KR20100136360A - System and method for processing mobile phone small sum of money settlement using otp verification information, server and recording medium - Google Patents

Abstract

PURPOSE: A system and a method for processing small-sum monetary settlement of a mobile phone by using OTP(one time password) verification information, and a server and a recording medium for the same are provided to prevent the inappropriate approval of mobile phone payment by allowing a user to further input preset OTP verification information in a mobile phone payment procedure. CONSTITUTION: If an OTP agent is previously installed at a user mobile phone or downloaded to the user mobile phone, an OTP interface provision unit(140) provides a user wired terminal with an OTP input interface for inputting OTP verification information. An OTP reception unit(145) receives an OTP and the OTP verification information from the user wired terminal, wherein the OTP is inputted through the interface.

Description

System and Method for Processing Mobile Phone Small sum of Money Settlement using OTP Verification Information, Server and Recording Medium}

1 is a diagram showing a mobile phone micropayment processing system configuration using the OTP verification information according to the first embodiment of the present invention.

2 is a diagram illustrating a mobile phone payment process using OTP verification information according to a first embodiment of the present invention.

3 is a diagram illustrating a process of providing an OTP agent to a user mobile phone according to the first embodiment of the present invention.

4 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a first embodiment of the present invention.

5 is a diagram illustrating a mobile phone micropayment processing system configuration using the OTP verification information according to the second embodiment of the present invention.

6 is a diagram illustrating a mobile phone payment process using OTP verification information according to a second embodiment of the present invention.

7 is a diagram illustrating a process of providing an OTP agent to a user mobile phone according to the second embodiment of the present invention.

8 is a diagram illustrating a mobile phone payment approval process using the OTP verification information according to the second embodiment of the present invention.

9 is a diagram showing the configuration of a mobile phone micropayment processing system using OTP verification information according to a third embodiment of the present invention.

10 is a diagram illustrating a mobile phone payment process using OTP verification information according to a third embodiment of the present invention.

11 is a diagram illustrating a process of providing an OTP agent to a user mobile phone according to the third embodiment of the present invention.

12 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to the third embodiment of the present invention.

13 is a diagram showing the configuration of a mobile phone micropayment processing system using the OTP verification information according to the fourth embodiment of the present invention.

14 is a diagram illustrating a mobile phone payment process using OTP verification information according to a fourth embodiment of the present invention.

15 is a diagram illustrating a process of providing an OTP agent to a user mobile phone according to the fourth embodiment of the present invention.

16 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to the fourth embodiment of the present invention.

<Description of main parts of drawing>

100: user wired terminal 105: web server

110: payment system 115: payment interface providing means

120: information receiving means 125: user authentication means

130: agent confirmation means 135: agent providing means

140: OTP interface providing means 145: OTP receiving means

150: OTP validation means 155: payment validation means

160: information providing means 165: payment processing means

170: mobile carrier server 175: user mobile phone

According to the present invention, when a user wired terminal inputs and transmits carrier selection information corresponding to a user's mobile phone and user's mobile phone number and user's social security number information, an OTP (One Time Password) agent is mounted on the user's mobile phone after user authentication through a mobile carrier. And an interface for inputting the OTP generated through the user mobile phone and preset OTP verification information to the user wired terminal only when the OTP agent is mounted on the user mobile phone. When the OTP and OTP verification information are input and transmitted, the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, and the OTP associated with the user's mobile phone number only when the validity of the OTP' generation is authenticated. OTP 'is generated through the generated information to the user wired terminal. The reception is to provide a comparison with the OTP authentication methods and mobile phone billing system.

When the user inputs a mobile phone number and subscriber information through a user terminal and provides the mobile phone payment, after verifying that the customer is a valid subscriber of the telecommunication company through the mobile phone number and the subscriber information, a predetermined authentication number is determined according to the subscriber authentication result. After generating and transmitting to the user's mobile phone, if matched by comparing the authentication number received through the user terminal and the authentication number transmitted to the user's mobile phone, the payment is approved to the next month's communication fee of the user's mobile phone by approving it It is a payment method (application number: 10-2000-0020757).

However, personal information leakage incidents occur infrequently, and the leaked personal information is openly traded (or disclosed) through the Internet, and the number of lost mobile phones occurs an average of 200,000 or more per month (December 24, 2003) ) Has a problem that anyone who acquires or duplicates another person's mobile phone can be authorized to pay for the mobile phone using the leaked personal information.

In particular, although the mobile phone payment approval is made in real time, the settlement of the payment amount on average within 45 days after the approval of the payment, due to the characteristics of the mobile phone payment, the damage occurs using the acquired / duplicated mobile phone and leaked personal information, The damage is expected to reach astronomical figures.

An object of the present invention for solving the above problems, when the user wired terminal inputs and transmits the mobile carrier selection information corresponding to the user mobile phone and the user mobile phone number and user resident registration number information, after the user authentication through the mobile communication company Interface that checks whether the OTP (One Time Password) agent is installed in the mobile phone and inputs the OTP generated through the user mobile phone and preset OTP verification information to the user wired terminal only when the OTP agent is installed in the user mobile phone. And providing, when the user wired terminal inputs and transmits the OTP and OTP verification information, and authenticates the validity of generating OTP 'to be compared with the OTP through the OTP verification information, the OTP' generation validity is authenticated Only through the OTP generation information associated with the user's mobile number OTP 'is generated to authenticate the mobile phone payment by comparing with the OTP received from the user wired terminal.

The method for processing a micro payment of a mobile phone using OTP verification information according to the present invention includes an interface for selecting a mobile carrier corresponding to a user's mobile phone and inputting a user's mobile phone number and a user's social security number with a user wired terminal connected to a small payment target website. Processing to be provided; receiving mobile carrier selection information corresponding to the user's mobile phone and user's mobile phone number and user social security number information through the interface; and a user's mobile phone to the mobile carrier server corresponding to the received mobile carrier selection information. Transmitting the number and the user's social security number information, checking the user authentication result corresponding to the result of checking the user's mobile number and the user's social security number through the mobile carrier server, and checking whether the OTP (One Time Password) agent is already installed in the user's mobile phone. And if the OTP agent is not already installed in the user's mobile phone, processing a message including a CallBack URL for downloading the OTP agent to the user's mobile phone, and the OTP agent is pre-installed in the user's mobile phone. Interface for inputting OTP generated by the OTP agent provided in the user's mobile phone and OTP verification information for generating OTP 'to be compared with the OTP when the OTP agent is downloaded and installed to the user's mobile phone. Processing to be provided, receiving the OTP and OTP verification information input through the interface from the user wired terminal, and comparing the received OTP verification information with OTP verification information stored in a storage medium. Validating the OTP 'generation to be compared with the OTP; When the generation validity is verified, confirming OTP generation information for generating OTP 'to be compared with the OTP, determining a fixed seed value and a dynamic seed value for generating OTP' from the OTP generation information, and determining the determined fixed value. Generating an OTP 'using a seed value and a dynamic seed value, comparing the received OTP with the generated OTP' and confirming the micropayment validity of the mobile number; and the micropayment validity of the mobile number And transmitting the verification result to the micropayment target website.

On the other hand, the mobile phone micropayment processing method using the OTP verification information according to the present invention, the user wired terminal connected to the website for the micropayment, the interface for selecting a mobile carrier corresponding to the user's mobile phone and entering the user's mobile phone number and user social security number Processing to be provided, receiving mobile carrier selection information corresponding to the user's mobile phone and user's mobile number and user social security number information through the interface, and a user to the mobile carrier server corresponding to the received mobile carrier selection information. Transmitting the mobile phone number and the user social security number information, whether the user authentication result corresponding to the user mobile phone number and the user social security number verification result through the mobile carrier server, and whether or not an OTP (One Time Password) agent is already installed in the user mobile phone;Checking and, if the OTP agent is not already installed in the user's mobile phone, processing a message including a CallBack URL for downloading the OTP agent to the user's mobile phone; and installing the OTP agent in the user's mobile phone. Or OTP agent is downloaded and installed to the user's mobile phone, OTP verification information for generating OTP generated by the OTP agent provided in the user's mobile phone and OTP 'to be compared with the OTP to the user wired terminal. Processing to provide an interface, receiving OTP and OTP verification information input through the interface from the user wired terminal, and receiving the received OTP and OTP verification information from an OTP agent provider provided in the user's mobile phone. Transmitting to an OTP server; and from the OTP server Receiving a comparison result of the OTP 'generated based on the OTP verification information and the OTP generated by the user's mobile phone, and performing a micropayment validation result corresponding to the comparison result of the OTP' and the OTP generated by the user's mobile phone Characterized in that it comprises the step of transmitting to the payment target website.

On the other hand, the mobile phone micropayment processing method using the OTP verification information according to the present invention, the user wired terminal connected to the website for the micropayment, the interface for selecting a mobile carrier corresponding to the user's mobile phone and entering the user's mobile phone number and user social security number Processing to be provided, receiving mobile carrier selection information corresponding to the user's mobile phone and user's mobile number and user social security number information through the interface, and through the mobile carrier server corresponding to the received mobile carrier selection information. Checking a user authentication result corresponding to a user mobile number and a user social security number confirmation result, and checking whether an OTP (One Time Password) agent is already installed in the user mobile phone through an OTP server; Agent is existing If not, the step of processing a message containing a CallBack URL for downloading the OTP agent to the user's mobile phone, the OTP agent is pre-installed on the user's mobile phone, or the OTP agent is downloaded to the user's mobile phone When installed, the step of processing to provide an interface for inputting OTP generated by the OTP agent provided in the user's mobile phone to the user wired terminal and OTP verification information for generating OTP 'to be compared with the OTP, and the user wired Receiving OTP and OTP verification information input through the interface from a terminal, transmitting the received OTP and OTP verification information to the OTP server, and OTP generated based on OTP verification information from the OTP server. Receiving an OTP comparison result generated by the user's mobile phone and the OTP; And a small payment validation result corresponding to the comparison result of the OTP generated by the user's mobile phone to the small payment target website.

On the other hand, the mobile phone micropayment processing method using the OTP verification information according to the present invention, the user wired terminal connected to the website for the micropayment, the interface for selecting a mobile carrier corresponding to the user's mobile phone and entering the user's mobile phone number and user social security number Processing to be provided, receiving mobile carrier selection information and user mobile phone number and user social security number information corresponding to the user mobile phone through the interface, and the user corresponding to the received user mobile phone number and user social security number confirmation result. Checking the authentication result and whether or not the one time password (OTP) agent is already installed in the user's mobile phone, and if the OTP agent is not already installed in the user's mobile phone, CallBack URL for downloading the OTP agent to the user's mobile phone This The OTP agent is pre-installed in the user's mobile phone or when the OTP agent is downloaded and installed in the user's mobile phone. Processing to provide an OTP and an interface for inputting OTP verification information for generating OTP 'to be compared with the OTP; receiving OTP and OTP verification information input through the interface from the user wired terminal; Comparing the received OTP verification information with previously stored OTP verification information in a storage medium to verify the OTP 'generation validity to be compared with the OTP; and when the OTP' generation validity is verified, the OTP 'to be compared with the OTP'. Checking the OTP generation information for generating an OTP 'from the OTP generation information; Determines a fixed seed value and a dynamic seed value, generates an OTP 'using the determined fixed seed value and the dynamic seed value, compares the received OTP and the generated OTP' and makes a micropayment for the mobile number. And confirming the validity, and transmitting the micropayment validity verification result for the mobile number to the micropayment target website.

In accordance with an embodiment of the present invention, a method for processing a micro payment of a mobile phone using OTP verification information includes: inquiring a micro payment limit for the user's mobile phone number and processing an approval for the micro payment in response to the micro payment limit inquiry result. It is characterized in that it further comprises.

Cell phone micropayment processing method using the OTP verification information according to the present invention, characterized in that the micropayment further comprises the step of processing to be charged to the user's mobile phone bill.

On the other hand, it comprises a computer-readable recording medium, characterized in that for recording the program for executing the mobile phone payment processing method using the above-mentioned OTP verification information.

On the other hand, mobile phone micropayment processing system using the OTP verification information according to the present invention, moving from the storage medium and the user wired terminal connected to the micropayment target website to store the user's mobile phone number, OTP generation information and OTP verification information in association When the carrier selection information, the user mobile phone number and the user social security number information are received, the user authentication result corresponding to the user mobile phone number and the user social security number verification result through the mobile carrier server corresponding to the received mobile carrier selection information and OTP to the user mobile phone (One Time Password) Checks whether an agent is already installed, and if an OTP agent is not already installed in the user's mobile phone, processes a message including a CallBack URL for downloading an OTP agent to the user's mobile phone. To OTP on the user's mobile phone, If the agent is already installed or the OTP agent is downloaded and installed to the user's mobile phone, OTP verification for generating OTP generated by the OTP agent provided in the user's mobile phone and OTP 'to be compared with the OTP Process to provide an interface for inputting information to receive OTP and OTP verification information input through the interface, and compare the received OTP verification information and OTP verification information previously stored in the storage medium to be compared with the OTP OTP 'generation validity is verified, and if the OTP' generation validity is verified, OTP 'is generated through the OTP generation information, and the received OTP is compared with the generated OTP' and the micropayment validity for the mobile number Characterized in that comprises a server to check.

On the other hand, the mobile phone micropayment processing system using the OTP verification information according to the present invention, when the mobile carrier selection information and the user's mobile phone number and user resident registration number information is received from the user wired terminal connected to the website for the micropayment, the received mobile Check whether the user authentication result corresponding to the user mobile number and the user's social security number verification result and the OTP (One Time Password) agent are preinstalled on the user mobile phone through the mobile communication server corresponding to the carrier selection information, and the user mobile phone If the OTP agent is not already installed in the mobile phone, the message including the callback URL for downloading the OTP agent is transmitted to the user's mobile phone, and the OTP agent is pre-installed in the user's mobile phone or the OTP agent to the user's mobile phone. Has been downloaded In this case, an interface for inputting OTP generated by an OTP agent provided in the user's mobile phone and OTP verification information for generating OTP 'to be compared with the OTP is provided to the user wired terminal. Receiving OTP and OTP verification information, and transmits the received OTP and OTP verification information to the OTP server of the OTP agent provider provided in the user's mobile phone and the OTP verification information and the OTP verification information previously stored in the storage medium Verify the OTP 'generation to be compared with the OTP, and if the OTP' generation is verified, the OTP generation information is checked, and a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information are determined. Generate OTP 'using the determined fixed seed value and the dynamic seed value, and generate the received OTP and the generated seed value. OTP 'is characterized in that it comprises an OTP server for checking the validity of the micropayment for the mobile phone number.

On the other hand, the mobile phone micropayment processing system using the OTP verification information according to the present invention, the OTP server for providing and managing the OTP agent to the user's mobile phone and the mobile carrier's selection information and the user's mobile phone from the user wired terminal connected to the website for small payments When the number and the user resident registration number information are received, the user mobile phone number and the user authentication result corresponding to the user resident registration number check result is confirmed through the mobile communication company server corresponding to the received mobile carrier selection information, and the user mobile phone through the OTP server. Check whether the One Time Password (OTP) agent is already installed in the mobile phone, and if the OTP agent is not already installed in the user's mobile phone, the message including the CallBack URL for downloading the OTP agent is transmitted to the user's mobile phone. And the user carry If the OTP agent is already installed in the OTP agent or the OTP agent is downloaded and installed in the user's mobile phone, the OTP generated by the OTP agent provided in the user's mobile phone with the user wired terminal and the OTP 'to be compared with the OTP'. And a server for processing an interface for inputting verification information to receive OTP and OTP verification information input through the interface and transmitting the received OTP and OTP verification information to the OTP server. The OTP server compares the OTP verification information with pre-stored OTP verification information to verify the OTP 'generation validity to be compared with the OTP, and if the OTP' generation validity is verified, the OTP generation information is verified. Determine a fixed seed value and a dynamic seed value for generating an OTP 'from the OTP generation information. And generating an OTP 'using the determined fixed seed value and the dynamic seed value, comparing the received OTP with the generated OTP', confirming the micropayment validity for the mobile number, and comparing the OTP results. It characterized in that for transmitting to the server.

On the other hand, mobile phone micropayment processing system using the OTP verification information according to the present invention, moving from the storage medium and the user wired terminal connected to the micropayment target website to store the user's mobile phone number, OTP generation information and OTP verification information in association When the carrier selection information, the user's mobile number and the user's social security number information are received, whether the user authentication result corresponding to the received user's mobile phone number and the user's social security number verification result and the OTP (One Time Password) agent are already installed in the user's mobile phone If the OTP agent is not already installed in the user's mobile phone, the message including the callback URL for downloading the OTP agent is transmitted to the user's mobile phone, and the OTP agent is pre-installed in the user's mobile phone. Or OTP to your mobile phone When the agent is downloaded and installed, the user wired terminal is processed to provide an interface for inputting OTP generated by an OTP agent provided in the user's mobile phone and OTP verification information for generating OTP 'to be compared with the OTP. Receive the OTP and OTP verification information input through the, and compares the received OTP verification information and OTP verification information stored in the storage medium to verify the OTP 'generation validity to be compared with the OTP, the OTP' generation validity If the verification is successful, the OTP generation information is checked, the fixed seed value and the dynamic seed value for generating the OTP 'are determined from the OTP generation information, and the OTP' is generated using the determined seed value and the dynamic seed value. Comparing the received OTP and the generated OTP 'server for verifying the micropayment validity for the mobile number Characterized in that obtained by box.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description thereof will be omitted. In addition, terms to be described below are terms defined in consideration of functions in the present invention, which may vary according to a user's or operator's intention or custom. Therefore, the definition should be made based on the contents throughout the present invention.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram illustrating a mobile phone micropayment processing system configuration using the OTP verification information according to the first embodiment of the present invention.

In more detail, Figure 1 is a user wired terminal 100 connected to a small payment target website provided with an interface for selecting a mobile carrier corresponding to the user's mobile phone 180 and inputting the user's mobile phone 180 number and user's social security number. After receiving the mobile communication company selection information corresponding to the user mobile phone 180 and the user mobile phone 180 number and the user resident registration number information from the user wired terminal 100 through the interface, and respond to the mobile communication company selection information. After confirming the user authentication result and the OTP (One Time Password) agent is installed in the user mobile phone 180 through the mobile communication company server 175, the user wired terminal 100 to the user mobile phone 180 To input OTP generated by the provided OTP agent and OTP verification information for generating OTP 'to be compared with the OTP Process to provide one interface to receive the OTP and OTP verification information input through the interface from the user wired terminal 100, and compares the received OTP verification information and the OTP verification information previously stored in the storage medium 170 After verifying the OTP 'generation validity to be compared with the OTP, and when the OTP' generation validity is verified, shows the system configuration for generating the OTP 'and processing the mobile phone micropayment compared to the received OTP, Those skilled in the art to which the present invention pertains may refer to and / or modify this drawing 1 to implement various methods for the mobile phone payment processing system using the OTP verification information (for example, some components may be omitted, Or subdivided or combined methods of implementation), but the present invention includes all such methods inferred. Becomes fish, it shall not be limited to the technical features that only the exemplary method shown in the figure 1.

For example, the mobile phone micropayment processing system illustrated in FIG. The present invention naturally includes all payment processing systems that can be inferred as described above.

Referring to FIG. 1, the mobile phone micropayment processing system includes a user wired terminal 100 used by a user connected to a micropayment target website and a user mobile phone 180 possessed by the user. Small payment target web that sells tangible / intangible goods to the user through the terminal 100 and makes payment through a mobile phone payment method that charges the communication fee for the sold goods to the user mobile phone 180 communication fee One or more web servers 105 to operate the site, the payment system 110 for processing a micro-payment using the OTP verification information in connection with the user wired terminal 100 and the user mobile phone 180, and the user mobile phone And a mobile telecommunication company server 175 on a mobile communication network to which the 180 is connected, and the payment system 110 includes the web server 105 and the same. Implemented in the form of an authentication server (or relay server) connected to the mobile communication company server 175, or in the form of an internal component of the web server 105, or in the form of an internal component of the mobile communication company server 175 It is to be apparent that all implementations are possible, whereby the invention is not limited.

The user wired terminal 100 includes one or more personal computers and laptops having a browser that can access the web server 105 that operates the micropayment target website, and the web server 105 or the payment system. A mobile phone payment interface for selecting a mobile carrier corresponding to the user mobile phone 180 and a user mobile phone 180 number and a user resident registration number is received from the 110 and outputted to a screen output means, and the mobile phone via a key input means. Characterized by the mobile communication company selection information corresponding to the user's mobile phone 180, the user's mobile phone 180 number and the user's social security number information to input to the web server 105 or payment system 110 is characterized in that the payment interface.

The web server 105, the mobile phone payment means for selling tangible / intangible goods to the user through the user wired terminal 100, and the payment amount for the sold goods to the user mobile phone 180 communication fee As a general term for a server operating a small payment target website that can be paid through, if the user wired terminal 100 selects the mobile phone payment means as the payment means for the payment amount, the user wired terminal 100 The mobile phone payment interface is provided, or the mobile phone payment interface is provided to the user wired terminal 100 through the payment system 110.

The user mobile phone 180 is a mobile phone possessed by a user who purchases tangible / intangible goods sold by the web server 105, and authenticates a payment validity using a communication fee charged to the user mobile phone 180. A function of downloading an OTP agent, and a function of generating an OTP by driving the OTP agent and outputting the generated OTP (for example, a screen output or via a near-field communication means such as Bluetooth, Wi-Fi, RF communication, etc.). Output to the user wired terminal 100).

