KR20140001442A - System, apparatus, method and computer readable recording medium for paymenting on the mobile terminal by the short message service - Google Patents

Abstract

The present invention relates to a payment processing system in a mobile terminal using a short message service, capable of automatically performing authentication by an application installed in the mobile terminal, without a user having to directly input an authentication number received through the short message service. The payment processing system comprises: a mobile terminal which has a payment application, transmits payment request information by calling the installed payment application according to payment requests made through a browser connected to a service server, and requests payment to the service server by the payment application; a service server which generates an authentication number according to the payment requests from the mobile terminal and transmits the generated authentication number to a mobile carrier server to which the mobile terminal is subscribed to; and a mobile carrier server which receives the authentication number from the service server, and transmits to the mobile terminal, a short message including the authentication number received from the service server, when confirming the subscriber information of the mobile terminal requesting the payment and determining normal authentication. The payment application of the mobile terminal proceeds with an authentication procedure by confirming the authentication number by parsing the short message transmitted from the mobile carrier server and transmitting the confirmed authentication number to the service server. [Reference numerals] (310) Mobile terminal (Payment application); (320) Service server (Payment processing module); (330) Mobile carrier server; (AA) User; (BB) User input information; (C1,C2,C3) Personal information; (D1,D2,D3) Terminal information; (EE) Encryption; (FF) PIN number; (G1,G2) Payment information; (HH) Authentication; (II) Subscriber DB; (JJ) Generation; (K1,K2,K3,K4) Authentication number; (L1,L2,L3,L4) Payment key value; (MM) Comparison; (NN) Confirmation; (OO.PP) Payment; (QQ) SMS parsing

Description

Payment processing system, device, method and computer readable recording medium in mobile terminal using short message service TECHNICAL FIELD

The present invention relates to a payment processing system in a mobile terminal using a short message service. More particularly, the present invention relates to an authentication number received through a short message service in a payment system using a short message service of a mobile terminal. The present invention relates to a payment processing system, an apparatus, a method and a computer-readable recording medium in a mobile terminal using a short message service capable of automatically performing authentication processing by an application installed in the mobile terminal without directly inputting the data.

Today, the widespread use of the Internet has led to the rapid development of wireless mobile communication technology beyond the fixed line, and in the real world, information retrieval on the Internet through portable terminals such as mobile phones, PDAs, and hand- It became possible regardless of time and place.

In addition, as the performance of recently launched smartphones has improved, users are moving a lot from general mobile phones to smart phones. A smart phone is an intelligent mobile phone that adds computer support to a mobile phone. It is faithful to the mobile phone function, but adds a personal digital assistant (PDA) function, Internet function, and video playback function. Etc. are provided to provide a more convenient interface. In addition, with the support of wireless Internet function, it is connected to internet and computer, and also functions as a terminal such as e-mail, web browsing, fax, banking, and game. On the other hand, smart phones have a standard operating system (OS) or a dedicated operating system to accommodate various functions. As described above, since various functions can be implemented through various user terminals such as a smart phone, various dedicated application programs and contents that are driven in the user terminal are being developed.

Meanwhile, as electronic commerce through online shopping malls is activated, electronic payments are being activated online, and various types of payment systems have been developed and serviced. Electronic commerce is a transaction of goods or services, in whole or in part, by electronic means such as the exchange of electronic documents. A customer can connect to the Internet such as a mobile phone or a computer in a virtual store ("e-shopping mall"). When they find a product they want to purchase, they will send a purchase intention to the electronic shopping mall, and pay the price using a credit card, prepaid card, and online remittance.

However, in the conventional e-commerce payment method, there is anxiety that the card information may be exposed to a third party with illegal intention, since the user directly inputs the credit card serial number and password when using a credit card. In case of using a prepaid card, the user must purchase the card in advance, and if the card with a balance is lost, the remaining amount cannot be exchanged for cash. It is inconvenient to deposit the purchase price to the account of the electronic shopping mall by visiting in person or by using telebanking or internet banking.

Therefore, in order to solve this inconvenience, a payment system using a mobile terminal has been developed, and in particular, a payment method through a short message service (SMS) basically provided in a mobile terminal is widely used. As a technology regarding an online payment method through a short message service in the mobile terminal, Korean Patent Publication No. 10-0344114, "Electronic payment approval method and system using a short message service (Mobilians, Inc.)" (document 1) Disclosed is a method for easily performing user authentication for payment using an authentication number transmitted through the.

More specifically, the document 1, when a user selects a mobile phone payment and inputs relevant information when paying at an online shopping mall, generates a temporary number for authentication in the mobile communication system and transmits the temporary number to the user terminal in the form of a short message. At this time, when the user enters the temporary authentication number included in the short message in the payment window within a predetermined time, the authentication is performed by comparing the input authentication number with the generated authentication number.

Meanwhile, as the number of smartphone users increases, payment through web pages browsed on a smartphone has increased in recent years.

1 and 2 are diagrams showing a payment method using a short message service in a conventional mobile terminal.

Referring to FIG. 1, when a user 100 drives a web browser by a browser driver 111 installed in a mobile terminal 110 (eg, a smart phone), and accesses a service server 120, the mobile terminal 110 is connected to the mobile terminal 110. The web page is displayed on the screen. At this time, if you want to proceed with the payment using the short message service through the service server 120, the user enters personal information, mobile phone subscription information, etc. through the payment page provided by the service server 120 and press the authentication button Choose. The input information (ie, personal information, mobile phone subscription information, payment information, etc.) is transmitted from the mobile terminal 110 to the service server 120 according to the selection of the authentication button, and requests authentication.

The service server 120 makes an authentication request for the mobile terminal 110 to a corresponding mobile carrier server 130 to which the mobile terminal 110 is subscribed, and the mobile terminal 110 in the mobile carrier server 130. After confirming the subscription information and the availability of the payment, and the like, and transmits a short message including the authentication number to the corresponding mobile terminal (110).

Meanwhile, the SMS processing unit 112 of the mobile terminal 110 receives and processes the short message transmitted from the mobile telecommunication company server 130 and displays the received short message on the screen according to a user's request. At this time, the user confirms the authentication number included in the short message, and performs authentication by directly inputting the confirmed authentication number into the authentication number input box of the payment browser.

Referring to the conventional payment procedure in more detail as follows.

2 is a signal flow diagram illustrating a payment procedure using a short message service in a conventional mobile terminal. Referring to FIG. 2, when the mobile terminal 110 executes a browser (S201) and accesses the service server 120 (S202), a web page provided by the corresponding service server 120 is displayed on the mobile terminal 110. do. At this time, when the payment is performed using the short message service, an information input window is provided to input information for payment on a browser, and the user inputs information for payment (eg, personal information, mobile phone subscription information, etc.) in the information input window. Is input (S203), and authentication is requested (S204) by selecting the authentication button.

Accordingly, the mobile terminal 110 transmits the personal information and the terminal information (eg, mobile phone subscription information) and payment related information input by the user to the service server 120 (S205). The service server 120 receives the information according to the payment request and generates an authentication number (S206). Next, the service server 120 transmits the personal information and the terminal information together with the generated authentication number to the corresponding mobile communication company server 130 of the mobile terminal 110 (S207).

The mobile communication company server 130 compares the personal information and the terminal information received from the service server 120 with the information stored in the subscriber database and performs authentication (S208). When the confirmation of the subscriber is completed normally, the authentication number provided from the service server 120 is included in the short message and transmitted to the mobile terminal 110 (S209).

The mobile terminal 110 receives the transmitted short message (S210), and the user directly checks the authentication number included in the received short message. Then, enter the confirmed authentication number in the corresponding input field of the input window for the payment (S211) and select the confirmation. The input authentication number is transmitted from the mobile terminal 110 to the service server 120 again, and the service server 120 checks whether the authentication number transmitted from the mobile terminal 110 and the authentication number generated earlier are the same. Authentication is performed by checking whether or not (S213).

