminal 1935 to be used as the wireless communication disposable authenticator includes a memory for storing two or more authentication code index information provided from the index providing server 1900 and the wireless terminal 1935 as a wireless disposable communication authenticator. Providing the transmission target authentication code index information of any two or more authentication code index information stored in the memory through a communication network to the one-time authentication code authentication system shown in Figure 22, the wireless terminal (1935) in the one-time authentication code authentication system ) Is approved for use as a wireless communication one-time authenticator, and then transmits the one-time authentication code generation information (or first partial one-time authentication code generation information including a part of the one-time authentication code generation information) corresponding to the authentication code index information. The one-time authentication code generation information through the wireless communication network. And a wireless communication terminal having a function of generating a one-time authentication code (N) having N (N> = 2) digits through the received one-time authentication code generation information (or a part of the one-time authentication code generation information). As a generic term, a detailed description of the wireless terminal 1935 functional configuration will be given with reference to FIG. 16.

The index providing server 1900 provided on the authentication code index providing system is a one-time authentication code authentication system side authentication code shown in FIG. 22 connected to a wireless terminal 1935 to be used as the wireless communication disposable authenticator and a wireless communication network. Collectively, the index providing component may include one or more servers (or devices) provided in a financial institution, or one or more servers (or devices) provided in a system that processes authentication through a one-time authentication code, or the server (or devices). It may be implemented as one or more programs recorded on the recording medium provided, by which the present invention is not limited.

Referring to FIG. 19, the index providing server 1900 checks a wireless terminal 1935 confirmation unit 1905 (or a wireless terminal 1935) for confirming unique information of the wireless terminal 1935 to be used as the wireless communication disposable authenticator. Means) and an authentication code index information confirming unit (1910) for identifying at least two pieces of authentication code index information to be provided to the wireless terminal (1935) corresponding to the unique information of the wireless terminal (1935) in association with the storage medium (1930). (Or authentication code index information checking means) and a wireless communication network connected to the wireless terminal 1935 (for example, a wireless communication network corresponding to carrier information stored in the storage medium 1930), to be used as the wireless one-time use authenticator. And an authentication code index information providing unit 1915 (or authentication code index information providing means) for providing the at least two pieces of authentication code index information identified by the wireless terminal 1935. When the unique information of the wireless terminal 1935 is not stored in the wireless terminal 1935 (for example, the unique information of the wireless terminal 1935 is the telephone number of the wireless terminal 1935 and the UICC / USIM serial). A unique combination number generated by combining one or more of a number, a terminal serial number, and a whole (or part) of a wireless terminal 1935 opening number), and unique information of the wireless terminal 1935 to the wireless terminal 1935. It is characterized in that it further comprises a wireless terminal 1935 unique information providing unit (or wireless terminal 1935 unique information providing means) for transmitting the.

The wireless terminal 1935 confirming unit 1905 may provide authentication code index information among unique information of the wireless terminal 1935 registered in the storage medium 1930 through the information registration system illustrated in FIG. 16. (1935) identifying the unique information, and when the unique information of the wireless terminal (1935) is confirmed, the authentication code index information check unit (1910) is connected to the storage medium (1930) the wireless terminal ( 1935) identifying (or extracting) at least two pieces of authentication code index information to be provided to the wireless terminal 1935 corresponding to the unique information, and if the at least two pieces of authentication code index information are stored in the storage medium 1930, If not stored, the authentication code index information checking unit 1910 preferably generates two or more pieces of authentication code index information to be provided to the wireless terminal 1935 so as not to overlap.

When two or more pieces of authentication code index information to be provided to the wireless terminal 1935 are confirmed, the authentication code index information providing unit 1915 is a wireless communication network connected to the wireless terminal 1935 (eg, the storage medium 1930). And providing the at least two verification code index information to the wireless terminal 1935 to be used as the wireless communication disposable authenticator through the wireless communication network corresponding to the telecommunication company information stored at). Is preferably stored in a memory unit provided in the wireless terminal 1935.

When the unique information of the wireless terminal 1935 is not stored in the wireless terminal 1935 (for example, the unique information of the wireless terminal 1935 may include the telephone number, the UICC / USIM serial number, and the terminal serial number of the wireless terminal 1935). Number, a unique combination number generated by combining one or more of all (or a part) of the opening number of the wireless terminal 1935), the unique information providing unit of the wireless terminal (1935) is stored in the wireless terminal (1935) It is preferable to extract and transmit unique information of the wireless terminal 1935 stored in the medium 1930.

Referring to FIG. 19, the index providing server 1900 may include at least two pieces of authentication code index information provided to the wireless terminal 1935 corresponding to the unique information of the wireless terminal 1935 in association with the storage medium 1930. Partial one-time authentication code generation information confirmation unit 1920 (or partial one-time authentication code generation information verification means) for confirming the first partial one-time authentication code generation information including a part of the associated one-time authentication code generation information, respectively, and the wireless Generate the confirmed one-time authentication code to the wireless terminal 1935 to be used as the wireless communication disposable authenticator through a wireless communication network (for example, a wireless communication network corresponding to the carrier information stored in the storage medium 1930) connected to the terminal 1935. Partial one-time authentication code generation information providing unit 1925 for providing a first partial one-time authentication code generation information including a part of the information (or partial one-time use And authentication code generation information providing means), wherein the one-time authentication code generation information corresponding to the two or more authentication code index information is not stored in the storage medium 1930, or illustrated in FIG. When the one-time authentication code authentication system provides the entirety of the one-time authentication code generation information to the wireless terminal 1935, the first terminal one-time authentication code generation information including a part of the one-time authentication code generation information, the wireless terminal The function provided in advance by 1935 can be omitted, and the present invention is not limited thereto.

The partial one-time authentication code generation information checking unit 1920, when two pieces of one-time authentication code generation information corresponding to each of the two or more authentication code index information is generated and stored in the storage medium 1930, the storage medium 1930 Of two or more one-time authentication code generation information to be provided to the wireless terminal 1935 in advance in connection with two or more authentication code index information provided to the wireless terminal 1935 corresponding to the unique information of the wireless terminal 1935 in association with Characterizing the first partial one-time authentication code generation information including a part.

Here, the first partial one-time authentication code generation information, when using the wireless terminal 1935 as a wireless communication disposable authenticator, a one-time authentication code to provide to the wireless terminal 1935 in the one-time authentication code authentication system shown in Figure 22 A part of the generated information, the combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 1935 in the one-time authentication code authentication system shown in Figure 22, when using the wireless terminal 1935 as a wireless communication disposable authenticator, When the wireless terminal 1935 is used as a wireless communication disposable authenticator, the one-time authentication code authentication system illustrated in FIG. 22 includes one or more verification values for verifying the one-time authentication code generation information provided to the wireless terminal 1935. It is preferable.

