KR20160049527A - Method for Processing Payment based on Application Program by using One Time Password - Google Patents

Abstract

The purpose of the present invention is to provide a method to process a payment based on an application program using one time password (OTP). The method to process a payment is executed by a server. The method to process a payment comprises: a first step of storing an identification number, generated in a user terminal in which a program realizing OTP is installed when the program is initially operated and stored in the a determined storage area of the user terminal, in a determined storage medium by confirming the identification number; a second step of receiving, in a near field communication terminal, the OTP realized by a program executed in the user terminal and the identification number extracted, by the program, from the determined storage area via a near field communication means of the user terminal when a payment request using the user terminal is confirmed and receiving the OTP and the identification number via a determined path; a third step of determining whether to process a procedure to authenticate the effectiveness of the OTP by performing a procedure to authenticate the effectiveness of the received identification number in advance; and a fourth step of performing a determined procedure to authenticate the effectiveness of the OTP when the effectiveness of the identification number is authenticated. The payment is processed by using a payment means determined based on an authentication result associated with the effectiveness of the OTP.

Description

[0001] APPLE-BASED PAYMENT PROCESSING METHOD USING OTIPE [0002]

The present invention relates to a method executed by a server, in which a user's mobile phone in which a program implementing an OTP (One Time Password) is installed, identifies an identification number generated at the time of starting the program for the first time, And storing the OTP, which is implemented through the program executed by the user's mobile phone, and the identification number extracted from the storage area designated by the program, in a predetermined storage medium through a local communication means of the mobile phone Determining whether to perform a procedure for authenticating the validity of the OTP by performing a procedure for receiving the received identification number through a designated path and authenticating the validity of the received identification number; Is authorized to authenticate the OTP. Performing a car, and the payment, to a five typhimurium app-based payment processing method that is processed using the payment method specified on the basis of a result of authentication, the validity of the OTP.

When a user inputs a mobile phone number and subscriber information through a user terminal and then provides the mobile phone number and subscriber information through a user terminal, the mobile phone user authenticates that the subscriber is a valid subscriber of the communication company through the mobile phone number and subscriber information, If the authentication number received through the user terminal is matched with the authentication number transmitted to the user's mobile phone, the approval number is accepted and the payment amount is charged to the next month's communication fee of the user's mobile phone (Application No. 10-2000-0020757).

However, the leakage of personal information occurs in an irregular manner, and the personal information leaked is publicly traded (or disclosed) through the Internet, and the number of lost cell phones is more than 200,000 per month on average In this situation, anyone who acquires or replicates a mobile phone of another person can have his / her mobile phone settlement approved using the leaked personal information.

Particularly, although the mobile phone settlement approval is performed in real time, the settlement of the settlement amount is performed on the average within 45 days after the approval of the payment, in case of damage using the acquired / copied mobile phone and the leaked personal information, The damage is expected to reach astronomical figures.

An object of the present invention is to provide a method executed by a server, in a user's mobile phone in which a program implementing OTP (One Time Password) is installed, And storing the OTP, which is implemented through the program executed in the user's mobile phone, and the identification number extracted from the storage area designated by the program, in a predetermined storage medium, A second step of receiving, via a short-distance communication means, a terminal at a short distance via a designated path, and a step of authenticating the validity of the OTP by performing a procedure for authenticating the validity of the received identification number When the validity of the identification number is authenticated, And a fourth step of performing a designated procedure for authenticating the validity of the OTP, wherein the payment is an application-based payment processing method using an OTP, which is processed using a specified payment means based on a result of authenticating the validity of the OTP .

A method of an application-based payment processing method using an OTFT according to the present invention is a method executed by a server, the method comprising the steps of: generating, by a user's cellular phone, a program for implementing an OTP (One Time Password) And storing the OTP and the program stored in the designated storage area in the designated storage area, and storing the OTP implemented in the program executed in the user's mobile phone and the designated storage area when the payment request using the user's mobile phone is confirmed A second step of receiving the extracted identification number via a predetermined path by receiving the extracted identification number through a short distance communication terminal of the mobile phone through a short distance communication and a procedure for authenticating the validity of the received identification number, A third step of determining whether to perform a procedure for authenticating And a fourth step of performing a designated procedure for authenticating the validity of the OTP when the validity of the identification number is authentic, wherein the settlement is performed using a specified settlement means based on a result of authenticating the validity of the OTP .