According to the present invention, the user wired terminal 100 is an embodiment of a first terminal in which a user connects to a server through a communication network and purchases tangible / intangible goods sold by the server. It is possible to carry out various modifications according to the communication network and server type and characteristics.

According to the present invention, the user mobile phone 180 is an embodiment of a second terminal equipped with an OTP agent to authenticate the validity of the payment for the purchase price of the goods purchased through the first terminal, the second The terminal may include all communication terminals except for the first terminal.

For example, when the server to which the first terminal is connected is a home shopping server, the first terminal may include a user's IPTV, and the second terminal includes a wired telephone / VoIP phone provided near the IPTV. can do.

Alternatively, when the server to which the first terminal is connected is an ARS server, the first terminal may include a user's landline phone / mobile phone / VoIP phone, and the second terminal is another voice call except for the first terminal. Terminal (e.g., if the first terminal is a landline phone, the second terminal includes a mobile phone / VoIP phone; if the first terminal is a mobile phone, the second terminal includes a landline phone / VoIP phone, and the first terminal If the VoIP phone, the second terminal may include a landline / mobile phone).

That is, the user wired terminal 100 of the present application is not limited to the above-described wired terminal, and it will be apparent that the user mobile phone 180 of the present application is also not limited to the mobile phone.

The mobile communication company server 175 is a generic term for a mobile communication company side server provided on the mobile communication network to which the user mobile phone 180 is connected to interface with the mobile phone. In the payment system 110, the user mobile phone 180 is used. Message server, data exchange server, WAP (WAP) for transmitting information (or data) requesting to be provided to the user's mobile phone 180 through a mobile communication system (eg, exchange, base station, etc.) according to a preset communication protocol. It is preferable to include one or more servers.

According to an exemplary embodiment of the present invention, the mobile telecommunication company server 175 queries a subscriber D / B (not shown) through the user mobile phone 180 number and user social security number information to authenticate a user, and the user mobile phone ( It is preferable to provide an OTP agent to 180) or to manage the OTP agent provided to the user mobile phone 180 through a predetermined OTP server (not shown).

According to an embodiment of the present invention, the mobile telecommunication company server 175 is provided with an OTP agent in the user mobile phone 180, or when the OTP agent is provided to the user mobile phone 180, the user mobile phone 180 Preferably, the corresponding mobile phone number and the OTP agent information corresponding to the OTP agent provided in the user mobile phone 180 are stored in association with each other.

In this case, the OTP agent information, it is preferable to include at least one version information, OTP generation algorithm and OTP generation method of the OTP agent provided in the user mobile phone 180 corresponding to the mobile phone number.

Here, the OTP generation algorithm and the OTP generation method may use different algorithms and generation methods for each OTP agent, and thus the present invention is not limited thereto.

According to the present invention, the payment system 110, the mobile phone number corresponding to the user mobile phone 180 is provided with an OTP agent for generating an OTP for authenticating the payment validity using the communication charges imposed on the user mobile phone 180 And OTP generation information and OTP generation information including parameters for determining one or more fixed seed values and a dynamic seed value for generating an OTP 'to be compared with an OTP generated through an OTP agent provided in the mobile phone. It is characterized in that it comprises a storage medium 170 for storing and linking OTP verification information for verifying the validity of generating OTP 'through the information, or is connected through a communication network.

The mobile phone number is a generic name of information that can identify the user mobile phone 180, and includes one or more phone numbers, serial numbers (ESNs), and subscriber identification numbers assigned to the user mobile phone 180, or the user. At least one unique number (or unique code) stored in the memory of the mobile phone 180, the USIM serial number assigned to the USIM provided in the user mobile phone 180, the unique number (or unique code) recorded in the USIM It is preferable to comprise.

The OTP generation information may include one or more fixed seed values used to generate an OTP according to the OTP generation algorithm and the OTP generation method, and a parameter for determining the dynamic seed value. It is preferable to comprise.

For example, if the OTP is generated in a time-synchronized manner, the fixed seed value of the OTP generation information includes a seed fixed to assign to an OTP generation algorithm in a time-synchronization manner, wherein the parameter of the OTP generation information is It is preferable to include synchronization time setting information for determining a synchronization time corresponding to the dynamic seed value of the time-synchronization method OTP.

Or, if the OTP is generated in a challenge-response manner, the fixed seed value of the OTP generation information includes a seed fixed to assign to an OTP generation algorithm of a challenge-response manner, and the parameter of the OTP generation information is the challenge- It is preferable to include a random number generating seed for generating a random number corresponding to the dynamic seed value of the response type OTP.

According to the embodiment of the present invention, the OTP generation information is stored in the user's mobile phone 180 is encrypted or stored in association with the OTP agent downloaded to the user's mobile phone 180, or provided in the user's mobile phone 180 It is preferable to be stored in the USIM (encryption storage possible).

The OTP verification information, when the OTP generated through the OTP agent and OTP generation information provided in the user mobile phone 180 from the user wired terminal 100 is received, OTP generation information stored in the storage medium 170 is received. It is preferably made by including one or more user password or user identification number to verify that generates the OTP to be compared with the OTP using.

According to an embodiment of the present invention, the OTP verification information includes a user password or a user personal identification number input to drive the OTP agent on the user mobile phone 180 to generate the OTP, or the user A second user password or user identification number which is extracted (or decrypted if stored encrypted) from the memory (or USIM) provided in the mobile phone via a password or user identification number, or on the storage medium 170 It is preferable to include a separate user password or user identification number registered to verify generating the OTP to be compared with the OTP using the stored OTP generation information.

Referring to FIG. 1, the payment system 110 selects a mobile communication company corresponding to the user's mobile phone 180 and selects a user's mobile phone 180 and the user with the user's wired terminal 100 accessing the small payment target website. Payment interface providing means for processing to provide a mobile phone payment interface for inputting the social security number 115, and the mobile carrier selection information corresponding to the user mobile phone 180 and the user mobile phone 180 number and the user social security number through the mobile phone payment interface The mobile terminal 180 transmits the user's mobile phone 180 number and the user's social security number information to the information receiving unit 120 for receiving the information and the mobile communication company server 175 corresponding to the received mobile communication company selection information, and the mobile communication company server 175. Receive and receive the user authentication result corresponding to the user mobile phone 180 number and the user social security number verification result through Whether the OTP agent is preinstalled in the user authentication means 125 for authenticating the user and the user mobile phone 180 corresponding to the user mobile phone 180 number through the mobile communication company server 175. When the agent checking means 130 to check, and if the OTP agent is not already installed in the user mobile phone 180, a message including a callback URL for downloading the OTP agent to the user mobile phone 180 is transmitted. It is characterized by consisting of the agent providing means 135 for processing.

In addition, the payment system 110, when the OTP agent is pre-installed in the user mobile phone 180, or when the OTP agent is downloaded and installed in the user mobile phone 180, the user mobile phone to the user wired terminal 100 An OTP interface providing means 140 for processing an OTP generated by an OTP agent provided at 180 and an OTP input interface for inputting OTP verification information for generating OTP 'to be compared with the OTP; and the user The OTP receiving means 145 for receiving the OTP and OTP verification information input through the interface from the wired terminal 100 and the OTP verification information previously stored in the storage medium 170 are compared with the received OTP verification information. OTP validating means 150 for verifying the OTP 'generation validity to be compared with the OTP, and if the OTP' generation validity is verified, OTP generation for generating OTP 'to be compared with the OTP Confirm the information, determine the fixed seed value and the dynamic seed value for generating the OTP 'from the OTP generation information, generate the OTP' using the determined fixed seed value and the dynamic seed value, and receive the received OTP and the The payment validity authentication means 155 for comparing the generated OTP 'and confirming the micropayment validity of the mobile phone number, and the information providing means for transmitting the micropayment validation result for the mobile phone number to the web site for micropayment. It is characterized by comprising (160).

According to the present invention, each means constituting the payment system 110 is implemented as a separate server for each means, or in the form of a predetermined authentication server (or relay server) including the means, or two The above means are combined to be implemented as a separate server, or the means are implemented in the form of components in the web server 105, or the means are implemented in the form of components in the mobile communication server server 175, or Some of the means are implemented as components in the web server 105 and some are implemented as components in the carrier server 175, or some of the means are implemented as components in the web server 105 and some are Is implemented as a component in the mobile carrier server 175 and the other part can all be implemented in a separate server form, the billing system 110 to obtain Bayida put out to clarify SHALL not limited by the embodiment to which the present invention method.

The user accesses the web server 105 to purchase tangible / intangible goods, and pays a mobile phone to pay a payment amount corresponding to the purchase price for the goods through a communication fee imposed on the user's mobile phone 180. When the means is selected, the payment interface providing means 115 relays the web server 105 directly to the user wired terminal 100 or the web server 105 through a communication network to which the user wired terminal 100 is connected. The mobile terminal 100 is characterized in that the mobile phone selection interface corresponding to the user's mobile phone 180 and the mobile phone payment interface for inputting the user's mobile phone 180 number and the user's social security number is provided.

When the mobile phone payment interface is provided to the user wired terminal 100 by the payment interface providing means 115, the information receiving means 120 is inputted from the user wired terminal 100 through the mobile payment interface. A mobile communication company selects information corresponding to the user's mobile phone 180 and connects a communication session for receiving the user's mobile phone 180 number and the user's social security number information.

According to an embodiment of the present invention, the payment interface providing unit 115 connects the communication channel with the user wired terminal 100 and provides the mobile phone payment interface to the user wired terminal 100 through the communication channel. In one case, the information receiving means 120 checks the user wired terminal 100 information (eg, an IP address) from the communication channel provided with the mobile phone payment interface to the user wired terminal 100, and the communication channel. Communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 180, the user mobile phone 180 number and the user resident registration number information from the user wired terminal 100 based on (for example, the user wired terminal 100) Memory area allocated to receive the mobile communication company selection information, the user mobile phone 180 number and the user social security number information from Wind is preferable to connect the communication thread (Thread) code).

According to another embodiment of the present invention, when the payment interface providing means 115 provides the mobile phone payment interface to the user wired terminal 100 through the web server 105, the information receiving means 120 is Receiving the user wired terminal 100 information (eg, an IP address) from the web server 105, and selecting mobile communication company selection information corresponding to the user mobile phone 180 from the user wired terminal 100 based on the user wired terminal 100 information; Communication session for receiving user mobile phone 180 number and user social security number information (for example, a memory allocated to receive the mobile communication company selection information, user mobile phone 180 number and user social security number information from the user wired terminal 100). It is desirable to link the area with the communication thread code.

Here, the communication session is received by encrypting the mobile communication company selection information corresponding to the user mobile phone 180 and the user mobile phone 180 number and the user social security number information, and the mobile communication company corresponding to the encrypted user mobile phone 180 It preferably comprises a secure communication session for decrypting the selection information and the user's mobile phone 180 number and user social security number information.

When the communication session is connected to the user wired terminal 100, the information receiving means 120 is a mobile communication company selection information corresponding to the user mobile phone 180 from the user wired terminal 100 and the user through the communication session Characterized by receiving the mobile phone 180 number and the user social security number information.

When the mobile communication company selection information corresponding to the user mobile phone 180, the user mobile phone 180 number and the user resident registration number information are received from the user wired terminal 100, the user authentication means 125 is connected to the mobile communication company selection information. The user's mobile phone 180 number and the user's social security number information are transmitted to the corresponding mobile communication company server 175, and the user's mobile phone 180 number and the user's social security number information are transmitted from the mobile communication company server 175 through the subscriber D / B. When the user authentication result is configured and transmitted, the user authentication means 125 receives and reads the user authentication result to authenticate the user who has requested the micro payment.

In addition, the agent identification means 130, the user's mobile phone 180 number is transmitted to the mobile communication company server 175 corresponding to the mobile communication company selection information, the OTP agent D / B from the mobile communication company server 175 (Not shown) confirms that the user mobile phone 180 corresponding to the user mobile phone 180 number is provided with an OTP agent for generating an OTP for authenticating the mobile phone micropayment, and the OTP corresponding to the verification result. When the agent check result is configured and transmitted, the agent check means 130 receives and reads the OTP agent check result to generate an OTP agent for authenticating the mobile phone micropayment to the user mobile phone 180. It is characterized by checking whether there is.

According to an embodiment of the present invention, the agent checking means 130 receives and receives an OTP agent checking result corresponding to the user mobile phone 180 number transmitted by the user authentication means 125 to the mobile communication company server 175. It is preferable to check whether the user mobile phone 180 is provided with an OTP agent for generating an OTP for authenticating the mobile phone payment.

If the check result of the agent confirming means 130, if the user mobile phone 180 is not provided with an OTP agent for generating an OTP for authenticating the mobile phone micropayment, the agent providing means 135 for processing, The user mobile phone 180 is characterized in that it is processed to transmit a message including a callback URL (CallBack URL) for downloading the OTP agent.

According to an embodiment of the present invention, when it is confirmed that the OTP agent is not provided in the user mobile phone 180, the agent providing means 135 outputs a pop-up through a mobile phone payment interface provided to the user wired terminal 100. Or check the OTP agent download request requested by the user through an OTP agent download interface (or menu) included in the mobile payment interface and output, and in response to the OTP agent download request, the user mobile phone 180 As a result, it is preferable to process a message including a callback UEL for OTP agent download.

Here, the callback UEL for downloading the OTP agent includes a URL information of the mobile communication company server 175, or a predetermined OTP server that is set / affiliated to manage the OTP agent in the mobile communication company server (175) (not shown) (Omitted), and the user mobile phone 180 receiving the message including the callback UEL downloads the OTP agent according to an OTP agent download procedure using a preset mobile communication network. It mounts on 180.

After the OTP agent is downloaded to the user mobile phone 180, the mobile communication company server 175 (or OTP server) provided by the OTP agent to the user mobile phone 180 is an OTP agent provided in the user mobile phone 180. Provides OTP generation information for generating the OTP to the user mobile phone 180 through.

According to an embodiment of the present invention, the mobile communication company server 175 (or OTP server) allocates one or more fixed seed values for generating an OTP through an OTP agent provided in the user mobile phone 180, Generate OTP generation information (or extract from a database storing OTP generation information) including one or more fixed seed values assigned and parameters for determining one or more dynamic seed values required to generate an OTP via the OTP agent, Preferably, the generated OTP generation information is provided to the user mobile phone 180 through a mobile communication network, and the mobile communication company server 175 (or an OTP server) is provided to provide the OTP generation information to the user mobile phone 180. ) Connects a secure communication channel with the user cellular phone 180.

According to the method of the present invention, the mobile communication company server 175 (or OTP server) is the first after the OTP agent is downloaded to the user mobile phone 180, or the OTP agent downloaded to the user mobile phone 180 first In execution, the OTP generation information may be generated (or extracted) and provided to the user mobile phone 180, and the OTP generation information is encrypted and stored in a memory provided in the user mobile phone 180, or It is preferably stored in the Universal Subscriber Identity (USIM) module provided in the user mobile phone 180.

According to the method of the present invention, after the OTP agent is downloaded to the user mobile phone 180 or when the OTP agent downloaded to the user mobile phone 180 is first executed, the user mobile phone 180 is the OTP agent. Input a user password or a user personal identification number for generating an OTP through, and encrypts the input user password or user personal identification number to store in the memory provided in the mobile phone, or provided in the user mobile phone 180 It is preferable to store in the USIM, and when the OTP agent is generated to generate the OTP afterwards, the OTP agent outputs an interface for inputting a user password or a user identification number, the user password or user input through the interface A personal identification number stored in the memory (or USIM) User password by comparing the user or the personal identification number is desirable to authenticate the validity OTP generation.

According to an embodiment of the present invention, when the user password or the personal identification number is used as the OTP verification information, the OTP agent communicates with the payment system 110 through the user mobile phone 180 (eg, cancer). And a decryption-based secure communication channel), and transmit the user password or user identification number to the payment system 110, and the payment system 110 transmits the user password or user identification number. Check the mobile phone number corresponding to the mobile phone 180 (or received including the user social security number information in the user password or user personal identification number), OTP verification information including the mobile phone number and the user password or user personal identification number It is stored in the storage medium 170 in association with.

According to another embodiment of the present invention, in addition to the user password or user identification number, a second user password or user identification number corresponding to the OTP verification information is stored in a memory (or USIM) provided in the user mobile phone 180. When registering, the OTP agent outputs an interface for registering the OTP verification information, and stores a second user password or user identification number inputted through the interface in the user mobile phone 180 (or After storing (or encrypted storage) in the USIM, the payment system 110 and the communication channel (for example, encryption and encryption-based secure communication channel) are connected through the user mobile phone 180 and the payment system 110. Transmit a second user password or a user identification number stored in the memory (or USIM) to the payment system; 110 confirms the mobile phone number corresponding to the user mobile phone 180 that transmitted the second user password or user personal identification number (or including user resident registration number information in the second user password or user personal identification number); And OTP verification information including the mobile phone number and the second user password or user personal identification number and store them in the storage medium 170. When the user password or user identification number of 2 is stored in the memory (or USIM), when generating or outputting OTP through the OTP agent, the second user password or user identification number stored in the memory (or USIM) It is also preferable to output.

According to another embodiment of the present invention, when registering a user password or user identification number other than the user password or user identification number, the OTP agent outputs an interface for registering the OTP verification information, the interface When a separate user password or user identification number is input through the user, the mobile phone 180 is connected to the payment channel 110 and a communication channel (for example, encryption and decryption based secure communication channel), and The separate user password or user identification number is transmitted to the payment system 110, and the payment system 110 corresponds to the mobile phone number 180 corresponding to the user mobile phone 180 that transmitted the separate user password or user identification number. Confirm (or the separate user password or user identification number Receiving information including a user social security number) and, in conjunction the OTP verification information including the separate user password or the user's personal identification number and the mobile phone number is stored in the storage medium 170.

When it is confirmed that the OTP agent is pre-installed on the user mobile phone 180 by the agent checking means 130, or when the OTP agent is downloaded and installed to the user mobile phone 180 through the agent providing means 135, The OTP interface providing unit 140 inputs the OTP generated by the OTP agent provided in the user mobile phone 180 to the user wired terminal 100 and verifies the validity of generating the OTP 'to be compared with the OTP. It is characterized in that the processing to provide an OTP input interface for inputting OTP verification information.

According to the embodiment of the present invention, the OTP interface providing means 140 relays the web server 105 directly or to the user wired terminal 100 through a communication network connected to the user wired terminal 100. Preferably, the user wired terminal 100 processes the OTP input interface to be provided.

When the OTP input interface is provided to the user wired terminal 100 by the OTP interface providing means 140, the OTP receiving means 145 is input through the OTP input interface from the user wired terminal 100. It connects a communication session for receiving OTP and OTP verification information, and can be omitted if the user wired terminal 100 and the communication session are already connected.

According to an embodiment of the present invention, the OTP interface providing means 140 connects a communication channel with the user wired terminal 100 and provides the OTP input interface to the user wired terminal 100 through the communication channel. In one case, the OTP receiving means 145 checks the user wired terminal 100 information (eg, an IP address) from the communication channel provided with the OTP input interface to the user wired terminal 100, and the communication channel. Communication session for receiving the OTP and OTP verification information from the user wired terminal 100 based on the communication with the memory area allocated for receiving the OTP and OTP verification information from the user wired terminal (100) It is desirable to connect threads.

According to another embodiment of the present invention, when the OTP interface providing means 140 provides the OTP input interface to the user wired terminal 100 through the web server 105, the OTP receiving means 145 is A communication session for receiving the user wired terminal 100 information (eg, an IP address) from the web server 105, and receiving the OTP and OTP verification information from the user wired terminal 100 based on the information. For example, it is preferable to connect a memory area allocated to receiving the OTP and OTP verification information from the user wired terminal 100 and a communication thread code.

Here, the communication session, it is preferable to include a secure communication session for encrypting and receiving the OTP and OTP verification information, and decrypting the encrypted OTP and OTP verification information.

When the communication session is connected to the user wired terminal 100, the OTP receiving means 145 may be compared with the OTP and the OTP input from the user wired terminal 100 through the OTP input interface through the communication session. And receiving OTP verification information for verifying the validity of generating the OTP '.

The OTP validating means 150 corresponds to the user mobile phone 180 from the storage medium 170 when the OTP input interface is provided to the user wired terminal 100 by the OTP interface providing means 140. The mobile phone number (or the user's social security number information) or the OTP verification information associated with the mobile phone number, the user wired terminal 100 provided with the OTP input interface (for example, the IP address of the user wired terminal 100) or the user Verifies the OTP and OTP from the user wired terminal 100 through the OTP receiving means 145 by connecting with the communication session information connected to the wired terminal 100 (for example, to map a DB reference or a pointer reference). Keep until the information is received.

If the OTP and OTP verification information are received from the user wired terminal 100 through the OTP receiving means 145, the OTP validating means 150 corresponds to a user wired terminal corresponding to the user wired terminal 100. (100) confirming information or communication session information, confirming the OTP verification information connected to the user wired terminal 100 information or communication session information from the storage medium 170, and receiving the received OTP verification information and the verification. And comparing the OTP verification information to verify the validity of generating OTP 'to be compared with the OTP.

According to another embodiment of the present invention, the OTP validating means 150, the user is authenticated by the user authentication means 125, or the user mobile phone 180 by the agent verification means 130 When the OTP agent is confirmed that the OTP agent is installed or the OTP agent is provided to the user mobile phone 180 by the agent providing means 135, the user wired terminal 100 information and the storage medium 170 It is possible to connect and maintain the OTP verification information stored in the), by which the present invention is not limited.