When the first partial one-time authentication code generation information to be pre-provided to the wireless terminal 1935 is confirmed, the partial one-time authentication code generation information providing unit 1925 is connected to the wireless terminal 1935 (for example, a wireless communication network). A first partial one-time authentication including a part of the confirmed one-time authentication code generation information to a wireless terminal 1935 to be used as the wireless one-time authentication device through a wireless communication network corresponding to the communication information stored in the storage medium 1930 Characterized by providing code generation information, it is preferable that a part of the one-time authentication code generation information is stored in the memory unit provided in the wireless terminal (1935).

20 is a diagram illustrating a process of providing an authentication code index according to an embodiment of the present invention.

More specifically, FIG. 20 illustrates a process of providing at least two pieces of authentication code index information to a wireless terminal to use the wireless terminal as a wireless communication disposable authenticator in the system for providing an authentication code index shown in FIG. 19, to which the present invention pertains. Those skilled in the art will be able to infer various implementation methods for the authentication code index providing process by referring to and / or modifying the drawing 20, but the present invention includes all the implementation methods inferred. The technical features of the present invention are not limited only to the implementation method illustrated in FIG. 20.

In the following figure 20, the index providing server shown in the figure 19 will be referred to as " server " for convenience.

Referring to FIG. 20, the server identifies a wireless terminal to provide two or more authentication code index information corresponding to the unique information of the wireless terminal registered through the information registration system shown in FIG. 16 (2000), and the storage medium. In operation 2005, the at least two pieces of authentication code index information associated with the unique information of the radio terminal corresponding to the radio terminal to provide the at least two pieces of authentication code index information are identified.

If the radio terminal specific information is not stored in the radio terminal (for example, the radio terminal unique information is the whole (or part) of the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal opening number) In the case of including a unique combination number generated by combining one or more), it is preferable that the server further checks the unique information of the radio terminal to be provided to the radio terminal from the storage medium.

If at least two pieces of authentication code index information to be provided to the wireless terminal to be used as the wireless communication disposable authenticator are identified (2010), the server corresponds to a wireless communication network (for example, carrier information stored in the storage medium) to which the wireless terminal is connected. (2) providing the identified at least two authentication code index information to a wireless terminal to be used as the wireless one-time authenticator through the wireless communication network (2015), wherein the at least two authentication code index information is stored in a memory unit provided in the wireless terminal. It is preferable.

If the wireless terminal specific information is not stored in the wireless terminal (for example, the wireless terminal unique information is the whole (or part) of the radio terminal telephone number, UICC / USIM serial number, terminal serial number, wireless terminal opening number) (C) including a unique combination number generated by combining one or more), the server further transmits the unique information of the wireless terminal to the wireless terminal, wherein the unique information of the wireless terminal is a memory provided in the wireless terminal. It is preferred to be stored in the department.

21 is a diagram illustrating a process of providing a part of one-time authentication code generation information associated with authentication code index information according to an embodiment of the present invention.

More specifically, FIG. 21 shows two or more single-use authentication code information and two or more single-use authentication code index information provided to the wireless terminal to be used as the wireless communication disposable authenticator through the process of providing authentication code index information shown in FIG. 20. A process of providing two or more pieces of first partial one-time authentication code generation information corresponding to a part to the wireless terminal is illustrated, and a person having ordinary knowledge in the art to which the present invention pertains may refer to and / or see FIG. 21. It will be possible to infer various implementation methods for the process of providing a part of the one-time authentication code generation information associated with the authentication code index information by modifying, but the present invention includes all the implementation methods inferred, this figure The technical features are not limited only to the implementation method shown in FIG.

In the following figure, the index providing server shown in FIG. 16 is referred to as " server " for convenience.

Referring to FIG. 21, the server associates with at least two pieces of authentication code index information provided to a wireless terminal to be used as the wireless one-time authentication through the process of providing authentication code index information shown in FIG. 20 in association with a storage medium. Two or more first partial one-time authentication code generation information corresponding to a part of the one-time one-time authentication code generation information is confirmed (2100).

Here, the first one-time authentication code generation information is a portion of the one-time authentication code generation information to be provided to the wireless terminal in the one-time authentication code authentication system shown in Figure 22, when using the wireless terminal as a wireless communication disposable authenticator, the wireless When using the terminal as a wireless communication disposable authenticator, the combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal in the one-time authentication code authentication system shown in Figure 22, when using the wireless terminal as a wireless communication disposable authenticator, Figure 22 In the one-time authentication code authentication system shown in Figure 1 preferably comprises at least one verification value for verifying the one-time authentication code generation information provided to the wireless terminal.

If two or more first partial one-time authentication code generation information corresponding to a portion of two or more authentication code index information provided to the wireless terminal to be used as the wireless communication one-time authentication device and each of the two or more one-time authentication code generation information is confirmed (2105) The server may be configured to generate the one-time authentication code generation information that has been verified by the wireless terminal to be used as the wireless one-time authentication device through a wireless communication network (for example, a wireless communication network corresponding to communication information stored in the storage medium) to which the wireless terminal is connected. Two or more first partial one-time authentication code generation information corresponding to a part is provided (2110), and the first one-time authentication code generation information is preferably stored in a memory unit provided in the wireless terminal.

22 is a diagram illustrating a one-time authentication code authentication system configuration for implementing a one-time authentication code through the authentication code index in accordance with an embodiment of the present invention.

In more detail, FIG. 22 illustrates that the wireless terminal 2260 is approved for use as a wireless communication disposable authenticator through authentication code index information and wireless unique information provided from the wireless terminal 2260 shown in FIG. The one-time authentication code generation information (or second partial one-time authentication code generation information) corresponding to the authentication code index information is provided to the terminal 2260 to the wireless terminal 2260, and the one-time authentication code in the wireless terminal 2260. A system configuration for generating a one-time authentication code (N) having N (N> = 2) digits through generation information (or second partial one-time authentication code generation information), and authenticating the generated one-time authentication code (N) As illustrated, those of ordinary skill in the art to which the present invention pertains refer to and / or modify this drawing 22 to implement a one-time authentication code through the authentication code index. While various implementation methods (eg, some components may be omitted, subdivided, or combined) for a one-time authentication code authentication system may be inferred, the present invention includes all implementation methods inferred above, The technical features are not limited only to the implementation method shown in FIG.

Hereinafter, the authentication code index information and the wireless terminal 2260 unique information transmitted from the customer wireless terminal 2260 are received on the one-time authentication code authentication system shown in FIG. 22, and the authentication code index information and the wireless terminal ( 2260) After approving the use of the wireless terminal 2260 as a wireless communication disposable authenticator through the unique information, and providing the one-time authentication code generation information corresponding to the authentication code index information to the wireless terminal 2260, the wireless terminal A component corresponding to one or more means and / or functional configurations for authenticating the N-digit one-time authentication code N generated through the one-time authentication code generation information at 2260 is referred to as an "authentication server" for convenience.

