KR20150111797A - Method for card payment - Google Patents

Abstract

A method for card payment is disclosed. The method for card payment comprises the steps of: receiving, by an authentication system, a first part of a card number of a user′s card, a second part of the card number, and user information, wherein the first part is information capable of specifying a payment side system, and the second part is the remaining part excluding the first part of the card number; and transmitting, by the authentication system, the first part, the second part, and the user information to the payment side system corresponding to the first part. The card of the user is specified on the basis of the first part, the second part, and the user information by the payment side system, and payment is performed by the specified card.

Description

{Method for card payment}

The present invention relates to an authentication system using a registered mobile terminal and a method thereof. And more particularly, to a system and method for performing dual authentication using information of a registered mobile terminal of a user registered in a payment-side system.

In addition, a system for specifying a user's card and performing payment without receiving all of the card number from the user via the user information such as the information of the registered mobile terminal of the user registered in the payment-side system or the date of birth And a method thereof.

Conventionally, there has been a method in which payment is performed when a card number is notified to a merchant such as an unauthorized person or a handwritten transaction coupon, or when only a predetermined confirmation information (for example, an expiration date or a CVC number) is notified together with a card number.

Such an unauthorized or handwritten transaction special scheme is a method widely used especially in the case of making a purchase request and making payment through telephone (for example, home shopping, etc.).

However, in this case, if the card number and / or the confirmation information is transmitted to the merchant without the separate authentication procedure, the settlement is performed, thereby causing a serious problem of security. There is a problem that the merchant stores the card number and / or the confirmation information at the merchant's point, so that the merchant may have information necessary for payment at any time.

Therefore, there is a need for technological ideas which can solve the problem of the outflow of the card information on the side of the merchant, and can perform secure settlement at a low cost.

Korean Patent No. 10-0834992 entitled " Credit Card Payment Processing System and Method for Telephone Ordering "

SUMMARY OF THE INVENTION The present invention has been made in an effort to solve such a problem, and it is an object of the present invention to provide a mobile terminal of a user registered in a payment system (e.g., card company system) The present invention provides a system and method for easily performing authentication using information previously registered in a payment-side system without introducing a separate authentication protocol, by allowing a payment to be approved by making a purchase request through a portable terminal .

Further, the present invention provides a system and method for performing dual authentication relatively easily by performing additional authentication through a registered mobile terminal.

The present invention also provides a system and a method for identifying a card even if the entire card number is not inputted to a user via information of a registered mobile terminal.

The present invention also provides a system and method in which the entire card number may not be distributed between the authentication system and the settlement side system.

According to an aspect of the present invention, a card payment method according to an embodiment of the present invention is characterized in that the authentication system is a first part of a card number of a user's card, the first part is information capable of specifying the payment- , The second part of the card number, the second part being part of the remainder of the card number, excluding the first part, and receiving the user information, the authentication system further comprising a payment corresponding to the first part Side system, the method comprising: transmitting, by the payment-side system, the first portion, the second portion, and the user information to the second system, the first portion, the second portion, And the settlement is performed by the specified card.

The first portion may be a predetermined number of the predetermined number of the card numbers, and the second portion may be a predetermined number of the card numbers.

The user information may be a part of the user's date of birth or a mobile phone number.

Wherein the authentication system is a first part of a card number of a user's card, the first part being information capable of specifying the payment-side system, a second part of the card number, Receiving the user information by dividing the first part and the second part by using different terminals or different media, and receiving the user information by dividing the first part and the second part, can do.

The card settlement method for solving the technical problem is characterized in that the authentication system is a first part of a card number of a user's card, the first part is information capable of specifying the payment-side system, Wherein the second part is part of the remainder of the card number other than the first part, and receiving the user information, and wherein the authentication system transmits the second part and the second part to a payment- Wherein the settlement side system is characterized in that the settlement is performed by the specified card and the card of the user is specified based on the second portion and the user information by the settlement side system do.

According to another aspect of the present invention, there is provided a card payment method, wherein a settlement-side system receives a first portion of a card number of a user's card from a user's terminal or an authentication system, , The second part of the card number, the second part being part of the remainder of the card number other than the first part, and receiving the user information, the payment system comprising the first part, And identifying the card of the user based on the user information, and determining whether the payment system has approved the payment with the specific card.

The card settlement method for solving the technical problem is characterized in that the settlement side system obtains a second part of the card number of the card number of the user from the terminal or authentication system of the user, Receiving system, the payment-side system specifying the card of the user based on the second portion and the user information, and the payment-side system being a part of the particular card And determining whether the payment is approved or not.

The card payment method may be stored in a computer-readable recording medium on which the program is recorded.

According to the technical idea of the present invention, when the user knows the portable terminal of the user registered in the payment side system (for example, credit card company system), that is, the registered portable terminal, It is possible to easily perform the authentication using the information already registered in the payment-side system without introducing a separate authentication protocol. Particularly, when the authentication is to be performed for registering or changing the identification information of the registered mobile terminal on the settlement side system, that is, when the registered mobile terminal has already been registered in the payment side system through single authentication The effect can be doubled.