If the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, the payment validity authentication means 155 may generate the OTP' to be compared with the OTP from the storage medium 170. Confirm the required OTP generation information, determine a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, and use the determined fixed seed value and the dynamic seed value to compare the received OTP' with the OTP '; It characterized in that to generate.

If the OTP 'is generated, the payment validity authentication means 155 checks the payment validity of the mobile number by comparing the received OTP and the generated OTP', and the information providing means. 160 is characterized in that for transmitting the micropayment validity verification result for the mobile number to the web server 105 that operates the micropayment target website.

Referring to FIG. 1, when the payment validity is authenticated by the payment validity authentication means 155, the payment processing means processes the payment amount to be settled through a communication fee charged to the mobile phone. It is preferable to further comprise (165).

According to the method of the present invention, the payment processing means 165 confirms the payment amount to be charged to the communication fee of the user mobile phone 180 from the web server 105, and is associated with the mobile communication company server 175 By querying the payment limit for the user's mobile phone 180 number, and comparing the payment amount and the payment limit, it is preferable to approve payment through the communication charges imposed on the mobile phone.

According to another exemplary embodiment of the present invention, the payment processing means 165 may store and manage the user mobile phone 180 number and payment limit information corresponding thereto through a separate database, in which case the payment The processing means 165 inquires the payment limit for the user mobile phone 180 number through the database, and compares the payment amount and the payment limit to approve payment through a communication fee charged to the mobile phone. Do.

When the payment using the communication fee charged to the mobile phone is approved, the payment processing means 165 processes the payment amount to be charged to the communication fee for the user mobile phone 180 through the mobile communication company server 175. And, payment approval information for the payment amount is transmitted to the web server 105.

2 is a diagram illustrating a mobile phone payment process using OTP verification information according to the first embodiment of the present invention.

In more detail, Figure 2 is a user wired terminal 100 connected to a small payment target website, an interface for selecting a mobile carrier corresponding to the user's mobile phone 180 and inputting the user's mobile phone 180 number and user's social security number. After the processing to be provided is received from the user wired terminal 100 through the interface to the mobile communication company selection information corresponding to the user mobile phone 180 and the user mobile phone 180 number and the user resident registration number information, and to the mobile carrier selection information After checking the user authentication result and the OTP (One Time Password) agent is installed in the user mobile phone 180 through the corresponding mobile communication company server 175, the user mobile phone 180 to the user wired terminal 100 To input OTP generated by the OTP agent provided in the OTP and OTP verification information for generating OTP 'to be compared with the OTP As a payment process providing an interface, a person having ordinary knowledge in the technical field to which the present invention belongs, various implementations of the mobile phone payment process using the OTP verification information by referring to and / or modifying the drawing 2 It would be possible to infer a method (e.g., a method for which some steps were omitted or the order was changed), but the present invention includes all the methods of inferring the above, and the technical method is described only by the method shown in FIG. Features are not limited.

Hereinafter, in FIG. 2, the payment system 110 shown in FIG. 1 is referred to as a “server” for convenience.

Referring to FIG. 2, a user accesses the web server 105 to purchase tangible / intangible goods, and a communication fee charged to the user's mobile phone 180 for a payment amount corresponding to a purchase price for the goods. When a mobile phone payment means is selected to make a payment (200), the server relays the web server 105 directly to the user wired terminal 100 or through the communication network to which the user wired terminal 100 is connected. The mobile phone payment interface for selecting the mobile communication company corresponding to the user mobile phone 180 and inputting the user mobile phone 180 number and the user social security number to the user wired terminal 100 is processed (205), and the user wired terminal 100 is processed. In step 210, the mobile communication company selection information and the user's mobile phone 180 number and the user's social security number information input through the mobile phone payment interface are received.

If the mobile communication company selection information, the user mobile phone 180 number and the user resident registration number information are received from the user wired terminal 100 (215), the server is connected to the mobile communication company server 175 corresponding to the mobile communication company selection information. User authentication is requested by transmitting the user mobile phone 180 number and user social security number information, and the user authentication result for the user mobile phone 180 number and user social security number information through the subscriber D / B in the mobile communication company server 175 When configured and transmitted, the user authentication result is received and read to authenticate the user who has requested the mobile phone payment (220).

If the user is not authenticated (225), the server generates a user authentication error and transmits it to the user wired terminal 100 (or user mobile phone 180) and the web server 105 (230).

On the other hand, if the user is authenticated (225), the server transmits the user's mobile phone 180 number to the mobile carrier server 175 corresponding to the mobile carrier selection information (mobile carrier server 175 for the user authentication) Can be omitted if the user's mobile phone 180 number is transmitted to the user's mobile phone 180 through the OTP agent D / B (not shown). Check whether the OTP agent for generating the OTP for authenticating the mobile phone payment is provided, and if the OTP agent confirmation result corresponding to the confirmation result is configured and transmitted, the user receives and reads the OTP agent confirmation result. The mobile phone 180 checks whether an OTP agent for generating an OTP for authenticating the mobile micropayment is provided (235).

If the OTP agent is not mounted on the user mobile phone 180 (240), the server processes the OTP agent to be provided to the user mobile phone 180 through the process shown in FIG.

On the other hand, if the OTP agent is mounted on the user's mobile phone 180 (240), the server generates an OTP generated through the OTP agent provided on the user's mobile phone 180, and OTP 'to be compared with the OTP An OTP input interface for inputting OTP verification information for validating is provided to the user wired terminal 100 (245).

3 is a diagram illustrating a process of providing an OTP agent to a user mobile phone 180 according to the first embodiment of the present invention.

In more detail, FIG. 3 includes a callback UEL for providing the OTP agent to the user mobile phone 180 when the OTP agent is not mounted on the user mobile phone 180 in the process shown in FIG. A process of processing a message to be transmitted to the user's mobile phone 180, and showing the process of providing the OTP agent to the user's mobile phone 180 through the message, a person having ordinary knowledge in the technical field to which the present invention belongs If so, various implementation methods (for example, some steps may be omitted or the order may be changed) may be inferred from the process of providing an OTP agent to the user mobile phone 180 by referring to and / or modifying the drawing 3. However, the present invention includes all the implementation methods inferred from the above, and only the implementation method shown in FIG. The technical features are not limited.

Hereinafter, in FIG. 3, the payment system 110 shown in FIG. 1 is referred to as a “server” for convenience.

Referring to FIG. 3, when the OTP agent is not mounted on the user mobile phone 180 in the process illustrated in FIG. 2, the server includes a callback UEL for downloading the OTP agent to the user mobile phone 180. The user's mobile phone 180 receives the message and transmits the message to the mobile communication company server 175 (or the OTP server) corresponding to the callback UEL. Ask.

The mobile telecommunication company server 175 (or the OTP server) corresponding to the callback UE provides the OTP agent to the user mobile phone 180 (305).

If the OTP agent is provided to the user mobile phone 180 (310), the user mobile phone 180 inputs a user password or a user personal identification number for generating an OTP through the OTP agent, the input user A password or a user identification number may be encrypted and stored in a memory provided in the mobile phone, or stored and registered in a USIM provided in the user mobile phone 180 (315), and compared with an OTP generated through the OTP agent. Input (or verify) OTP verification information for verifying the validity of generating OTP 'and transmit it to the server (320), and the server checks the user's mobile phone 180 number that transmitted the OTP verification information, and The user's mobile phone 180 is stored in the storage medium 170 in association with the OTP verification information (325).

4 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to the first embodiment of the present invention.

In more detail, FIG. 4 illustrates that the OTP input interface is provided to the user wired terminal 100 in the process illustrated in FIG. 2, and receives OTP and OTP verification information input through the OTP input interface. After the verification information is read and the validity of the OTP 'generation is confirmed, a process of authenticating payment validity by verifying payment validity compared with the received OTP after generating the OTP' is shown. Those skilled in the art can refer to and / or modify this drawing 4 to infer various implementation methods (e.g., implementation steps whose steps are omitted or changed order) for the mobile phone payment approval process using the OTP verification information. Although the present invention may be implemented, the present invention includes all the implementation methods inferred from the above, and the description is made only by the implementation method shown in FIG. The enemy features are not limited.

Hereinafter, in FIG. 4, the payment system 110 shown in FIG. 1 is referred to as a “server” for convenience.

Referring to FIG. 4, after the OTP input interface is provided to the user wired terminal 100 in the process illustrated in FIG. 2, the server inputs an OTP input from the user wired terminal 100 through the OTP input interface. Check whether the OTP verification information is received (400).

If the OTP and OTP verification information are received (405), the server compares the received OTP verification information with the OTP verification information stored in the storage medium 170 to check the validity of OTP 'generation (410).

If the validity of the OTP 'generation is not confirmed (415), the server generates payment error information and transmits the information to the user wired terminal 100 (or user mobile phone 180) and the web server 105 (420). .

On the other hand, if the validity of the OTP 'generation is confirmed (415), the server checks the OTP generation information for generating the OTP' to be compared with the received OTP (425), the fixed seed for generating OTP 'from the OTP generation information A value and a dynamic seed value are determined (430), an OTP 'is generated using the determined fixed seed value and the dynamic seed value, and the payment validity is verified by comparing with the received OTP (435).

If the payment validity is not authenticated (440), the server generates payment error information and transmits to the user wired terminal 100 (or user mobile phone 180) and the web server 105 (420).

If the payment validity is authenticated (440), the server generates the payment validation result and transmits to the user wired terminal 100 (or user mobile phone 180) and the web server 105 (445), In response to the payment validity checking result, the payment approval through the communication fee of the user mobile phone 180 is processed (450).

According to the embodiment of the present invention, the server confirms the payment amount to be charged to the communication fee of the user mobile phone 180 from the web server 105, and the user mobile phone 180 in connection with the mobile communication company server 175 It is preferable to approve the payment through the communication charges imposed on the mobile phone by querying the payment limit for the number and comparing the payment amount with the payment limit.

5 is a diagram showing the configuration of a mobile phone micropayment processing system using OTP verification information according to a second embodiment of the present invention.

In more detail, Figure 5 is a user wired terminal 500 connected to a small payment target website provided by an interface for selecting a mobile carrier corresponding to the user's mobile phone 585 and inputting the user's mobile phone 585 number and user social security number. The mobile terminal 500 receives the mobile communication company selection information corresponding to the user mobile phone 585 and the user mobile phone 585 number and the user resident registration number information from the user wired terminal 500 through the interface, and responds to the mobile communication company selection information. After confirming the user authentication result and the OTP (One Time Password) agent is installed in the user mobile phone 585 through the mobile communication company server 580, the user wired terminal 500 to the user mobile phone 585 To input OTP generated by the provided OTP agent and OTP verification information for generating OTP 'to be compared with the OTP If one interface is provided to receive the OTP and OTP verification information input through the interface from the user wired terminal 500 and transmits to the OTP server 570 of the OTP agent provider provided in the user mobile phone 585 As shown in FIG. 5, a system configuration for processing a mobile phone micropayment by authenticating OTP 'generation validity and payment validity in the OTP server 570 is shown in FIG. 5. By referring to and / or modifying, it is possible to infer various implementation methods (e.g., implementation methods for which some components are omitted, subdivided, or combined) for the mobile payment settlement system using the OTP verification information. It is made to include all the inferred implementation method, the technical features of the implementation method shown in FIG. Not determined

For example, the mobile phone micropayment processing system shown in FIG. 5 can be applied to a system for processing payment using a customer's payment means, except that the payment amount is added to the communication fee of the user's mobile phone 585. The present invention naturally includes all payment processing systems that can be inferred as described above.

Referring to FIG. 5, the mobile phone micropayment processing system includes a user wired terminal 500 used by a user connected to a micropayment target website and a user mobile phone 585 possessed by the user. Small payment target web that sells tangible / intangible goods to the user through the terminal 500, and makes payment through the mobile phone payment means for imposing a payment amount for the sold goods on a user's mobile phone 585 communication fee At least one web server 505 that operates a site, a payment system 510 for processing a micro phone payment using OTP verification information in association with the user wired terminal 500 and a user mobile phone 585, and the user mobile phone An OTP server 570 for authenticating payment validity through an OTP generated by an OTP agent provided at 585 and a mobile communication network connected to the user mobile phone 585. The gentleman server 580, characterized in that the payment system 510 is implemented in the form of an authentication server (or relay server) connected to the web server 505 and the mobile communication company server 580, or It is possible to implement both in the form of the internal component of the web server 505, or in the form of the internal component of the mobile communication server server 580, whereby it is apparent that the present invention is not limited.

The user wired terminal 500 includes one or more personal computers and laptops having a browser that can access a web server 505 that operates the micropayment target website, and the web server 505 or a payment system. A mobile phone payment interface for selecting a mobile carrier corresponding to the user's mobile phone 585 and a user's mobile phone 585 number and a user's social security number is outputted from the screen 510 and output to the screen output means, and the mobile phone through a key input means. The mobile terminal selects the mobile communication company selection information corresponding to the user mobile phone 585, the user mobile phone 585 number and the user social security number information, and transmits them to the web server 505 or the payment system 510 as a payment interface.

The web server 505 sells tangible / intangible goods to the user through the user wired terminal 500, and charges a mobile phone 585 communication fee for the sold goods. As a generic term for a server operating a small payment target website that can be paid through, when the user wired terminal 500 selects the mobile phone payment means as the payment means for the payment amount, the user wired terminal 500 The mobile phone payment interface is provided, or the mobile phone payment interface is provided to the user wired terminal 500 through the payment system 510.

The user mobile phone 585 is a mobile phone possessed by a user who purchases tangible / intangible goods sold by the web server 505 and authenticates a payment validity using a communication fee charged to the user mobile phone 585. A function of downloading an OTP agent, and a function of generating an OTP by driving the OTP agent and outputting the generated OTP (for example, a screen output or via a near-field communication means such as Bluetooth, Wi-Fi, RF communication, etc.). It can be output to the user wired terminal 500) is characterized in that it comprises a.

According to the present invention, the user wired terminal 500 is an embodiment of a first terminal in which a user connects to a server through a communication network and purchases tangible / intangible goods sold by the server. It is possible to carry out various modifications according to the communication network and server type and characteristics.

According to the present invention, the user mobile phone 585 is an embodiment of a second terminal equipped with an OTP agent for authenticating payment validity for a purchase price for purchasing goods through the first terminal. The terminal may include all communication terminals except for the first terminal.

For example, when the server to which the first terminal is connected is a home shopping server, the first terminal may include a user's IPTV, and the second terminal includes a wired telephone / VoIP phone provided near the IPTV. can do.

Alternatively, when the server to which the first terminal is connected is an ARS server, the first terminal may include a user's landline phone / mobile phone / VoIP phone, and the second terminal is another voice call except for the first terminal. Terminal (e.g., if the first terminal is a landline phone, the second terminal includes a mobile phone / VoIP phone; if the first terminal is a mobile phone, the second terminal includes a landline phone / VoIP phone, and the first terminal If the VoIP phone, the second terminal may include a landline / mobile phone).

In other words, the user wired terminal 500 of the present application is not limited to the above-described wired terminal, and it will be apparent that the user mobile phone 585 of the present application is also not limited to the mobile phone.

The mobile communication company server 580 is a generic term for a mobile communication company side server provided on the mobile communication network to which the user mobile phone 585 is connected to interface with the mobile phone. In the payment system 510, the user mobile phone 585 is used. Message server, data exchange server, WAP (WAP) for transmitting the information (or data) requesting to be provided to the user mobile phone 585 through a mobile communication system (eg, exchange, base station, etc.) according to a preset communication protocol. It is preferable to include one or more servers.

According to an embodiment of the present invention, the mobile telecommunication company server 580 functions to authenticate a user by querying a subscriber D / B (not shown) through the user mobile phone 585 number and user social security number information, and the user mobile phone ( It is desirable to have a function of managing the OTP agent provided to the user mobile phone 585 through the OTP server 570 that provides the OTP agent to 585.

According to the exemplary embodiment of the present invention, when the mobile communication company server 580 is provided with the OTP agent in the user mobile phone 585 or provides the OTP agent to the user mobile phone 585, the user mobile phone 585 It is preferable to store the corresponding mobile phone number and OTP agent information corresponding to the OTP agent provided in the user mobile phone 585 in association.

In this case, the OTP agent information, it is preferable to include one or more version information, OTP generation algorithm and OTP generation method of the OTP agent provided in the user mobile phone 585 corresponding to the mobile phone number.

Here, the OTP generation algorithm and the OTP generation method may use different algorithms and generation methods for each OTP agent, and thus the present invention is not limited thereto.

The OTP server 570 is characterized in that to authenticate the payment via the OTP generated by the OTP agent provided in the user's mobile phone 585, the OTP agent for generating the OTP for the payment validity authentication is provided To determine one or more fixed seed values and a dynamic seed value for generating an OTP 'corresponding to an OTP generated by the OTP agent provided in the mobile phone and a mobile number corresponding to the user's mobile phone 585. A storage medium 575 for storing and linking OTP generation information including parameters and OTP verification information for validating OTP 'generation through the OTP generation information, or connected through a communication network. It is characterized by.

The mobile phone number is a general term for information that can identify the user mobile phone 585, and includes one or more telephone numbers, serial numbers (ESNs), and subscriber identification numbers assigned to the user mobile phone 585, or the user. At least one unique number (or unique code) stored in the memory of the mobile phone 585, a USIM serial number assigned to the USIM provided in the user mobile phone 585, and a unique number (or unique code) recorded in the USIM. It is preferable to comprise.

The OTP generation information may include one or more fixed seed values used to generate an OTP according to the OTP generation algorithm and the OTP generation method, and a parameter for determining the dynamic seed value. It is preferable to comprise.

For example, if the OTP is generated in a time-synchronized manner, the fixed seed value of the OTP generation information includes a seed fixed to assign to an OTP generation algorithm in a time-synchronization manner, wherein the parameter of the OTP generation information is It is preferable to include synchronization time setting information for determining a synchronization time corresponding to the dynamic seed value of the time-synchronization method OTP.

Or, if the OTP is generated in a challenge-response manner, the fixed seed value of the OTP generation information includes a seed fixed to assign to an OTP generation algorithm of a challenge-response manner, and the parameter of the OTP generation information is the challenge- It is preferable to include a random number generating seed for generating a random number corresponding to the dynamic seed value of the response type OTP.

According to the exemplary embodiment of the present invention, the OTP generation information is stored in the user cellular phone 585 memory in association with an OTP agent downloaded to the user cellular phone 585 or stored in the user cellular phone 585. It is preferable to be stored in the USIM (encryption storage possible).

When the OTP verification information is received from the user wired terminal 500, the OTP generated through the OTP agent and OTP generation information provided in the user mobile phone 585, the OTP generation information stored in the storage medium 575 is received. It is preferably made by including one or more user password or user identification number to verify that generates the OTP to be compared with the OTP using.

According to an embodiment of the present invention, the OTP verification information includes a user password or a user personal identification number input to drive the OTP agent in the user mobile phone 585 to generate the OTP, or the user password. Or a second user password or user identification number which is extracted (or decrypted if encrypted and stored) from the memory (or USIM) provided in the mobile phone through a user identification number, or stored in the storage medium 575. It is preferable to include a separate user password or user identification number registered to verify generating the OTP to be compared with the OTP using the OTP generation information.

When the OTP and OTP verification information are provided from the payment system 510, the OTP server 570 compares the OTP verification information with the OTP verification information previously stored in the storage medium 575 to be compared with the OTP '. When the generation validity is verified and the OTP 'generation is validated, the OTP generation information for generating the OTP' to be compared with the OTP is checked, and the fixed seed value and the dynamic seed value for generating the OTP 'from the OTP generation information. Determine, generate an OTP 'using the determined seed value and the dynamic seed value, compare the received OTP with the generated OTP', and confirm the micropayment validity of the mobile number to determine the payment system ( 510) characterized in that provided.

Referring to FIG. 5, the payment system 510 selects a mobile communication company corresponding to the user's mobile phone 585 and selects a user's mobile phone 585 and the user with the user's wired terminal 500 connected to the small payment target website. Payment interface providing means (515) for processing to provide a mobile phone payment interface for entering the social security number, the mobile carrier selection information corresponding to the user mobile phone 585 and the user mobile phone number 585 and the user social security number through the mobile phone payment interface And transmits the user mobile phone 585 number and the user social security number information to the information receiving means 520 for receiving the information and the mobile telecommunication company server 580 corresponding to the received mobile telecommunication company selection information. The mobile telecommunication company server 580 Receive and receive the user authentication result corresponding to the user mobile phone (585) number and user social security number verification results through Check whether the OTP agent is already installed on the user mobile phone 585 corresponding to the user mobile phone 585 number through the user authentication means 525 for authenticating the user and the mobile communication company server 580. When the agent checking means 530 and the OTP agent are not already installed in the user mobile phone 585, a message including a callback URL for downloading an OTP agent is transmitted to the user mobile phone 585. It is characterized by comprising an agent providing means 535 for processing.

In addition, the payment system 510, if the OTP agent is pre-installed in the user mobile phone 585, or when the OTP agent is downloaded and installed in the user mobile phone 585, the user mobile phone to the user wired terminal 500 An OTP interface providing means 540 for processing to provide an OTP generated by an OTP agent provided at 585 and an OTP input interface for inputting OTP verification information for generating OTP 'to be compared with the OTP; OTP receiving means 545 for receiving the OTP and OTP verification information input from the user wired terminal 500 through the interface, and the OTP agent provider provided in the user mobile phone 585 with the received OTP and OTP verification information. OTP providing means 550 for transmitting to the OTP server 570 of the OTP, OTP 'generated based on the OTP verification information from the OTP server 570 and OTP generated in the user's mobile phone 585 Authentication information receiving means for receiving the comparison result 555, and the information to transmit the micropayment validity verification result corresponding to the comparison result of the OTP generated in the OTP 'and the user's mobile phone 585 to the micropayment target website It is characterized by comprising a means 560.