In an app-based payment processing method using an orthopedic device according to the present invention, the identification number is registered through a program first executed in the user's mobile phone.

The method according to the present invention is characterized by further comprising the step of authenticating whether a program registered with the identification number is installed in the user's cellular phone when confirming a payment request using the user's cellular phone .

The method may further include the step of performing a procedure for installing the program in the user's mobile phone when the program is not installed in the user's mobile phone, do.

In the app-based payment processing method using an orthopedic device according to the present invention, the short range communication means includes at least one of Bluetooth communication means using Bluetooth, or near-terminal RF communication means between the user's mobile phone and the near- .

A payment processing method using an orthopedic according to the present invention is a method executed by a server to authenticate the validity of an OTP implemented through a program executed in a user's mobile phone installed with a program implementing an OTP (One Time Password) And storing the identification number to be extracted from the designated storage area of the mobile phone through a program of the mobile phone and storing the identification number in a designated storage medium. When the payment request using the mobile phone of the user is confirmed through the designated payment request terminal, The identification number extracted from the designated storage area of the mobile phone through the OTP implemented through the program installed in the mobile phone of the user and the program of the mobile phone is provided to the payment request terminal through the local communication means provided in the mobile phone A second step of receiving via a specified path, And a third step of matching the identification number through the medium and processing to process the payment requested from the payment request terminal using the specified payment means at the time of validity authentication of the OTP, , A program stored in the mobile phone at the time of initial execution of the program installed in the user's mobile phone and used for verifying the validity of performing the OTP authentication procedure received from the payment request terminal, And a parameter for determining a seed value or a seed value for generating OTP 'to be compared and authenticated.

In a payment processing method using an orthopedic according to the present invention, when confirming a payment request using a mobile phone of a user from a payment request terminal, the payment validity of the payment means specified in the mobile phone of the user using the mobile phone information received from the payment request terminal Further comprising the step of confirming whether a program for implementing OTP for authentication is installed.

The settlement processing method using orthopedics according to the present invention may further comprise a step of matching authentication of the received identification number using the identification number stored in the storage medium when the identification number is received from the payment request terminal, And performing a procedure for authenticating the validity of the received OTP using the information stored in the storage medium based on the result of the verification.

In the payment processing method using orthopedic according to the present invention, the short range communication means includes at least one of Bluetooth communication means using Bluetooth, or proximity RF communication means between the user's cellular phone and the payment request terminal .

The payment processing method using orthopedic according to the present invention may further comprise performing a procedure of providing the program to the mobile phone of the user when the program is not installed in the mobile phone of the user .

In the settlement processing method using orthopedic according to the present invention, the identification number is extracted from a designated storage area of the mobile phone as a result of user authentication through a program executed in the user's mobile phone, And is dynamically generated through the executed program.

A method for processing a mobile phone micropayment using OTP verification information according to the present invention includes providing a mobile phone user selection corresponding to a user mobile phone and an interface for inputting a user mobile phone number and a user's resident registration number in a user terminal connected to a website for a micropayment The method comprising the steps of: receiving mobile communication company selection information, user mobile phone number and user's resident registration number information corresponding to the user's mobile phone through the interface; receiving, by the mobile communication company server corresponding to the received mobile communication company selection information, And transmitting the user's resident registration number information to the mobile communication company server through the mobile communication company server and checking whether the user's mobile phone number and the user's resident registration number match the user authentication result and whether the OTP (One Time Password) If the OTP agent is not installed in the user's mobile phone, processing to transmit a message including a CallBack URL for downloading the OTP agent to the user's mobile phone; and if the OTP agent is installed in the user's mobile phone Or if the OTP agent is downloaded and installed in the user's mobile phone, an OTP generated by the OTP agent provided in the user's mobile phone and an OTP verification information for generating OTP to be compared with the OTP are input to the user's wired terminal Receiving OTP and OTP verification information input through the interface from the user terminal; comparing the received OTP verification information with OTP verification information stored in a storage medium; Verifying the validity of the OTP generation to be compared with the OTP, Determining OTP generation information for generating OTP 'to be compared with the OTP when the generation validity is verified; and determining a fixed seed value and a dynamic seed value for generating OTP' from the OTP generation information, Generating OTP 'using the seed value and the dynamic seed value, comparing the received OTP with the generated OTP' to confirm the micropayment validity of the mobile number, And transmitting the confirmation result to the micropayment target website.