Further, by performing additional authentication through the registered mobile terminal, it is possible to provide high security through dual authentication.

Further, by using not only the identification information of the portable terminal but also predetermined check information (e.g., date of birth) as the authentication key, identification information of the portable terminal that may occur when only identification information of the portable terminal is used as a key for authentication Number) can be solved.

In addition, since the user can be identified through the user information such as the information of the registered mobile terminal or the date of birth and the card held by the user can be identified through the user information, the entire card number can be input from the user, Side system, it is possible to perform payment by specifying a card desired by a user.

BRIEF DESCRIPTION OF THE DRAWINGS A brief description of each drawing is provided to more fully understand the drawings recited in the description of the invention.
1 is a diagram showing a schematic configuration of an authentication system using a registered portable terminal according to an embodiment of the present invention.
2 is a diagram illustrating an authentication flow when a purchase request is made via a wire telephone according to an embodiment of the present invention.
3 is a diagram illustrating an authentication flow when a purchase request is made through a mobile phone according to an embodiment of the present invention.
FIG. 4 is a diagram for explaining a method of specifying a card necessary for settlement in the flow shown in FIG.
5 is a diagram for explaining a method of specifying a card necessary for settlement in the flow shown in FIG.

BRIEF DESCRIPTION OF THE DRAWINGS The present invention is capable of various modifications and various embodiments, and specific embodiments are illustrated in the drawings and described in detail in the detailed description. It is to be understood, however, that the invention is not to be limited to the specific embodiments, but includes all modifications, equivalents, and alternatives falling within the spirit and scope of the invention. DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS Hereinafter, the present invention will be described in detail with reference to the accompanying drawings.

The terms first, second, etc. may be used to describe various components, but the components should not be limited by the terms. The terms are used only for the purpose of distinguishing one component from another.

The terminology used in this application is used only to describe a specific embodiment and is not intended to limit the invention. The singular expressions include plural expressions unless the context clearly dictates otherwise.

In this specification, the terms "comprises" or "having" and the like refer to the presence of stated features, integers, steps, operations, elements, components, or combinations thereof, But do not preclude the presence or addition of features, numbers, steps, operations, components, parts, or combinations thereof.

Also, in this specification, when any one element 'transmits' data to another element, the element may transmit the data directly to the other element, or may be transmitted through at least one other element And may transmit the data to the other component. Conversely, when one element 'directly transmits' data to another element, it means that the data is transmitted to the other element without passing through another element in the element.

Hereinafter, the present invention will be described in detail with reference to the embodiments of the present invention with reference to the accompanying drawings. Like reference symbols in the drawings denote like elements.

1 is a diagram showing a schematic configuration of an authentication system using a registered portable terminal according to an embodiment of the present invention.

Referring to FIG. 1, an authentication system (hereinafter, an authentication system) 100 using a registered portable terminal may be provided to implement an authentication method using a registered portable terminal according to an embodiment of the present invention.

The authentication system 100 may include a control module 110, an identification module 120, a first authentication module 130, and a second authentication module 140.

In accordance with an embodiment of the present invention, some of the above-described components may not necessarily correspond to components that are essential to the implementation of the present invention, and in accordance with an embodiment, But may include more components.

The authentication system 100 may implement the technical idea of the present invention while performing communication with a predetermined merchant-side device (e.g., telephone or ARS system of a merchant). In addition, the authentication system 100 may implement the technical idea of the present invention while performing communication with a payment-side system (e.g., card company system).

The user can make a purchase request for a predetermined commodity or service by making a call to the merchant apparatus through a wire telephone or a mobile phone. At this time, according to the technical idea of the present invention, whether the user performs a purchase request through a wired telephone or a mobile terminal, the user can successfully settle the payment only if he / she has a registered mobile terminal registered in the payment side system.

In addition, since the landline telephone is a telephone for which the user is not specified, even if the landline telephone is registered by the settlement side system, according to the technical idea of the present invention, the settlement side terminal The authentication system 100 can be implemented.

The authentication system 100 can use the identification information of the registered mobile terminal registered in the payment-side system as the key for authentication, regardless of whether the user makes a purchase request to the mobile phone or a purchase request to the mobile phone.

To this end, when a user makes a purchase request with a wire telephone, the user can request identification information of the registered portable terminal. If the identification information of the registered portable terminal inputted from the user does not correspond to the information registered in the payment-side system, the payment can be processed so as not to succeed. If the user makes a purchase request to the portable terminal, it is determined whether the portable terminal that made the purchase request corresponds to the registered portable terminal registered in the payment-side system. If the user does not correspond to the registered information, can do.

The process of determining whether the identification information (e.g., mobile phone number) of the portable terminal input by the user or the identification information of the portable terminal that the user made a purchase request corresponds to the information of the registered portable terminal registered in the payment- In the present specification, this is referred to as first authentication.

If the first authentication is not successful, the authentication process can be terminated. The authentication system 100 may request the registration-side system to register or change the registered portable terminal. The user can register his / her portable terminal through a path provided by the payment-side system (e.g., telephone or web site) or change the information of the mis-registered portable terminal, and perform authentication according to the technical idea of the present invention .