According to the present invention, each means constituting the payment system 510 is implemented as a separate server for each means, or in the form of a predetermined authentication server (or relay server) including the means, or two The above means are combined to be implemented as a separate server, or the means are implemented in the form of components in the web server 505, or the means are implemented in the form of components in the mobile communication server server 580, or Some of the means are implemented as components in the web server 505 and some are implemented as components in the carrier server 580, or some of the means are implemented as components in the web server 505 and some are Is implemented as a component in the mobile carrier server 580 and the other part can all be implemented in a separate server form, the billing system 510 It is apparent that the present invention is not limited by the present practice.

The user accesses the web server 505 to purchase tangible / intangible goods, and pays a mobile phone to pay a payment amount corresponding to the purchase price for the goods through a communication fee charged to the user mobile phone 585. When the user selects a means, the payment interface providing means 515 relays the web server 505 directly to the user wired terminal 500 or directly through the communication network to which the user wired terminal 500 is connected. The mobile terminal 500 may be configured to process a mobile phone payment interface for selecting a mobile communication company corresponding to the user mobile phone 585 and inputting a user mobile phone 585 number and a user social security number.

When the mobile phone payment interface is provided to the user wired terminal 500 by the payment interface providing means 515, the information receiving means 520 is input through the mobile phone payment interface from the user wired terminal 500. The communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 585 and the user mobile phone 585 number and the user social security number information is connected.

According to an embodiment of the present invention, the payment interface providing means 515 connects the communication channel with the user wired terminal 500 and provides the mobile phone payment interface to the user wired terminal 500 through the communication channel. In one case, the information receiving means 520 checks the user wired terminal 500 information (for example, an IP address) from the communication channel provided with the mobile phone payment interface to the user wired terminal 500, and the communication channel. A communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 585, the user mobile phone 585 number, and the user social security number information from the user wired terminal 500 (for example, the user wired terminal 500). Memory area allocated to receive the mobile communication company selection information, the user mobile phone 585 number, and the user social security number information from It is desirable to connect the communication thread with the communication thread code.

According to another embodiment of the present invention, when the payment interface providing means 515 provides the mobile phone payment interface to the user wired terminal 500 through the web server 505, the information receiving means 520 is Receiving the user wired terminal 500 information (eg, an IP address) from the web server 505, and selecting mobile communication company selection information corresponding to the user mobile phone 585 from the user wired terminal 500 based on the user wired terminal 500. Communication session for receiving user mobile phone 585 number and user social security number information (e.g., memory allocated for receiving the mobile communication company selection information, user mobile phone 585 number and user social security number information from the user wired terminal 500). It is desirable to link the area with the communication thread code.

Here, the communication session is received by encrypting the mobile communication company selection information corresponding to the user mobile phone 585, the user mobile phone 585 number and the user social security number information encrypted, and the mobile communication company corresponding to the encrypted user mobile phone 585 It preferably comprises a secure communication session for decoding the selection information and the user's mobile phone (585) number and user social security number information.

When the user's wired terminal 500 and the communication session are connected, the information receiving means 520 is selected from the user's wired terminal 500 corresponding to the user's mobile phone 585 and the user's mobile phone through the communication session. (585) characterized by receiving the number and the user social security number information.

When the mobile communication company selection information corresponding to the user mobile phone 585, the user mobile phone 585 number and the user social security number information are received from the user wired terminal 500, the user authentication means 525 is connected to the mobile communication company selection information. The user mobile phone 585 number and the user resident registration number information are transmitted to the corresponding mobile communication company server 580, and the user mobile phone 585 number and user resident registration number information are transmitted from the mobile communication company server 580 through the subscriber D / B. When the user authentication result is configured and transmitted, the user authentication means 525 may receive and read the user authentication result to authenticate the user who has requested the micro payment.

In addition, the agent identification means 530 transmits the user's mobile phone 585 number to the mobile communication company server 580 corresponding to the mobile communication company selection information, and the OTP agent D / B at the mobile communication company server 580. (Not shown) confirms that the user mobile phone 585 corresponding to the user mobile phone 585 number is provided with an OTP agent for generating an OTP for authenticating the mobile phone micropayment, and the OTP corresponding to the verification result. When the agent check result is configured and transmitted, the agent check means 530 receives and reads the OTP agent check result to generate an OTP agent for authenticating the mobile phone micropayment to the user mobile phone 585. It is characterized by checking whether there is.

According to an embodiment of the present invention, the agent verification means 530 receives and receives an OTP agent verification result corresponding to the user mobile phone 585 number transmitted by the user authentication means 525 to the mobile telecommunication company server 580. It is preferable to check whether the user mobile phone 585 is provided with an OTP agent for generating an OTP for authenticating the mobile phone micropayment.

If the agent confirming means 530 confirms that the user's mobile phone 585 is not provided with an OTP agent for generating an OTP for authenticating the mobile payment, the agent providing means for processing 535, The mobile phone 585 may be configured to transmit a message including a callback URL for downloading an OTP agent.

According to an embodiment of the present invention, when it is confirmed that the OTP agent is not provided in the user mobile phone 585, the agent providing means 535 outputs a pop-up through a mobile phone payment interface provided to the user wired terminal 500. The OTP agent download request requested by the user through an OTP agent download interface (or menu) included in the mobile phone payment interface or outputted, and in response to the OTP agent download request, the user mobile phone 585. As a result, it is preferable to process a message including a callback UEL for OTP agent download.

The callback UEL for downloading the OTP agent may include URL information of the OTP server 570 that provides the OTP agent to the user's mobile phone 585, and receives the message including the callback UEL. The user mobile phone 585 downloads the OTP agent and mounts it on the user mobile phone 585 according to an OTP agent download procedure using a preset mobile communication network.

After the OTP agent is downloaded to the user mobile phone 585, the OTP server 570 provided by the OTP agent to the user mobile phone 585 generates an OTP through the OTP agent provided in the user mobile phone 585. It provides OTP generation information for the user mobile phone (585).

According to an embodiment of the present invention, the OTP server 570 assigns one or more fixed seed values for generating an OTP through an OTP agent provided in the user mobile phone 585, and assigns the one or more fixed seed values assigned thereto. Generating OTP generation information (or extracting from a database storing OTP generation information) including a value and a parameter for determining one or more dynamic seed values required to generate an OTP via the OTP agent, and generating the OTP generation information It is preferable to provide to the user mobile phone 585 through a mobile communication network, the OTP server 570 is a secure communication channel with the user mobile phone 585 to provide the OTP generation information to the user mobile phone 585 Connect

According to the method of the present invention, the OTP server 570 generates the OTP after the OTP agent is downloaded to the user mobile phone 585 or when the OTP agent downloaded to the user mobile phone 585 is first executed. It is preferable to generate (or extract) information and provide the information to the user mobile phone 585. The OTP generation information is encrypted and stored in a memory provided in the user mobile phone 585, or in the user mobile phone 585. It is preferably stored in the provided Universal Subscriber Identity (USIM) Module.

According to the method of the present invention, after the OTP agent is downloaded to the user mobile phone 585 or when the OTP agent downloaded to the user mobile phone 585 is first executed, the user mobile phone 585 is the OTP agent. Input a user password or a user personal identification number for generating an OTP through, and encrypts the user password or the user personal identification number stored in the memory provided in the mobile phone, or provided in the user mobile phone 585 It is preferable to store in the USIM, and when the OTP agent is generated to generate the OTP afterwards, the OTP agent outputs an interface for inputting a user password or a user identification number, and the user password or user personal input through the interface Identification number and company stored in the memory (or USIM) It is preferable to authenticate the validity of the OTP generation by comparing the user password or the user identification number.

According to an embodiment of the present invention, when the user password or the user identification number is used as the OTP verification information, the OTP agent communicates with the payment system 510 through the user mobile phone 585 (eg, cancer). And a decryption-based secure communication channel), and transmit the user password or user identification number to the payment system 510, and the payment system 510 transmits the user password or user identification number. Check the mobile phone number corresponding to the mobile phone 585 (or receive the user social security number information in the user password or user personal identification number), and OTP verification information including the mobile phone number and the user password or user personal identification number In conjunction with the stored in the storage medium 575.

According to another exemplary embodiment of the present invention, a second user password or user personal identification number corresponding to the OTP verification information is stored in a memory (or USIM) provided in the user mobile phone 585 in addition to the user password or user personal identification number. When registering, the OTP agent outputs an interface for registering the OTP verification information, and stores a second user password or user identification number input through the interface in the user's mobile phone 585 (or After storing (or encrypted storage) in the USIM, the payment system 510 is connected to the payment channel 510 and the communication channel (for example, encryption / decryption-based secure communication channel) through the user mobile phone 585, and the payment system 510. ) Transmits a second user password or user identification number stored in the memory (or USIM), the payment system ( 510 confirms a mobile phone number corresponding to the user mobile phone 585 that has transmitted the second user password or user personal identification number (or receives the user social security number information in the second user password or user personal identification number); And the OTP verification information including the mobile phone number and the second user password or user personal identification number are stored in the storage medium 575. When the user password or user identification number of 2 is stored in the memory (or USIM), when generating or outputting OTP through the OTP agent, the second user password or user identification number stored in the memory (or USIM) It is also desirable to output.

According to another embodiment of the present invention, when registering a user password or user identification number other than the user password or user identification number, the OTP agent outputs an interface for registering the OTP verification information, the interface When a separate user password or personal identification number is input through the mobile phone 585, the payment system 510 connects a communication channel (e.g., encryption / decryption-based secure communication channel), and the payment The separate user password or user identification number is transmitted to the system 510, and the payment system 510 transmits a mobile phone number corresponding to the user mobile phone 585 which has transmitted the separate user password or user identification number. Confirmation (or separate user password or user identification number above) Receiving information including a user social security number) and, in conjunction the OTP verification information including the separate user password or the user's personal identification number and the mobile phone number is stored in the storage medium (575).

When it is confirmed that the OTP agent is already installed in the user mobile phone 585 by the agent checking means 530, or the OTP agent is downloaded and installed in the user mobile phone 585 through the agent providing means 535, The OTP interface providing means 540 inputs the OTP generated by the OTP agent provided in the user mobile phone 585 to the user wired terminal 500, and generates an OTP 'to be compared with the OTP. And processing to provide an OTP input interface for inputting OTP verification information for verification.

According to an embodiment of the present invention, the OTP interface providing means 540 relays directly to the user wired terminal 500 or the web server 505 through a communication network connected to the user wired terminal 500. Preferably, the user wired terminal 500 processes the OTP input interface to be provided.

When the OTP input interface is provided to the user wired terminal 500 by the OTP interface providing means 540, the OTP receiving means 545 is input from the user wired terminal 500 through the OTP input interface. It connects a communication session for receiving OTP and OTP verification information, and can be omitted when the user wired terminal 500 and the communication session are already connected.

According to an embodiment of the present invention, the OTP interface providing means 540 connects a communication channel with the user wired terminal 500, and provides the OTP input interface to the user wired terminal 500 through the communication channel. In one case, the OTP receiving means 545 checks the user wired terminal 500 information (eg, an IP address) from the communication channel provided with the OTP input interface to the user wired terminal 500, and the communication channel. Communication session for receiving the OTP and OTP verification information from the user wired terminal 500 based on (for example, communication with the memory area allocated to receive the OTP and OTP verification information from the user wired terminal 500) It is desirable to connect threads.

According to another embodiment of the present invention, when the OTP interface providing means 540 provides the OTP input interface to the user wired terminal 500 through the web server 505, the OTP receiving means 545 is A communication session for receiving the user wired terminal 500 information (eg, an IP address) from the web server 505 and receiving the OTP and OTP verification information from the user wired terminal 500 based on the information. In addition, it is preferable to connect a memory area allocated to receiving the OTP and OTP verification information from the user wired terminal 500 and a communication thread code.

Here, the communication session, it is preferable to include a secure communication session for encrypting and receiving the OTP and OTP verification information, and decrypting the encrypted OTP and OTP verification information.

When the communication session is connected to the user wired terminal 500, the OTP receiving means 545 is compared with the OTP and the OTP input from the user wired terminal 500 through the OTP input interface through the communication session. And receiving OTP verification information for verifying the validity of generating the OTP ', wherein the OTP providing means 550 provides the received OTP and OTP verification information to the user's mobile phone 585. It characterized in that the transmission to the OTP server 570.

The OTP providing means 550, when the OTP input interface is provided to the user wired terminal 500 by the OTP interface providing means 540, the mobile phone number corresponding to the user mobile phone 585 (or the user resident registration number) Information can be connected to user wired terminal 500 information (eg, IP address of the user wired terminal 500) provided with the OTP input interface or communication session information connected to the user wired terminal 500 (eg, refer to a DB). Or to map a pointer reference so as to maintain the OTP and OTP verification information from the user wired terminal 500 through the OTP receiving means 545.

If the OTP and OTP verification information are received from the user wired terminal 500 through the OTP receiving means 545, the OTP providing means 550 may correspond to a user wired terminal corresponding to the user wired terminal 500. 500 confirms information or communication session information, confirms the mobile phone number connected to the user wired terminal 500 information or communication session information, and transmits the mobile phone number and the received OTP and OTP verification information to the user mobile phone 585. ) To the OTP server 570 of the OTP agent provider.

According to another embodiment of the present invention, the OTP providing means 550 is authenticated by the user by the user authentication means 525, or the OTP to the user mobile phone 585 by the agent verification means 530 When it is confirmed that the agent is mounted or when the OTP agent is provided to the user mobile phone 585 by the agent providing means 535, the user wired terminal 500 connects the information with the mobile phone number and maintains it. It is possible that the present invention is not limited thereby.

The OTP server 570 receives the mobile number and OTP and OTP verification information from the payment system 510, and checks the OTP verification information associated with the mobile number from the storage medium 575, and receives the received information. The OTP verification information and the checked OTP verification information is compared to verify the validity of generating OTP 'to be compared with the OTP.

If the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, the OTP server 570 may generate an OTP necessary to generate the OTP' to be compared with the OTP from the storage medium 575. Confirm generation information, determine a fixed seed value and a dynamic seed value for generating an OTP 'from the OTP generation information, and generate the OTP' to be compared with the received OTP using the determined fixed seed value and the dynamic seed value; Characterized in that.

If the OTP 'is generated, the OTP server 570 checks the validity of payment for the mobile number by comparing the received OTP with the generated OTP' and displays the payment validity result in the payment system ( 510, the authentication result receiving means 555 is characterized by receiving and reading the payment validity results from the OTP server 570 to confirm the payment validity.

The information providing means 560 transmits a micropayment validity verification result corresponding to a comparison result of the OTP 'and the OTP generated by the user's mobile phone 585 to the web server 505 operating the micropayment target website. It is characterized by.

Referring to FIG. 5, when the payment validity is authenticated by the OTP server 570, the payment system 510 processes the payment amount to be settled through a communication charge imposed on the mobile phone. It is preferable to further comprise 565).

According to the embodiment of the present invention, the payment processing means 565 confirms the payment amount to be charged to the communication fee of the user mobile phone 585 from the web server 505, and associates with the mobile communication company server 580. It is preferable to query the payment limit for the user's mobile phone 585 number, and compare the payment amount and the payment limit to approve payment through the communication fee charged to the mobile phone.

According to another exemplary embodiment of the present invention, the payment processing means 565 may store and manage the user mobile phone 585 number and payment limit information corresponding thereto through a separate database, in which case the payment The processing means 565 can query the payment limit for the user mobile phone 585 number through the database, compare the payment amount with the payment limit, and approve the payment through the communication fee charged to the mobile phone. Do.

If the payment using the communication fee charged to the mobile phone is approved, the payment processing means 565 processes the payment amount to be charged to the communication fee for the user mobile phone 585 through the mobile communication company server 580. In addition, payment approval information for the payment amount is transmitted to the web server 505.

6 is a diagram illustrating a mobile phone payment process using OTP verification information according to a second embodiment of the present invention.

In more detail, FIG. 6 is a user wired terminal 500 connected to a small payment target website, and an interface for selecting a mobile carrier corresponding to the user mobile phone 585 and inputting a user mobile phone 585 number and a user social security number is provided. The mobile terminal 500 receives the mobile communication company selection information corresponding to the user mobile phone 585 and the user mobile phone 585 number and the user resident registration number information from the user wired terminal 500 through the interface, and responds to the mobile communication company selection information. After confirming the user authentication result and the OTP (One Time Password) agent is installed in the user mobile phone 585 through the mobile communication company server 580, the user wired terminal 500 to the user mobile phone 585 To input OTP generated by the provided OTP agent and OTP verification information for generating OTP 'to be compared with the OTP As a payment process providing an interface, a person having ordinary knowledge in the technical field to which the present invention belongs, various implementations of a mobile phone payment process using the OTP verification information by referring to and / or modifying this drawing 6 It is possible to infer a method (e.g., an implementation method in which some steps are omitted or the order is changed), but the present invention includes all the implementation methods inferred from above, and the technical description can be made only by the implementation method shown in FIG. Features are not limited.

Hereinafter, in FIG. 6, the payment system 510 illustrated in FIG. 5 is referred to as a “server” for convenience.

Referring to FIG. 6, a user accesses the web server 505 to purchase tangible / intangible goods, and a communication fee charged to the user's mobile phone 585 corresponding to a purchase price for the goods. When the mobile phone payment means is selected to make a payment (600), the server relays the web server 505 directly to the user wired terminal 500 or through the communication network to which the user wired terminal 500 is connected. A mobile phone payment interface for selecting a mobile carrier corresponding to the user mobile phone 585 and inputting a user mobile phone 585 number and a user social security number to the user wired terminal 500 is processed (605), and the user wired terminal 500 is processed. In operation 610, the mobile communication company selection information, the user's mobile phone 585 number, and the user's social security number information received through the mobile phone payment interface are received.

If the mobile communication company selection information, the user mobile phone 585 number and the user resident registration number information is received from the user wired terminal 500 (615), the server is sent to the mobile communication company server 580 corresponding to the mobile communication company selection information; User authentication is requested by transmitting the user mobile phone 585 number and user social security number information, and the user authentication result for the user mobile phone 585 number and user social security number information through the subscriber D / B in the mobile communication company server 580 When configured and transmitted, the user authentication result is received and read to authenticate the user who has requested the mobile payment.

If the user is not authenticated (625), the server generates a user authentication error and transmits to the user wired terminal 500 (or user mobile phone 585) and the web server 505 (630).

On the other hand, if the user is authenticated (625), the server transmits the user's mobile phone (585) number to the mobile carrier server 580 corresponding to the mobile carrier selection information (mobile carrier server 580 for the user authentication) Can be omitted when using the user's mobile phone 585 number transmitted to the user's mobile phone 585), the user's mobile phone 585 corresponding to the user mobile phone 585 number through the OTP agent D / B (not shown) in the mobile communication company server 580. Check whether the OTP agent for generating the OTP for authenticating the mobile micropayment is provided, and if the OTP agent check result corresponding to the check result is configured and transmitted, the OTP agent check result is received and read. In operation 635, the user mobile phone 585 is provided with an OTP agent for generating an OTP for authenticating the mobile payment.

If the user mobile phone 585 is not equipped with the OTP agent (640), the server processes the OTP agent to be provided to the user mobile phone 585 through the process shown in FIG.

On the other hand, if the user mobile phone 585 is equipped with the OTP agent (640), the server generates an OTP generated through the OTP agent provided in the user mobile phone 585, OTP 'to be compared with the OTP In operation 645, an OTP input interface for inputting OTP verification information for validating is provided to the user wired terminal 500.

7 is a diagram illustrating a process of providing an OTP agent to a user mobile phone 585 according to the second embodiment of the present invention.

In more detail, FIG. 7 includes a callback UEL for providing the OTP agent to the user mobile phone 585 when the OTP agent is not mounted on the user mobile phone 585 in the process shown in FIG. A process of processing a message to be transmitted to the user mobile phone 585 and showing the process of providing the OTP agent to the user mobile phone 585 through the message, having a general knowledge in the art to which the present invention pertains. If so, various implementation methods (e.g., some steps may be omitted or reordered) may be inferred by referring to and / or modifying the drawing 7 to provide the OTP agent to the user mobile phone 585. However, the present invention includes all the implementation methods inferred from the above, and only the implementation method shown in FIG. The technical features are not limited.

Hereinafter, in FIG. 7, the payment system 510 shown in FIG. 5 is referred to as a “server” for convenience.

Referring to FIG. 7, when the OTP agent is not installed in the user mobile phone 585 in the process illustrated in FIG. 6, the server includes a callback UEL for downloading the OTP agent to the user mobile phone 585. The mobile phone 585 receiving the message requests the OTP agent to the OTP server 570 corresponding to the callback UEL.

The OTP server 570 corresponding to the callback UEL provides the OTP agent to the user mobile phone 585 (705).

