KR20160008292A - Payment certification server using decoded division code - Google Patents
Payment certification server using decoded division code Download PDFInfo
- Publication number
- KR20160008292A KR20160008292A KR1020140088247A KR20140088247A KR20160008292A KR 20160008292 A KR20160008292 A KR 20160008292A KR 1020140088247 A KR1020140088247 A KR 1020140088247A KR 20140088247 A KR20140088247 A KR 20140088247A KR 20160008292 A KR20160008292 A KR 20160008292A
- Authority
- KR
- South Korea
- Prior art keywords
- code
- mobile terminal
- terminal
- payment
- information
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/02—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Computer Security & Cryptography (AREA)
- Accounting & Taxation (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The present invention relates to a payment method using a mobile terminal, in which the first code of the mobile terminal and the second code of the merchant terminal are discriminated and the settlement is approved, thereby preventing the card information and personal information of the user from being exposed to the merchant The present invention relates to a method and apparatus for decoding a divided code.
To this end, the present invention provides a billing authentication server for decrypting divided codes as follows. The payment authentication server includes an authorization code generation unit for generating a first authorization code and a second authorization code to be transmitted to each of the mobile terminal and the affiliate terminal, a first code and calculation rule information from the mobile terminal, And an authentication processing unit for authenticating a normal payment when the result of applying the calculation rule information to the first and second approval codes is identical to the first code and the second code, .
Description
The present invention relates to a payment method using a mobile terminal, in which the first code of the mobile terminal and the second code of the merchant terminal are discriminated and the settlement is approved, thereby preventing the card information and personal information of the user from being exposed to the merchant The present invention relates to a method and apparatus for decoding a divided code.
In general, since the card payment method uses the user's card to pay the card at the merchant terminal, the personal information of the card user is left at the alias terminal, and the personal information of the card user is frequently leaked. We needed to study the methods of payment that could be protected.
The conventional card merchant terminal makes a payment using the information of the user and transmits the information to the server, so that the personal information of the card user remains at the merchant, and personal information leakage occurs due to the use of the card.
The financial information input method using the symmetric key security algorithm disclosed in Korean Patent No. 641,824 and the commerce system for mobile communication have a problem that the personal information of the user can not be prevented from being exposed to the merchant terminal.
The mobile safe payment method and system disclosed in Korean Patent No. 1,129,168 has a problem in that it is difficult for the user to use simply because the process is complicated.
SUMMARY OF THE INVENTION The present invention has been made to solve the above problems, and it is an object of the present invention to provide a payment authentication server which can prevent user information from being left in the merchant terminal and prevent personal information from being leaked from the merchant, To provide a method of operation.
The technical object of the present invention is not limited to the above-mentioned technical objects and other technical objects which are not mentioned can be clearly understood by those skilled in the art from the following description will be.
To this end, the present invention provides a billing authentication server for decoding a divided code as described below. The payment authentication server includes an approval code generation unit for generating a first approval code and a second approval code to be transmitted to each of the mobile terminal and the affiliate terminal, a first code and calculation rule information from the mobile terminal, And an authentication processing unit for authenticating the normal authentication when the results of applying the calculation rule information to the first and second authorization codes match the first code and the second code, .
According to the present invention, since the user information is not recorded in the merchant terminal, the split code decryption payment method can prevent the user's personal information from being leaked from the merchant in advance, so that it is possible to make settlement more reliably.
1 is a diagram illustrating a schematic operation state of a division code decryption payment method according to the present invention.
2 is a block diagram illustrating components of a mobile terminal according to the present invention.
3 is a block diagram illustrating components of an affiliate terminal according to the present invention.
4 is a block diagram illustrating components of the payment authentication server according to the present invention.
5 is an information processing flowchart illustrating a code generation method using an authentication code according to the first embodiment of the present invention.
6 is an information processing flowchart illustrating a code generation method using an identification code according to a second embodiment of the present invention.
7 is an information processing flowchart illustrating a code generation method using calculation rule information according to a third embodiment of the present invention.
Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings. The sizes and shapes of the components shown in the drawings may be exaggerated for clarity and convenience. In addition, terms defined in consideration of the configuration and operation of the present invention may be changed according to the intention or custom of the user, the operator. Definitions of these terms should be based on the content of this specification. It will be apparent to those skilled in the art that various modifications and variations can be made in the present invention without departing from the spirit or scope of the inventions. Of course.
1 is a diagram illustrating an operating state of a split code decoding billing system using a split code decoding billing server according to an embodiment of the present invention. Hereinafter, the description will be made with reference to FIG. 1, and the components not shown in FIG. 1 are referred to as separate reference drawings.
The division code decryption payment system according to an embodiment of the present invention comprises a
When divided code decoding is performed when two different code values are calculated, when the two values are equal to a reference value (a predetermined value) based on a calculation value, or when a part of two different code values correspond to each other, data is decoded To a plain text).
A mobile phone, a smart phone, a laptop computer, a digital broadcasting terminal, a PDA (personal digital assistant), a PMP (personal digital assistant) A portable multimedia player), navigation, and the like. The mobile terminal may include a wireless communication unit, an audio / video (A / V) input unit, a user input unit, a sensing unit, an output unit, a memory, an interface unit, a control unit, and a battery. A portable terminal having more or fewer components may be implemented.
The
Hereinafter, the components of the
The
The code generation unit 110 includes a first code generation unit 111 and an identification code generation unit 113.
The
The communication unit 130 enables information to be exchanged between the
The NFC
The wireless communication unit 132 transfers the first code or the identification code from the
Alternatively, the communication unit 130 may include an
The
3, the
The code generation unit 210 of the
In the case of other configurations (the
Hereinafter, with reference to FIG. 5 and FIG. 6, two embodiments of a code generation method performed by the code generators 110 and 210 of the
First Embodiment - Code Generation Method Using Authentication Code
5 is a flowchart related to the first embodiment in the code generation method described above. 5, the first code generation unit 111 generates a first code when information communication between the
More preferably, the first code is encrypted through the
As an embodiment of the concrete first code generation method according to the first embodiment, the first code generates a binary number every time a payment is requested (i.e., when information communication with the
Hereinafter, a generation example of the first code and the second code and an authentication method in the
Hereinafter, a specific embodiment of the code generation method and the authentication method according to the first embodiment shown in FIG. 5 will be described. First, when information communication between the
In the case of the first embodiment, in the
Second Embodiment - Code generation method using an identification code
The present invention may be configured as a second embodiment for accepting settlement by jointly creating a separate code called an identification code in the
The identification code generators 113 and 213 of the
According to the second embodiment of the code generation method, the first code generation unit 111 generates the first code using the identification code. As a preferred embodiment, the first code may be generated by combining the unique ID information of the corresponding
In this manner, the first code and the second code are transmitted to the
In the case of the second embodiment, information sharing for payment authentication is not performed between the
The
The authentication method of the authentication processing unit 310 is determined according to the two generation examples of the first code and the second code described above.
According to the first embodiment of the code generation method, the
According to the second embodiment of the code generation method, since the ID information and the identification code of the mobile terminal and the merchant terminal are included in the first code and the second code and are transmitted to the
For higher security, the authentication processing unit 310 may combine the first and second embodiments of the code generation method. For example, if the identification code is 0010 and the approval code is 11111111, if the first code is 0010-00000001, the second code is generated as 0010-11111110. The first four digits of the first digit are made to be able to be authenticated as an identification code, and the second eight digits of the code are used to determine whether the second code of the merchant and the first code operation value of the user coincide with the approval code, . However, the above embodiment is for convenience of description, and the identification code is not actually transmitted as 0010 because it is encrypted by being combined with the unique ID information stored in the
The approval code generation unit 340 generates an approval code. In the first embodiment of the present invention, the authorization code is generated randomly each time the
As a preferred embodiment of the present invention, the
In another embodiment of the present invention, the second code includes merchant information and payment amount information. The merchant information allows the
Third Embodiment A code generation method using calculation rules
In the first and second embodiments described above, the
The third embodiment described with reference to FIG. 7 is different from the first embodiment in that the approval code is divided into a first approval code transmitted to the mobile terminal and a second approval code transmitted to the
First, as in the first embodiment, when the
Thereafter, the
The
The second code generator of the
The authentication processing unit of the
In this embodiment, since the
It will be apparent to those skilled in the art that the present invention may be embodied in other specific forms without departing from the spirit or essential characteristics thereof.