Therefore, according to the technical idea of the present invention, the information of the latest portable terminal of the user can be maintained in the payment side system.

Meanwhile, when the identification information of the portable terminal is used as a key of authentication (i.e., a key parameter for authentication) as in the technical idea of the present invention, generally, since the identification information of the portable terminal is unique information for each user, The user can be specified through the information. However, the identification information of the portable terminal is information that can be changed. Therefore, even if the identification information of the portable terminal of a specific user is changed, serious trouble may occur when the specific user does not change the identification information of the portable terminal to the payment-side system. That is, the same identification information may be registered to a plurality of users.

Accordingly, the authentication system 100 can further input predetermined check information (e.g., date of birth, name, etc.) that can confirm the user to the user. When the check information is input via a telephone, the date of birth, which can be input by a number, may be more suitable for the check information, but is not limited thereto.

When the check information and the identification information of the mobile terminal are used as the authentication key, even if the identification information of the mobile terminal is registered with a plurality of users, the payment system can correctly identify the user There is an effect that can be done.

According to the technical idea of the present invention, since the user can be identified through the identification information of the portable terminal and the check information, the user can specify the card to which the purchase request is to be paid without receiving the entire card number from the user There is an effect that can be. This will be described later.

If the first authentication is successful, that is, when the information of the registered mobile terminal is correctly inputted by the user or the purchase request is made by the registered mobile terminal, the authentication system 100 connects the authentication call to the registered mobile terminal Thereby performing the second authentication. When the user makes a purchase request by making a telephone call to the registered portable terminal, the converted call already connected between the authentication system 100 and the registered portable terminal may perform an authentication call function.

The second authentication may be handled as being successful only when the authentication call is connected. However, in this case, there is a problem that it is not confirmed whether the authentication call is connected by the user who made the purchase request.

Therefore, when the authentication system 100 receives an authentication password preset by the user through the authentication call, the authentication system 100 can process the second authentication successfully. At this time, the user may set the authentication password in advance in the authentication system 100.

If the user does not set the authentication password in advance, the authentication system 100 notifies the user of the disposable password through the authentication call, and the user must input the disposable password so that the second authentication is successfully performed It is possible.

If both of the first authentication and the second authentication are successful, the authentication system 100 can transmit a predetermined authentication signal to the payment-side system to control the settlement of the purchase request performed by the user.

As a result, according to the technical idea of the present invention, when a user makes a purchase request to a merchant point device by using a wired telephone, the first authentication is successful and payment can be approved only after the identification information and check information of the registered mobile terminal are known. Even if another person knows the identification information and the check information of the registered mobile terminal of the user, if the registered mobile terminal is not possessed, the second authentication can not be succeeded and the security can be maintained.

In addition, when the user makes a purchase request to the merchant terminal using the portable terminal, the first authentication can be successful only if the portable terminal is a registered portable terminal. Even when the purchase request is made by the registered mobile terminal, high security can be provided by confirming settlement when the second authentication is successful.

The authentication system 100 includes a control module 110, an identification module 120, a first authentication module 130, and a second authentication module 140 as described above . The authentication system 100 may further include a predetermined DB 150.

The authentication system 100 may include hardware resources and / or software necessary to implement the technical idea of the present invention, and does not necessarily mean a single physical component or a single device . That is, the authentication system 100 may mean a logical combination of hardware and / or software provided to implement the technical idea of the present invention. If necessary, the authentication system 100 may be installed in a separate apparatus to perform respective functions And may be embodied as a set of logical structures for realizing the technical idea of the present invention. In addition, the authentication system 100 may mean a set of configurations separately implemented for each function or role for implementing the technical idea of the present invention. For example, the control module 110, the identification module 120, the first authentication module 130, the second authentication module 140, and / or the DB 150, Or may be located in the same physical device. According to an embodiment of the present invention, each of the control module 110, the identification module 120, the first authentication module 130, the second authentication module 140, and / The modules may also be located in different physical devices, and configurations located in different physical devices may be organically coupled to each other to realize the functions performed by the respective modules.

In this specification, a module may mean a functional and structural combination of hardware for carrying out the technical idea of the present invention and software for driving the hardware. For example, the module may refer to a logical unit of a predetermined code and a hardware resource for executing the predetermined code, and it does not necessarily mean a physically connected code or a kind of hardware But can be easily deduced to the average expert in the field of the present invention.

The control module 110 may include other components included in the authentication system 100 such as the identification module 120, the first authentication module 130, the second authentication module 140, and / or the DB 150 / RTI > can control the function and / or the resource of the user.

When the user makes a call to the merchant-point-side device, the identification module 120 can perform a call transfer to a phone call to the merchant-point-side device. Accordingly, the user's telephone (wired telephone or portable terminal) and the identification module 120 can be connected through the switched call, that is, the switched call, to perform the authentication according to the technical idea of the present invention. Thus, it is possible to prevent the information required for authentication from being known or stored at the merchant's side, thereby preventing leakage of information by the merchant's shop or an attempt of illegal settlement.