Meanwhile, a method for processing a mobile phone micropayment using OTP verification information according to the present invention includes: a user terminal connected to a web site for a micropayment, an interface for inputting a mobile communication company selection corresponding to a user mobile phone and a user mobile phone number and a user's resident registration number Receiving mobile communication company selection information corresponding to a user's mobile phone, user's mobile phone number and user's resident registration number information through the interface; and transmitting, to the mobile communication company server corresponding to the received mobile communication company selection information, A step of transmitting a mobile phone number and user's resident registration number information, a user authentication result corresponding to a user's mobile phone number and a resident registration number confirmation result through a mobile communication company server, and whether or not an OTP (One Time Password)A step of processing a message including a CallBack URL for downloading an OTP agent to the user's mobile phone when the OTP agent is not installed in the user's mobile phone; Or if the OTP agent is downloaded and installed in the user's mobile phone, an OTP generated by the OTP agent provided in the user's mobile phone and OTP verification information for generating OTP to be compared with the OTP are input to the user's wired terminal Receiving OTP and OTP verification information input from the user terminal through the interface, and transmitting the received OTP and OTP verification information to the OTP agent provider of the user's mobile phone To an OTP server; Receiving a comparison result of the OTP 'generated based on the OTP verification information and the OTP generated in the user's mobile phone; and a step of receiving a result of the micropayment validity check corresponding to the comparison result of the OTP' And transmitting the web page to the payment target website.

Meanwhile, a method for processing a mobile phone micropayment using OTP verification information according to the present invention includes: a user terminal connected to a web site for a micropayment, an interface for inputting a mobile communication company selection corresponding to a user mobile phone and a user mobile phone number and a user's resident registration number Receiving mobile communication company selection information corresponding to a user's mobile phone, user mobile phone number and user's resident registration number information through the interface, and transmitting the selected mobile communication company selection information to the mobile communication company server corresponding to the received mobile communication company selection information Confirming a user authentication result corresponding to a user cell phone number and a result of checking the user's resident registration number, checking whether an OTP (One Time Password) agent is installed in the user's cellular phone through an OTP server, Agent A step of transmitting a message including a CallBack URL for downloading an OTP agent to the user's mobile phone, a step of, if the OTP agent is installed in the user's mobile phone, or an OTP agent is downloaded and installed in the user's mobile phone An interface for inputting an OTP generated by an OTP agent provided in a user's mobile phone and OTP verification information for generating an OTP to be compared with the OTP, to the user's wire terminal; The method comprising: receiving OTP and OTP verification information input through the interface; transmitting the received OTP and OTP verification information to the OTP server; and generating OTP 'and OTP' Receiving a comparison result of an OTP generated in a user's mobile phone; And transmitting the result of the micropayment validity check corresponding to the comparison result of the OTP generated by the user's mobile phone to the micropayment target website.

Meanwhile, a method for processing a mobile phone micropayment using OTP verification information according to the present invention includes: a user terminal connected to a web site for a micropayment, an interface for inputting a mobile communication company selection corresponding to a user mobile phone and a user mobile phone number and a user's resident registration number Receiving user's mobile phone number and user's resident registration number information corresponding to the user's mobile phone through the interface, receiving the user's mobile phone number and the user's resident registration number Checking whether the OTP agent is installed in the user's mobile phone, checking whether the OTP agent is installed in the user's mobile phone, checking a CallBack URL for downloading the OTP agent to the user's mobile phone, This When the OTP agent is installed in the user's mobile phone or when the OTP agent is downloaded and installed in the user's mobile phone, the OTP agent is generated by the OTP agent provided in the user's mobile phone to the user's wired terminal OTP and OTP verification information for generating OTP to be compared with the OTP; receiving OTP and OTP verification information input from the user terminal through the interface; Comparing the received OTP verification information with OTP verification information previously stored in the storage medium to verify the OTP generation efficiency to be compared with the OTP; comparing the OTP verification information with the OTP verification information when the OTP generation efficiency is verified; And generating OTP 'from the OTP generation information; Determines the fixed seed value and the dynamic seed value, generates OTP 'using the determined fixed seed value and the dynamic seed value, compares the received OTP with the generated OTP' And transmitting the result of the micropayment validity check of the mobile phone number to the micropayment target website.