If the authentication number is normally received as a result of the check, it is determined that the authentication for the mobile terminal 110 is normally completed, and makes a payment request (S214) to the mobile telecommunication company server 130 again. In response to the payment request, the mobile telecommunication company server 130 performs the payment processing (S215) for the user's account of the mobile terminal 110 by the requested amount.

As such, when the payment processing is completed in the mobile communication company server 130, the payment processing details according to the payment completion is transferred to the service server 120 (S216), and the service server 120 or the mobile communication company server 130 is provided. Also transmits the payment processing history to the mobile terminal 110. The mobile terminal 110 receives the payment processing history and displays the processing result on the screen (S218).

On the other hand, the conventional payment method using a short message is inconvenient that a user directly checks the authentication number received through the short message and inputs it in the corresponding input field of the input window for payment again.

In addition, each payment request, the user is inconvenient to input personal information (for example, social security number), terminal-related information (for example, mobile phone number, subscribed mobile carrier type, etc.).

Therefore, there is a need for a method for enabling easy and secure authentication and payment without a user inputting information when using a short message in a mobile terminal.

[Document 1] Republic of Korea Patent Publication No. 10-0344114 Electronic payment approval method and system using a short message service (Mobilians Co., Ltd.) 2002.06.28

An object of the present invention is to reduce the inconvenience of the user's text message confirmation and input by automatically accessing and processing the text message received by the payment application installed in the mobile terminal when payment processing using the text message in the mobile terminal; The present invention provides a payment processing system, apparatus, method and computer-readable recording medium in a mobile terminal using a short message service.

An object of the present invention is to automatically access and process the text message by the payment application installed on the mobile terminal when the payment processing using the text message in the mobile terminal, by including a payment key issued separately in the text message A payment processing system, apparatus, method, and computer-readable recording medium in a mobile terminal using a short message service capable of detecting an accurate payment text message are provided.

In addition, another object of the present invention is to encrypt and store the information input by the user by the payment application installed on the mobile terminal during the payment processing using a text message in the mobile terminal to facilitate payment processing without additional information when re-payment. A payment processing system, apparatus, method and computer-readable recording medium in a mobile terminal using a short message service are provided.

In addition, another object of the present invention is to automatically access and process the text message by the payment application installed on the mobile terminal when the payment processing using the text message in the mobile terminal, the mobile terminal by the push message transmitted in case of emergency The present invention provides a payment processing system, apparatus, method, and computer-readable recording medium in a mobile terminal using a short message service capable of destroying personal information or payment information.

In order to achieve the above-described object of the present invention and to achieve the specific effects of the present invention described below, the characteristic structure of the present invention is as follows.

According to an aspect of the present invention, the payment processing system in a mobile terminal using a short message service, the payment application is installed, the payment request information by calling the installed payment application in response to a payment request through a browser connected to the service server A mobile terminal for transmitting a payment request to the service server by the payment application; A service server generating an authentication number according to a payment request from the mobile terminal and transmitting the generated authentication number to a corresponding mobile communication company server to which the mobile terminal is subscribed; And receiving the authentication number from the service server, confirming the subscriber information of the mobile terminal requesting the payment, and authenticating the information, and including the authentication number received from the service server in the content of the short message to the mobile terminal. And a mobile communication company server, wherein the payment application of the mobile terminal parses the short message sent from the mobile communication company server to confirm an authentication number, and transmits the confirmed authentication number to the service server. Proceed.

Preferably, the payment application generates an input window for inputting information for payment according to a call of the browser.

Preferably, the information input for the payment is at least one selected from personal information, terminal information, and PIN information.

Preferably, the terminal information is at least one selected from a terminal telephone number, a terminal serial number, a medium access control (MAC) address on a network, terminal subscription information, and carrier information.

Preferably, the service server further generates a payment key mapped with the authentication number, and transmits the generated payment key to the mobile terminal and the mobile communication company server, the mobile communication server server is received from the service server The payment key is included in the short message together with the mapped authentication number and transmitted.

Preferably, the mobile terminal receives a payment key from the service server, and the payment key received from the service server the payment key included in the short message sent from the mobile communication company server in the payment application of the mobile terminal. By comparing with, identify the authentication number included in the short message.

Preferably, the payment application encrypts the personal information and the terminal information among the information input for the payment by the PIN information and stores it in a memory, and inputs the PIN information from the user when a user requests a repayment. Receives the payment by decrypting the personal information and the terminal information stored in the memory.

Preferably, the service server is requested to discard the information stored in the memory from the user logged in to the service server, and transmits a push message for destruction to the payment application of the mobile terminal in accordance with the request, The payment application automatically destroys the information stored in the memory according to the transmitted push message.

Preferably, the service server is requested by the user logged in to the service server to discard the information stored in the memory, the mobile terminal requesting the payment in response to the payment request from a specific mobile terminal is the corresponding mobile terminal In this case, a push message for destruction is transmitted to the payment application of the mobile terminal, and the payment application automatically destroys the information stored in the memory according to the transmitted push message.

According to another aspect of the present invention, a payment processing device using a short message service in a mobile terminal, the web page according to the connection of the mobile terminal, authentication request receiving unit for receiving payment request information from the mobile terminal; Authentication number generation unit for generating an authentication number in response to a payment request from the mobile terminal; An authentication number transmission unit for transmitting the generated authentication number to a corresponding mobile communication company server to which the mobile terminal is subscribed; After the mobile terminal authentication of the mobile communication company server, the mobile terminal receives the authentication number automatically parsed by parsing the authentication number included in the text message transmitted from the mobile communication company server, the authentication number generated by the authentication number generator Authentication number verification unit to compare with; And a payment request for requesting payment for the mobile terminal to the mobile communication company server when the authentication number automatically transmitted from the mobile terminal and the authentication number generated by the authentication number generation unit match as a result of the confirmation of the authentication number confirmation unit. And a payment application installed in the mobile terminal, calling the installed payment application according to a payment request through a browser connected to the service server, and transferring payment request information to the service server by the payment application. Request a payment.

According to another aspect of the present invention, a payment processing method using a short message service in a mobile terminal, wherein each step performed in the payment processing apparatus provides a web page according to the connection of the mobile terminal in an authentication request receiving unit; Receiving payment request information from a mobile terminal; Generating an authentication number in accordance with a payment request from the mobile terminal in an authentication number generation unit; Transmitting, by an authentication number transmitter, the generated authentication number to a corresponding mobile communication company server to which the mobile terminal is subscribed; After the mobile terminal authentication of the mobile communication company server, the mobile terminal receives the authentication number automatically parsed by parsing the authentication number included in the text message transmitted from the mobile communication company server, the authentication number generated by the authentication number generator Comparing with the authentication number confirmation unit; And when the authentication number automatically transmitted from the mobile terminal is identical with the authentication number generated by the authentication number generator, as a result of the confirmation of the authentication number confirmation unit, payment from the authentication number confirmation unit to the mobile communication company server for the mobile terminal. Requesting a payment application by calling the installed payment application according to a payment request through a browser connected to the service server, and transmitting the payment request information by the payment application. Request payment to the service server.

Meanwhile, the information for receiving the payment processing method using the short message service in the mobile terminal may be stored in a recording medium readable by a server computer. Such a recording medium includes all kinds of recording media in which programs and data are stored so that they can be read by a computer system. Examples include ROMs (Read Only Memory), Random Access Memory, CD (Compact Disk), DVD (Digital Video Disk) -ROM, magnetic tape, floppy disk, optical data storage device, (For example, transmission over the Internet). Such a recording medium may also be distributed over a networked computer system so that computer readable code in a distributed manner can be stored and executed.

As described above, according to the present invention, there is an advantage in that the mobile terminal can reduce the inconvenience of having to check and re-enter the received text message. In addition, for this purpose, there is an advantage of reducing the inconvenience of processing by switching the payment input window and the character input window multiple times in a mobile terminal with limited display size and use.