If the OTP agent is provided to the user mobile phone 585 (710), the user mobile phone 585 inputs a user password or user personal identification number for generating an OTP through the OTP agent, and the input user The password or user identification number may be encrypted and stored in the memory provided in the mobile phone, or stored in the USIM provided in the user mobile phone 585, registered (715), and compared with the OTP generated by the OTP agent. Input (or confirm) OTP verification information for verifying the validity of generating OTP 'and transmit it to the server (720), and the server checks the user's mobile phone (585) number that transmitted the OTP verification information, and The user's mobile phone 585 number and the OTP verification information are stored in the storage medium 575 in operation 725.

8 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a second embodiment of the present invention.

In more detail, FIG. 8 illustrates that the OTP input interface is provided to the user wired terminal 500 in the process illustrated in FIG. 6, and then the OTP and OTP verification inputted through the OTP input interface from the payment system 510. Receives the information and provides it to the OTP server 570, the OTP server 570 checks the validity of the OTP 'generation, generates the OTP' and then authenticates the payment validity compared to the OTP and provides it to the payment system 510. In this case, the payment system 510 illustrates a process of processing payment approval based on the validity of payment, and those skilled in the art to which the present invention pertains may refer to and / or modify the present invention. Various implementation methods (for example, some steps may be omitted or the order may be changed) may be inferred for the mobile phone payment approval process using the OTP verification information. And, the invention is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 8.

Hereinafter, in FIG. 8, the payment system 510 shown in FIG. 5 is referred to as a “server” for convenience.

Referring to FIG. 8, after the OTP input interface is provided to the user wired terminal 500 in the process illustrated in FIG. 6, the server inputs an OTP input from the user wired terminal 500 through the OTP input interface. Check whether the OTP verification information is received (800).

If the OTP and OTP verification information are received (805), the server provides the received OTP and OTP verification information to the OTP server 570 (810), the OTP server 570 and the OTP verification information The OTP verification information stored in the storage medium 575 is compared to determine the validity of OTP 'generation (815).

If the validity of the OTP 'generation is not confirmed (820), the OTP server 570 generates payment error information and transmits it to the server (825), and the server transmits the payment error information to the user wired terminal 500. (Or the user mobile phone 585) and the web server 505 is transmitted (830).

On the other hand, if the validity of the OTP 'generation is confirmed (820), the OTP server 570 checks the OTP generation information for generating the OTP' to be compared with the received OTP (835), and OTP 'from the OTP generation information The fixed seed value and the dynamic seed value to be generated are determined (840), and the OTP 'is generated using the determined seed value and the dynamic seed value, and the payment validity is verified by comparing with the received OTP (845).

If the payment validity is not authenticated (850), the OTP server 570 generates payment error information and transmits it to the server (825), and the server transmits the payment error information to the user wired terminal 500 (or User mobile phone 585) and the web server 505 is transmitted (830).

If the payment validity is authenticated (850), the OTP server 570 generates the payment validation result and transmits it to the server (855), and the server transmits the payment validation result to the user wired terminal (500). (Or the user's mobile phone 585) and the web server 505 is transmitted (860), and in response to the payment validity check result, payment approval through the communication fee of the user's mobile phone 585 is processed (865).

According to an embodiment of the present invention, the server confirms the payment amount to be charged to the communication fee of the user mobile phone 585 from the web server 505, and in connection with FIG. 5 for the user mobile phone 585 number; It is preferable to approve a payment through a communication fee imposed on the mobile phone by inquiring a payment limit and comparing the payment amount with the payment limit.

9 is a diagram showing the configuration of a cellular phone payment processing system using OTP verification information according to a third embodiment of the present invention.

In more detail, FIG. 9 is a user wired terminal 900 connected to a small payment target website, and an interface for selecting a mobile carrier corresponding to the user's mobile phone 985 and inputting a user's mobile phone 985 number and a user's social security number is provided. The mobile communication company selection information corresponding to the user mobile phone 985 and the user mobile phone 985 number and the user resident registration number information from the user wired terminal 900 through the interface, and the mobile communication company selection information is received. After confirming the user authentication result through the mobile carrier server 980, and whether or not the OTP (One Time Password) agent is installed in the user mobile phone 985 through the OTP server 970, the user wired terminal 900 to generate the OTP generated by the OTP agent provided in the user mobile phone 985 and the OTP 'to be compared with the OTP. Process to provide an interface for inputting the OTP verification information, and receives the OTP and OTP verification information input through the interface from the user wired terminal 900 and transmits the OTP verification information to the OTP server 970, the OTP server ( 970) illustrates a system configuration for processing the micro-payment of the mobile phone by authenticating the OTP 'generation validity and payment validity, and those of ordinary skill in the art to which the present invention pertains refer to and / or modify the present invention. It is possible to infer various implementation methods (e.g., implementation methods in which some components are omitted, subdivided, or combined) for the mobile payment settlement system using the OTP verification information. It is made, including the method, the technical features are not limited only to the implementation method shown in FIG.

For example, the mobile phone micropayment processing system shown in FIG. 9 can be applied to a system for processing payment using a customer's payment means, except that the payment amount is added to the communication fee of the user's mobile phone 985, The present invention naturally includes all payment processing systems that can be inferred as described above.

Referring to FIG. 9, the mobile phone micropayment processing system includes a user wired terminal 900 used by a user who accesses a website for micropayment and a user mobile phone 985 possessed by the user. Small payment target web that sells tangible / intangible goods to the user through the terminal 900 and makes payment through the mobile phone payment means for imposing a payment amount for the sold goods on a user's mobile phone 985 communication fee At least one web server 905 that operates a site, a payment system 910 for processing a micro-payment using OTP verification information in association with the user wired terminal 900 and a user mobile phone 985, and the user mobile phone An OTP server 970 for authenticating payment validity through an OTP generated by an OTP agent provided at 985 and a mobile communication network connected by the user mobile phone 985. It is characterized in that it comprises a gentleman server 980, the payment system 910 is implemented in the form of an authentication server (or relay server) connected to the web server 905 and the mobile carrier server 980, or It may be embodied in the form of an internal component of the web server 905, or in the form of an internal component of the mobile communication server server 980, and it will be apparent that the present invention is not limited by this.

The user wired terminal 900 includes one or more personal computers and laptops having a browser that can access a web server 905 that operates the small payment target website, and the web server 905 or a payment system. 910 receives a mobile phone payment interface for selecting a mobile carrier corresponding to the user mobile phone 985 and inputting a user mobile phone 985 number and a user social security number to a screen output means, and outputting the mobile phone payment through a key input means The mobile terminal selects information corresponding to the user's mobile phone 985, the user's mobile phone 985 and the user's social security number information to be input to the web server 905 or the payment system 910.

The web server 905 sells tangible / intangible goods to the user through the user wired terminal 900, and charges the mobile phone 985 a communication fee for the sold goods to the user mobile phone 985. As a generic term for a server operating a small payment target website that can be paid through, when the user wired terminal 900 selects the mobile phone payment means as the payment means for the payment amount, the user wired terminal 900 The mobile phone payment interface is provided, or the mobile phone payment interface is provided to the user wired terminal 900 through the payment system 910.

The user mobile phone 985 is a mobile phone possessed by a user who purchases tangible / intangible goods sold by the web server 905 and authenticates payment validity using a communication fee charged to the user mobile phone 985. A function of downloading an OTP agent, and a function of generating an OTP by driving the OTP agent and outputting the generated OTP (for example, a screen output or a user through a short range communication means such as Bluetooth, Wi-Fi, or RF communication). It is possible to output to the wired terminal 900).

According to the present invention, the user wired terminal 900 is an embodiment of a first terminal in which a user connects to a server through a communication network and purchases tangible / intangible goods sold by the server. It is possible to carry out various modifications according to the communication network and server type and characteristics.

According to the present invention, the user mobile phone 985 is an embodiment of a second terminal equipped with an OTP agent for authenticating a payment validity for a purchase price for purchasing goods through the first terminal. The terminal may include all communication terminals except for the first terminal.

For example, when the server to which the first terminal is connected is a home shopping server, the first terminal may include a user's IPTV, and the second terminal includes a wired telephone / VoIP phone provided near the IPTV. can do.

Alternatively, when the server to which the first terminal is connected is an ARS server, the first terminal may include a user's landline phone / mobile phone / VoIP phone, and the second terminal is another voice call except for the first terminal. Terminal (e.g., if the first terminal is a landline phone, the second terminal includes a mobile phone / VoIP phone; if the first terminal is a mobile phone, the second terminal includes a landline phone / VoIP phone, and the first terminal If the VoIP phone, the second terminal may include a landline / mobile phone).

In other words, the user wired terminal 900 of the present application is not limited to the above-described wired terminal, and it will be apparent that the user mobile phone 985 of the present application is also not limited to the mobile phone.

The mobile telecommunication company server 980 is a generic term for a mobile telecommunication company side server provided on the mobile communication network to which the user mobile phone 985 is connected to interface with the mobile phone. Message server, data exchange server, WAP (WAP) for transmitting the information (or data) requested to be provided to the user's mobile phone 985 through a mobile communication system (eg, exchange, base station, etc.) according to a preset communication protocol. It is preferable to include one or more servers.

According to an embodiment of the present invention, the mobile telecommunication company server 980 preferably has a function of authenticating a user by inquiring a subscriber D / B (not shown) through the user's mobile phone 985 and the user's social security number information. .

The OTP server 970 is characterized in that to authenticate the payment via the OTP generated by the OTP agent provided in the user's mobile phone (985), the OTP agent for generating the OTP for the payment validity authentication is provided The mobile phone number corresponding to the user mobile phone 985, the OTP agent information provided in the user mobile phone 985 corresponding to the mobile phone number, and the OTP 'to be compared with the OTP generated through the OTP agent provided in the mobile phone. And a storage medium 975 for storing OTP generation information including at least one fixed seed value for generating and a parameter for determining a dynamic seed value, or being connected through a communication network. The storage medium 975 further links OTP verification information for verifying validity of generating OTP 'through the OTP generation information. Chapter It is desirable that.

The mobile phone number is a general term of information for identifying the user mobile phone 985 and includes one or more telephone numbers, serial numbers (ESNs), and subscriber identification numbers assigned to the user mobile phone 985, or the user. At least one unique number (or unique code) stored in the memory of the mobile phone (985), USIM serial number assigned to the USIM provided in the user mobile phone (985), the unique number (or unique code) recorded in the USIM It is preferable to comprise.

The OTP agent information may include one or more version information, an OTP generation algorithm, and an OTP generation method of the OTP agent provided in the user mobile phone 985 corresponding to the mobile phone number.

Here, the OTP generation algorithm and the OTP generation method may use different algorithms and generation methods for each OTP agent, and thus the present invention is not limited thereto.

The OTP generation information may include one or more fixed seed values used to generate an OTP according to the OTP generation algorithm and the OTP generation method, and a parameter for determining the dynamic seed value. It is preferable to comprise.

For example, if the OTP is generated in a time-synchronized manner, the fixed seed value of the OTP generation information includes a seed fixed to assign to an OTP generation algorithm in a time-synchronization manner, wherein the parameter of the OTP generation information is It is preferable to include synchronization time setting information for determining a synchronization time corresponding to the dynamic seed value of the time-synchronization method OTP.

Or, if the OTP is generated in a challenge-response manner, the fixed seed value of the OTP generation information includes a seed fixed to assign to the challenge-response OTP generation algorithm, and the parameter of the OTP generation information is the challenge- It is preferred to include a random number generation seed for generating a random number corresponding to the dynamic seed value of the response method OTP.

According to an embodiment of the present invention, the OTP generation information is stored in the user mobile phone 985 memory in association with an OTP agent downloaded to the user mobile phone 985, or is provided in the user mobile phone 985. It is preferable to be stored in the USIM (encryption storage possible).

When the OTP verification information is received from the user wired terminal 900 through the OTP agent provided in the user mobile phone 985 and the OTP generated by the OTP generation information, the OTP generation information stored in the storage medium 975 is received. It is preferably made by including one or more user password or user identification number to verify that generates the OTP to be compared with the OTP using.

According to an embodiment of the present invention, the OTP verification information includes a user password or a user personal identification number input to drive the OTP agent in the user mobile phone 985 to generate the OTP, or the user password. Or a second user password or user identification number which is extracted from the memory (or USIM) included in the mobile phone through a user identification number (or decrypted if stored encrypted) or stored in the storage medium 975. It is preferable to include a separate user password or user identification number registered to verify generating the OTP to be compared with the OTP using the OTP generation information.

When the OTP and the OTP verification information are provided from the payment system 910, the OTP server 970 compares the OTP verification information with the OTP verification information previously stored in the storage medium 975 and compares the OTP 'with the OTP'. When the generation validity is verified and the OTP 'generation is validated, the OTP generation information for generating the OTP' to be compared with the OTP is checked, and the fixed seed value and the dynamic seed value for generating the OTP 'from the OTP generation information. Determine, generate an OTP 'using the determined seed value and the dynamic seed value, compare the received OTP with the generated OTP', and confirm the micropayment validity of the mobile number to determine the payment system ( 910) characterized in that provided.

Referring to FIG. 9, the payment system 910 selects a mobile communication company corresponding to the user's mobile phone 995 and selects a user's mobile phone 985 and the user's mobile terminal 900 connected to the small payment target website. Payment interface providing means (915) for processing to provide a mobile phone payment interface for inputting the social security number, the mobile carrier selection information corresponding to the user mobile phone 985 and the user mobile phone 985 and the user social security number through the mobile phone payment interface The mobile terminal 985 and the user social security number information are transmitted to the information receiving terminal 920 for receiving information, and the mobile communication company server 980 corresponding to the received mobile communication company selection information, and the mobile communication company server 980. Receive the user authentication result corresponding to the user mobile number (985) number and the user social security number verification results through) The user authentication means 925 for reading and authenticating the user, and whether the OTP agent is already installed in the user mobile phone 985 corresponding to the user mobile phone 985 number through the OTP server 970 When the agent checking means 930 and the OTP agent are not already installed in the user mobile phone 985, the message including the callback URL for downloading the OTP agent is transmitted to the user mobile phone 985. It is characterized by comprising the agent providing means 935 to.

In addition, the payment system 910, when the OTP agent is pre-installed in the user mobile phone 985, or when the OTP agent is downloaded and installed in the user mobile phone 985, the user mobile phone to the user wired terminal 900 An OTP interface providing means 940 for processing to provide an OTP input interface for inputting OTP generated by an OTP agent provided at 985 and OTP verification information for generating OTP 'to be compared with the OTP, and the user. OTP receiving means 945 for receiving OTP and OTP verification information input from the wired terminal 900 through the interface, and the received OTP and OTP verification information of the OTP agent provider provided in the user mobile phone 985. OTP providing means 950 for transmitting to the OTP server 970, OTP 'generated on the basis of the OTP verification information from the OTP server 970 and OTP generated in the user mobile phone 985 Authentication information receiving means 955 for receiving a comparison result, and the information to transmit the micropayment validity verification result corresponding to the comparison result of the OTP generated in the OTP 'and the user's mobile phone 985 to the micropayment target website Means 960 are provided.

According to the present invention, each means constituting the payment system 910 is implemented as a separate server for each means, or in the form of a predetermined authentication server (or relay server) including the means, or two The above means are combined to be implemented as a separate server, or the means are implemented in the form of components in the web server 905, or the means are implemented in the form of components in the mobile communication server 980, or Some of the means are implemented as components in the web server 905 and some are implemented as components in the carrier server 980, or some of the means are implemented as components in the web server 905 and some are Is implemented as a component in the mobile carrier server 980 and the other part can all be implemented in a separate server form, the billing system 910 to obtain Bayida put out to clarify SHALL not limited by the embodiment to which the present invention method.

The user accesses the web server 905 to purchase tangible / intangible goods, and pays a mobile phone to pay a payment amount corresponding to the purchase price for the goods through a communication fee charged to the user mobile phone 985. When the means is selected, the payment interface providing means 915 relays the web server 905 directly or directly to the user wired terminal 900 through a communication network to which the user wired terminal 900 is connected. The user wired terminal 900 is characterized in that the mobile phone selection interface corresponding to the user's mobile phone (985) and the mobile phone payment interface for inputting the user's mobile phone (985) number and the user's social security number is characterized in that the processing is provided.

When the mobile phone payment interface is provided to the user wired terminal 900 by the payment interface providing means 915, the information receiving means 920 is input through the mobile phone payment interface from the user wired terminal 900. The communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 985 and the user mobile phone 985 number and the user social security number information is connected.

According to an embodiment of the present invention, the payment interface providing means 915 connects a communication channel with the user wired terminal 900 and provides the mobile phone payment interface to the user wired terminal 900 through the communication channel. In one case, the information receiving means 920 checks the user wired terminal 900 information (eg, an IP address) from the communication channel provided with the mobile phone payment interface to the user wired terminal 900, and the communication channel. A communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 985, the user mobile phone 985 number and the user resident registration number information from the user wired terminal 900 (for example, the user wired terminal 900). Memory area allocated to receive the mobile carrier selection information, the user mobile phone 985 number and the user social security number information from It is desirable to connect the communication thread with the communication thread code.

According to another embodiment of the present invention, when the payment interface providing means 915 provides the mobile phone payment interface to the user wired terminal 900 through the web server 905, the information receiving means 920 is Receiving the user wired terminal 900 information (eg, an IP address) from the web server 905, and selecting mobile communication company selection information corresponding to the user mobile phone 995 from the user wired terminal 900 based on the information. Communication session for receiving user mobile phone 985 number and user social security number information (e.g., memory allocated to receive the mobile communication company selection information, user mobile phone 985 number and user social security number information from the user wired terminal 900). It is desirable to link the area with the communication thread code.

Here, the communication session is received by encrypting the mobile communication company selection information corresponding to the user mobile phone (985) and the user mobile phone 985 and the user resident registration number information encrypted, the mobile communication company corresponding to the encrypted user mobile phone (985) It preferably comprises a secure communication session for decrypting the selection information and the user's mobile phone (985) number and user social security number information.

When the communication session is connected to the user wired terminal 900, the information receiving means 920 is a mobile communication company selection information corresponding to the user mobile phone 985 from the user wired terminal 900 and the user mobile phone through the communication session (985) characterized by receiving the number and the user social security number information.

When the mobile communication company selection information corresponding to the user mobile phone 985, the user mobile phone 985 number and the user social security number information are received from the user wired terminal 900, the user authentication means 925 is connected to the mobile communication company selection information. The user mobile phone 985 and the user resident registration number information are transmitted to the corresponding mobile communication company server 980, and the user mobile phone 985 and the user resident registration number information are transmitted through the subscriber D / B in the mobile communication company server 980. When the user authentication result is configured and transmitted, the user authentication means 925 receives and reads the user authentication result to authenticate the user who has requested the micro payment.

In addition, the agent identification means 930 transmits the user mobile phone 985 number to the OTP server 970, and the user mobile phone 985 number through the storage medium 975 in the OTP server 970. If the user mobile phone (985) corresponding to the OTP agent for generating an OTP for authenticating the mobile phone micropayment is provided, and configures and transmits the OTP agent verification result corresponding to the verification result, the agent verification means In operation 930, the OTP agent check result is received and read to determine whether the user mobile phone 985 includes an OTP agent for generating an OTP for authenticating the mobile payment.

If the agent confirming means 930 confirms that the user's mobile phone 985 is not provided with an OTP agent for generating an OTP for authenticating the mobile payment, the agent providing means for processing 935 is provided. The mobile phone 985 may process a message including a callback URL for downloading an OTP agent to be transmitted to the user mobile phone 985.

According to an embodiment of the present invention, when it is confirmed that the OTP agent is not provided in the user mobile phone 985, the agent providing means 935 outputs a pop-up through a mobile phone payment interface provided to the user wired terminal 900. The OTP agent download request requested by the user through an OTP agent download interface (or menu) included in the mobile phone payment interface or outputted, and in response to the OTP agent download request, the user mobile phone 985. As a result, it is preferable to process a message including a callback UEL for OTP agent download.

Here, the callback UEL for downloading the OTP agent is preferably made, including the URL information of the OTP server 970 that provides the OTP agent to the user mobile phone (985), the message containing the callback UEL The received user mobile phone 985 downloads the OTP agent and mounts it on the user mobile phone 985 according to an OTP agent download procedure using a preset mobile communication network.

After the OTP agent is downloaded to the user mobile phone 985, the OTP server 970 provided by the OTP agent to the user mobile phone 985 generates an OTP through the OTP agent provided in the user mobile phone 985. Provides OTP generation information for the user mobile phone 985.

According to an embodiment of the present invention, the OTP server 970 allocates one or more fixed seed values for generating an OTP through an OTP agent provided in the user mobile phone 985, and assigns the one or more fixed seed values assigned thereto. Generating OTP generation information (or extracting from a database storing OTP generation information) including a value and a parameter for determining one or more dynamic seed values required to generate an OTP via the OTP agent, and generating the OTP generation information It is preferable to provide to the user mobile phone (985) through a mobile communication network, the OTP server 970 is a secure communication channel with the user mobile phone (985) to provide the OTP generation information to the user mobile phone (985). Connect

According to the method of the present invention, the OTP server 970 is the OTP agent after the OTP agent is downloaded to the user mobile phone (985), or when the OTP agent downloaded to the user mobile phone (985) for the first time, the OTP Preferably, the generated information is generated (or extracted) and provided to the user mobile phone 985. The OTP generation information is encrypted and stored in a memory provided in the user mobile phone 985, or the user mobile phone 985. It is preferably stored in the Universal Subscriber Identity (USIM) Module provided in the.