The identification module 120 can identify the identification information of the portable terminal through the call. That is, when the user calls the landline telephone, the identification information of the portable terminal of the user can be obtained by receiving the identification information of the portable terminal of the user through the conversion call. If the user makes a call to the portable terminal, identification information of the portable terminal of the user can be obtained by obtaining the caller information (CID) of the calling portable terminal through the merchant point device or when the conversion call is connected have. The identification module 120 may receive check information (e.g., date of birth) as described above.

Then, the first authentication module 130 can perform the first authentication by communicating with the payment-side system using the identification information of the portable terminal and the check information obtained by the identification module 120. [ For example, the first authentication module 130 transmits the identification information and the check information of the portable terminal to the payment-side system, and the identification information of the portable terminal transmitted from the payment-side system and the registration information It is possible to perform the first authentication by receiving a response as to whether or not the identification information of the portable terminal exists. Of course, the identification information of the registered portable terminal and the check information may be stored in advance in the payment side system. In addition, the payment-side system can perform secure authentication through a simple procedure for checking whether the user information corresponding to the identification information and check information of the portable terminal received from the first authentication module 130 is registered There is an effect.

When the first authentication module 130 fails to authenticate the first authentication module 130, the first authentication module 130 notifies the user of the registered mobile terminal registered in the payment-side system 400 and the identification module The identification information of the portable terminal input through the input unit 120 or the identification information of the portable terminal making the purchase request do not match and the identification information of the portable terminal of the correct user is registered or changed in the payment system 400 Can guide. Accordingly, the information on the mobile terminal of the latest accurate user can always be maintained in the payment-side system 400.

If the first authentication module 130 succeeds in the first authentication, the second authentication module 140 may perform the second authentication through the authentication call. The second authentication module 140 may connect the authentication call to the registered mobile terminal when the user makes a purchase request through the wired telephone. That is, the user can call the registered mobile terminal. If the user makes a purchase request by making a call to the registered portable terminal, the converted call already connected between the identification module 120 and the registered portable terminal can act as an authentication call.

If the user has already set an authentication password in the authentication system 100, the second authentication module 140 can receive the authentication password through the authentication call. The authentication password may be set for each card. That is, a plurality of cards may be registered in the authentication system 100 for each user. In this case, an authentication password may be set for each card. Of course, a single authentication password may be set for a plurality of cards. In this case, a card to be used for payment may be separately selected by the user through the authentication call.

Meanwhile, the DB 150 may store a virtual card number for each card of the user. If the user has been authenticated according to the technical idea of the present invention and has performed payment, the control module 110 receives the virtual card number corresponding to the user's card from the payment-side system, ) In advance. Then, the identification information of the portable terminal of the user, the virtual card number, and the authentication password may be stored in association with each other in the DB 150.

Accordingly, if the authentication password is input through the authentication call and the authentication password matches the authentication password previously registered in the DB 150, the second authentication module 140 can successfully process the second authentication. Then, the control module 110 may transmit the virtual card number to the payment-side system by including the virtual card number in the authentication signal. Then, the payment-side system identifies the user's card through the virtual card number, and can perform settlement processing using the specified card.

Meanwhile, if the second authentication module 140 does not have the authentication password set by the user, the second authentication module 140 may generate a one-time password (e.g., a two-digit or four-digit number) and inform the user of the authentication password. If the disposable password is input through the authentication call, the second authentication may be processed successfully.

On the other hand, there may be a case where the user does not set an authentication password for a predetermined card in the authentication system 100, or a user wants to make a settlement with another card even if a card having the authentication password is set. In this case, the card to be used for settlement of the purchase request may have to be specified by the payment system.

At this time, the identification module 120 may receive the first part of the card number through the switching call. The first part may be a part capable of specifying a payment-side system. In general, some leading digits (e.g., six digits) of the card number may be information that can identify the payment system (card issuer system). Accordingly, the identification module 120 can receive the first portion via the switch call.

Then, the first authentication module 130 identifies the settlement side system through the first part, and performs the first authentication as described above by performing communication with the specified settlement side system. When the first authentication is performed, the user who makes the purchase request can be uniquely identified in the payment system. However, the user's card may still be unspecified. Thus, more information may be needed to identify the card to be used for payment, and this information may be the second part of the card number. The second portion may be, for example, some number of back digits (e.g., four digits) of the card number.

The second authentication module 140 may receive the second portion from a user via an authentication call. Of course, the second authentication module 140 may receive the second part if the second authentication is successful as described above, or may input the second part regardless of whether the second authentication is successful or not.

Alternatively, the input of the second portion itself may be handled as a success of the second authentication. That is, upon receiving the second part, it may be determined that the second authentication succeeded. If the second part is not matched to the card number owned by the user, even if the second part is handled by simply receiving the second part, the card is not correctly specified by the payment side system and payment can be approved This is because security can still be maintained.

In any case, the control module 110 may include the second portion in the authentication signal and transmit it to the payment-side system. Then, the payment-side system identifies a card to be used for settlement based on the second part, and approves settlement of the purchase request with the card.