In addition, according to the present invention, when the payment process using the text message in the mobile terminal automatically access and process the text message by the payment application installed on the mobile terminal, and to identify the text message by a separately issued payment key This allows the accurate identification and automatic processing of short messages.

In addition, according to the present invention, by encrypting and storing the information input by the first user during the payment processing using a text message in the mobile terminal, it is possible to reduce the additional inconvenience information input procedure by decrypting and using it when re-payment. .

In addition, the personal information can be protected by forcibly destroying the personal information stored in the mobile terminal by using a push message from a login-based service server or the like in case of loss of the mobile terminal in which the payment application is installed according to the present invention. There is an advantage.

1 is a view showing a payment system using a short message service in a conventional mobile terminal.
2 is a signal flow diagram illustrating a payment procedure using a short message service in a conventional mobile terminal.
3 is a diagram illustrating a payment system using a short message service in a mobile terminal according to the present invention.
4 is a diagram illustrating a processing relationship of information used in a payment system according to an embodiment of the present invention.
5 is a block diagram showing a detailed structure of a payment application according to an embodiment of the present invention.
6 is a block diagram showing a detailed structure of a payment processing module according to an embodiment of the present invention.
7 is a signal flow diagram illustrating a payment procedure using a short message service according to an embodiment of the present invention.
8 is a signal flow diagram illustrating a payment procedure using a short message service upon re-approval according to an embodiment of the present invention.
9 is a signal flow diagram illustrating a personal information destruction procedure in payment using a short message service according to an embodiment of the present invention.
10 is a signal flow diagram illustrating a procedure for destroying personal information in payment using a short message service according to another embodiment of the present invention.
11 is a diagram illustrating an information input screen by a payment application installed in a mobile terminal according to an embodiment of the present invention.
12 is a diagram illustrating an example of a short message including a payment key value and an authentication number received at a mobile terminal according to an embodiment of the present invention.

DETAILED DESCRIPTION OF THE INVENTION The following detailed description of the invention refers to the accompanying drawings that show, by way of illustration, specific embodiments in which the invention may be practiced. These embodiments are described in sufficient detail to enable those skilled in the art to practice the invention. It should be understood that the various embodiments of the present invention are different, but need not be mutually exclusive. For example, certain features, structures, and characteristics described herein may be implemented in other embodiments without departing from the spirit and scope of the invention in connection with an embodiment. It is also to be understood that the position or arrangement of the individual components within each disclosed embodiment may be varied without departing from the spirit and scope of the invention. Accordingly, the following detailed description is not to be taken in a limiting sense, and the scope of the present invention is defined only by the appended claims, along with the full range of equivalents to which such claims are entitled. In the drawings, like reference numerals refer to the same or similar functions throughout the several views.

The present invention is to access the text message received by the payment application installed on the mobile terminal when the payment process using the text message in the mobile terminal automatically transmits to the service server to process the inconvenience of checking and entering the user's text message We propose a payment processing system in a mobile terminal using a short message service. At this time, in order to accurately identify the text message in the payment application according to an embodiment of the present invention, a separate payment key is issued and included in the text message and transmitted.

In addition, according to an embodiment of the present invention, various personal information or terminal information input at the time of the first payment is encrypted and stored by the payment application program, and after the next payment, the separate information by the user is decrypted and used. Payment can be made without an input process.

In addition, the personal information by forcibly destroying the personal information and payment information stored in the mobile terminal at the service server at the request of the user in case of loss of the mobile terminal according to an embodiment of the present invention. It can solve security problems that may occur due to storage.

In the following detailed description, 'mobile terminal' refers to a mobile terminal such as a smart phone, a laptop computer, a digital broadcasting terminal, an MP3 player, a PDA (personal digital assistant), a portable multimedia player (PMP) Any terminal can be used as long as the terminal has portability or mobility such as navigation. In addition, in the following detailed description, a 'user terminal' is a device of a broader concept including a smart phone, and a desktop computer, a laptop computer, a workstation, a palmtop computer, a personal digital assistant as well as the mobile terminal. assistant Any digital device having a computing capability by mounting a microprocessor such as a PDA, a web pad or the like can be adopted as the user terminal according to the present invention.

In addition, in the following detailed description, 'short message' generally refers to a text message transmitted by a short message service provided by each mobile carrier for mobile terminals (aka, short message service (SMS) service). do. Meanwhile, the present invention may be implemented using not only the short message having a limit on the number of input characters, but also a long message service (LMS), a multimedia message service (MMS) to which a multimedia file can be attached, and the like. have. However, in consideration of the efficient use of information, it is preferable to implement using a short message, and the following describes the present invention as implemented by a short message.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings, so that those skilled in the art can easily carry out the present invention.

Concept of payment system using short message

3 is a diagram illustrating a payment system using a short message service in a mobile terminal according to the present invention. The payment system according to the present invention may include a mobile terminal 310, a service server 320, a mobile communication company server 330, and the like. The mobile terminal 310 also includes a browser driver 311, an SMS processor 313, a storage 314, and the like. The payment application 312 is used to perform a payment using a short message service according to the present invention. It is further provided with. The payment application 312 may be downloaded and installed from the service server 320 or may be installed by various other methods.

The browser driver 311 drives a browser to perform a function of allowing the user 100 to receive a web page from the service server 320 and browse the mobile terminal 310.

The SMS processor 313 is generally installed in the mobile terminal 310 and processes various functions related to text messages, such as transmitting and receiving text messages and displaying the text messages.

On the other hand, the user 100 may be connected to the service server 320 through the browser driver 311 to receive various information, and if you want to perform the payment through the payment page provided from the service server 320 short message service Payment can be selected using. At this time, according to an embodiment of the present invention, the payment page invokes a payment application 312 and delivers payment related information to the payment application 312.

Therefore, the information input and transmission for the payment is not made through the web browser of the service server 320, but may be performed through the payment application 312 installed in the mobile terminal 310 according to the embodiment of the present invention. When the payment information is transferred to the payment application 312 as described above, the payment application 312 may provide an information input window for payment to the user 100. Accordingly, when the user 100 inputs personal information and terminal information for payment and requests authentication, the payment application 312 transfers the input personal information, terminal information and payment information to the service server 320. Transfer processing.

On the other hand, the service server 320 receives a variety of information transmitted from the payment application 312 of the mobile terminal 310 to proceed with the payment process. To this end, the service server 320 may be further provided with a payment processing module 321, by the payment processing module 320, the various payment-related processing in the service server 320 according to an embodiment of the present invention. Perform The payment processing module 321 may be implemented by appropriately changing or modifying an existing payment processing module that is already provided in the service server 320 to provide a function according to the present invention.

That is, the payment processing module 321 of the service server 320 generates an authentication number according to the payment request from the mobile terminal 310, and provides various payment related information (eg, information) input by the user 100. Personal information, terminal information, payment information, etc.) and the generated authentication information to the mobile communication company server 330. The mobile telecommunication company server 330 performs user authentication by comparing information about the user 100, that is, personal information and terminal information with information previously stored in a subscriber database.

When the user authentication in the mobile communication company server 330 is completed, the authentication number provided from the service server 320 is included in the short message and transmitted to the mobile terminal 310 of the corresponding user 100.

On the other hand, a separate payment key according to an embodiment of the present invention to automatically identify the authentication number included in the short message as described above automatically in the payment application 312 of the mobile terminal 310. It is desirable to create and manage. That is, the service server 320 generates a separate payment key and transfers the generated payment key to the mobile terminal 310 and the mobile communication company server 330. In this case, when the mobile communication company server 330 includes the authentication number in a short message and transmits it, the mobile communication company server 330 preferably includes a payment key provided from the service server 320.

As such, when the short message is transmitted from the mobile communication company server 330, the SMS processing unit 313 of the mobile terminal 310 receives the short message, and in this case, the payment application 312 according to the embodiment of the present invention The received short message is identified to confirm the authentication number.