According to an embodiment of the present invention, after the OTP agent is downloaded to the user mobile phone 985 or when the OTP agent downloaded to the user mobile phone 985 is first executed, the user mobile phone 985 is the OTP agent. Input a user password or a user personal identification number for generating an OTP through, and encrypts the input user password or user personal identification number to store in the memory provided in the mobile phone, or provided in the user mobile phone 985 It is preferable to store in the USIM, and when the OTP agent is generated to generate the OTP afterwards, the OTP agent outputs an interface for inputting a user password or a user identification number, and the user password or user personal input through the interface Identification number and company stored in the memory (or USIM) It is preferable to authenticate the validity of the OTP generation by comparing the user password or the user identification number.

According to an embodiment of the present invention, when the user password or the user identification number is used as OTP verification information, the OTP agent communicates with the payment system 910 through the user mobile phone 985 (eg, female). A decryption-based secure communication channel), and transmits the user password or user identification number to the payment system 910, and the payment system 910 transmits the user password or user identification number. Check the mobile phone number corresponding to the mobile phone (985) (or received by including the user social security number information in the user password or user personal identification number), OTP verification information including the mobile phone number and the user password or user identification number In conjunction with the stored in the storage medium (975).

According to another embodiment of the present invention, a second user password or user personal identification number corresponding to the OTP verification information is stored in a memory (or USIM) provided in the user mobile phone 985 in addition to the user password or user personal identification number. When registering, the OTP agent outputs an interface for registering the OTP verification information, and stores a second user password or user identification number input through the interface in the user mobile phone 985 in the memory (or After storing (or encrypted storage) in the USIM, the communication system (for example, encryption / decryption-based secure communication channel) is connected to the payment system 910 through the user mobile phone 985, and the payment system 910 ) Transmits a second user password or user identification number stored in the memory (or USIM), the payment system ( 910 confirms the mobile phone number corresponding to the user mobile phone 985 that has transmitted the second user password or user personal identification number (or including user social security number information in the second user password or user personal identification number). And OTP verification information including the mobile phone number and the second user password or user personal identification number, and store the information in the storage medium 975. When the user password or user identification number of 2 is stored in the memory (or USIM), when generating or outputting OTP through the OTP agent, the second user password or user identification number stored in the memory (or USIM) It is also preferable to output.

According to another embodiment of the present invention, when registering a user password or user identification number other than the user password or user identification number, the OTP agent outputs an interface for registering the OTP verification information, the interface When a separate user password or a personal identification number is input through the user, the communication system (for example, encryption and decryption based secure communication channel) is connected to the payment system 910 through the user mobile phone 985, and the payment The separate user password or user identification number is transmitted to the system 910, and the payment system 910 transmits a mobile phone number corresponding to the user mobile phone 985 which has transmitted the separate user password or user identification number. Confirmation (or separate user password or user identification number above) Receiving information including a user social security number) and, in conjunction the OTP verification information including the separate user password or the user's personal identification number and the mobile phone number is stored in the storage medium (975).

When it is confirmed that the OTP agent is already installed in the user mobile phone 985 by the agent checking means 930, or the OTP agent is downloaded and installed in the user mobile phone 985 through the agent providing means 935, The OTP interface providing means 940 inputs the OTP generated by the OTP agent provided in the user mobile phone 985 to the user wired terminal 900, and verifies the validity of generating the OTP 'to be compared with the OTP. It is characterized in that the processing to provide an OTP input interface for inputting OTP verification information.

According to the method of the present invention, the OTP interface providing means 940 relays directly to the user wired terminal 900 or the web server 905 through a communication network connected to the user wired terminal 900. Preferably, the user wired terminal 900 processes the OTP input interface to be provided.

When the OTP input interface is provided to the user wired terminal 900 by the OTP interface providing means 940, the OTP receiving means 945 is input from the user wired terminal 900 through the OTP input interface. It connects a communication session for receiving OTP and OTP verification information, and can be omitted if the user wired terminal 900 and the communication session are already connected.

According to an embodiment of the present invention, the OTP interface providing means 940 connects a communication channel with the user wired terminal 900 and provides the OTP input interface to the user wired terminal 900 through the communication channel. In one case, the OTP receiving means 945 checks the user wired terminal 900 information (for example, an IP address) from the communication channel provided with the OTP input interface to the user wired terminal 900, and the communication channel. A communication session for receiving the OTP and OTP verification information from the user wired terminal 900 based on the communication session (for example, communication with a memory area allocated for receiving the OTP and OTP verification information from the user wired terminal 900). It is desirable to connect threads.

According to another embodiment of the present invention, when the OTP interface providing means 940 provides the OTP input interface to the user wired terminal 900 through the web server 905, the OTP receiving means 945 is A communication session (eg, receiving a user wired terminal 900 information (eg, an IP address) from the web server 905) and receiving the OTP and OTP verification information from the user wired terminal 900 based on the information. In addition, the memory area allocated to receive the OTP and OTP verification information from the user wired terminal 900 is preferably connected to a communication thread (thread code).

Here, the communication session, it is preferable to include a secure communication session for encrypting and receiving the OTP and OTP verification information, and decrypting the encrypted OTP and OTP verification information.

When the communication session is connected to the user wired terminal 900, the OTP receiving means 945 is compared with the OTP and the OTP input from the user wired terminal 900 through the OTP input interface through the communication session. OTP verification information for verifying the validity of generating the OTP ', characterized in that the OTP providing means 950 is the OTP agent provider provided in the user mobile phone 985 and the received OTP and OTP verification information It characterized in that the transmission to the OTP server 970.

The OTP providing means 950, when the OTP input interface is provided to the user wired terminal 900 by the OTP interface providing means 940, a mobile phone number corresponding to the user mobile phone 985 (or the user social security number) Information can be connected to user wired terminal 900 information (eg, IP address of the user wired terminal 900) provided with the OTP input interface or communication session information connected to the user wired terminal 900 (see, for example, DB). Or to map a pointer reference so as to maintain the OTP and OTP verification information from the user wired terminal 900 through the OTP receiving means 945.

If the OTP and the OTP verification information are received from the user wired terminal 900 through the OTP receiving means 945, the OTP providing means 950 is a user wired terminal corresponding to the user wired terminal 900 ( 900 confirms the information or communication session information, confirms the mobile phone number connected to the user wired terminal 900 information or communication session information, the mobile phone number and the received OTP and OTP verification information to the user mobile phone (985) ) To the OTP server 970 of the OTP agent provider.

According to another embodiment of the present invention, the OTP providing means 950 is authenticated by the user by the user authentication means 925, or the OTP to the user mobile phone 985 by the agent identification means 930 When it is confirmed that the agent is mounted or when the OTP agent is provided to the user mobile phone 985 by the agent providing means 935, the user wired terminal 900 information and the mobile phone number to connect and maintain It is possible that the present invention is not limited thereby.

The OTP server 970 receives the mobile number and OTP and OTP verification information from the payment system 910, checks the OTP verification information associated with the mobile number from the storage medium 975, and receives the received information. The OTP verification information and the checked OTP verification information is compared to verify the validity of generating OTP 'to be compared with the OTP.

If the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, the OTP server 970 is required to generate the OTP' to be compared with the OTP from the storage medium 975. Confirm generation information, determine a fixed seed value and a dynamic seed value for generating an OTP 'from the OTP generation information, and generate the OTP' to be compared with the received OTP using the determined fixed seed value and the dynamic seed value; Characterized in that.

If the OTP 'is generated, the OTP server 970 compares the received OTP and the generated OTP' to confirm the payment validity of the mobile number, and the payment validity result is determined by the payment system 910. And the authentication result receiving means 955 is characterized in that for receiving and reading the payment validity results from the OTP server 970 to confirm the payment validity.

The information providing means 960 transmits a micropayment validity verification result corresponding to a comparison result of the OTP 'and the OTP generated by the user's mobile phone 985 to the web server 905 operating the micropayment target website. It is characterized by.

Referring to FIG. 9, when the payment validity is authenticated by the OTP server 970, the payment system 910 processes payment so that the payment amount is settled through a communication fee charged to the mobile phone. It is preferable to further comprise 965).

According to the method of the present invention, the payment processing means 965 confirms the payment amount to be charged to the communication fee of the user mobile phone 985 from the web server 905 and associates with the mobile communication company server 980. It is preferable to query the payment limit for the user's mobile phone (985) number, and to compare the payment amount and the payment limit to approve payment through the communication charges imposed on the mobile phone.

According to another exemplary embodiment of the present invention, the payment processing unit 965 may store and manage the user mobile phone 985 number and payment limit information corresponding thereto through a separate database, in which case the payment The processing means 965 can query the payment limit for the user mobile phone 985 number through the database, compare the payment amount with the payment limit, and approve the payment through the communication fee charged to the mobile phone. Do.

If the payment using the communication fee charged to the mobile phone is approved, the payment processing means 965 processes the payment amount to be charged to the mobile phone 985 through the mobile communication company server 980. In addition, payment approval information for the payment amount is transmitted to the web server 905.

10 is a diagram illustrating a mobile phone payment process using OTP verification information according to a third embodiment of the present invention.

In more detail, FIG. 10 is a user wired terminal 900 connected to a small payment target website, and an interface for selecting a mobile carrier corresponding to the user's mobile phone 985 and inputting a user's mobile phone 985 number and a user's social security number is provided. The mobile communication company selection information corresponding to the user mobile phone 985 and the user mobile phone 985 number and the user resident registration number information from the user wired terminal 900 through the interface, and the mobile communication company selection information is received. After confirming the user authentication result through the mobile carrier server 980, and whether or not the OTP (One Time Password) agent is installed in the user mobile phone 985 through the OTP server 970, the user wired terminal 900 to generate the OTP generated by the OTP agent provided in the user mobile phone 985 and the OTP 'to be compared with the OTP. A payment process for providing an interface for inputting OTP verification information, and a person of ordinary skill in the art to which the present invention pertains may refer to and / or modify this drawing to use the OTP verification information. Various implementation methods (for example, some steps may be omitted or the order may be changed) for the mobile phone payment process may be inferred, but the present invention includes all the implementation methods inferred above, as shown in FIG. The technical features are not limited only to the illustrated embodiment.

Hereinafter, in FIG. 10, the payment system 910 shown in FIG. 9 is referred to as a “server” for convenience.

Referring to FIG. 10, a user accesses the web server 905 to purchase tangible / intangible goods, and a communication fee charged to the user's mobile phone 985 by a payment amount corresponding to the purchase price of the goods. When the mobile phone payment means is selected to make a payment (1000), the server relays the web server 905 directly to the user wired terminal 900 or directly through the communication network to which the user wired terminal 900 is connected. A mobile payment interface for selecting a mobile communication company corresponding to the user mobile phone 985 and inputting a user mobile phone 985 number and a user social security number to the user wired terminal 900 is processed (1005), and the user wired terminal 900 is processed. In step 1010, the mobile communication company selection information, the user's mobile phone 985, and the user's social security number information received through the mobile phone payment interface are received.

If the mobile communication company selection information, the user mobile phone (985) number and the user resident registration number information is received from the user wired terminal (900) (1015), the server to the mobile communication company server 980 corresponding to the mobile carrier selection information; User authentication is requested by transmitting the user mobile phone 985 number and user social security number information, and the user authentication result for the user mobile phone 985 number and user social security number information through the subscriber D / B in the mobile carrier server 980 When configured and transmitted, the user authentication result is received and read to authenticate the user who requested the mobile phone payment (1020).

If the user is not authenticated (1025), the server generates a user authentication error and transmits it to the user wired terminal 900 (or user mobile phone 985) and the web server 905 (1030).

On the other hand, if the user is authenticated (1025), the server transmits the user's mobile phone (985) number to the OTP server 970, the user's mobile phone (985) through the storage medium 975 in the OTP server (970) If the user mobile phone 985 corresponding to the number is provided with an OTP agent for generating an OTP for authenticating the mobile micropayment, and configures and transmits an OTP agent verification result corresponding to the verification result, the OTP Receiving and reading an agent verification result, it is checked whether the user mobile phone 985 is provided with an OTP agent for generating an OTP for authenticating the mobile payment.

If the OTP agent is not installed in the user mobile phone 985 (1040), the server processes the OTP agent to be provided to the user mobile phone 985 through the process shown in FIG.

On the other hand, if the user mobile phone 985 is equipped with the OTP agent (1040), the server generates an OTP generated through the OTP agent provided in the user mobile phone 985, and OTP 'to be compared with the OTP An OTP input interface for inputting OTP verification information for verifying the validity is provided to the user wired terminal 900 (step 1045).

11 is a diagram illustrating a process of providing an OTP agent to a user mobile phone 985 according to the third embodiment of the present invention.

In more detail, FIG. 11 includes a callback UEL for providing the OTP agent to the user mobile phone 985 when the user mobile phone 985 is not equipped with the OTP agent in the process illustrated in FIG. 10. A process of processing a message to be transmitted to the user mobile phone 985, and showing the process of providing the OTP agent to the user mobile phone 985 through the message, a person of ordinary skill in the art to which the present invention belongs If not, various implementation methods (for example, some steps may be omitted or reordered) may be inferred from the process of providing an OTP agent to the user mobile phone 985 by referring to and / or modifying the drawing 11. However, the present invention includes all the implementation methods inferred from the above, and only the implementation method shown in FIG. The technical features are not limited.

Hereinafter, in FIG. 11, the payment system 910 shown in FIG. 9 is referred to as "server" for convenience.

Referring to FIG. 11, when the OTP agent is not installed in the user mobile phone 985 in the process illustrated in FIG. 10, the server includes a callback UEL for downloading the OTP agent to the user mobile phone 985. The mobile phone 985 receives the message and requests the OTP agent from the OTP server 970 corresponding to the callback UEL.

The OTP server 970 corresponding to the callback UEL provides the OTP agent to the user mobile phone 985 (1105).

If the OTP agent is provided to the user mobile phone 985 (1110), the user mobile phone 985 inputs a user password or a user personal identification number for generating an OTP through the OTP agent, and inputs the input user. A password or a personal identification number may be encrypted and stored in a memory provided in the mobile phone, or stored and registered in a USIM provided in the user mobile phone 985 (1115) and compared with an OTP generated by the OTP agent. Input (or confirm) the OTP verification information for verifying the validity of generating the OTP 'to be transmitted to the server (1120), and the server checks the user mobile phone (985) number that transmitted the OTP verification information, and The user's mobile phone 985 and the OTP verification information are stored in the storage medium 975 in operation 1125.

12 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to the third embodiment of the present invention.

In more detail, FIG. 12 illustrates that the OTP input interface is provided to the user wired terminal 900 in the process illustrated in FIG. 10, and then the OTP and OTP verification inputted through the OTP input interface from the payment system 910. Receives the information and provides it to the OTP server 970, the OTP server 970 checks the validity of the OTP 'generation to generate the OTP' and then verify the payment validity compared to the OTP to provide to the payment system 910 In this case, the payment system 910 illustrates a process of processing payment approval based on the validity of payment, and those of ordinary skill in the art to which the present invention pertains may refer to and / or modify the present invention. Various implementation methods (for example, some steps may be omitted or the order may be changed) may be inferred for the mobile phone payment approval process using the OTP verification information. However, the present invention includes all the implementation methods inferred above, and the technical features are not limited only to the implementation method shown in FIG.

Hereinafter, in FIG. 12, the payment system 910 shown in FIG. 9 is referred to as "server" for convenience.

Referring to FIG. 12, after the OTP input interface is provided to the user wired terminal 900 in the process illustrated in FIG. 10, the server inputs an OTP input from the user wired terminal 900 through the OTP input interface. Check whether the OTP verification information is received (1200).

If the OTP and OTP verification information are received (1205), the server provides the received OTP and OTP verification information to the OTP server 970 (1210), and the OTP server 970 is the OTP verification information and The OTP verification information stored in the storage medium 975 is compared to determine the validity of the OTP 'generation (1215).

If the validity of the OTP 'generation is not confirmed (1220), the OTP server 970 generates payment error information and transmits it to the server (1225), and the server transmits the payment error information to the user wired terminal 900. (Or the user mobile phone 985) and the web server (905) (1230).

On the other hand, if the validity of the OTP 'generation is confirmed (1220), the OTP server 970 checks the OTP generation information for generating the OTP' to be compared with the received OTP (1235), and OTP 'from the OTP generation information The fixed seed value and the dynamic seed value to be generated are determined (1240), and the OTP 'is generated using the determined seed value and the dynamic seed value, and the payment validity is verified by comparing with the received OTP (1245).

If the payment validity is not authenticated (1250), the OTP server 970 generates payment error information and transmits it to the server (1225), and the server transmits the payment error information to the user wired terminal 900 (or The user mobile phone 985) and the web server 905 are transmitted (1230).

If the payment validity is authenticated (1250), the OTP server 970 generates and transmits the payment validation result to the server (1255), and the server transmits the payment validation result to the user wired terminal 900. (Or the user mobile phone 985) and the web server 905 (1260), and in response to the payment validity check result, the payment approval through the communication fee of the user mobile phone 985 is processed (1265).

According to an embodiment of the present invention, the server confirms a payment amount to be charged to the communication fee of the user mobile phone 985 from the web server 905, and in connection with FIG. 9 for the user mobile phone 985 number. It is preferable to approve a payment through a communication fee imposed on the mobile phone by inquiring a payment limit and comparing the payment amount with the payment limit.

13 is a diagram showing the configuration of a mobile phone micropayment processing system using OTP verification information according to a fourth embodiment of the present invention.

In more detail, FIG. 13 shows a user wired terminal 1300 connected to a small payment target website, and an interface for selecting a mobile carrier corresponding to the user's mobile phone 1380 and inputting a user's mobile phone 1380 number and user social security number. After processing so as to receive the mobile communication company selection information corresponding to the user mobile phone 1380 and the user mobile phone 1380 number and user resident registration number information from the user wired terminal 1300 through the interface, the user mobile phone 1380 number After confirming whether the user authentication result corresponding to the user resident registration number check result and the OTP (One Time Password) agent is already installed in the user mobile phone 1380, the user wired terminal (1300) to the user mobile phone (1380) OTP generated by the equipped OTP agent and OTP validation for generating OTP 'to be compared with the OTP Process to provide an interface for inputting the beam to receive the OTP and OTP verification information input through the interface from the user wired terminal 1300, and the OTP verification information and the OTP verification previously stored in the storage medium 1370 After comparing the information and verifying the OTP 'generation validity to be compared with the OTP, and when the OTP' generation validity is verified, the system configuration for processing the mobile phone micropayment by generating the OTP 'and comparing with the received OTP is shown As one of ordinary skill in the art to which the present invention pertains, various implementation methods (for example, some components) of the mobile phone micropayment processing system using the OTP verification information by referring to and / or modifying the present drawing 13 Addition may be omitted, subdivided, or combined). It is made, including the method, the technical features are not limited only to the implementation method shown in FIG.

For example, the mobile phone micropayment processing system shown in FIG. 13 can be applied to a system for processing payment using a customer's payment means, except that the payment amount is added to the communication fee of the user's mobile phone 1380. The present invention naturally includes all payment processing systems that can be inferred as described above.

Referring to FIG. 13, the mobile phone micropayment processing system includes a user wired terminal 1300 used by a user who accesses a website for micropayment and a user mobile phone 1380 possessed by the user. Small payment target web that sells tangible / intangible goods to the user through the terminal 1300 and makes payments through the mobile phone payment means for imposing a payment amount for the sold goods on a user's mobile phone 1380 communication fee At least one web server 1305 that operates a site, a payment system 1310 for processing a micro phone payment using OTP verification information in association with the user wired terminal 1300 and a user mobile phone 1380, and the user mobile phone And a mobile telecommunication company server 1375 on the mobile communication network to which the mobile station 1380 is connected, wherein the payment system 1310 includes the web server ( 1305) and in the form of an authentication server (or relay server) connected to the mobile communication company server 1375, or in the form of an internal component of the web server 1305, or the inside of the mobile communication company server 1375 It is to be apparent that all implementations in the form of a component are possible, whereby the invention is not limited.

The user wired terminal 1300 may include one or more personal computers and laptops having a browser that can access a web server 1305 that operates the micropayment target website, and the web server 1305 or a payment system. A mobile phone payment interface for selecting a mobile carrier corresponding to the user mobile phone 1380 and inputting a user mobile phone 1380 number and a user resident registration number from 1310 is output to a screen output means, and the mobile phone payment is performed through a key input means. The mobile terminal selects information corresponding to the user's mobile phone 1380, the user's mobile phone 1380, and the user's social security number information by inputting the web server 1305 or the payment system 1310.

The web server 1305 sells tangible / intangible goods to the user through the user wired terminal 1300, and charges a mobile phone 1380 a communication fee for the sold goods to the user mobile phone 1380. As a generic term for a server operating a small payment target website that can be paid through, when the user wired terminal 1300 selects the mobile phone payment means as a payment means for the payment amount, the user wired terminal 1300 The mobile phone payment interface is provided, or the mobile phone payment interface is provided to the user wired terminal 1300 through the payment system 1310.

The user mobile phone 1380 is a mobile phone possessed by a user who purchases tangible / intangible goods sold by the web server 1305, and authenticates a payment validity using a communication fee charged to the user mobile phone 1380. A function of downloading an OTP agent, and a function of generating an OTP by driving the OTP agent and outputting the generated OTP (for example, a screen output or a user through a short range communication means such as Bluetooth, Wi-Fi, or RF communication). It can be output to the wired terminal 1300) characterized in that it comprises a.

According to the present invention, the user wired terminal 1300 is an embodiment of a first terminal in which a user connects to a server through a communication network and purchases tangible / intangible goods sold by the server. It is possible to carry out various modifications according to the communication network and server type and characteristics.