As a result, according to the technical idea of the present invention, even if the user sets the authentication password in advance and the card number or virtual card number corresponding to the user's card is not registered in advance in the authentication system 100, Input via the call and to input the second portion via the authentication call. That is, by dividing and inputting the card number, high security can be provided. Of course, even if the converted call and the authentication call are the same, the second part is still input after the first authentication succeeds, so that the security can still be high.

In addition, the second portion may be the entirety of the remaining portion of the card number excluding the first portion, but may be a portion of the remaining portion. For example, in the case of the first six digits of the card number, the remaining part of the card number 16 digits may be ten digits. At this time, the second part that the user inputs through the authentication call may be the last four digits of the card number. In this case, although the user has not input the entire card number at all, the payment can be performed with the card desired by the user. This is because, according to the technical idea of the present invention, the identification information and the check information of the registered mobile terminal of the user are used with the authentication key, and the user who has already made the purchase request can be specified by the payment side system. Since the second portion can be assigned so as not to be duplicated for each user, the card of the user can be accurately specified with only the second portion.

Therefore, according to the technical idea of the present invention, even when the user has to input the card number, the card number is divided and inputted, and even the first part and the second part, which are divided and inputted, Gender can be provided.

As described above, the authentication and / or payment method using the identification information of the registered portable terminal registered in the payment-side system allows the payment-side system to perform predetermined self-authentication when the user registers or changes the identification information of his or her portable terminal When the user makes a request to purchase a predetermined purchase request using the previously authenticated information, the user can easily reuse the purchase request to perform the authentication, so that the authentication according to the technical idea of the present invention has an effect of further enhancing security .

The technical idea of the present invention as described above will be described in more detail with reference to FIG. 2 to FIG. 5.

2 is a diagram illustrating an authentication flow when a purchase request is made via a wire telephone according to an embodiment of the present invention.

2 schematically shows a flow of a case where a user makes a purchase request through a wired telephone (wired terminal). Referring to Fig. 2, the user calls the merchant terminal 300 by using the wired terminal 200, (S10). Then, the identification module 120 of the authentication system 100 switches the call and connects the converted call with the wired terminal 200 (S20, S30).

The identification module 120 may receive the identification information and the check information of the mobile terminal from the user through the conversion call (S31). Then, the first authentication module 130 may perform the first authentication through communication with the payment-side system 400 (S40).

If the first authentication module 130 determines that the first authentication is successful, the second authentication module 140 can call the mobile terminal 210 (i.e., the registered mobile terminal) input through the conversion call have. That is, an authentication call can be connected. Then, the second authentication can be performed (S50). The second authentication may be to receive the authentication password set by the user and determine whether the input authentication password corresponds to the previously registered information. Or to inform the user of the disposable password and to determine whether the disposable password is input. Or to determine if the second portion of the card number is entered as described above.

If the second authentication is successful, the control module 110 may transmit an authentication signal to the payment-side system 400. The authentication signal may include a virtual card number previously registered in the DB 150 or a second part that is a part of a card number that can specify a card to be used for payment. Of course, the authentication signal may further include merchant-side identification information and / or payment information (e.g., a payment amount, etc.) that can identify the franchisee.

The payment-side system 400 can specify a card to be used for settlement when an authentication signal is received. If the card to be used for payment is not specified (for example, there is no card corresponding to the virtual card number, or there is no card corresponding to the second part), payment is not approved. When the card to be used for settlement is specified, the settlement system 400 can approve settlement of the purchase request with the card. Then, the settlement side system 400 can notify the approval result to the affiliated store, and the affiliated store can notify the approval result to the wired terminal 200 (S70, S71). Of course, the settlement side system 400 notifies the approval result to the authentication system 100, and notifies the settlement side system 400 of the converted call, that is, the wired terminal 200 or the authentication call, (210). ≪ / RTI >

3 is a diagram illustrating an authentication flow when a purchase request is made through a mobile phone according to an embodiment of the present invention.

FIG. 3 schematically shows a flow when a user makes a purchase request through the portable terminal 210. Referring to FIG. 3, the user connects the portable terminal 210 to the merchant point- (S100).

Then, the identification module 120 can convert the call and connect the converted call to the mobile terminal 210 (S110, S120). The identification module 120 can identify the identification information of the portable terminal 210 through caller information (CID). The identification module 120 may receive the check information through the switch call.

Then, the first authentication module 130 may perform the first authentication through communication with the payment-side system 400 using the identification information of the portable terminal 210 and the check information (S130).

If the first authentication module 130 determines that the first authentication is successful, the second authentication module 140 may perform the second authentication (S140). The second authentication may be performed through the already switched connection. That is, the switch call may be performed as an authentication call after the first authentication is successful.

If the second authentication as described above is successful, the control module 110 can transmit the authentication signal to the payment-side system 400 (S150), and the payment-side system 400, based on the authentication signal, You can specify the user's card and authorize the payment with the specified card.