That is, in the related art, the user directly checks the authentication number transmitted through the short message, remembers the corresponding number, and directly inputs it to the payment input window. However, in the present invention, the authentication number included in the received short message is provided. Is automatically identified (or catched) by the payment application 312 to process.

Accordingly, the payment application 312 transmits the authentication number included in the short message back to the service server 320 to confirm that the user is a legitimate user who has normally received the authentication number. The payment processing module 321 of the service server 320 confirms the authentication number by receiving the authentication number from the mobile terminal 310 and matching it with the authentication number generated directly. As a result of the check, when the authentication number is normally received and matched, the mobile communication company server 330 makes a payment processing request, and the mobile communication company server 330 proceeds with the payment processing through the mobile terminal 310 normally. In this case, the mobile telecommunication company server 330 may set a limit that can be paid for a certain period (for example, one month) for each mobile terminal 310, and may be implemented so that payment can be made only within the corresponding limit.

As such, when the payment processing is completed in the mobile communication company server 330, the payment processing result may be transmitted to the service server 320 or the mobile terminal 310.

Meanwhile, as described above, the payment application 312 of the mobile terminal 310 may generate and manage a new payment key to accurately identify the authentication number included in the short message received through the SMS processing unit 313. have. That is, according to the payment request of the mobile terminal 310, the service server 32 generates a separate payment key and provides the generated payment key to the mobile terminal 310 and the mobile communication company server 330, respectively. Accordingly, the mobile telecommunication company server 330 includes the payment key in the short message and transmits the authentication number to the mobile terminal 310 in the short message. The mobile terminal 310 may identify the authentication number included in the short message by the correct authentication number by comparing the payment key provided in advance from the service server 320 and the payment key included in the short message.

Hereinafter, with reference to Figure 4, the processing relationship of the various information generated and transmitted in the payment processing of the payment system according to the present invention will be described in detail.

4 is a diagram illustrating a processing relationship of information used in a payment system according to an embodiment of the present invention. Referring to FIG. 4, a user inputs personal information, terminal information, payment information, and a personal identification number (PIN) number for payment in his mobile terminal 310. In this case, the personal information and the terminal information may be stored encrypted with the input PIN number. Accordingly, when the user re-pays a request, the user may easily make a payment by inputting only payment information without re-entering personal information and terminal information.

That is, when a user requests payment by inputting personal information, terminal information, and payment information, the payment application of the mobile terminal 310 transmits the personal information, terminal information, and payment information input for authentication of the user to the service server 320. To send). The payment processing module of the service server 320 receives the information and generates a unique authentication number mapped to the corresponding payment request. In this case, the payment processing module of the service server 320 requests the user authentication by transmitting the personal information and the terminal information to the corresponding mobile communication company server 330 to which the mobile terminal 310 is subscribed. In addition, the payment processing module of the service server 320 maps the generated authentication number to the personal information and transmits the generated authentication number to the mobile communication company server 330.

The mobile telecommunication company server 330 receives the personal information and the terminal information, and compares with the subscriber information previously stored in the subscriber database to authenticate the user. When the comparison results in the normal authentication of the user, the corresponding authentication number provided from the service server 320 is included in the short message and transmitted to the mobile terminal 310.

Meanwhile, as described above, an additional payment key may be further generated and distributed so that the authentication number included in the short message is automatically and accurately confirmed by the payment application of the mobile terminal 310. That is, the payment processing module of the service server 320 further generates a payment key and provides the generated payment key value to the mobile terminal 310 and the mobile communication company server 330.

Accordingly, the mobile telecommunication company server 330 includes the payment key value mapped to the authentication number received from the service server 320 in the text message including the authentication number and transmits it to the mobile terminal 310. .

The mobile terminal 310 receiving the text message checks the received text message in a payment application, parses the contents of the text message, and confirms the authentication number and payment key included in the text message. . In this case, the payment application compares the payment key value provided from the service server 320 with the payment key value included in the text message and checks the authentication number included in the text message as a normal authentication number. do. As such, the confirmed authentication number is automatically sent back to the service server 320 by the payment application.

The payment processing module of the service server 320 receives the authentication number from the mobile terminal 310, and checks whether or not it matches the authentication number generated directly by the mobile terminal 310. As a result of the check, if the authentication number is generated, the mobile terminal 310 is authenticated as a normal user, and the mobile communication company server 330 requests a payment for the mobile terminal 310. The mobile telecommunication company server 330 performs payment according to the payment request of the service server 320.

Meanwhile, the personal information and the terminal information input by the user to the mobile terminal 310 are encrypted by the PIN number input by the user and stored in the memory. Then, the user does not need to input the same personal information and terminal information again when re-payment, and decrypts and reuses the encrypted information. That is, in response to a user's payment request, the payment application of the mobile terminal 310 may decrypt the personal information and the terminal information encrypted and stored in the storage unit using the PIN number again.

The personal information inputted by the user may be any one or more selected from a name, a telephone number, a social security number, an address, and an ID, or any other personal information. In addition, the terminal information may be any one or more selected from among a terminal telephone number, a terminal serial number, a medium access control (MAC) address on a network, terminal subscription information, and carrier information, or any other information capable of identifying another terminal. It is possible. In addition, the payment information may be any one or more information selected from the item to be purchased, service information, payment amount information, payment means information, payment details, or any other payment related information.

Meanwhile, although the function according to the present invention is illustrated in FIG. 3 by the payment processing module 321 in one service server 320, the present invention is not limited thereto, and a plurality of servers may be used. The server may be integrated and operated, or a function performed by one server may be operated by being divided into a plurality of servers. In addition, some or all of the functions of each server (eg, a login server, an authentication server, etc.) illustrated as separate servers may be operated in part or in whole with other servers. In addition, the same server or databases that perform each function in the service server 320 may be operated by the same operator, or may be operated so that a plurality of operators manage each server and operate in conjunction with each other.

Although not shown in FIG. 3, the mobile terminal 310, the service server 320, and the mobile communication company server 330 may communicate with each other through various wired and wireless communication networks. For example, the communication network may be configured regardless of communication modes such as wired and wireless, and may include a personal area network (PAN), a local area network (LAN), and a metropolitan area network (MAN). ), And various communication networks such as a wide area network (WAN). Also, the communication network may be a known World Wide Web (WWW), or may use a wireless transmission technology used for short-distance communication such as Infrared Data Association (IrDA) or Bluetooth.

In addition, a method of encrypting various information input by the user in the payment application 312 of the mobile terminal 310 with PIN information may be implemented by applying various security techniques, and the present invention is not limited to a specific encryption method. Does not. In addition, when various types of information are transmitted through the communication network, the transmitted information may be encrypted and transmitted by a predetermined encryption method.

Hereinafter, detailed structures of the payment application 312 and the payment processing module 321 according to an embodiment of the present invention will be described with reference to FIGS. 5 and 6.

5 is a block diagram showing a detailed structure of a payment application according to an embodiment of the present invention. Referring to FIG. 5, the payment application 312 may include an information input processing unit 501, an authentication request processing unit 502, a reception message analyzer 503, an authentication number inquiry unit 504, an authentication number transmission unit 505, The payment result receiver 506, the information encryption unit 507, the information decryption unit 508, the information destruction processing unit 509, and the like may be configured.

First, when the user requests a payment through a web browser driven in the mobile terminal 310, the information input processing unit 501 generates a payment processing window for payment processing according to the present invention and receives and processes information from the user. It performs the function. For example, as shown in FIG. 11, a function of converting a payment through a web page into a payment through a payment application (that is, a web to app) may be performed.

The information input processing unit 501 receives personal information, terminal information, PIN information, and the like, and stores them in the mobile terminal 310, and uses the input information in a payment process.