Referring to this figure 22 according to the embodiment of the present invention, the authentication code index providing system, the wireless terminal 2260 to be used as the wireless communication disposable authenticator, and the authentication code index transmitted from the customer wireless terminal 2260 Receives the information and the unique information of the wireless terminal 2260, and after using the wireless terminal 2260 as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal 2260, the authentication code index information After providing the one-time authentication code generation information corresponding to the wireless terminal 2260, the authentication to authenticate the N-digit one-time authentication code (N) generated by the one-time authentication code generation information in the wireless terminal (2260) It characterized in that it comprises a server 2200.

The wireless terminal 2260 to be used as the wireless communication disposable authenticator stores the authentication code index information and the unique information of the wireless terminal 2260 provided through the authentication code index providing system shown in FIG. 19, and the wireless terminal 2260. When using as a wireless communication disposable authenticator, the authentication code index information and wireless terminal 2260 unique information through the wireless communication network to the authentication server 2200, the authentication server 2200 in the wireless terminal (2260) Is approved for use as a wireless communication one-time authenticator, and then transmits the one-time authentication code generation information (or second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information) corresponding to the authentication code index information. Receive the one-time authentication code generation information through the wireless communication network, and receives the received one-time authentication code generation information ( Is a generic term for a wireless communication terminal having a function of generating a one-time authentication code (N) of N-digits through second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information, wherein the wireless terminal A detailed description of the function configuration will be made with reference to FIG. 15.

The authentication server 2200 provided on the authentication code index providing system receives the authentication code index information and the unique information of the wireless terminal 2260 from the wireless terminal 2260 to be used as the wireless communication disposable authenticator through a wireless communication network, After approval of using the wireless terminal 2260 as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal 2260, the wireless terminal 2260 generates disposable authentication code generation information corresponding to the authentication code index information. After providing a), as a generic name of the one-time authentication code authentication system side components for authenticating the N-digit one-time authentication code (N) generated by the one-time authentication code generation information in the wireless terminal (2260), provided to the financial company One or more servers (or devices), or one or more servers (or devices) in a system that handles authentication via a one-time authentication code Or may be implemented as one or more programs recorded on a recording medium provided in the server (or apparatus), whereby the present invention is not limited thereto.

Referring to FIG. 22, the authentication server 2200 receives authentication code index information and unique information of the wireless terminal 2260 from the wireless terminal 2260 to be used as the wireless communication disposable authenticator, and sends it to the wireless terminal 2260. It is characterized in that it comprises a wireless interface 2205 for connecting a wireless data communication communication channel for providing one-time authentication code generation information, or exchange wireless messages.

When the wireless communication network provides a data communication channel according to an exemplary embodiment of the present invention, the wireless interface unit 2205 uses a wireless terminal 2260 to be used as the wireless communication disposable authenticator according to the data communication protocol of the wireless communication network. It is preferable to connect the wireless communication channel for receiving the authentication code index information and the unique information of the wireless terminal 2260 from the, and to provide the one-time authentication code generation information to the wireless terminal (2260).

According to another embodiment of the present invention, when the wireless communication network provides a message exchange protocol, the wireless interface unit 2205 uses a wireless terminal 2260 to be used as the wireless communication disposable authenticator according to the message exchange protocol of the wireless communication network. It is desirable to provide a message exchange interface for receiving authentication code index information and wireless terminal 2260 unique information from the terminal, and providing the one-time authentication code generation information to the wireless terminal 2260.

Referring to FIG. 22, when the authentication server 2200 transmits authentication code index information and unique information of the wireless terminal 2260 in the wireless terminal 2260 to be used as the wireless communication disposable authenticator, the wireless interface unit 2205 An index information receiving unit 2210 (or index information receiving means) for receiving the authentication code index information and the unique information of the wireless terminal 2260 through the wireless terminal 2260 in association with the storage medium 2255. Wireless to confirm whether the received authentication code index information of the two or more authentication code index information associated with the unique information is included in the wireless terminal 2260 corresponding to the unique information of the wireless terminal 2260 to a wireless one-time authentication authenticator When the terminal 2260 authentication unit 2215 (or wireless terminal 2260 authentication means), and the wireless terminal 2260 is approved as a wireless communication disposable authenticator, stored in the storage medium 2255 The one-time authentication code generation information (or second partial one-time authentication code generation information) associated with the received authentication code index information among the one or more one-time one-time authentication code generation information (or second partial one-time authentication code generation information), the wireless terminal ( 2260) to verify the authentication code generation information (or second partial one-time authentication code generation information) to be provided, or authentication code generation information (or second partial one-time authentication code generation information) corresponding to the received authentication code index information. Providing the one-time authentication code generation information confirmation / generation unit 2220 (or one-time authentication code generation information confirmation / generation means) for generating the one-time authentication code generation information through the wireless communication network to the wireless terminal (2260). Characterized in that it comprises a one-time authentication code generation information providing unit 2230 (or one-time authentication code generation information providing means) If the received authentication code index information and unique information of the wireless terminal 2260 are securely received through encryption (or data structure change), the secured authentication code index information and unique information of the wireless terminal 2260 are received. Restores the original authentication code index information and the unique information of the wireless terminal 2260 through decryption (or data structure restoration), and secures the authentication code generation information (or second partial one-time authentication code generation information) by performing the security processing. When provided to the wireless terminal 2260, a security processing unit 2225 (or security processing means) for securely processing the authentication code generation information (or second partial one-time authentication code generation information) through encryption (or data structure change). Characterized in that further comprises, if the user authentication information is transmitted from the wireless terminal 2260 according to the intention of the skilled person, Here it is formed by further comprising: a user authentication unit for authenticating the provided authentication information, and an authentication result of the user authentication information to the wireless terminal 2260 (or the user authentication means, not shown) are preferred.

In the wireless terminal 2260 shown in FIG. 15, the authentication code index information and the unique information of the wireless terminal 2260 are transmitted through a wireless communication network in order to use the wireless terminal 2260 as the wireless communication disposable authenticator. The index information receiving unit 2210 may receive the authentication code index information and the unique information of the radio terminal 2260 through the air interface unit 2205.

If the received authentication code index information and unique information of the wireless terminal 2260 are encrypted and received, the security processing unit 2225 decodes the secured authentication code index information and the unique information of the wireless terminal 2260 to obtain the original information. The authentication code index information and the radio terminal 2260 unique information may be restored.

Alternatively, when the received authentication code index information and unique information of the wireless terminal 2260 are secured and received through a data structure change, the security processing unit 2225 receives the secured authentication code index information and the wireless terminal 2260. The original authentication code index information and the radio terminal 2260 unique information may be restored by restoring the data structure of the unique information.