A method of processing a mobile phone micropayment using OTP verification information according to the present invention includes the steps of inquiring a micropayment limit for the user's mobile phone number and processing the approval for the micropayment in response to the micropayment limit search result And further comprising:

The method for processing a mobile phone micropayment using OTP verification information according to the present invention further comprises processing the micropayment payment to be charged to the mobile phone usage fee of the user.

On the other hand, a computer-readable recording medium having recorded thereon a program for executing a method for processing a micropayment for mobile phone using the above-mentioned OTP verification information.

Meanwhile, a mobile phone micropayment processing system using OTP verification information according to the present invention includes a storage medium for storing a user cell phone number, OTP generation information, and OTP verification information in association with each other, and a mobile terminal The user authentication information corresponding to the user's mobile phone number and the user's resident registration number confirmation result through the mobile communication company server corresponding to the received mobile communication company selection information and the user authentication result corresponding to the user's mobile phone number and the user's resident registration number information, (One Time Password) agent is installed, and if the OTP agent is not installed in the user's mobile phone, a message including a CallBack URL for downloading an OTP agent is transmitted to the user's mobile phone, To the user's mobile phone, When the OTP agent is downloaded and installed in the user's mobile phone, the OTP agent generated by the OTP agent included in the user's mobile phone and the OTP verification information for generating the OTP to be compared with the OTP The OTP verification information received through the interface is compared with the OTP verification information stored in the storage medium, and the OTP verification information is compared with the OTP verification information stored in the storage medium, , And when the validity of generation of the OTP is verified, OTP 'is generated through the OTP generation information, and the received OTP is compared with the generated OTP' And a server for confirming whether or not the server is authentic.

Meanwhile, when the mobile communication company selection information, the user mobile phone number, and the user's resident registration number information are received from the user's wired terminal connected to the website for the micropayment, the mobile micropayment processing system using the OTP verification information according to the present invention, The user authentication result corresponding to the user's mobile phone number, the result of checking the user's resident registration number, and whether the OTP (One Time Password) agent is installed in the user's mobile phone through the mobile communication company server corresponding to the communication company selection information, If the OTP agent is installed in the user's mobile phone, or if the OTP agent is installed in the user's mobile phone, or if the OTP agent is installed in the user's mobile phone, Downloaded An OTP generated by an OTP agent provided in a user's cellular phone and an OTP verification information for generating an OTP to be compared with the OTP are provided to the user terminal, A server for receiving the OTP and OTP verification information and transmitting the received OTP and OTP verification information to an OTP server of an OTP agent provided in the user's cellular phone, and a server comparing the OTP verification information and the OTP verification information stored in the storage medium And determines a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information when the validity of the OTP generation is verified and determines the OTP generation information to be compared with the OTP. Generates OTP 'using the determined fixed seed value and the dynamic seed value, and transmits the OTP' and the generated O And an OTP server that compares the mobile phone number with the mobile phone number and verifies the micropayment validity of the mobile phone number.

Meanwhile, a mobile phone micropayment processing system using OTP verification information according to the present invention includes an OTP server that provides and manages an OTP agent to a user's mobile phone, mobile communication company selection information from a user terminal connected to a micro- Number and user resident registration number information is received, the user authentication result corresponding to the user cell phone number and the user's resident registration number confirmation result is confirmed through the mobile communication company server corresponding to the received mobile communication company selection information, (OTP agent) is installed in the user's mobile phone, and if the OTP agent is not installed in the user's mobile phone, a message including a CallBack URL for downloading the OTP agent is transmitted to the user's mobile phone And the user portable When the OTP agent is installed in the mobile phone or when the OTP agent is downloaded and installed in the user's mobile phone, the OTP generated by the OTP agent included in the user's mobile phone and the OTP generated by the OTP agent to be compared with the OTP And a server for receiving the OTP and OTP verification information input through the interface and for transmitting the received OTP and OTP verification information to the OTP server. The OTP server compares the OTP verification information with OTP verification information previously stored in the storage medium to verify the OTP generation efficiency to be compared with the OTP. When the OTP generation efficiency is verified, the OTP server generates the OTP generation information And determines a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information , Generates OTP 'using the determined fixed seed value and dynamic seed value, compares the received OTP with the generated OTP' to check the micropayment validity of the mobile phone number, To the server.