Claims (7)
An authorization code generation unit for generating a first authorization code and a second authorization code to be transmitted to each of the mobile terminal 10 and the affiliate terminal 20;
An authentication server communication unit that receives the first code and calculation rule information from the mobile terminal 10 and receives the second code from the affiliate terminal 20; And
And an authentication processing unit configured to authenticate a normal payment when the result of applying the calculation rule information to the first approval code and the second approval code is identical to the first code and the second code, .
The first code is generated by the first code generator 111 of the mobile terminal,
Wherein the first code generation unit (111) generates the first code by changing one or more values of the first authorization codes transmitted from the authentication server based on the calculation rule information.
Wherein the calculation rule is randomly changed every payment authentication is performed.
The second code is generated by the second code generator 211 of the merchant terminal,
Wherein the second code generation unit (211) generates the second code by changing the second authorization code transmitted from the authentication server (30) based on the calculation rule information.
And the calculation rule information used for generating the second code is transmitted from the mobile terminal.
Wherein when the common identification code is transmitted from the mobile terminal and the merchant terminal, the payment authentication server transmits the first authorization code and the second authorization code to the mobile terminal and the merchant terminal that transmitted the identification code, respectively Code decryption payment server.
Wherein the identification code is generated in each mobile terminal and an affiliate terminal when the mobile terminal establishes communication connection with the affiliate terminal for payment authentication.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020140088247A KR20160008292A (en) | 2014-07-14 | 2014-07-14 | Payment certification server using decoded division code |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020140088247A KR20160008292A (en) | 2014-07-14 | 2014-07-14 | Payment certification server using decoded division code |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20160008292A true KR20160008292A (en) | 2016-01-22 |
Family
ID=55308837
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020140088247A KR20160008292A (en) | 2014-07-14 | 2014-07-14 | Payment certification server using decoded division code |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20160008292A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106897185A (en) * | 2016-07-08 | 2017-06-27 | 阿里巴巴集团控股有限公司 | A kind of method and device of output abnormality |
-
2014
- 2014-07-14 KR KR1020140088247A patent/KR20160008292A/en not_active Application Discontinuation
Non-Patent Citations (2)
Title |
---|
대한민국 등록특허 제1,129,168호 |
대한민국 등록특허 제641,824호 |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106897185A (en) * | 2016-07-08 | 2017-06-27 | 阿里巴巴集团控股有限公司 | A kind of method and device of output abnormality |
CN106897185B (en) * | 2016-07-08 | 2020-04-24 | 阿里巴巴集团控股有限公司 | Method and device for outputting abnormity |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US12021850B2 (en) | Efficient methods for authenticated communication | |
US10785287B2 (en) | Secure binding of software application to a communication device | |
US11068608B2 (en) | Mutual authentication of software layers | |
US20220051237A1 (en) | Secure remote payment transaction processing using a secure element | |
CN105745678B (en) | Secure remote payment transaction processing including consumer authentication | |
CN105556553B (en) | Secure remote payment transaction processing | |
US20160239835A1 (en) | Method for End to End Encryption of Payment Terms for Secure Financial Transactions | |
CN103152174B (en) | It is applied to the data processing method in parking lot, device and managing system of car parking | |
KR20120075590A (en) | System for paying credit card using mobile otp security of mobile phone and method therefor | |
TWI684152B (en) | Payment method and device | |
KR101702748B1 (en) | Method, system and recording medium for user authentication using double encryption | |
EP3702991A1 (en) | Mobile payments using multiple cryptographic protocols | |
KR20160008292A (en) | Payment certification server using decoded division code | |
GB2510793A (en) | Method and apparatus for electronic payment authorization |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
N231 | Notification of change of applicant | ||
E902 | Notification of reason for refusal | ||
E601 | Decision to refuse application |