When the user who inputs the information through the information input processing unit 501 requests authentication, the authentication request processing unit 502 converts the input information (eg, personal information, terminal information, payment information, etc.) into a corresponding service server ( Request an authentication by sending it to 320).

When the received message analyzer 503 requests the authentication to the service server 320 and receives the short message from the mobile communication company server 330 by the above-described procedure, the received message analyzer 503 parses the received short message to verify the authentication number and Extracts the payment key value.

The authentication number inquiry unit 504 compares the payment key value provided from the service server 320 and the payment key value extracted by the received message analyzer 503 and, if the comparison result matches, is included in the corresponding text message. Performs a function of checking the extracted authentication number as an authentication number for authenticating the corresponding payment.

The authentication number transmission unit 505 transmits the authentication number confirmed through the authentication number inquiry unit 504 to the service server 320 again.

The payment result receiving unit 506 receives the payment processing result information from the corresponding service server 320 or the mobile carrier server 330 when the above authentication process is normally completed, and stores or displays it on the mobile terminal 310. It performs the function.

As described above, the information encryption unit 507 encrypts the information input by the user so that it can be used again upon re-payment. That is, the personal information and the terminal information input by the user is encrypted with the PIN number.

The information decryption unit 508 decrypts the information encrypted by the information encryption unit 507 so that it can be reused when the user requests a repayment.

When the information destruction processing unit 509 receives the information destruction request from the service server 320 in the mobile terminal 310 as in the embodiment of the present invention to be described later, the individual encrypted and stored by the information encryption unit 507 Performs a function of forcibly destroying or deleting information and terminal information.

In the above, detailed functional blocks of the payment application 312 have been described. Next, detailed functions of the payment processing module 321 functioning in the service server 320 will be described with reference to FIG. 6.

6 is a block diagram showing a detailed structure of a payment processing module according to an embodiment of the present invention. Referring to FIG. 6, the payment processing module 321 may include an authentication request receiver 601, an authentication number generator 602, a payment key value generator 603, an authentication number transmitter 604, and a payment key value transmitter. 605, an authentication number confirmation unit 606, a payment request unit 607, a payment result transmission unit 608, and an information destruction request unit 609 may be configured.

The authentication request receiver 601 performs a function of receiving an authentication request by receiving various types of information (eg, personal information, terminal information, payment information, etc.) from the mobile terminal 310.

The authentication number generation unit 602 performs a function of generating a unique authentication number mapped to the corresponding payment in response to the authentication request received from the mobile terminal 310 of the authentication request receiving unit 601.

In addition, according to an embodiment of the present invention, the payment key value generator 603 generates a payment key to identify the authentication number included in the text message received by the mobile terminal 310.

The authentication number transmitter 604 transmits the authentication number generated by the authentication number generator 602 to the mobile communication company server 330 corresponding to the personal information or the terminal information received from the mobile terminal 310. To perform.

The payment key value transmission unit 604 transmits the payment key generated by the payment key value generation unit 603 to the mobile communication company server 330 and the mobile terminal 310.

The authentication number confirmation unit 606 performs a function of checking the authentication number automatically transmitted by the payment application of the mobile terminal 310 to the authentication number generated by the authentication number generation unit 602. .

If the payment request unit 607 matches the authentication number check result of the authentication number confirmation unit 606, it is determined that the normal authentication, and according to the payment information transmitted from the mobile terminal 310 mobile carrier server 330 To make a payment request.

The payment result transmitter 608 receives the payment result from the mobile telecommunication company server 330 and transmits the payment result to the mobile terminal 310 again.

The information destruction request unit 609 receives a request for destruction of information stored in a specific mobile terminal 310 from a user, and performs a function of transmitting an information destruction request message to a payment application of the mobile terminal 310.

Next, a payment processing method in a mobile terminal using a short message service according to an embodiment of the present invention will be described in detail with reference to FIGS. 7 to 10.

How payments are processed

7 is a signal flow diagram illustrating a payment procedure using a short message service according to an embodiment of the present invention. Referring to FIG. 7, the mobile terminal 310 first executes a browser (S701), accesses the service server 320 (S702), and selects a mobile phone payment. The browser calls a payment application installed according to the present invention. (invoke) (S703) to deliver the payment information. In this case, the payment application generates an information input window for inputting information required for authentication prior to payment as shown in FIG. 11 and receives corresponding information from the user (S704). For example, the information input through the information input window may be personal information, terminal information, PIN information, and the like.

As such, when various information is input from the user and a payment button is selected and authentication is requested (S705), the payment application of the mobile terminal 310 receives the input information (eg, personal information, terminal information, payment information, etc.). ) Is requested to the service server 320 to request authentication (S705).

The service server 320 generates an authentication number and a payment key value mapped to the payment information according to the authentication request in operation S707 and S708. In this case, the service server 320 transmits the personal information, the terminal information, etc. received from the mobile terminal 310 to the mobile communication company server 330 together with the generated authentication number and payment key value (S709). In addition, the generated payment key value is also transmitted to the mobile terminal 310 (S710). At this time, the mobile terminal 310 receiving the payment key value stores the payment key value in a memory (S711).

Meanwhile, the mobile telecommunication company server 330 receiving the information from the service server 320 performs the authentication (S712) with reference to the previously stored subscriber database for the transmitted personal information and terminal information. If the authentication result is confirmed to be a normal subscriber, the mobile terminal 310 transmits the authentication number mapped to the subscriber provided from the service server 320 in the short message to the corresponding mobile terminal 310 (S713). In addition, according to an embodiment of the present invention, the payment key value mapped with the authentication number provided from the service server 320 is transmitted together with the authentication number in a short message.

The mobile terminal 310 receives and parses or analyzes the short message transmitted from the mobile communication company server 330 (S714), and confirms whether the previously received and stored payment key value is included in the short message by using an authentication number. Search (S715). As a result of the check, when the payment key value included in the received short message is the same as the payment key value included in the short message, the authentication number included in the corresponding short message is transmitted to the service server 320 (S716). do.

The service server 320 receives the authentication number transmitted from the mobile terminal 310, and checks whether the authentication number is the same as the authentication number generated by itself (S717). As a result of the check, if the authentication numbers are the same, the mobile telecommunication company server 330 requests the payment for the user (S718). The mobile telecommunication company server 330 processes the payment according to the payment request (S719), and transfers the payment processing details to the service server 320 (S720). In addition, the service server 320 delivers the payment processing details back to the mobile terminal 310 (S721). On the other hand, the payment processing history transfer may be delivered directly from the mobile carrier server 330 to the mobile terminal 310.

As such, the mobile terminal 310 that has received the payment processing history displays that the payment processing is normally completed (S722). In addition, the mobile terminal 310 encrypts the personal information and the terminal information input by the user with PIN information (S723) and stores it in the memory. As shown in FIG. 8, the encrypted information is decrypted and used again when a user requests a repayment.

8 is a signal flow diagram illustrating a payment procedure using a short message service upon re-approval according to an embodiment of the present invention. Referring to FIG. 8, after the payment process is performed according to FIG. 7, when the user wants to re-pay, the payment can be easily performed without input of additional additional information (eg, personal information and terminal information) for payment. There is a number.

That is, when the mobile terminal 310 executes a browser (S781), accesses the service server 320 (S802), and selects a mobile phone payment, the browser invokes a payment application installed according to the present invention (S803). ) To forward payment information. In this case, the payment application checks whether information necessary for authentication is stored in the mobile terminal 310 prior to payment. As a result of the check, if information necessary for authentication is already stored in the memory, the user is asked for a PIN number for decrypting the stored information. That is, an input window for inputting a PIN number is displayed, and when a normal PIN number is input from the user (S804), the information stored with the input PIN number is decrypted (S805). For example, the information decoded by the PIN may be personal information, terminal information, or the like.

As such, when information for payment is decrypted and a payment button is selected and authentication is requested (S806), in the payment application of the mobile terminal 310, input and decrypted information (eg, personal information, terminal information, payment). Information, etc.) to the service server 320 to request authentication (S807).