According to the present invention, the user mobile phone 1380 is an embodiment of a second terminal equipped with an OTP agent to authenticate the payment validity for the purchase price of the goods purchased through the first terminal, the second The terminal may include all communication terminals except for the first terminal.

For example, when the server to which the first terminal is connected is a home shopping server, the first terminal may include a user's IPTV, and the second terminal includes a wired telephone / VoIP phone provided near the IPTV. can do.

Alternatively, when the server to which the first terminal is connected is an ARS server, the first terminal may include a user's landline phone / mobile phone / VoIP phone, and the second terminal is another voice call except for the first terminal. Terminal (e.g., if the first terminal is a landline phone, the second terminal includes a mobile phone / VoIP phone; if the first terminal is a mobile phone, the second terminal includes a landline phone / VoIP phone, and the first terminal If the VoIP phone, the second terminal may include a landline / mobile phone).

That is, the user wired terminal 1300 of the present application is not limited to the above-described wired terminal, and it will be apparent that the user mobile phone 1380 of the present application is also not limited to the mobile phone.

The mobile telecommunication company server 1375 is a generic term for a mobile telecommunication company side server provided on the mobile communication network to which the user mobile phone 1380 is connected to interface with the mobile phone. In the payment system 1310, the user mobile phone 1380 is used. Message server, data exchange server, WAP (WAP) for transmitting the information (or data) requested to be provided to the user mobile phone 1380 through a mobile communication system (for example, exchange, base station, etc.) according to a predetermined communication protocol. It is preferable to include at least one server.

According to the present invention, the payment system 1310, the mobile phone number corresponding to the user mobile phone 1380 equipped with an OTP agent for generating an OTP for authenticating the payment validity using the communication charges imposed on the user mobile phone 1380 And one or more fixed seed values for generating OTP agent information provided in the user mobile phone 1380 corresponding to the mobile phone number, and OTP 'to be compared with OTP generated through the OTP agent provided in the mobile phone. And a storage medium 1370 that stores and stores OTP generation information including parameters for determining a dynamic seed value, or is connected through a communication network, wherein the storage medium 1370 is connected to the OTP. It is preferable to further store OTP verification information for verifying validity of generating OTP 'through the generation information.

According to an embodiment of the present invention, the storage medium 1370 stores the mobile phone number and the OTP agent information in a first storage medium, and stores the OTP generation information and OTP verification information in a second storage medium. The mobile phone number on the first storage medium, the OTP agent information, the OTP generation information and the OTP verification information on the second storage medium, or the mobile phone number on the first storage medium. And store the OTP agent information and the OTP generation information on a second storage medium, and store the OTP verification information on a third storage medium. Each storage medium location may be provided in the payment system 1310 or external to the payment system 1310 via a communication network. , To which the present invention is not limited.

The mobile phone number is a general term for information that can identify the user mobile phone 1380, and includes one or more telephone numbers, serial numbers (ESNs), and subscriber identification numbers assigned to the user mobile phone 1380, or the user. At least one unique number (or unique code) stored in the memory of the mobile phone 1380, a USIM serial number assigned to the USIM provided in the user mobile phone 1380, a unique number (or unique code) recorded in the USIM It is preferable to comprise.

The OTP agent information may include one or more version information, an OTP generation algorithm, and an OTP generation method of the OTP agent provided in the user mobile phone 1380 corresponding to the mobile phone number.

Here, the OTP generation algorithm and the OTP generation method may use different algorithms and generation methods for each OTP agent, and thus the present invention is not limited thereto.

The OTP generation information may include one or more fixed seed values used to generate an OTP according to the OTP generation algorithm and the OTP generation method, and a parameter for determining the dynamic seed value. It is preferable to comprise.

For example, if the OTP is generated in a time-synchronized manner, the fixed seed value of the OTP generation information includes a seed fixed to assign to an OTP generation algorithm in a time-synchronization manner, wherein the parameter of the OTP generation information is It is preferable to include synchronization time setting information for determining a synchronization time corresponding to the dynamic seed value of the time-synchronization method OTP.

Or, if the OTP is generated in a challenge-response manner, the fixed seed value of the OTP generation information includes a seed fixed to assign to an OTP generation algorithm of a challenge-response manner, and the parameter of the OTP generation information is the challenge- It is preferable to include a random number generating seed for generating a random number corresponding to the dynamic seed value of the response type OTP.

According to an embodiment of the present invention, the OTP generation information is stored in the user cell phone 1380 memory in association with the OTP agent downloaded to the user cell phone 1380 or stored in the user cell phone 1380. It is preferable to be stored in the USIM (encryption storage possible).

When the OTP verification information is received from the user wired terminal 1300, an OTP generated through the OTP agent and OTP generation information included in the user mobile phone 1380, the OTP generation information stored in the storage medium 1370 is received. It is preferably made by including one or more user password or user identification number to verify that generates the OTP to be compared with the OTP using.

According to an embodiment of the present invention, the OTP verification information includes a user password or a user personal identification number input to drive the OTP agent in the user mobile phone 1380 to generate the OTP, or the user password. Or a second user password or user identification number which is extracted from the memory (or USIM) included in the mobile phone through a user identification number (or decrypted if stored encrypted) or stored in the storage medium 1370. It is preferable to include a separate user password or user identification number registered to verify generating the OTP to be compared with the OTP using the OTP generation information.

Referring to FIG. 13, the payment system 1310 selects a mobile communication company corresponding to the user mobile phone 1380 and the user mobile phone 1380 number and the user through the user wired terminal 1300 accessing the micropayment target website. Payment interface providing means (1315) for processing to provide a mobile phone payment interface for inputting the social security number, the mobile carrier selection information corresponding to the user mobile phone 1380 and the user mobile phone 1380 number and user social security number through the mobile phone payment interface Information receiving means 1320 for receiving information, user authentication means 1325 for authenticating a user through a user mobile phone 1380 number and a user social security number, and a user mobile phone 1380 corresponding to the user mobile phone 1380 number; Agent checking means (1330) for checking whether or not the OTP agent is already installed in the mobile terminal and the user; If the OTP agent is not already installed in the phone 1380, an agent providing means 1335 for processing a message including a callback URL for downloading an OTP agent to the user mobile phone 1380 is provided. Characterized in that made.

In addition, the payment system 1310, when the OTP agent is already installed in the user mobile phone 1380, or when the OTP agent is downloaded and installed in the user mobile phone 1380, the user mobile phone to the user wired terminal 1300 An OTP interface providing means 1340 for processing an OTP generated by an OTP agent provided at 1380 and an OTP input interface for inputting OTP verification information for generating an OTP 'to be compared with the OTP; and the user The OTP receiving means 1345 for receiving the OTP and OTP verification information input through the interface from the wired terminal 1300 and the OTP verification information previously stored in the storage medium 1370 are compared with the received OTP verification information. OTP validating means 1350 for validating the OTP 'generation to be compared with the OTP, and if the OTP' generation is validated, to generate OTP 'to be compared with the OTP. Confirm OTP generation information, determine a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, generate OTP' using the determined fixed seed value and the dynamic seed value, and receive the received OTP And the payment validity verification means 1355 for confirming the micropayment validity of the mobile number by comparing the generated OTP 'and information for transmitting the micropayment validity verification result for the mobile number to the website for the micropayment. It is characterized by comprising a providing means 1360.

According to the present invention, each means constituting the payment system 1310 is implemented as a separate server for each means, or in the form of a predetermined authentication server (or relay server) including the means, or two The above means are combined to be implemented as a separate server, or the means are implemented in the form of components in the web server 1305, or the means are implemented in the form of components in the mobile communication company server 1375, or Some of the means are implemented as components in the web server 1305 and some are implemented as components in the carrier server 1375, or some of the means are implemented as components in the web server 1305 and some are Is implemented as a component in the mobile communication company server (1375) and the other part can all be implemented in a separate server form, the payment system 1310 It is apparent that the present invention is not limited by the method of implementing the method.

The user accesses the web server 1305 to purchase tangible / intangible goods, and pays a mobile phone to pay a payment amount corresponding to the purchase price for the goods through a communication fee imposed on the user's mobile phone 1380. If a means is selected, the payment interface providing means 1315 is directly connected to the user wired terminal 1300 or the web server 1305 through the communication network to which the user wired terminal 1300 is connected. The mobile terminal 1300 selects a mobile communication company corresponding to the user's mobile phone 1380, and provides a mobile phone payment interface for inputting a user's mobile phone 1380 number and a user's social security number.

When the mobile phone payment interface is provided to the user wired terminal 1300 by the payment interface providing unit 1315, the information receiving unit 1320 is input through the mobile phone payment interface from the user wired terminal 1300. The communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 1380 and the user mobile phone 1380 number and the user social security number information is connected.

According to an embodiment of the present invention, the payment interface providing unit 1315 connects the communication channel with the user wired terminal 1300 and connects the mobile phone payment interface to the user wired terminal 1300 through the communication channel. If provided, the information receiving unit 1320 checks the user wired terminal 1300 information (eg, an IP address) from the communication channel provided with the mobile phone payment interface to the user wired terminal 1300, and performs the communication. A communication session for receiving mobile communication company selection information corresponding to the user mobile phone 1380 and user mobile phone 1380 number and user resident registration number information from the user wired terminal 1300 based on a channel (for example, the user wired terminal) 1300, the mobile communication company selection information and the user's mobile phone (1380) number and the user's social security number assigned to receive information It is preferred to connect the communication area and the re-thread (Thread) code).

According to another embodiment of the present invention, when the payment interface providing means 1315 provides the mobile phone payment interface to the user wired terminal 1300 through the web server 1305, the information receiving means 1320 is Receiving the user wired terminal 1300 information (for example, an IP address) from the web server 1305, and selecting mobile communication company selection information corresponding to the user mobile phone 1380 from the user wired terminal 1300 based on the information; Communication session for receiving user cellular phone 1380 number and user social security number information (e.g., memory allocated for receiving the mobile communication company selection information, user cellular phone 1380 number and user social security number information from the user wired terminal 1300); It is desirable to link the area with the communication thread code.

Here, the communication session is received by encrypting the mobile communication company selection information corresponding to the user mobile phone 1380, the user mobile phone 1380 number and the user resident registration number information encrypted, and the mobile communication company corresponding to the encrypted user mobile phone 1380 It preferably comprises a secure communication session for decrypting the selection information and the user's mobile phone 1380 number and user social security number information.

When the communication session is connected to the user wired terminal 1300, the information receiving unit 1320 is a mobile communication company selection information corresponding to the user mobile phone 1380 from the user wired terminal 1300 through the communication session and the user mobile phone (1380) characterized by receiving the number and user resident registration number information.

When the mobile communication company selection information corresponding to the user mobile phone 1380, the user mobile phone 1380 number and the user social security number information are received from the user wired terminal 1300, the user authentication means 1325 is a member D / B (shown in FIG. And the user mobile phone 1380 number and the user resident registration number information stored in the stored information), and the received user mobile phone 1380 number and the user resident registration number information are compared to authenticate the user who requested the micro payment.

In addition, the agent checking means 1330, OTP for generating the OTP for authenticating the mobile phone micropayment to the user mobile phone 1380 through the OTP agent information stored in the storage medium 1370 in association with the mobile phone number It is characterized by checking whether the agent is provided.

If the agent confirming means 1330 confirms that the user's mobile phone 1380 is not provided with an OTP agent for generating the OTP for authenticating the mobile payment, the agent providing means 1335 for processing, The user mobile phone 1380 is characterized in that it is processed to transmit a message containing a callback URL (CallBack URL) for downloading the OTP agent.

According to the embodiment of the present invention, when it is confirmed that the OTP agent is not provided in the user mobile phone 1380, the agent providing means 1335 outputs a pop-up through a mobile phone payment interface provided to the user wired terminal 1300. Or check an OTP agent download request requested by the user through an OTP agent download interface (or menu) included in the mobile phone payment interface and output, and in response to the OTP agent download request, the user mobile phone 1380. As a result, it is preferable to process a message including a callback UEL for OTP agent download.

Here, the callback UEL for downloading the OTP agent includes a URL information of the payment system 1310, or a predetermined OTP server that is set up / partnered to manage the OTP agent in the payment system 1310 (not shown) It is preferable to include the URL information of the), the user mobile phone 1380 receiving the message containing the callback UEL is to download the OTP agent in accordance with the OTP agent download procedure using a preset mobile communication network to the user mobile phone ( 1380).

After the OTP agent is downloaded to the user's mobile phone 1380, the payment system 1310 (or OTP server) provided by the OTP agent to the user's mobile phone 1380 may use the OTP agent provided in the user's mobile phone 1380. OTP generation information for generating an OTP is provided to the user mobile phone 1380.

According to an embodiment of the present invention, the payment system 1310 (or OTP server) allocates one or more fixed seed values for generating an OTP through an OTP agent provided in the user mobile phone 1380, and assigns Generate OTP generation information (or extract from a database storing OTP generation information), the OTP generation information comprising one or more fixed seed values, and parameters for determining one or more dynamic seed values required to generate an OTP via the OTP agent; Preferably, the generated OTP generation information is provided to the user mobile phone 1380 through a mobile communication network, and the payment system 1310 (or OTP server) is provided to provide the OTP generation information to the user mobile phone 1380. Connect a secure communication channel with the user mobile phone 1380.

According to an embodiment of the present invention, the payment system 1310 (or the OTP server) may be executed after the OTP agent is downloaded to the user mobile phone 1380 or the OTP agent downloaded to the user mobile phone 1380 is first executed. In this case, the OTP generation information may be generated (or extracted) and provided to the user mobile phone 1380. The OTP generation information may be encrypted and stored in a memory provided in the user mobile phone 1380, or the user. It is preferably stored in a Universal Subscriber Identity (USIM) module included in the mobile phone 1380.

According to the exemplary embodiment of the present invention, after the OTP agent is downloaded to the user mobile phone 1380 or when the OTP agent downloaded to the user mobile phone 1380 is initially executed, the user mobile phone 1380 is the OTP agent. Input a user password or a user personal identification number for generating an OTP through, and encrypts the input user password or user personal identification number to store in the memory provided in the mobile phone, or provided in the user mobile phone 1380 It is preferable to store in the USIM, and when the OTP agent is generated to generate the OTP afterwards, the OTP agent outputs an interface for inputting a user password or a user identification number, and the user password or user personal input through the interface Stored in the memory (or USIM) It is preferable to authenticate the OTP generation validity by comparing the user password or the user identification number.

According to an embodiment of the present invention, when the user password or the personal identification number is used as the OTP verification information, the OTP agent communicates with the payment system 1310 through the user mobile phone 1380 (eg, female). A decryption-based secure communication channel), and transmits the user password or user identification number to the payment system 1310, and the payment system 1310 transmits the user password or user identification number. Check the mobile phone number corresponding to the mobile phone 1380 (or receive the user social security number information included in the user password or user personal identification number), OTP verification information including the mobile phone number and the user password or user personal identification number In conjunction with the stored in the storage medium 1370.

According to another embodiment of the present invention, a second user password or user personal identification number corresponding to the OTP verification information is stored in a memory (or USIM) provided in the user mobile phone 1380 in addition to the user password or user personal identification number. When registering, the OTP agent outputs an interface for registering the OTP verification information, and stores a second user password or user identification number input through the interface in the user's mobile phone 1380 (or After storing (or encrypted storage) in the USIM, the payment system 1310 and a communication channel (for example, encryption / decryption-based secure communication channel) are connected through the user mobile phone 1380, and the payment system ( 1310) the second user password or user identification number stored in the memory (or USIM) is transmitted, the payment The system 1310 confirms a mobile phone number corresponding to the user mobile phone 1380 that has transmitted the second user password or user personal identification number (or includes user social security number information in the second user password or user personal identification number). And OTP verification information including the mobile phone number and the second user password or the user's personal identification number are stored in the storage medium 1370. When the user password or user identification number of 2 is stored in the memory (or USIM), when generating or outputting OTP through the OTP agent, the second user password or user identification number stored in the memory (or USIM) It is also preferable to output.

According to another embodiment of the present invention, when registering a user password or user identification number other than the user password or user identification number, the OTP agent outputs an interface for registering the OTP verification information, the interface When a separate user password or personal identification number is input through the mobile phone 1380, the payment system 1310 and the communication channel (for example, encryption and decryption-based secure communication channel) is connected, the payment The separate user password or user identification number is transmitted to the system 1310, and the payment system 1310 transmits a mobile phone number corresponding to the user cellular phone 1380 that has transmitted the separate user password or user identification number. Confirmation (or separate user password or user identification above User information including resident registration number to the call reception) and in conjunction the OTP verification information including the separate user password or the user's personal identification number and the mobile phone number is stored in the storage medium (1370).

When it is confirmed that the OTP agent is pre-installed on the user mobile phone 1380 by the agent checking means 1330, or when the OTP agent is downloaded and installed to the user mobile phone 1380 through the agent providing means 1335, The OTP interface providing means 1340 inputs the OTP generated by the OTP agent provided in the user mobile phone 1380 to the user wired terminal 1300, and verifies the validity of generating the OTP 'to be compared with the OTP. It is characterized in that the processing to provide an OTP input interface for inputting OTP verification information.

According to an embodiment of the present invention, the OTP interface providing means 1340 may be directly connected to the user wired terminal 1300 or the web server 1305 through a communication network connected to the user wired terminal 1300. Preferably, the user wired terminal 1300 processes the OTP input interface to be provided.

When the OTP input interface is provided to the user wired terminal 1300 by the OTP interface providing means 1340, the OTP receiving means 1345 is input from the user wired terminal 1300 through the OTP input interface. It connects a communication session for receiving OTP and OTP verification information, and can be omitted if the user wired terminal 1300 and the communication session are already connected.

According to an embodiment of the present invention, the OTP interface providing means 1340 connects a communication channel with the user wired terminal 1300 and provides the OTP input interface to the user wired terminal 1300 through the communication channel. In one case, the OTP receiving means 1345 checks the user wired terminal 1300 information (for example, an IP address) from the communication channel provided with the OTP input interface to the user wired terminal 1300, and the communication channel. Communication session for receiving the OTP and OTP verification information from the user wired terminal 1300 based on the communication (for example, the memory area allocated for receiving the OTP and OTP verification information from the user wired terminal 1300) It is desirable to connect threads.

According to another embodiment of the present invention, when the OTP interface providing means 1340 provides the OTP input interface to the user wired terminal 1300 through the web server 1305, the OTP receiving means 1345 A communication session for receiving the user wired terminal 1300 information (eg, an IP address) from the web server 1305 and receiving the OTP and OTP verification information from the user wired terminal 1300 based on the information. In addition, it is preferable to connect a memory area allocated to receiving the OTP and OTP verification information from the user wired terminal 1300 and a communication thread code.

Here, the communication session, it is preferable to include a secure communication session for encrypting and receiving the OTP and OTP verification information, and decrypting the encrypted OTP and OTP verification information.

When the communication session is connected to the user wired terminal 1300, the OTP receiving means 1345 is compared with the OTP and the OTP input from the user wired terminal 1300 through the OTP input interface through the communication session. And receiving OTP verification information for verifying the validity of generating the OTP '.

The OTP validity verification means 1350 corresponds to the user cellular phone 1380 from the storage medium 1370 when the OTP input interface is provided to the user wired terminal 1300 by the OTP interface providing means 1340. The mobile phone number (or the user's social security number information) or the OTP verification information associated with the mobile phone number, the user wired terminal 1300 provided with the OTP input interface information (for example, the IP address of the user wired terminal 1300) or the user. The OTP and OTP verification information from the user wired terminal 1300 through the OTP receiving means 1345 by connecting with the communication session information connected to the wired terminal 1300 (e.g., mapping a DB reference or a pointer reference). Hold until is received.

If the OTP and OTP verification information are received from the user wired terminal 1300 through the OTP receiving means 1345, the OTP validating means 1350 is a user wired terminal corresponding to the user wired terminal 1300. Check information or communication session information, check the OTP verification information connected to the user wired terminal 1300 information or communication session information from the storage medium 1370, and receive the received OTP verification information and the verification. And comparing the OTP verification information to verify the validity of generating OTP 'to be compared with the OTP.

According to another embodiment of the present invention, the OTP validating means 1350, the user is authenticated by the user authentication means 1325, or the user mobile phone 1380 by the agent verification means 1330 When the OTP agent is confirmed that the OTP agent is installed in the user or the OTP agent is provided to the user mobile phone 1380 by the agent providing means 1335, the user wired terminal 1300 information and the storage medium 1370. It is possible to connect and maintain the OTP verification information stored in the), by which the present invention is not limited.

If the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, the payment validity authentication means 1355 may generate the OTP' to be compared with the OTP from the storage medium 1370. Confirm the required OTP generation information, determine a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, and use the determined fixed seed value and the dynamic seed value to compare the received OTP' with the OTP '; It characterized in that to generate.

If the OTP 'is generated, the payment validity authentication means 1355 compares the received OTP and the generated OTP' and confirms the payment validity of the mobile number, and the information providing means. In operation 1360, the micropayment validity verification result for the mobile number is transmitted to the web server 1305 for operating the micropayment target website.

Referring to FIG. 13, when the payment validity is authenticated by the payment validity authentication means 1355, the payment processing means for processing the payment amount to be settled through a communication fee charged to the mobile phone. It is preferable to further comprise 1365.

According to the exemplary embodiment of the present invention, the payment processing means 1365 checks the payment amount to be charged on the communication fee of the user mobile phone 1380 from the web server 1305 and associates with the mobile communication company server 1375. By querying the payment limit for the user mobile phone 1380 number, and comparing the payment amount and the payment limit, it is preferable to approve payment through the communication charges imposed on the mobile phone.