The wireless terminal 2260 authentication unit 2215 receives the received wireless information in a storage medium 2255 that stores unique information of the wireless terminal 2260 and two or more authentication code index information through the information registration system shown in FIG. When the validity of the unique information of the terminal 2260 is confirmed, and the validity of the unique information of the wireless terminal 2260 is confirmed, the unique information of the wireless terminal 2260 is provided through the authentication code index providing system shown in FIG. Check whether the received authentication code index information is included among two or more authentication code index information stored in the storage medium 2255, and two associated with the received authentication code index information and the unique information of the wireless terminal 2260. If confirmed by the authentication code index information of the director, the wireless terminal (2260) corresponding to the unique information of the wireless terminal (2260) to approve to the wireless communication one-time authenticator The features.

If the wireless terminal 2260 is approved as a wireless communication disposable authenticator, the one-time authentication code generation information check / generation unit 2220 is connected to the authentication code index information, two or more one-time authentication stored in the storage medium 2255 Provide one-time authentication code generation information (or second partial one-time authentication code generation information) associated with the received authentication code index information among code generation information (or second partial one-time authentication code generation information) to the wireless terminal 2260. Confirm with the authentication code generation information (or second partial one-time authentication code generation information) to be performed, or dynamically generate authentication code generation information (or second partial one-time authentication code generation information) corresponding to the received authentication code index information. Characterized in that.

According to an exemplary embodiment of the present invention, two pieces corresponding to the at least two pieces of authentication code index information on the storage medium 2255 through the information registration system shown in FIG. 16 or the authentication code index providing system shown in FIG. When the one-time authentication code generation information is stored, the one-time authentication code generation information checking / generating unit 2220 confirms the one-time authentication code generation information corresponding to the received authentication code index information from the storage medium 2255. desirable.

According to another embodiment of the present invention, when the one-time authentication code generation information is not stored in the storage medium 2255, and dynamically generates one-time authentication code generation information corresponding to the received authentication code index information, the one-time The authentication code generation information check / generation unit 2220 preferably dynamically generates real-time one-time authentication code generation information corresponding to the authentication code index information that approved the wireless terminal 2260 as a wireless communication disposable authenticator.

A first portion including a part of the one-time authentication code generation information to the wireless terminal 2260 (for example, the wireless terminal 2260 to be used as the wireless communication disposable authenticator) through the authentication code index providing system shown in FIG. When one-time authentication code generation information is provided, the one-time authentication code generation information checking / generating unit 2220 is part of the remaining one-time authentication code generation information matching the partial one-time authentication code generation information previously provided to the wireless terminal 2260. It is preferable to confirm (or generate) the second partial one-time authentication code generation information including the.

When the first partial one-time authentication code generation information previously provided to the wireless terminal 2260 is part of the one-time authentication code generation information to be provided to the wireless terminal 2260 according to one embodiment of the present invention, the one-time authentication code generation The information confirmation / generation unit 2220 preferably confirms (or generates) the second partial one-time authentication code generation information to be provided to the wireless terminal 2260 with the remaining part of the one-time authentication code generation information.

According to another embodiment of the present invention, if the first partial one-time authentication code generation information previously provided to the wireless terminal 2260 is a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal 2260, the The one-time authentication code generation information confirmation / generation unit 2220 is to confirm (or generate) the one-time authentication code generation information to be combined with the combination code as the second partial one-time authentication code generation information to be provided to the wireless terminal 2260. desirable.

According to another exemplary embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal 2260 is a verification value for verifying the one-time authentication code generation information, confirming / generating the one-time authentication code generation information. The unit 2220 preferably confirms (or generates) one-time authentication code generation information that can be verified by the verification value as second partial one-time authentication code generation information to be provided to the wireless terminal 2260.

If the authentication code generation information (or second partial one-time authentication code generation information) is provided to the wireless terminal 2260 by the security process, the authentication by the one-time authentication code generation information confirmation / generation unit 2220 When the one-time authentication code generation information corresponding to the code index information is confirmed (or generated), the security processing unit 2225 encrypts the authentication code generation information (or the second partial one-time authentication code generation information) or changes the data structure. It characterized in that the security process through.

When the data structure of the authentication code generation information (or second partial one-time authentication code generation information) is secured by changing the data structure according to the embodiment of the present invention, the security processing unit 2225 is configured to generate the authentication code generation information (or second). It is preferable to recombine (or rearrange) the data combination (or arrangement) of the partial one-time authentication code generation information according to a predetermined method or a predetermined method, and the authentication code generation information (or second partial one-time authentication code generation information). ) Is recombined (or rearranged) according to any combination (or arrangement) method, the security processing unit 2225 is the recombined (or rearranged) authentication code generation information (or second partial one-time authentication code generation information) To restore the original data structure for the original authentication code generation information (or second partial one-time authentication code generation information) in the authentication server 2200 to To include a data recovery information (e.g., identifier identifying a recombinant (or rearranged) scheme (or index)) is preferred.

Here, the data recombination (or rearrangement) of the authentication code generation information (or the second partial one-time authentication code generation information) may be performed in nibble units, specific digit units, byte units, word units, or specific block units. It is preferred to be recombinant (or rearranged).

According to the embodiment of the present invention, the security processing unit 2225 may selectively secure any one of the authentication code generation information (or the second partial one-time authentication code generation information), and the present invention provides It is evident that all changes are made to the security process.

If the one-time authentication code generation information is confirmed (or generated) or secured, the one-time authentication code generation information providing unit 2230 transmits the wireless terminal 2260 via the wireless communication network through the wireless interface unit 2205. It is characterized in that for transmitting the one-time authentication code generation information to (for example, a wireless terminal 2260 to be used as the wireless communication one-time authenticator).

Alternatively, when the second partial one-time authentication code generation information is confirmed (or generated) or secured, the one-time authentication code generation information providing unit 2230 may be configured to communicate with the wireless communication network through the wireless interface unit 2205. It is preferable to transmit the remaining part of the one-time authentication code generation information to the wireless terminal 2260 (for example, the wireless terminal 2260 to be used as the wireless communication disposable authenticator).

The one-time authentication code generation information providing unit 2230 by the wireless terminal 2260 (for example, the wireless terminal 2260 to be used as the wireless communication disposable authenticator) the one-time authentication code generation information (or second partial one-time authentication code generation Information), the wireless terminal 2260 provides the one-time authentication code generation information (or first partial one-time authentication code generation information and the one-time authentication code generation information providing unit 2230 previously provided to the wireless terminal 2260). And generating and outputting N-digit one-time authentication code (N) through the combination (or verification) of the one-time authentication code generation information based on the second partial one-time authentication code generation information provided by the one-time authentication. Code (N) is a one-time authentication code input to the authentication request terminal 2265 (for example, a general term of a wired terminal or a wireless terminal requesting authentication through a one-time authentication code) Is input through the interface, characterized in that the transmission through a communications network.