The service server 320 generates an authentication number and a payment key value mapped to the payment information according to the authentication request (S808 and S809). At this time, the service server 320 transmits the personal information, the terminal information, etc. received from the mobile terminal 310 to the mobile communication company server 330 together with the generated authentication number and payment key value (S810). In addition, the generated payment key value is also transmitted to the mobile terminal 310 (S811). At this time, the mobile terminal 310 receiving the payment key value stores the payment key value in a memory (S812).

On the other hand, the mobile carrier server 330 receiving the information from the service server 320 performs the authentication (S813) with reference to the previously stored subscriber database for the transmitted personal information and terminal information. If the authentication result is confirmed to be a normal subscriber, the mobile terminal 310 transmits an authentication number mapped to the subscriber provided from the service server 320 in the short message to the corresponding mobile terminal 310 (S814). In addition, according to an embodiment of the present invention, the payment key value mapped with the authentication number provided from the service server 320 is transmitted together with the authentication number in a short message.

The mobile terminal 310 receives and parses or analyzes the short message transmitted from the mobile communication company server 330 (S815), and confirms whether the first received and stored payment key value is included in the short message by using an authentication number. Inquire (S816). As a result of the checking, when the payment key value included in the received short message and the payment key value included in the short message are the same, the authentication number included in the corresponding short message is transmitted to the service server 320 (S817). do.

The service server 320 receives the authentication number transmitted from the mobile terminal 310 and checks whether the authentication number is the same as the authentication number generated by the mobile terminal 310 (S818). As a result of the check, if the authentication numbers are the same, the mobile telecommunication company server 330 requests the payment for the user (S819). The mobile telecommunication company server 330 processes the payment according to the payment request (S820), and transfers the payment processing details to the service server 320 (S821). In addition, the service server 320 delivers the payment processing details back to the mobile terminal 310 (S822). On the other hand, the payment processing history transfer may be delivered directly from the mobile carrier server 330 to the mobile terminal 310.

In this way, the mobile terminal 310 that has received the payment processing history displays that the payment processing is normally completed (S823). In addition, the mobile terminal 310 may encrypt the decrypted personal information and the terminal information again with PIN information (S824) and store the same in a memory. In addition, when decrypting the personal information and the terminal information in step S805, if the encrypted information is left as it is, the re-encryption process of step S824 may be omitted.

Hereinafter, with reference to FIGS. 9 and 10, a method in which the mobile terminal 310 may delete the encrypted and stored information as described above in case of loss or similarity will be described.

9 is a signal flow diagram illustrating a personal information destruction procedure in payment using a short message service according to an embodiment of the present invention. Referring to FIG. 9, when the user of the mobile terminal 310 wants to destroy the stored information as in the case where the mobile terminal 310 is lost, the user of the mobile terminal 310 may access the service server 320 through a separate user terminal 900. You can connect and request for destruction.

In this case, the user preferably logs in to the service server 320 and requests the destruction. That is, when the user terminal 900 connects to the service server 320 (S901) and logs in, requests for discarding the payment information for the mobile terminal 310 (S902), the service server 320 requests the destruction information. Save (S903).

Then, when a payment request (S904) is received from a specific mobile terminal 310, the mobile terminal 310 checks whether or not the mobile terminal 310 requested by the user (S905). As a result of the checking, when the user requests the terminal to destroy the payment information, the mobile terminal 310 transmits a rejection message for the payment request to the mobile terminal 310 without performing an authentication procedure according to the payment request of the mobile terminal 310 (S906). do. In addition, according to an embodiment of the present invention, the service server 320 transmits the discard processing information to the mobile terminal 310, thereby instructing the destruction of the information stored in the mobile terminal 310.

On the other hand, the payment application installed in the mobile terminal 310 receives a discard processing command from the service server 320 (S907), and forcibly deletes personal information and terminal information stored in the memory (S908). As such, when the deletion is completed, the deletion completion report message is transmitted to the service server 320. The service server 320 receives a deletion completion report message from the mobile terminal 310 and confirms that the deletion processing is completed (S910). In addition, the service server 320 optionally transmits the result of the deletion processing to the user terminal 900 or a device designated by the user (S911).

10 is a signal flow diagram illustrating a procedure for destroying personal information in payment using a short message service according to another embodiment of the present invention. Referring to FIG. 10, when the user of the mobile terminal 310 wants to destroy the stored information as in the case where the mobile terminal 310 is lost, the service server 320 is provided through a separate user terminal 900. You can connect and request for destruction.

In this case, the user preferably logs in to the service server 320 and requests the destruction. That is, when the user terminal 900 accesses the service server 320 (S1001), logs in, and requests the destruction of payment information for the mobile terminal 310 (S1002), the service server 320 responds to the destruction request. As a result, the procedure for destroying information stored in the mobile terminal 310 is performed in real time.

Therefore, according to another embodiment of the present invention, the service server 320 transmits the discard processing information to the mobile terminal 310 (S1003), thereby instructing the destruction of the information stored in the mobile terminal 310. For example, send a push message for destruction.

On the other hand, the payment application installed in the mobile terminal 310 receives a discard processing command from the service server 320 (S1004), and forcibly deletes personal information and terminal information stored in the memory (S1005). As such, when the deletion is completed, the deletion completion report message is transmitted to the service server 320 (S1006). The service server 320 receives a deletion completion report message from the mobile terminal 310 and confirms that the deletion processing is completed (S1007). In addition, the service server 320 optionally transmits the deletion processing completion result to the user terminal 900 or a device designated by the user (S1008).

Thus, the apparatus and method according to the present invention have been described in detail. Hereinafter, an example in which the present invention described above is applied to an actual mobile terminal will be described with reference to FIGS. 11 and 12.

Example

11 is a diagram illustrating an information input screen by a payment application installed in a mobile terminal according to an embodiment of the present invention. Referring to FIG. 11, when a mobile phone payment is selected from a web page of a mobile terminal according to an embodiment of the present invention as described above, a payment application is called in a browser and an input window for payment as shown in the payment application is shown. Generate 1100. That is, the web-to-app payment information is transmitted to the payment application, and a payment process through the payment application according to the embodiment of the present invention is performed.

As such, when the input window 1100 for payment is provided by the payment application, the user inputs personal information in the personal information input item 1110 and inputs terminal information in the terminal subscription information input item 1120. In addition, the PIN number is input in the PIN number entry item 1130 according to the embodiment of the present invention.

As such, when each information input is completed and the authentication request button 1140 is selected, authentication is requested based on the input information, and the authentication procedure as described above is performed.

12 is a diagram illustrating an example of a short message including a payment key value and an authentication number received at a mobile terminal according to an embodiment of the present invention. Referring to FIG. 12, in response to the authentication request of FIG. 11, the mobile telecommunication company server transmits the text message 1200 as shown to the mobile terminal.

In this case, the short message received at the mobile terminal includes a payment key for identifying the corresponding authentication number together with the authentication number.

For example, when the content 1210 of the short message is written as 'Naver SMS simple payment approval code [x5d3] [503584]', the payment application according to the present invention parses the short message to identify an authentication number and a payment key. do.

That is, in the short message, 'x5d3' is identified as the payment key 1211, and '503584' is identified as the authentication number 1212.

Meanwhile, the payment application previously receives the payment key 'x5d3' from the service server, and compares the payment key with the payment key included in the received short message to determine that the short message is a short message including an authentication number associated with payment. . Accordingly, the authentication number (eg, '503584') included in the corresponding short message is checked and the authentication is requested by transmitting to the service server.

As such, in the present invention, after receiving the short message, the user does not check and re-enter the authentication number, and transmits the information, instead of automatically parsing and identifying the authentication number included in the received short message in the payment application, and automatically Transfer processing.