Then, the approval result may be transmitted to the mobile terminal 210 through the merchant-point-side device 300 (S160, S161). Or the approval result may be transmitted to the portable terminal 210 through the authentication system 100. [

FIG. 4 is a diagram for explaining a method of specifying a card necessary for settlement in the flow shown in FIG.

4A shows a case where a user performs settlement using a card for which an authentication password is set in the authentication system 100. [ 2 and 4, when the authentication system 100 and the wired terminal 200 are connected to each other by a switch call (S30), the identification module 120 of the authentication system 100 transmits the identification information of the portable terminal 210 And check information (S31). Then, the identification module 120 of the authentication system 100 can determine whether the user has a card for which the authentication password is set through the DB 150. In a case where a plurality of cards are registered, the identification module 120 may further input, through the conversion call, which card is used to perform settlement.

When the card is determined, the first authentication module 130 may perform the first authentication by communicating with the payment-side system 400 corresponding to the selected card (S40). If the first authentication is successful, the second authentication module 140 connects the authentication call to the portable terminal 210 and receives the authentication password set on the card with the authentication code (S50). If the received authentication password matches the previously registered authentication password, that is, if the second authentication is successful, the control module 110 can transmit an authentication signal to the payment-side system 400 (S60). The authentication signal may include a virtual card number corresponding to the card, as described above. Of course, depending on the implementation, the card number of the card may be stored in the DB 150, in which case the card number of the card may be included in the authentication signal.

4B shows a case where a user performs settlement using a card not registered in the authentication system 100. When a switch call is connected between the authentication system 100 and the wired terminal 200 in operation S30, The identification module 120 of the authentication system 100 can receive identification information and check information of the portable terminal 210 (S31). Then, the identification module 120 can further input information for identifying the payment-side system 400 through the conversion call (S32). The information may be the first part of the card number of the card as described above. However, the present invention is not limited thereto, and the entire card number may be input.

Then, the first authentication module 130 identifies the settlement-side system 400 using the input information S32 and performs the first authentication by communicating with the specified settlement-side system 400 (S40).

If the first authentication is successful, the second authentication module 140 may connect the authentication call to the portable terminal 210 and perform the second authentication through the connected authentication call (S50). The second authentication may be an authentication using a one-time password as described above, and in this case, a second portion of the card number capable of specifying the card along with performing the second authentication may be transmitted through the second authentication module 140 Can be input. Of course, simply receiving the second part of the card number may be the second authentication. The second portion may be the remainder of the first portion of the card number, but may be part of the remainder. In the latter case, the security is further enhanced as described above.

If the second authentication is successful, the control module 110 may transmit an authentication signal to the payment-side system 400 (S60). The authentication signal may include the second portion. Then, the settlement side system 400 can approve the payment with the card.

5 is a diagram for explaining a method of specifying a card necessary for settlement in the flow shown in FIG.

5A shows a case where a user performs a settlement using a card for which an authentication password is set in the authentication system 100. FIG. 3 and 5A, when a switching call is connected between the authentication system 100 and the portable terminal 210 in step S100, the identification module 120 of the authentication system 100 transmits the identification information of the portable terminal 210 And receives the check information (S121). Then, the identification module 120 of the authentication system 100 can determine whether the user has a card for which the authentication password is set through the DB 150. In a case where a plurality of cards are registered, the identification module 120 may further input, through the conversion call, which card is used to perform settlement.

When the card is determined, the first authentication module 130 may perform the first authentication by performing communication with the payment-side system 400 corresponding to the selected card (S130). If the first authentication is successful, the second authentication module 140 can receive the authentication password set on the card through the call, that is, the authentication call connected to the portable terminal 210 (S140). If the received authentication password matches the previously registered authentication password, that is, if the second authentication is successful, the control module 110 can transmit an authentication signal to the payment-side system 400 (S150). The authentication signal may include a virtual card number corresponding to the card, as described above. Of course, according to an embodiment, a cache call, which is not a virtual card number of the card, may be stored in the DB 150. In this case, the card number of the card may be included in the authentication signal.

5B illustrates a case where a user performs settlement using a card not registered in the authentication system 100. When a switch call is connected between the authentication system 100 and the portable terminal 210 in operation S120, The identification module 120 of the authentication system 100 confirms the identification information of the portable terminal 210 and receives the check information (S121). In addition, the identification module 120 can further input information for identifying the payment-side system 400 through the conversion call (S122). The information may be the first part of the card number of the card as described above. However, the present invention is not limited thereto, and the entire card number may be input.

Then, the first authentication module 130 identifies the settlement-side system 400 using the input information S122 and performs the first authentication by communicating with the specified settlement-side system 400 (S130).

If the first authentication is successful, the second authentication module 140 may perform the second authentication through the connected conversion call, that is, the authentication call (S140). The second authentication may be an authentication using a one-time password as described above, and in this case, a second portion of the card number capable of specifying the card along with performing the second authentication may be transmitted through the second authentication module 140 Can be input. Of course, simply receiving the second part of the card number may be the second authentication. The second portion may be the remainder of the first portion of the card number, but may be part of the remainder. In the latter case, the security is further enhanced as described above.