Referring to FIG. 22, the authentication server 2200 may include an N-digit one-time authentication code generated by the wireless terminal 2260 to be used as the wireless communication disposable authenticator through the one-time authentication code input interface at the authentication request terminal 2265. When N is input and transmitted through a communication network, the one-time authentication code receiving unit 2235 (or one-time authentication code receiving means) for receiving the one-time authentication code (N) from the authentication request terminal 2265 through the communication network, Verification code generation unit 2240 (or verification code generating means) for generating an N-digit one-time verification code (N) through the one-time authentication code generation information provided to the wireless terminal (2260) and the authentication request terminal 2265 One-time authentication code authentication unit 2245 (or one-time authentication code authentication means) for comparing the one-time authentication code (N) received from the generated one-time authentication code (N), and the one-time authentication code (N) And the comparison result of the verifying code (N) characterized in that obtained by having the authentication request to the terminal (2265) outputs, or both the authentication result processing unit 2250 (or the authentication result processing unit) for storing the set medium.

When the authentication request terminal 2265 inputs the N-digit one-time authentication code N generated by the wireless terminal 2260 to be used as the wireless one-time authentication device through the one-time authentication code input interface and transmits it through the communication network, the one-time authentication Code receiving unit 2235 is characterized in that for receiving the N-digit one-time authentication code (N) from the authentication request terminal 2265 through the communication network.

When the one-time authentication code (N) is received, the verification code generation unit 2240 generates the one-time authentication code generation information provided to the wireless terminal 2260 to be used as a wireless communication disposable authenticator to generate the one-time authentication code (N). Confirm and generate the N-digit one-time verification code (N) through the one-time authentication code generation information in the same manner as the method for generating the one-time authentication code (N) in the wireless terminal (2260). .

If the one-time authentication code (N) is received, and the one-time verification code (N) is generated, the one-time authentication code authentication unit 2245 and the one-time authentication code (N) received from the authentication request terminal 2265 By comparing the generated one-time verification code (N) and confirming whether or not match, characterized in that to authenticate the received one-time authentication code (N), the authentication result processing unit 2250 is the one-time authentication code (N) ) And the result of comparing the one-time verification code (N) to the authentication request terminal (2265) and output or store in a predetermined medium, so that post-processing according to the authentication result of the one-time authentication code (N) is provided. Characterized in that.

23 is a diagram illustrating a process of transmitting an authentication code index in a wireless terminal according to an embodiment of the present invention.

More specifically, FIG. 23 is a one-time authentication code generation information (or first) after receiving the approval for use of the wireless terminal as a wireless communication disposable authenticator through the one-time authentication code authentication system shown in FIG. 22 in the wireless terminal shown in FIG. 2-part one-time authentication code generation information) to confirm the transmission target authentication code index information of any one or more of the two or more authentication code index information provided from the authentication code index providing system shown in Figure 19, and the confirmed transmission target A process of transmitting the authentication code index information and the wireless terminal unique information to the authentication server shown in FIG. 22 is shown. If a person having ordinary knowledge in the technical field to which the present invention pertains refers to and / or this figure 23 Various embodiments for the process of transmitting the authentication code index in the wireless terminal by modifying (For example, some steps may be omitted, or the order of implementation may be changed). However, the present invention includes all the implementation methods inferred above, and the technical features are only shown by the implementation method shown in FIG. This is not limited.

Referring to FIG. 23, the wireless terminal checks whether a menu (or key button) for implementing a one-time authentication code is input through an authentication code index (2300), and if a menu (or key) for implementing the one-time authentication code is input. Button), the wireless terminal outputs a user authentication information input interface on the screen of the wireless terminal, and checks whether user authentication information is input through the user authentication information input interface (2310).

The user authentication information may include at least one or more personal identification numbers (PINs) or passwords for authenticating and activating the wireless communication disposable authenticator function of the wireless terminal in the authentication server. Do.

Alternatively, the user authentication information may be activated by authenticating the wireless communication disposable authenticator function of the wireless terminal through the user authentication IC chip storage information or the terminal authentication IC chip storage information included in the IC chip (or USIM). It is preferable to include at least one or more personal identification number (PIN), or password for.

Alternatively, the user authentication information may include a password for authenticating and activating a wireless communication disposable authenticator function of the wireless terminal in the wireless terminal. In this case, the user authentication information is stored in the memory unit. (Not shown) is preferable.

If it is confirmed that the user authentication information is input (2315), the wireless terminal authenticates and activates the wireless communication disposable authenticator function provided in the wireless terminal based on the user authentication information (2320).

When the authentication server receives and authenticates the user authentication information according to an embodiment of the present invention, the wireless terminal transmits the input user authentication information to the authentication server in association with the wireless processing unit, and authenticates the authentication server. It is preferable to receive user authentication result information for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal from a server.

According to another embodiment of the present invention, when authenticating the user authentication information through an IC chip (or USIM) provided in the wireless terminal, the wireless terminal is connected to the IC chip reader unit to input the user authentication. It is desirable to provide information to the IC chip (or USIM) and to receive a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal from the IC chip (or USIM).

According to another embodiment of the present invention, when authenticating the user authentication information in the wireless terminal, the wireless terminal compares the input user authentication information with user authentication information (not shown) stored in the memory unit. It is preferable to confirm (or generate) a user authentication result for authenticating and activating a wireless communication disposable authenticator function provided in the wireless terminal.

If the wireless communication disposable authenticator function provided in the wireless terminal is not activated (2325), the wireless terminal disables (or initializes) the wireless communications disposable authenticator function of the wireless terminal (2330).

On the other hand, if the wireless communication disposable authenticator function provided in the wireless terminal is activated (2325), the wireless terminal is provided through the one-time authentication code authentication system shown in Figure 22, which of the two or more authentication code index information stored in the memory One piece of transmission target authentication code index information is selected (2335).

According to an embodiment of the present invention, the wireless terminal randomly selects any one piece of authentication code index information from two or more pieces of authentication code index information stored in the memory unit, or according to a predetermined authentication code index information selection policy. Preferably, one piece of authentication code index information is selected, and a different index value is selected every time the transmission target authentication code index information is selected.

If the transmission target authentication code index information is selected (2340), the wireless terminal checks (or extracts) the transmission target authentication code index information and radio terminal unique information (2345).

If the transmission target authentication code index information and wireless terminal unique information is secured (2350), the wireless terminal encrypts the transmission target authentication code index information and wireless terminal unique information to securely transmit the authentication server, or A security process of changing the data structure of the transmission target authentication code index information and radio terminal unique information is performed (2355).

When the data structure of the transmission target authentication code index information and the radio terminal unique information is changed according to an embodiment of the present invention, the radio terminal combines (or arranges) the data of the transmission target authentication code index information and the radio terminal unique information. ) Is recombined (or rearranged) according to a predetermined method or a predetermined method, and the transmission target authentication code index information and radio terminal unique information are recombined (or rearranged) according to a random combination (or arrangement) method. If so, the wireless terminal has an original data structure for the original transmission target authentication code index information and radio terminal unique information in the authentication server in the recombined (or rearranged) transmission target authentication code index information and radio terminal unique information. Identifying data reconstruction information (eg, recombination (or rearrangement) scheme for restoring That the inclusion of (or index)) is preferred.