Accordingly, after receiving the short message used in mobile phone payment, etc., the input procedure may be omitted, and payment may be easily performed according to the present invention. In addition, conventionally, when requesting authentication through a web page and receiving a short message, the screen should be switched from a web page to a short message receiving window due to the characteristics of a mobile terminal, and for this purpose, a short message driving application had to be executed. . However, since the short message checking procedure is not required in the present invention, inconveniences caused by window switching can be solved.

The various operations and functions as described herein with respect to the various methods may be performed by any of a number of types of functions, such as a particular processing function and / or a processing function implemented therein, and / ≪ / RTI > For example, such functions may be described herein, as well as performing various operations and processes as described herein, or any other operations and functions as described herein, etc., or the like, And may perform such operations, processes, and the like.

In some embodiments, such functions (which may be implemented on the same device or on distinct devices) may be implemented in such a manner and in accordance with various aspects of the present invention, etc., and / Operations and functions, and their equivalents. In some embodiments, such processing is performed together by the first functional portion in the first device and the second functional portion in the second device. In other embodiments, such processing, operations, etc. are performed entirely by the processing units within one particular apparatus. Even in other embodiments, such processing and operations are performed using at least a first functional portion and a second functional portion within a single device.

Also, in the foregoing description, the terms " system, " " device, " and " section " may be a single processing device or a plurality of processing devices. Such a processing device may be a microprocessor, a microcontroller, a digital signal processor, a microcomputer, a central processing unit, a field programmable gate array, a programmable logic device, a state machine, a logic circuit, an analog circuit, a digital circuit, and / (Analog and / or digital) based on hard coding of operational instructions. The processing module, module, processing circuit, and / or processing unit may be implemented as a single memory device, a plurality of memory devices, and / or a combination of the processing modules, the processing circuitry, and / Lt; / RTI > memory and / or an integrated memory element. Such a memory device may be any device that stores read only memory (ROM), random access memory (RAM), volatile memory, non-volatile memory, static memory, dynamic memory, flash memory, cache memory, and / . If the processing module, the module, the processing circuit, and / or the processing unit include one or more processing devices, the processing devices may be centrally located (i.e., directly or indirectly via a wired and / Connected), distributed (e.g., cloud computing via an indirect connection over a local and / or wide area network). If the processing module, module, processing circuit, and / or processing unit implements one or more of those functions through a static machine, analog circuitry, digital circuitry, and / or circuitry, memory and / It should further be noted that the corresponding operating instructions may be internal or external to the circuit including the static machine, analog circuitry, digital circuitry, and / or logic circuitry. The memory element may be stored and the processing module, module, processing circuitry, and / or processing unit may be configured to store a hard-coded and / or hard-coded data item corresponding to at least a portion of the steps and / or functions depicted in one or more of the figures It should be further noted that it carries out operational instructions. Such a memory device or memory element may be included within the components of the manufacture.

The present invention has been described above with the aim of method steps indicative of the performance of certain functions and their relationships. The boundaries and order of these functional components and method steps have been arbitrarily defined herein for convenience of description. Alternative boundaries and sequences may be defined as long as the specific functions and relationships are properly performed. Any such alternative boundaries and sequences are therefore within the scope and spirit of the claimed invention. In addition, the boundaries of these functional components have been arbitrarily defined for ease of illustration. Alternative boundaries can be defined as long as certain important functions are properly performed. Likewise, the flow diagram blocks may also be arbitrarily defined herein to represent any significant functionality. For extended use, the flowchart block boundaries and order may have been defined and still perform some important function. Alternative definitions of both functional components and flowchart blocks and sequences are therefore within the scope and spirit of the claimed invention. Those skilled in the art will also appreciate that the functional components and other illustrated blocks, modules, and components herein may be implemented as illustrated or as separate components, such as semiconductor integrated circuits (ASICs) And the like, or any combination thereof.

The invention may also be described, at least in part, in terms of one or more embodiments. Embodiments of the invention are used herein to describe the invention, aspects thereof, features thereof, concepts thereof, and / or examples thereof. The physical embodiment of an apparatus, article of manufacture, machine, and / or process for implementing the invention may include one or more aspects, features, concepts, examples, etc., described with reference to one or more embodiments described herein . Moreover, in the entire drawing, embodiments may incorporate the same or similarly named functions, steps, modules, etc. that may use the same or different reference numbers, and as such, the functions, The steps, modules, etc. may be the same or similar functions, steps, modules, etc. or others.

Meanwhile, the term "processing unit" is used in the description of various embodiments of the present invention. A module includes a functional block implemented via hardware to perform one or more functions, such as processing one or more input signals to produce one or more output signals. The hardware implementing the functional block may operate directly by combining software and / or firmware. As used herein, a module may include one or more sub-modules that are themselves modules.

While various combinations of features and specific combinations of features of the present invention are explicitly described herein, other combinations of these features and functions are likewise possible. The present invention is not limited to the specific examples disclosed herein, and obviously incorporates these other combinations.

As described above, the present invention has been described by specific embodiments such as specific components and the like. For those skilled in the art, various modifications and variations are possible from these descriptions.

Accordingly, the spirit of the present invention should not be construed as being limited to the embodiments described, and all of the equivalents or equivalents of the claims, as well as the following claims, belong to the scope of the present invention .

100: user 110: mobile terminal
111: browser driving unit 112: SMS processing unit
120: service server 130: mobile carrier server
310: mobile terminal 311: browser driver
312: payment application 313: SMS processing unit
314: storage 320: service server
321: payment processing module 330: mobile carrier server
501: information input processing unit 502: authentication request processing unit
503: received message analyzer 504: authentication number inquiry unit
505: authentication number transmission unit 506: payment result receiver
507: information encryption unit 508: information decryption unit
509: information destruction processing unit 601: authentication request receiving unit
602: authentication number generation unit 603: payment key value generation unit
604: authentication number transmission unit 605: payment key value transmission unit
606: authentication number confirmation unit 607: payment request unit
608: payment result transmission unit 609: information destruction request unit

Claims (30)