According to another exemplary embodiment of the present invention, the payment processing means 1365 may store and manage the user mobile phone 1380 number and payment limit information corresponding thereto through a separate database, in which case the payment The processing means 1365 can query the payment limit for the user's mobile phone 1380 number through the database, compare the payment amount with the payment limit, and approve the payment through the communication fee charged to the mobile phone. Do.

When the payment using the communication fee charged to the mobile phone is approved, the payment processing means 1365 processes the payment amount to be charged to the communication fee for the user mobile phone 1380 through the mobile communication company server 1375. In addition, payment approval information on the payment amount is transmitted to the web server 1305.

14 is a diagram illustrating a mobile phone payment process using OTP verification information according to a fourth embodiment of the present invention.

More specifically, FIG. 14 is a user wired terminal 1300 connected to a small payment target website, and an interface for selecting a mobile carrier corresponding to the user's mobile phone 1380 and inputting the user's mobile phone 1380 number and user social security number is provided. After processing so as to receive the mobile communication company selection information corresponding to the user mobile phone 1380 and the user mobile phone 1380 number and user resident registration number information from the user wired terminal 1300 through the interface, the user mobile phone 1380 number After confirming whether the user authentication result corresponding to the user resident registration number check result and the OTP (One Time Password) agent is already installed in the user mobile phone 1380, the user wired terminal (1300) to the user mobile phone (1380) OTP generated by the equipped OTP agent and OTP verification for OTP 'generation to be compared with the OTP As a payment process providing an interface for inputting a beam, a person of ordinary skill in the art may refer to and / or modify this drawing 14 to perform a mobile phone payment process using the OTP verification information. Various implementation methods (e.g., implementation steps with some steps omitted or changed in order) may be inferred, but the present invention includes all the implementation methods inferred above, and the implementation method shown in FIG. The technical features are not limited only.

Hereinafter, in FIG. 14, the payment system 1310 shown in FIG. 13 is referred to as a “server” for convenience.

Referring to FIG. 14, a user accesses the web server 1305 to purchase tangible / intangible goods, and a communication fee charged to the user mobile phone 1380 for a payment amount corresponding to the purchase price of the goods. When the mobile phone payment means is selected to make a payment (1400), the server relays the web server 1305 directly to the user wired terminal 1300 or through the communication network to which the user wired terminal 1300 is connected. The mobile phone payment interface for selecting a mobile communication company corresponding to the user mobile phone 1380 and inputting a user mobile phone 1380 number and a user social security number to the user wired terminal 1300 is processed (1405), and the user wired terminal 1300. Check whether the mobile communication company selection information and the user mobile phone 1380 number and the user social security number information received through the mobile payment interface are received from (1410).

If the mobile communication company selection information, the user mobile phone 1380 number and the user social security number information is received from the user wired terminal 1300 (1415), the server stores the user mobile phone 1380 number stored in the member D / B (not shown) And the user resident registration number information and the received user's mobile phone 1380 number and the user's resident registration number information are compared to authenticate the user who requested the mobile phone micropayment (1420).

If the user is not authenticated (1425), the server generates a user authentication error and transmits it to the user wired terminal 1300 (or user mobile phone 1380) and the web server 1305 (1430).

On the other hand, if the user is authenticated (1425), the server generates an OTP for authenticating the mobile phone micropayment to the user mobile phone 1380 through the OTP agent information stored in the storage medium 1370 in association with the mobile phone number Check whether the OTP agent is provided (1435).

If the user mobile phone 1380 is not equipped with the OTP agent (1440), the server processes the OTP agent to be provided to the user mobile phone 1380 through the process shown in FIG.

On the other hand, if the user mobile phone 1380 is equipped with the OTP agent (1440), the server generates an OTP generated through the OTP agent provided in the user mobile phone 1380, and OTP 'to be compared with the OTP An OTP input interface for inputting OTP verification information for validating is provided to the user wired terminal 1300 (1445).

FIG. 15 is a diagram illustrating a process of providing an OTP agent to a user mobile phone 1380 according to a fourth embodiment of the present invention.

In more detail, FIG. 15 includes a callback UEL for providing the OTP agent to the user mobile phone 1380 when the user mobile phone 1380 is not equipped with the OTP agent in the process illustrated in FIG. 14. A process of processing a message to be transmitted to the user mobile phone 1380 and showing the process of providing the OTP agent to the user mobile phone 1380 through the message, a person having ordinary skill in the art to which the present invention pertains. If not, various implementation methods (for example, some steps may be omitted or reordered) may be inferred from the process of providing an OTP agent to the user mobile phone 1380 by referring to and / or modifying the drawing 15. It will be appreciated that the present invention includes all implementation methods inferred, and only the implementation method shown in FIG. The technical features are not limited.

In the following figure 15, the payment system 1310 shown in FIG. 13 is referred to as " server " for convenience.

Referring to FIG. 15, when the OTP agent is not installed in the user mobile phone 1380 in the process illustrated in FIG. 14, the server includes a callback UEL for downloading the OTP agent to the user mobile phone 1380. The user's mobile phone 1380 receiving the message requests the OTP agent to a server (or an OTP server) corresponding to the callback UE in response to the message being transmitted through the mobile communication network (1500).

The server (or OTP server) corresponding to the callback UEL provides the OTP agent to the user mobile phone 1380 (1505).

If the OTP agent is provided to the user mobile phone 1380 (1510), the user mobile phone 1380 inputs a user password or user personal identification number for generating an OTP through the OTP agent, and the input user A password or a user identification number may be encrypted and stored in a memory provided in the mobile phone, or stored in a USIM provided in the user mobile phone 1380 and registered (1515), and compared with an OTP generated by the OTP agent. Input (or confirm) OTP verification information for verifying the validity of generating OTP 'and transmit it to the server (1520), and the server checks the user's mobile phone 1380 number that transmitted the OTP verification information, and The user's mobile phone 1380 and the OTP verification information are stored in the storage medium 1370 (1525).

16 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to the fourth embodiment of the present invention.

In more detail, in FIG. 16, after the OTP input interface is provided to the user wired terminal 1300 in the process illustrated in FIG. 14, the OTP and OTP verification information input through the OTP input interface are received and the OTP is received. After the verification information is read and the validity of the OTP 'generation is confirmed, a process of authenticating payment validity by verifying payment validity compared with the received OTP after generating the OTP' is shown. Those skilled in the art can refer to and / or modify this drawing 16 to infer various implementation methods (e.g., implementation steps with some steps omitted or changed in order) for the mobile phone payment approval process using the OTP verification information. It should be understood that the present invention includes all implementation methods inferred by the above, and only the implementation method illustrated in FIG. The technical features are not limited.

Hereinafter, in FIG. 16, the payment system 1310 shown in FIG. 13 is referred to as a "server" for convenience.

Referring to FIG. 16, after the OTP input interface is provided to the user wired terminal 1300 in the process illustrated in FIG. 14, the server inputs an OTP input from the user wired terminal 1300 through the OTP input interface. Check whether the OTP verification information is received (1600).

If the OTP and the OTP verification information are received (1605), the server compares the received OTP verification information with the OTP verification information stored in the storage medium 1370 to confirm the validity of OTP 'generation (1610).

If the validity of the OTP 'generation is not confirmed (1615), the server generates payment error information and transmits the generated payment error information to the user wired terminal 1300 (or user mobile phone 1380) and the web server 1305 (1620). .

On the other hand, if the validity of the OTP 'generation is confirmed (1615), the server checks the OTP generation information for generating OTP' to be compared with the received OTP (1625), and a fixed seed for generating OTP 'from the OTP generation information A value and a dynamic seed value are determined (1630), and the OTP 'is generated using the determined fixed seed value and the dynamic seed value and compared with the received OTP to authenticate the payment validity (1635).

If the payment validity is not authenticated (1640), the server generates payment error information and transmits the payment error information to the user wired terminal 1300 (or the user mobile phone 1380) and the web server 1305 (1620).

If the payment validity is authenticated (1640), the server generates the payment validity verification result and transmits the result to the user wired terminal 1300 (or user mobile phone 1380) and the web server 1305 (1645). In response to the payment validity checking result, the payment approval through the communication fee of the user mobile phone 1380 is processed (1650).

According to the method of the present invention, the server confirms the payment amount to be charged to the communication fee of the user mobile phone 1380 from the web server 1305, and the user mobile phone 1380 in association with the mobile communication company server 1375 It is preferable to approve the payment through the communication charges imposed on the mobile phone by querying the payment limit for the number and comparing the payment amount with the payment limit.

According to the present invention, when the user wired terminal inputs and transmits mobile carrier selection information corresponding to the user's mobile phone and user's mobile phone number and user's social security number information, the OTP (One Time Password) agent is transmitted to the user's mobile phone after user authentication through the mobile carrier. Is provided, and provides an interface for inputting OTP generated through the user mobile phone and preset OTP verification information to the user wired terminal only when the OTP agent is mounted on the user mobile phone. When the OTP and the OTP verification information are input and transmitted, the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, and only when the OTP' generation validity is verified, the OTP and the OTP verification information are associated with the user's mobile phone number. User wired end by generating OTP 'through OTP generation information By approving the payment of the mobile phone by comparing with the OTP received from the user, even if the mobile phone acquirer knows the personal information of the mobile phone user, the OTP agent provided in the mobile phone can be operated through a password (or a personal identification number). If it is not possible, there is an advantage in blocking the unauthorized payment of the mobile phone payment by preventing the mobile phone payment is provided.

According to the present invention, by inputting the OTP verification information preset in the mobile phone payment process, if the OTP 'generation validity is not confirmed through the OTP verification information so as not to generate the OTP' to be compared with the received OTP Therefore, there is an advantage in blocking the unauthorized payment of the mobile phone in advance.

Claims (11)

Processing a user wired terminal connected to the small payment target website so that a mobile communication company corresponding to the user's mobile phone and an interface for inputting the user's mobile phone number and user social security number are provided; Receiving mobile communication company selection information and user mobile phone number and user social security number information corresponding to the user mobile phone through the interface; Transmitting user mobile phone number and user social security number information to a mobile communication company server corresponding to the received mobile communication company selection information; Checking whether a user authentication result corresponding to a user mobile number and a social security number verification result and an OTP (One Time Password) agent are already installed in the user mobile phone through a mobile communication company server; If an OTP agent is not already installed in the user's mobile phone, processing a message including a CallBack URL for downloading an OTP agent to the user's mobile phone; If the OTP agent is pre-installed in the user's mobile phone or the OTP agent is downloaded and installed in the user's mobile phone, the OTP generated by the OTP agent provided in the user's mobile phone by the user wired terminal and the OTP 'to be compared with the OTP are generated. Processing to provide an interface for inputting OTP verification information for the service; Receiving OTP and OTP verification information input through the interface from the user wired terminal; Comparing the received OTP verification information with previously stored OTP verification information in a storage medium to verify the validity of OTP 'generation to be compared with the OTP; Verifying OTP generation information for generating OTP 'to be compared with the OTP when the OTP' generation validity is verified; The fixed seed value and the dynamic seed value for generating OTP 'are determined from the OTP generation information. The OTP' is generated using the determined seed value and the dynamic seed value, and the received OTP and the generated OTP 'are generated. Confirming the micropayment validity for the mobile number by comparing;  And transmitting the micropayment validity verification result for the mobile number to the micropayment target website. Processing a user wired terminal connected to the small payment target website so that a mobile communication company corresponding to the user's mobile phone and an interface for inputting the user's mobile phone number and user social security number are provided; Receiving mobile communication company selection information and user mobile phone number and user social security number information corresponding to the user mobile phone through the interface; Transmitting user mobile phone number and user social security number information to a mobile communication company server corresponding to the received mobile communication company selection information; Checking whether a user authentication result corresponding to a user mobile number and a social security number verification result and an OTP (One Time Password) agent are already installed in the user mobile phone through a mobile communication company server; If an OTP agent is not already installed in the user's mobile phone, processing a message including a CallBack URL for downloading an OTP agent to the user's mobile phone; If the OTP agent is pre-installed in the user's mobile phone or the OTP agent is downloaded and installed in the user's mobile phone, the OTP generated by the OTP agent provided in the user's mobile phone by the user wired terminal and the OTP 'to be compared with the OTP are generated. Processing to provide an interface for inputting OTP verification information for the service; Receiving OTP and OTP verification information input through the interface from the user wired terminal; Transmitting the received OTP and OTP verification information to an OTP server of an OTP agent provider provided in the user's mobile phone; Receiving a comparison result of the OTP generated from the OTP server based on the OTP verification information and the OTP generated in the user's mobile phone; Transmitting the micropayment validity verification result corresponding to the comparison result of the OTP 'and the OTP generated by the user's mobile phone to the micropayment target website; and the mobile phone micropayment processing using the OTP verification information, comprising: Way. Processing a user wired terminal connected to the small payment target website so that a mobile communication company corresponding to the user's mobile phone and an interface for inputting the user's mobile phone number and user social security number are provided; Receiving mobile communication company selection information and user mobile phone number and user social security number information corresponding to the user mobile phone through the interface; The user authentication result corresponding to the check result of the user's mobile phone number and the user's resident registration number is checked through the mobile communication company server corresponding to the received mobile communication company selection information, and an OTP (One Time Password) agent is provided to the user's mobile phone through an OTP server. Checking whether it is installed; If an OTP agent is not already installed in the user's mobile phone, processing a message including a CallBack URL for downloading an OTP agent to the user's mobile phone; If the OTP agent is pre-installed in the user's mobile phone or the OTP agent is downloaded and installed in the user's mobile phone, the OTP generated by the OTP agent provided in the user's mobile phone by the user wired terminal and the OTP 'to be compared with the OTP are generated. Processing to provide an interface for inputting OTP verification information for the service; Receiving OTP and OTP verification information input through the interface from the user wired terminal; Transmitting the received OTP and OTP verification information to the OTP server; Receiving a comparison result of the OTP generated from the OTP server based on the OTP verification information and the OTP generated in the user's mobile phone; Transmitting the micropayment validity verification result corresponding to the comparison result of the OTP 'and the OTP generated by the user's mobile phone to the micropayment target website; and the mobile phone micropayment processing using the OTP verification information, comprising: Way. Processing a user wired terminal connected to the small payment target website so that a mobile communication company corresponding to the user's mobile phone and an interface for inputting the user's mobile phone number and user social security number are provided; Receiving mobile communication company selection information and user mobile phone number and user social security number information corresponding to the user mobile phone through the interface; Confirming whether a user authentication result corresponding to the received user mobile number and user resident registration number confirmation result and an OTP agent are already installed in the user mobile phone; If an OTP agent is not already installed in the user's mobile phone, processing a message including a CallBack URL for downloading an OTP agent to the user's mobile phone; If the OTP agent is pre-installed in the user's mobile phone or the OTP agent is downloaded and installed in the user's mobile phone, the OTP generated by the OTP agent provided in the user's mobile phone by the user wired terminal and the OTP 'to be compared with the OTP are generated. Processing to provide an interface for inputting OTP verification information for the service; Receiving OTP and OTP verification information input through the interface from the user wired terminal; Comparing the received OTP verification information with previously stored OTP verification information in a storage medium to verify the validity of OTP 'generation to be compared with the OTP; Verifying OTP generation information for generating OTP 'to be compared with the OTP when the OTP' generation validity is verified; The fixed seed value and the dynamic seed value for generating OTP 'are determined from the OTP generation information. The OTP' is generated using the determined seed value and the dynamic seed value, and the received OTP and the generated OTP 'are generated. Confirming the micropayment validity for the mobile number by comparing;  And transmitting the micropayment validity verification result for the mobile number to the micropayment target website. 5. The method according to any one of claims 1 to 4, Querying a micropayment limit for the user's mobile number; And And processing the approval for the micropayment in response to the micropayment limit inquiry result. The mobile payment micropayment processing method using the OTP verification information, characterized in that it further comprises. 5. The method according to any one of claims 1 to 4, And processing the small payment amount so as to be charged to the user's mobile phone usage fee. A computer-readable recording medium having recorded thereon a program for executing the method of any one of claims 1 to 4. A storage medium for storing the user's mobile phone number, the OTP generation information, and the OTP verification information in association with each other; And When the mobile carrier selection information, the user mobile phone number and the user social security number information are received from the user wired terminal connected to the small payment target website, the user mobile phone number and the user social security number are confirmed through the mobile carrier server corresponding to the received mobile carrier selection information. Check whether the user authentication result corresponding to the result and the OTP (One Time Password) agent are preinstalled in the user's mobile phone. If the OTP agent is not preinstalled in the user's mobile phone, download the OTP agent to the user's mobile phone. If a message including a CallBack URL is transmitted, the OTP agent is pre-installed on the user's mobile phone or the OTP agent is downloaded and installed on the user's mobile phone.A process for inputting OTP generated by OTP and OTP verification information for generating OTP 'to be compared with the OTP is provided to receive OTP and OTP verification information input through the interface, and the received OTP verification information and Compare OTP verification information previously stored in the storage medium to verify the OTP 'generation validity to be compared with the OTP, and if the OTP' generation validity is verified, OTP 'is generated through the OTP generation information, and the received OTP Comparing the generated OTP 'and the server for verifying the validity of the micropayment for the mobile phone number; Mobile phone micropayment processing system using the OTP verification information, characterized in that comprises a. When the mobile carrier selection information, the user mobile phone number and the user social security number information are received from the user wired terminal connected to the small payment target website, the user mobile phone number and the user social security number are confirmed through the mobile carrier server corresponding to the received mobile carrier selection information. Check whether the user authentication result corresponding to the result and the OTP (One Time Password) agent are preinstalled in the user's mobile phone. If the OTP agent is not preinstalled in the user's mobile phone, download the OTP agent to the user's mobile phone. If a message including a CallBack URL is transmitted, the OTP agent is pre-installed on the user's mobile phone or the OTP agent is downloaded and installed on the user's mobile phone.A process for inputting OTP generated by OTP and OTP verification information for generating OTP 'to be compared with the OTP is provided to receive the OTP and OTP verification information input through the interface, and the received OTP and OTP verification. A server for transmitting information to an OTP server of an OTP agent provider provided in the user's mobile phone; And The OTP verification information is compared with the OTP verification information previously stored in the storage medium to verify the validity of OTP 'generation to be compared with the OTP. When the OTP' generation validity is verified, the OTP generation information is checked, and the OTP generation information. Determine a fixed seed value and a dynamic seed value for generating an OTP ', generate the OTP' using the determined seed value and the dynamic seed value, and compare the received OTP with the generated OTP ' Cell phone micropayment processing system using OTP verification information, characterized in that it comprises a; OTP server for checking the micropayment validity for the number. An OTP server for providing and managing an OTP agent to a user's mobile phone; And When the mobile carrier selection information, the user mobile phone number and the user social security number information are received from the user wired terminal connected to the small payment target website, the user mobile phone number and the user social security number are confirmed through the mobile carrier server corresponding to the received mobile carrier selection information. If the user authentication result corresponding to the result is checked, and whether the OTP (One Time Password) agent is already installed in the user's mobile phone through the OTP server, and if the OTP agent is not already installed in the user's mobile phone, If a message including a callback URL for downloading an OTP agent is transmitted to the user's mobile phone, and the OTP agent is pre-installed on the user's mobile phone or the OTP agent is downloaded and installed on the user's mobile phone, user Process to provide an interface for inputting OTP generated by the OTP agent provided in the phone and OTP verification information for generating OTP 'to be compared with the OTP to receive OTP and OTP verification information input through the interface, And transmit the received OTP and OTP verification information to the OTP server. The OTP server, The OTP verification information is compared with the OTP verification information previously stored in the storage medium to verify the validity of OTP 'generation to be compared with the OTP. When the OTP' generation validity is verified, the OTP generation information is checked, and the OTP generation information. Determine a fixed seed value and a dynamic seed value for generating an OTP ', generate the OTP' using the determined seed value and the dynamic seed value, and compare the received OTP with the generated OTP ' Checking the micropayment validity for the number, and the micropayment processing system using the OTP verification information, characterized in that for transmitting the comparison result of the OTP to the server. A storage medium for storing the user's mobile phone number, OTP generation information, and OTP verification information in association with each other; And When the carrier selection information, the user's mobile phone number, and the user's social security number information are received from the user's wired terminal connected to the small payment target website, the user authentication result corresponding to the received user's mobile phone number and the user's social security number verification result and the user's mobile phone are received. Check whether the One Time Password (OTP) agent is already installed, and if the OTP agent is not already installed in the user's mobile phone, process a message including a CallBack URL for downloading the OTP agent to the user's mobile phone. When the OTP agent is already installed in the user's mobile phone or the OTP agent is downloaded and installed in the user's mobile phone, the OTP generated by the OTP agent provided in the user's mobile phone by the user wired terminal and the OTP to be compared with the OTP. OT for produce Process to provide an interface for inputting P verification information to receive OTP and OTP verification information input through the interface, and compares the received OTP verification information with OTP verification information stored in a storage medium to compare with the OTP. OTP 'generation validity to be verified, and when the OTP' generation validity is verified, the OTP generation information is checked, and the fixed seed value and the dynamic seed value for generating OTP 'are generated from the OTP generation information, and the determined fixed value is determined. OTP 'using the seed value and the dynamic seed value, the server to check the validity of the micropayment for the mobile number by comparing the received OTP and the generated OTP'; OTP comprising a Mobile payment settlement system using verification information.

Images