Here, the data recombination (or rearrangement) of the transmission target authentication code index information and the radio terminal unique information may be recombined (or reconstructed by nibble unit, specific digit unit, byte unit, word unit, or specific block unit). Arrangement).

According to the embodiment of the present invention, the wireless terminal can selectively secure any one of the transmission target authentication code index information and the wireless terminal unique information, and the present invention can change all of the security processing. It is clearly understood that this is done including the method of implementation.

If the transmission target authentication code index information and the wireless terminal unique information is secured (2355), or the security processing is omitted (2350), the wireless terminal is the transmission target authentication code index information and wireless terminal unique information. In step 2350, the control server transmits the authentication server to the authentication server through a wireless communication network.

24 is a diagram illustrating a process of providing one-time authentication code generation information after approval of using a wireless terminal as a wireless communication disposable authenticator according to an embodiment of the present invention.

More specifically, FIG. 24 shows the authentication server shown in FIG. 22 when the authentication code index information and the radio terminal unique information are transmitted from the wireless terminal shown in FIG. 15 through the process of transmitting the authentication code index shown in FIG. Receives the authentication code index information and the wireless terminal unique information, and after using the wireless terminal as a wireless communication disposable authenticator through the authentication code index information and the unique information of the wireless terminal, and then the one-time authentication code generation information to the wireless terminal (Or second partial one-time authentication code generation information) is shown, and if the person of ordinary skill in the art to which the present invention pertains, referring to and / or modified this figure 24 to wirelessly Various implementation methods for providing a one-time authentication code generation information after approval of use as a communication one-time authenticator (eg However, some steps may be omitted, or the order of implementation may be changed), but the present invention includes all the implementation methods inferred, and the technical features are limited only by the implementation method shown in FIG. Not.

Referring to FIG. 24, when the authentication code index information and the wireless terminal unique information are transmitted from the wireless terminal illustrated in FIG. 15 through the process of transmitting the authentication code index illustrated in FIG. The authentication code index information and radio terminal unique information transmitted from the radio terminal are received (2400).

Here, the unique information of the wireless terminal is assigned to a wireless terminal telephone number corresponding to the wireless terminal of the customer, a Universal IC Card (UICC) / Universal Subscriber Identity (USIM) serial number mounted on the wireless terminal, and the wireless terminal. Either the terminal serial number (e.g., ESN (Electronic Serial Number)), the radio terminal information including one or more radio terminal opening number is used as it is, or the radio terminal telephone number, UICC / USIM serial number, terminal serial number, radio terminal It is preferable to include one or more unique combination numbers generated by combining one or more of all (or a part) of the opening numbers.

If the authentication code index information and the wireless terminal unique information is transmitted in a secure process through encryption (or data structure change) in the wireless terminal (2405), the authentication server is configured to transmit the secured authentication code index information and the wireless terminal. The original authentication code index information and the radio terminal unique information are restored by decrypting the unique information (or restoring the data structure) (2410).

Thereafter, the authentication server identifies the wireless terminal unique information matching the received wireless terminal unique information in association with the storage medium (2415).

If the wireless terminal unique information matching the received unique wireless terminal information from the storage medium is not confirmed (2420), the authentication server transmits and outputs wireless terminal validity error information to the wireless terminal through a wireless communication network ( 2425).

On the other hand, if the wireless terminal unique information matching the received unique wireless terminal information from the storage medium is confirmed (2420), the authentication server is linked to the wireless terminal unique information of the at least two authentication code index information stored in the storage medium; Check whether the received authentication code index information is included (2430).

If it is not confirmed that the received authentication code index information is included in the at least two authentication code index information stored in the storage medium (2435), the authentication server transmits wireless terminal validity error information to the wireless terminal through a wireless communication network. And output (2425).

On the other hand, if it is confirmed that the received authentication code index information among the two or more authentication code index information stored in the storage medium (2435), the authentication server uses the wireless terminal as a wireless communication disposable authenticator (2440). .

If the wireless terminal is not approved for use as a wireless communication disposable authenticator (2445), the authentication server transmits and outputs wireless terminal validity error information to the wireless terminal through a wireless communication network (2425).

On the other hand, when the wireless terminal is approved for use as a wireless communication disposable authenticator (2445), the authentication server generates one-time authentication code generation information (or second one-time authentication code generation information) to be provided to the wireless terminal approved for use as the wireless communication disposable authenticator. Verify (or create) 2450.

When one-time authentication code generation information corresponding to the authentication code index information is stored in the storage medium, the authentication server generates one-time authentication code generation information corresponding to the authentication code index information from the storage medium. It is desirable to check.

According to another exemplary embodiment of the present invention, when the one-time authentication code generation information is not stored in the storage medium and the one-time authentication code generation information corresponding to the authentication code index information is dynamically generated, the authentication server may be configured as the wireless terminal. It is desirable to dynamically generate real-time one-time authentication code generation information corresponding to the authentication code index information approved by the wireless communication disposable authenticator.

The first partial one-time authentication code generation information including a part of the one-time authentication code generation information is transmitted to the wireless terminal (for example, the wireless terminal to be used as the wireless communication disposable authenticator) through the authentication code index providing system shown in FIG. If provided, the authentication server is to confirm (or generate) the second partial one-time authentication code generation information including the remaining part of the one-time authentication code generation information matching the partial one-time authentication code generation information previously provided to the wireless terminal. desirable.

According to an embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is part of the one-time authentication code generation information to be provided to the wireless terminal, the authentication server is configured to generate the one-time authentication code generation information. It is preferable to check (or generate) the second partial one-time authentication code generation information to be provided to the wireless terminal.

According to another embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is a combination code to be combined with the one-time authentication code generation information to be provided to the wireless terminal, the authentication server is the combination code. It is preferable to confirm (or generate) the one-time authentication code generation information to be combined with the second partial one-time authentication code generation information to be provided to the wireless terminal.

According to another exemplary embodiment of the present invention, when the first partial one-time authentication code generation information previously provided to the wireless terminal is a verification value for verifying the one-time authentication code generation information, the authentication server may be verified by the verification value. It is preferable to confirm (or generate) authentication code generation information with second partial one-time authentication code generation information to be provided to the wireless terminal.

If one-time authentication code generation information (or second one-time authentication code generation information) to be provided to the wireless terminal approved for use as the wireless communication one-time authentication is confirmed (or generated) (2455), the one-time authentication code generation information (or second) 2, if the one-time authentication code generation information) secure processing (2460), the authentication server encrypts the one-time authentication code generation information (or second one-time authentication code generation information) to the authentication server securely, or the one-time A security process of changing the data structure of the authentication code generation information (or the second one-time authentication code generation information) is performed (2465).