A mobile terminal for installing a payment application, calling the installed payment application to transfer payment request information according to a payment request through a browser connected to a service server, and requesting payment to the service server by the payment application;
A service server generating an authentication number according to a payment request from the mobile terminal and transmitting the generated authentication number to a corresponding mobile communication company server to which the mobile terminal is subscribed; And
Receiving an authentication number from the service server, and confirms the subscriber information of the mobile terminal requesting the payment, if the authentication is normal, including the authentication number received from the service server in the content of the short message to transmit to the mobile terminal Includes a carrier server,
The payment application of the mobile terminal parses the short message sent from the mobile communication company server to confirm an authentication number, and transmits the confirmed authentication number to the service server to perform an authentication procedure. Payment processing system in a mobile terminal.
The method of claim 1, wherein the payment application,
A payment processing system in a mobile terminal using a short message service, which generates an input window for inputting information for payment according to a call of the browser.
The method of claim 2, wherein the information input for the payment is
A payment processing system in a mobile terminal using a short message service, which is at least one selected from personal information, terminal information, and PIN information.
The method according to claim 3, wherein the terminal information,
A system for payment processing in a mobile terminal using a short message service, which is at least one selected from a terminal phone number, a terminal serial number, a medium access control (MAC) address on a network, terminal subscription information, and carrier information.
The service providing system according to claim 1,
Generating a payment key mapped with the authentication number, and transmitting the generated payment key to the mobile terminal and the mobile communication company server,
The mobile telecommunication company server transmits the payment key received from the service server together with the authentication number mapped to the short message, and transmits the payment key.
The method according to claim 5, The mobile terminal,
Receiving a payment key from the service server,
A short message identifying the authentication number included in the short message by comparing the payment key included in the short message transmitted from the mobile communication company server in the payment application of the mobile terminal with the payment key received from the service server. Payment processing system in a mobile terminal using a service.
The method of claim 3, wherein the payment application,
Among the information input for the payment, the personal information and the terminal information is encrypted by the PIN information and stored in a memory,
The payment processing system of the mobile terminal using a short message service, when the user re-payment request, the PIN information is received from the user and the personal information and the terminal information stored in the memory is decoded.
The method of claim 7, wherein the service server,
Receiving a request to destroy information stored in the memory from a user logged in to the service server, and transmitting a push message for destruction to the payment application of the mobile terminal according to the request;
And the payment application automatically destroys information stored in the memory according to the transmitted push message.
The method of claim 7, wherein the service server,
When the mobile terminal requested to destroy the information stored in the memory is requested from a user logged in to the service server and the payment request is a corresponding mobile terminal, the payment of the mobile terminal is requested. Send push messages for destruction to your application,
And the payment application automatically destroys information stored in the memory according to the transmitted push message.
An authentication request receiving unit which provides a web page according to a connection of a mobile terminal and receives payment request information from the mobile terminal;
Authentication number generation unit for generating an authentication number in response to a payment request from the mobile terminal;
An authentication number transmission unit for transmitting the generated authentication number to a corresponding mobile communication company server to which the mobile terminal is subscribed;
After the mobile terminal authentication of the mobile communication company server, the mobile terminal receives the authentication number automatically parsed by parsing the authentication number included in the text message transmitted from the mobile communication company server, the authentication number generated by the authentication number generator Authentication number verification unit to compare with; And
As a result of confirming the authentication number confirmation unit, if the authentication number automatically transmitted from the mobile terminal and the authentication number generated by the authentication number generation unit, the payment request unit for requesting payment for the mobile terminal to the mobile communication company server Include,
The mobile terminal is installed with a payment application, in response to a payment request through a browser connected to the service server to call the installed payment application to transfer payment request information, and to request payment to the service server by the payment application. , The payment processing device using the short message service in the mobile terminal.
The method of claim 10, wherein the payment application of the mobile terminal,
The payment application of the mobile terminal parses the short message sent from the mobile communication company server to confirm an authentication number, and performs an authentication procedure by transmitting the confirmed authentication number to the service server. Payment processing device using a message service.
The method of claim 10, wherein the payment application,
In response to a call of the browser, a payment processing device using a short message service in a mobile terminal for generating an input window for inputting information for payment.
The method of claim 12, wherein the information input for the payment,
A payment processing device using a short message service in a mobile terminal, which is at least one selected from personal information, terminal information, and PIN information.
The method of claim 13, wherein the terminal information,
A payment processing device using a short message service in a mobile terminal, which is at least one selected from a terminal phone number, a terminal serial number, a medium access control (MAC) address on a network, terminal subscription information, and carrier information.
The method of claim 10, wherein the service server,
A payment key value generation unit generating a payment key mapped with the authentication number; And
Further comprising a payment key value transmission unit for transmitting the generated payment key to the mobile terminal and the mobile communication company server,
And the mobile telecommunication company server transmits the payment key received from the service server together with the authentication number mapped to the short message and transmits the received payment key.
The method of claim 15, wherein the mobile terminal,
Receiving a payment key from the service server,
A mobile terminal for identifying the authentication number included in the short message by comparing the payment key included in the short message sent from the mobile communication company server with the payment key received from the service server in the payment application of the mobile terminal; A payment processing device using a short message service in.
The method of claim 13, wherein the payment application,
Among the information input for the payment, the personal information and the terminal information is encrypted by the PIN information and stored in a memory,
And a payment processing device using a short message service in a mobile terminal, receiving payment information from the user and deciphering the personal information and the terminal information stored in the memory.
18. The system according to claim 17,
Receiving a request to discard the information stored in the memory from the user logged in to the service server, and further comprising an information destruction request unit for transmitting a push message for destruction to the payment application of the mobile terminal according to the request,
And the payment application automatically destroys the information stored in the memory according to the transmitted push message.
18. The system according to claim 17,
When the mobile terminal requested to destroy the information stored in the memory is requested from a user logged in to the service server and the payment request is a corresponding mobile terminal, the payment of the mobile terminal is requested. Further including an information destruction request unit for transmitting a push message for destruction to the application,
And the payment application automatically destroys the information stored in the memory according to the transmitted push message.
As a payment processing method using a short message service in a mobile terminal, each step performed in the payment processing device includes:
Providing a web page according to the access of the mobile terminal by the authentication request receiving unit, and receiving payment request information from the mobile terminal;
Generating an authentication number in accordance with a payment request from the mobile terminal in an authentication number generation unit;
Transmitting, by an authentication number transmitter, the generated authentication number to a corresponding mobile communication company server to which the mobile terminal is subscribed;
After the mobile terminal authentication of the mobile communication company server, the mobile terminal receives the authentication number automatically parsed by parsing the authentication number included in the text message transmitted from the mobile communication company server, the authentication number generated by the authentication number generator Comparing with the authentication number confirmation unit; And
As a result of confirming the authentication number confirmation unit, if the authentication number automatically transmitted from the mobile terminal and the authentication number generated by the authentication number generation unit match, the authentication number confirmation unit makes a payment for the mobile terminal to the mobile communication company server. Requesting,
The mobile terminal is installed with a payment application, in response to a payment request through a browser connected to the service server to call the installed payment application to transfer payment request information, and to request payment to the service server by the payment application. , Payment processing method using a short message service in a mobile terminal.
The method of claim 20, wherein the payment application of the mobile terminal,
The payment application of the mobile terminal parses the short message sent from the mobile communication company server to confirm an authentication number, and performs an authentication procedure by transmitting the confirmed authentication number to the service server. How to process payments using a message service.
The method of claim 20, wherein the payment application,
In response to a call of the browser, a payment processing method using a short message service in a mobile terminal for generating an input window for inputting information for payment.
The method of claim 22, wherein the information input for the payment,
A payment processing method using a short message service in a mobile terminal, which is at least one selected from personal information, terminal information, and PIN information.
The method of claim 23, wherein the terminal information,
A method for processing a payment using a short message service in a mobile terminal, wherein the terminal is a telephone number, a terminal serial number, a medium access control (MAC) address on a network, terminal subscription information, and carrier information.
The method of claim 20, wherein the method is
Generating a payment key mapped with the authentication number in a payment key value generation unit; And
The payment key value transmitting unit further comprises the step of transmitting the generated payment key to the mobile terminal and the mobile carrier server,
And the mobile communication company server transmits the payment key received from the service server together with the authentication number mapped to the short message, and transmits the payment key.
The method according to claim 25, The mobile terminal,
Receiving a payment key from the service server,
A mobile terminal for identifying the authentication number included in the short message by comparing the payment key included in the short message sent from the mobile communication company server with the payment key received from the service server in the payment application of the mobile terminal; How to process payment using short message service in.
The method of claim 23, wherein the payment application,
Among the information input for the payment, the personal information and the terminal information is encrypted by the PIN information and stored in a memory,
The payment processing method using a short message service in a mobile terminal, when the user re-payment request, the PIN information is received from the user and the personal information and the terminal information stored in the memory are decoded.
The method of claim 27, wherein the method is
Receiving a request for discarding information stored in the memory from a user logged in to the service server in the information destruction request unit, and transmitting a push message for destruction to the payment application of the mobile terminal according to the request; ,
The payment application is a payment processing method using a short message service in a mobile terminal, automatically discarding the information stored in the memory according to the transmitted push message.
The method of claim 27, wherein the service server,
When the information destruction request unit is requested to destroy the information stored in the memory from the user logged in to the service server, the mobile terminal requesting the payment according to the payment request from a specific mobile terminal is the corresponding mobile terminal requesting the destruction, Transmitting a push message for destruction to the payment application of the mobile terminal,
The payment application is a payment processing method using a short message service in a mobile terminal, automatically discarding the information stored in the memory according to the transmitted push message.
A computer-readable recording medium having recorded thereon a program for performing on a computer each step of the method according to any one of claims 20 to 29.

Images