If the second authentication is successful, the control module 110 may transmit an authentication signal to the payment-side system 400 (S150). The authentication signal may include the second portion. Then, the settlement side system 400 can approve the payment with the card.

Meanwhile, as described above, the technical idea to input a part of the card number, not the entirety of the card number, from the user and perform card settlement using the card number is not limited to the settlement request through the telephone, but also various payment requests (for example, Payment, etc.).

That is, the first part of the card number of the user's card, i.e., the first part is information capable of specifying the payment-side system, or the second part of the card number, The payment request via telephone does not necessarily have to be performed in order to input the information that can be specified. Also, the first part and the second part do not necessarily need to be input by the different terminals or be input separately. Of course, the first part may be six digits before the card number as described above, and the first part may further include information to be defined for each card issuer in addition to the information for identifying the card issuer.

Upon receiving only the user's information (e.g., date of birth or phone number), the payment-side system receives the first part and the second part, and can input the corresponding user uniquely. In this case, the user information can be settled even if it is not unique information for each user. For example, when the information of the user is the date of birth, the payment side system can sufficiently determine the card of the specific user with only the first part, the second part, and the date of birth. If the first part is the first six digits of the card number and the second part is the last four digits of the card number, generally, since the card number is sixteen digits, When the date of birth, which can be represented by a number, is used, payment can be performed without modification of the professional card payment. Of course, according to an embodiment, the number of digits (e.g., six digits) of the first portion and / or the number of digits (e.g., four digits) of the second portion may be changed, and if the technical idea of the present invention can be implemented That is, the payment-side system can be specified by the first part, and any part of the card can be specified by the second part. For example, the first part may be embodied as the first eight digits of the card number, or may be implemented as five digits or the like. In addition, even when the information of the user is the date of birth or (portable) telephone number, it is not always necessary to input all of the date of birth or (portable) telephone number, and only part of the date of birth or part have. According to the embodiment, information in which a part of the date of birth and a part of the (portable) telephone number are combined (combined) may be used as the user information. Also, the user information to be input by the user may be changed at each payment request. In any case, the user information may be at least a part of the user's information, such as the date of birth or the (portable) phone number, which can be identified on the payment-side system, or may be information that can be generated based thereon.

In any case, the payment-side system can specify a card that matches the first part and the second part and matches the date of birth in which the user's date of birth is entered by the user.

As a result, the settlement side system (for example, credit card company system) has an effect that card settlement can be performed when only the first part, the second part, and the user information are inputted, and the first part, And if the user information is transmitted to the settlement side system in any manner, the card settlement can be possible. Needless to say, conventional mobile phone authentication and authentication using a password can be performed for user authentication.

The first part, the second part, and the user information may be transmitted from any one of the terminals to a predetermined authentication system (for example, a PG system or a VAN system) that mediates the payment system or payment Or the first part, the second part, and the user information may be appropriately transmitted from a plurality of terminals. Also, the terminal need not be a telephone, and the technical idea of the present invention can be implemented even if it is transmitted through any medium.

Conventionally, the entire card number is input to a specific web site or an authentication system (for example, a PG system or the like), or information in which the card number is encrypted is stored in the terminal and the encrypted information is stored Side system or an authentication system. In this case, even if the entire card number is not inputted at the time of settlement, the whole card number had to be inputted once beforehand.

According to another embodiment of the present invention, a card number and information necessary for authentication are stored in advance in an authentication system that mediates card settlement. When a user makes a payment, only a part of a card number is input or simply a card is selected And to do the act. In this case, the entire card number is not input at the time of settlement but only the entire card number must be inputted in advance, and only the card number is stored in the authentication system is different from the above-described conventional technique.

Therefore, in any case, when the entire card number is not registered in advance in the terminal or the authentication system, the entire card number has to be input.

However, according to the technical idea of the present invention, even if the card number is not previously stored in the terminal or in the authentication system, even if the terminal or the authentication system makes a payment for the first time, It is possible to perform card settlement without inputting the entire number.

For example, a user can access a predetermined terminal (e.g., a computer or a mobile terminal) via a wired / wireless network to a web server (e.g., a server that provides a site requiring payment such as an online shopping mall, an open market, . And may be requested to input the card number to the web server or the authentication system for card settlement. Alternatively, a call may be made to a predetermined ARS device or a telephone agent may be requested to input a card number for payment of a predetermined card.

In this case, according to the technical idea of the present invention, the user can input the first part, the second part, and the user's information (e.g., date of birth or telephone number, etc.) instead of inputting the entire card number. The information of the first part, the second part, and the user may be input all at once, and the information of the first part, the second part, and the user may be divided and input have. Also, they may be separately input through different media (e.g., wired / wireless Internet, telephone, etc.). Further, the information of the first part, the second part, and the user may be divided and input, and a predetermined authentication may be performed therebetween before the next information may be input. It will be readily apparent to one of ordinary skill in the art that various other forms of embodiment may be possible.