When changing the data structure of the one-time authentication code generation information (or second one-time authentication code generation information) according to the embodiment of the present invention, the authentication server is the one-time authentication code generation information (or second one-time authentication code generation information) It is preferable to recombine (or rearrange) the data combination (or arrangement) of the data according to a predetermined method or a predetermined method. When recombination (or rearrangement) is performed according to an arrangement) method, the authentication server uses the recombination (or rearrangement) one-time authentication code generation information (or second one-time authentication code generation information) as the original one-time authentication at the authentication server. Data restoration information for restoring the original data structure for the code generation information (or the second one-time authentication code generation information) I pray, it is desirable to include an identifier (or index)) that identifies a recombinant (or rearranged) scheme.

Here, the data recombination (or rearrangement) of the one-time authentication code generation information (or the second one-time authentication code generation information) may be performed in nibble units, specific digit units, byte units, word units, or specific block units. It is preferred to be recombinant (or rearranged).

According to the embodiment of the present invention, the authentication server may selectively secure any one of the one-time authentication code generation information (or the second one-time authentication code generation information), and the present invention may be applied to the security processing. It is clearly to be understood that this includes all possible modifications to the implementation.

If the one-time authentication code generation information (or the second one-time authentication code generation information) is secured (2465), or if the security processing is omitted (2460), the authentication server to the wireless terminal through the wireless communication network The one-time authentication code generation information (or second one-time authentication code generation information) is transmitted (2470).

25 is a view showing a process of generating a one-time authentication code according to an embodiment of the present invention.

In more detail, when FIG. 25 provides the one-time authentication code generation information to the wireless terminal shown in FIG. 15 through the process of providing the one-time authentication code generation information shown in FIG. 24, the one-time authentication code generation information is generated by the wireless terminal. Through showing the process of generating an N-digit one-time authentication code (N) through, if the person of ordinary skill in the art to which the present invention pertains, the one-time authentication code by referring to and / or modified in this figure 25 Various implementation methods (for example, some steps may be omitted or the order may be changed) may be inferred about the generating process. However, the present invention includes all the implementation methods inferred, and The technical features are not limited only to the illustrated embodiment.

Referring to FIG. 25, when the one-time authentication code generation information is provided to the wireless terminal shown in FIG. 15 through the process of providing the one-time authentication code generation information shown in FIG. 24, the wireless terminal receives the one-time authentication from the authentication server. The code generation information is received (2500).

If the one-time authentication code generation information is received (2505), and the one-time authentication code generation information is transmitted securely through encryption (or data structure change) in the authentication server (2510), the wireless terminal is the security The original one-time authentication code generation information is restored through decryption (or data structure restoration) of the processed one-time authentication code generation information (2515).

If the one-time authentication code generation information is restored to the original one-time authentication code generation information through decryption (or data structure restoration) (2515), or the security processing of the one-time authentication code generation information is omitted (2510), the wireless The terminal generates the one-time authentication code (N) of N digits according to a preset one-time authentication code generation standard using the received one-time authentication code generation information as a seed value for generating the one-time authentication code (N). (2520).

If the one-time authentication code (N) is generated (2525), the wireless terminal outputs the generated N-digit one-time authentication code (N) to a predetermined area on the screen of the wireless terminal (2530).

According to another exemplary embodiment of the present invention, when the wireless terminal is provided with a short-range communication function, and the authentication request terminal and the short-range communication channel are connected through the short-range communication, the wireless terminal is disposable for the N-digit number through the short-range communication. It is possible to output the authentication code (N) to the authentication request terminal, whereby the present invention is not limited.

26 is a view showing a process of generating a one-time authentication code according to another embodiment of the present invention.

In more detail, when FIG. 26 provides the second partial one-time authentication code generation information to the wireless terminal shown in FIG. 15 through the process of providing the one-time authentication code generation information shown in FIG. 24, the memory unit in the wireless terminal As a process for generating an N-digit one-time authentication code (N) based on the first partial one-time authentication code generation information and the second partial one-time authentication code generation information stored in the present invention, the general knowledge in the art If the person having the present invention, various implementation methods (for example, some steps may be omitted or changed in order) may be inferred from the process of generating the one-time authentication code by referring to and / or modifying the drawing 26. The present invention includes all the implementation methods inferred, and the technical features thereof are only shown in the implementation method illustrated in FIG. It shall be defined.

Referring to FIG. 26, when the second partial one-time authentication code generation information is provided to the wireless terminal shown in FIG. 15 through the process of providing the one-time authentication code generation information shown in FIG. 24, the wireless terminal may receive information from the authentication server. The second partial one-time authentication code generation information is received (2600).

If the second partial one-time authentication code generation information is received (2605), and when the second partial one-time authentication code generation information is secured and transmitted through encryption (or data structure change) (2610), The wireless terminal restores the original second partial one-time authentication code generation information through decryption (or data structure restoration) of the secured second partial one-time authentication code generation information (2615).

If the second partial one-time authentication code generation information is restored to the original second partial one-time authentication code generation information through decryption (or data structure restoration) (2615), or the security processing of the second partial one-time authentication code generation information is performed. When omitted (2610), the wireless terminal combines (or connects) the first partial one-time authentication code generation information and the second one-time authentication code generation information stored in the memory unit to generate the one-time authentication code (N). Generates one-time authentication code generation information corresponding to the seed value, or confirms the second one-time authentication code generation information as the seed value for generating the one-time authentication code (N) through the first partial one-time authentication code generation information. (2620).

If one-time authentication code generation information is not generated (or confirmed) through the first partial one-time authentication code generation information and the second partial one-time authentication code generation information (2625), the wireless terminal outputs one-time authentication code generation error information. (2630).

On the other hand, when the one-time authentication code generation information is generated (or confirmed) through the first partial one-time authentication code generation information and the second partial one-time authentication code generation information (2625), the wireless terminal generates the one-time authentication (or confirmation) Using the code generation information as a seed value for generating the one-time authentication code (N) to generate a one-time authentication code (N) of N digits according to a predetermined one-time authentication code generation standard (2635).

If the first partial one-time authentication code generation information stored in the memory unit is stored, the wireless terminal through the first partial one-time authentication code generation information n of the N-digit one-time authentication code (N) (1 <= n < N) generates a one-time authentication code (n) of digits, and generates a (Nn) one-time authentication code (Nn) through the received second partial one-time authentication code generation information, and the one-time authentication code (n) and It is possible to generate the N-digit single-use authentication code (N) by combining (or concatenating) the one-time authentication code (Nn), whereby the present invention is not limited.

If the one-time authentication code (N) is generated (2640), the wireless terminal outputs the generated N-digit one-time authentication code (N) to a predetermined area on the screen of the wireless terminal (2645).

According to another exemplary embodiment of the present invention, when the wireless terminal is provided with a short-range communication function, and the authentication request terminal and the short-range communication channel are connected through the short-range communication, the wireless terminal is disposable for the N-digit number through the short-range communication. It is possible to output the authentication code (N) to the authentication request terminal, whereby the present invention is not limited.