The authentication system may receive the information of the first part, the second part, and the user through the web server or input directly from the user's terminal. Then, the information of the first part, the second part, and the user, which have been input, can be transmitted to the payment system. Of course, payment information (payment amount, merchant information, etc.) can be further transmitted. According to the embodiment, only the second part and the information of the user can be transmitted. In this case as well, the payment system can specify a specific user's card as described above.

Then, the payment-side system extracts cards having the first part and the second part as card numbers, and the information (e.g., telephone number, date of birth) of the user of the extracted cards is transmitted from the authentication system or from the user's terminal It is possible to specify a card matched with the transmitted information of the user. According to an embodiment, the cards having the second part are extracted using only the second part, and information (e.g., telephone number, date of birth) of the user of the extracted cards is transmitted from the authentication system or from the user's terminal It is possible to specify a card matched with the information of the user. In this case, the first part may not be transmitted to the payment-side system. If one of the cards is not specified by the information of the second part and the user, the first part may be further used. Of course, in this case, the first part may also have to be transmitted.

In any case, the payment-side system must receive at least the second portion and the information of the user, and may further receive the first portion according to an implementation. Then, the card can be specified as described above, and it can be determined whether or not the payment is approved by the specified card.

The card payment method according to an embodiment of the present invention may be implemented in the form of program instructions readable by a computer and stored in a computer-readable recording medium. A control program and a target program according to an embodiment of the present invention may also be stored in a computer Readable recording medium. A computer-readable recording medium includes all kinds of recording apparatuses in which data that can be read by a computer system is stored.

Program instructions to be recorded on a recording medium may be those specially designed and constructed for the present invention or may be available to those skilled in the art of software.

Examples of the computer-readable recording medium include magnetic media such as a hard disk, a floppy disk and a magnetic tape, optical media such as CD-ROM and DVD, a floptical disk, And hardware devices that are specially configured to store and execute program instructions such as magneto-optical media and ROM, RAM, flash memory, and the like. The above-mentioned medium may also be a transmission medium such as a light or metal wire, wave guide, etc., including a carrier wave for transmitting a signal designating a program command, a data structure and the like. The computer readable recording medium may also be distributed over a networked computer system so that computer readable code can be stored and executed in a distributed manner.

Examples of program instructions include machine language code such as those produced by a compiler, as well as devices for processing information electronically using an interpreter or the like, for example, a high-level language code that can be executed by a computer.

The hardware devices described above may be configured to operate as one or more software modules to perform the operations of the present invention, and vice versa.

It will be understood by those skilled in the art that the foregoing description of the present invention is for illustrative purposes only and that those of ordinary skill in the art can readily understand that various changes and modifications may be made without departing from the spirit or essential characteristics of the present invention. will be. It is therefore to be understood that the above-described embodiments are illustrative in all aspects and not restrictive. For example, each component described as a single entity may be distributed and implemented, and components described as being distributed may also be implemented in a combined form.

It is intended that the present invention covers the modifications and variations of this invention provided they come within the scope of the appended claims and their equivalents. .

Claims (8)

Wherein the authentication system is a first part of a card number of a user's card, the first part being information capable of specifying the payment-side system, a second part of the card number, Part of the remainder of the first part, and receiving user information;
Wherein the authentication system transmits the first portion, the second portion, and the user information to a payment-side system corresponding to the first portion,
By the payment-side system,
Wherein the card of the user is specified based on the first portion, the second portion, and the user information, and payment is performed by the specified card.
The card payment method according to claim 1, wherein the first portion is a predetermined number of the predetermined number of the card number, and the second portion is a predetermined number of the card number.
3. The method according to claim 2,
At least a part of the user's date of birth,
At least a portion of the telephone number of the user,
A combination of at least a part of the user's date of birth and telephone number.
The system of claim 1, wherein the authentication system is a first portion of a card number of a user's card, the first portion being information that can identify the payment-side system, a second portion of the card number - Wherein the portion of the card number is part of the remainder of the card number except for the first portion,
And dividing the first part and the second part by different terminals or different media, and inputting the divided part.
Wherein the authentication system is a first part of a card number of a user's card, the first part being information capable of specifying the payment-side system, a second part of the card number, Part of the remainder of the first part, and receiving user information; And
Wherein the authentication system transmits the second portion and the user information to a payment-side system corresponding to the first portion,
By the payment-side system,
Wherein the card of the user is specified based on the second portion and the user information, and the settlement is performed by the specified card.
The first part of the card number of the user's card from the terminal or the authentication system of the payment side system, the first part being the information capable of specifying the payment side system, the second part of the card number - The second part being a part of a card number other than the first part, and receiving user information;
The payment system identifying the card of the user based on the first portion, the second portion, and the user information; And
And the payment-side system determining whether the payment is approved by the specific card.
A second part of the card number of the card number of the user's card from the terminal or the authentication system of the payment side system, the second part being the card number, the first part being the information capable of specifying the payment side system Receiving user information and a portion of the portion;
The payment system identifying the card of the user based on the second portion and the user information; And
And the payment-side system determining whether the payment is approved by the specific card.
A computer-readable recording medium on which a program for carrying out the method according to any one of claims 1 to 7 is recorded.

Images