27 is a view showing a one-time authentication code authentication process according to an embodiment of the present invention.

In more detail, Figure 27 is a one-time authentication code (N) of the N-digit generated in the wireless terminal shown in Figure 15 through the process of generating the one-time authentication code shown in Figure 25 or Figure 26, the authentication request terminal Input the one-time authentication code (N) to the authentication server shown in Figure 22, and in response to the one-time authentication by generating a one-time verification code (N) matching the one-time authentication code (N) in the authentication server As illustrating a process of authenticating the code (N), those of ordinary skill in the art to which the present invention pertains, various implementation methods for the one-time authentication code authentication process by referring to and / or modified in this figure 27 For example, some steps may be omitted, or the order of implementation may be changed), but the present invention includes all the methods of inferring. , Only the exemplary method shown in the figure 27 is not limited its technical characteristics.

Referring to FIG. 27, when the one-time authentication code (N) of N digits is generated in the wireless terminal shown in FIG. 15 through the one-time authentication code generation process shown in FIG. 25 or FIG. 26, the authentication request terminal is displayed on the screen. After outputting the one-time authentication code input interface (2700), and processing the input of the N-digit one-time authentication code (N) generated by the wireless terminal through the one-time authentication code input interface (2705), the authentication server through the communication network The input one-time authentication code (N) is transmitted to (2710).

The authentication server receives the one-time authentication code N through a communication network, and confirms one-time authentication code generation information corresponding to the received one-time authentication code N (2715).

If the one-time authentication code generation information is confirmed (2720), the authentication server generates the N-digit one-time verification code (N) through the confirmed one-time authentication code generation information (2725).

If the one-time verification code generation information is generated (2720), the authentication server compares the one-time authentication code (N) and the one-time verification code (N) to authenticate the one-time authentication code (2735).

If the one-time authentication code is not authenticated (2740), the authentication server provides the one-time authentication code authentication error information to the authentication request terminal and outputs it (2745).

On the other hand, if the one-time authentication code is authenticated (2740), the authentication server provides a one-time authentication code authentication result to the authentication request terminal and outputs, and the one-time authentication code authentication to the terminal as a medium requiring authentication through the one-time authentication code Output or store the result (2750).

According to the present invention, after activating the wireless communication one-time authentication function provided in the wireless terminal through the user authentication information, and after using the wireless terminal as a wireless communication disposable authenticator through the unique information and authentication code index information of the wireless terminal, the By generating a one-time authentication code through a wireless terminal, there is an advantage that the wireless terminal is connected to a wireless communication network has a weak security function, there is an advantage to solve the problem that a negative wireless terminal can be used as a one-time authentication through the communication network, While eliminating the problem, the one-time authentication code generation method activates the wireless communication one-time authentication function provided in the wireless terminal through user authentication information, and is automatically processed without a separate user authentication process. have.

Claims (15)

Providing authentication code index information associated with one-time authentication code generation information to a wireless terminal to be used as a one-time authentication device; Receiving the authentication code index information from the wireless terminal; And And providing to the wireless terminal one-time authentication code generation information associated with the authentication code index information. The method of claim 1, And storing at least one of authentication code index information and one-time authentication code generation information in a storage medium in association with each other. The method of claim 1, When the authentication code index information and the wireless terminal unique information are stored in a storage medium in association with each other, receiving the wireless terminal unique information of the wireless terminal which has transmitted the authentication code index information; And Comparing the authentication code index information, the unique information of the wireless terminal with the unique information of the wireless terminal and the authentication code index stored in the storage medium, and approving the use of the wireless terminal as a disposable authenticator. One-time authentication method. The method of claim 1, Receiving a one-time authentication code (N) having N (N> = 2) digits generated through the one-time authentication code generation information from a terminal; Generating an N-digit one-time verification code (N) through the one-time authentication code generation information provided to the wireless terminal; Comparing the received one-time authentication code (N) with the one-time verification code (N); And Outputting (or storing) the result of comparing the one-time authentication code (N) and the one-time verification code (N); One-time authentication method through the index, characterized in that it further comprises. The method of claim 1, wherein the receiving of the authentication code index information from the wireless terminal comprises: Restoring the authentication code index information by decrypting the authentication code index information (or restoring the data structure) when the authentication code index information is encrypted (or the data structure is changed). One-time authentication method through index exchange. Storing the authentication code index information in the memory unit; Transmitting the authentication code index information stored in the memory to an authentication server when the wireless terminal is used as a one-time authenticator; Receiving one-time authentication code generation information corresponding to the authentication code index information from the authentication server; Generating a one-time authentication code (N) having N (N> = 2) digits through the one-time authentication code generation information; And Outputting the generated one-time authentication code (N); a one-time authentication method through the index comprising a. The method of claim 6, When two or more pieces of authentication code index information are stored in the memory unit, the method further comprises the step of checking the transmission target authentication code index information of any one or more pieces of the authentication code index information stored in the memory unit. One-time authentication method. The method of claim 6, wherein the transmitting of the authentication code index information stored in the memory unit to an authentication server comprises: One-time authentication method through the index, characterized in that for transmitting the unique information of the wireless terminal. The method of claim 6, wherein the transmitting of the authentication code index information stored in the memory unit to an authentication server comprises: Encrypting the authentication code index information, or by changing the data structure of the authentication code index information, characterized in that the one-time authentication method through the index. The method of claim 6, wherein the transmitting of the authentication code index information stored in the memory unit to an authentication server comprises: In case of transmitting the unique information of the wireless terminal, the authentication code index information and the unique information of the wireless terminal are encrypted or the data structure of the authentication code index information and the unique information of the wireless terminal is transmitted through an index. One-time authentication method. A computer-readable recording medium having recorded thereon a program for executing the method of claim 1. Authentication code index providing means for providing authentication code index information associated with one-time authentication code generation information to a wireless terminal to be used as a one-time authentication device; Index information receiving means for receiving the authentication code index information from the wireless terminal; And And one-time authentication code generation information providing means for providing the wireless terminal with one-time authentication code generation information associated with the authentication code index information. The method of claim 12, And one or more authentication code index information and one-time authentication code generation information. The method of claim 12, wherein the index information receiving means, When the authentication code index information and the wireless terminal unique information is stored in a storage medium in association with, the one-time authentication through the index, characterized in that further receiving the wireless terminal unique information of the wireless terminal transmitting the authentication code index information from the wireless terminal system. The method of claim 12, Comparing the received wireless terminal specific information and the wireless terminal specific information stored in the storage medium, and compares the received authentication code index information and the authentication code index information stored in association with the wireless terminal specific information on the storage medium to compare the wireless terminal Wireless terminal authentication means for approving the use as a one-time authenticator; characterized in that it further comprises a one-time authentication system through the index.

Images