Meanwhile, a mobile phone micropayment processing system using OTP verification information according to the present invention includes a storage medium for storing a user cell phone number, OTP generation information, and OTP verification information in association with each other, and a mobile terminal When the communication company selection information, the user's mobile phone number, and the user's resident registration number information are received, the user authentication result corresponding to the received user's mobile phone number and the result of checking the user's resident registration number and whether or not an OTP (One Time Password) And if the OTP agent is not installed in the user's mobile phone, a message including a CallBack URL for downloading an OTP agent is transmitted to the user's mobile phone, and if the OTP agent is installed in the user's mobile phone, Or OTP When the mobile terminal is downloaded and installed, an interface for inputting OTP generated by the OTP agent provided in the user's mobile phone and OTP verification information for generating OTP to be compared with the OTP is provided to the user's wired terminal, OTP verification information to be compared with the OTP is verified by comparing the received OTP verification information with the OTP verification information stored in the storage medium to verify the OTP generation validity to be compared with the OTP, Determines the OTP generation information, determines a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, generates OTP' using the determined fixed seed value and dynamic seed value , A server for comparing the received OTP and the generated OTP 'to check the micropayment validity of the mobile phone number .

According to the present invention, when mobile communication company selection information corresponding to a user's mobile phone, user's mobile phone number and user's resident registration number information are inputted and transmitted from a user's wired terminal, an OTP (One Time Password) agent And provides an interface for inputting an OTP generated through the user's cellular phone and predetermined OTP verification information to the user's wired terminal only when the OTP agent is installed in the user's cell phone, And transmits the OTP and the OTP verification information to the OTP server. When the OTP and the OTP verification information are transmitted, the validity of generating the OTP 'to be compared with the OTP is authenticated through the OTP verification information. OTP 'through the OTP generation information, (OTP) provided in the mobile phone through a password (or a personal identification number) even if the person who has acquired the mobile phone knows the personal information of the mobile phone user It is advantageous in that the mobile phone payment is not provided and the mobile phone payment is illegally approved.

According to the present invention, by further inputting predetermined OTP verification information in the mobile phone settlement process, if the OTP generation validity is not confirmed through the OTP verification information, it is possible to prevent generation of OTP 'to be compared with the received OTP Thereby preventing unauthorized handset payment from being approved.

1 is a diagram showing a configuration of a cellular phone micropayment processing system using OTP verification information according to a first embodiment of the present invention.
2 is a diagram illustrating a mobile phone settlement process using OTP verification information according to a first embodiment of the present invention.
3 is a diagram illustrating a process of providing an OTP agent to a user's mobile phone according to a first embodiment of the present invention.
4 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a first embodiment of the present invention.
5 is a diagram showing a configuration of a system for processing micropayments for mobile phones using OTP verification information according to a second embodiment of the present invention.
6 is a diagram illustrating a mobile phone settlement process using OTP verification information according to a second embodiment of the present invention.
7 is a diagram illustrating a process of providing an OTP agent to a user's mobile phone according to a second embodiment of the present invention.
FIG. 8 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a second embodiment of the present invention.
FIG. 9 is a diagram showing a configuration of a system for processing a microcontent payment using an OTP verification information according to a third embodiment of the present invention.
10 is a diagram illustrating a mobile phone settlement process using OTP verification information according to a third embodiment of the present invention.
11 is a diagram illustrating a process of providing an OTP agent to a user's mobile phone according to a third embodiment of the present invention.
FIG. 12 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a third embodiment of the present invention.
FIG. 13 is a diagram showing a configuration of a system for processing a micropayment of a mobile phone using OTP verification information according to a fourth embodiment of the present invention.
14 is a diagram illustrating a mobile phone settlement process using OTP verification information according to a fourth embodiment of the present invention.
15 is a diagram illustrating a process of providing an OTP agent to a user's mobile phone according to a fourth embodiment of the present invention.
FIG. 16 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a fourth embodiment of the present invention.

The operation principle of the preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. It should be understood, however, that the drawings and the following detailed description are exemplary and explanatory and are intended to provide further explanation of the invention, and are not to be construed as limiting the present invention. In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. The terms used below are defined in consideration of the functions of the present invention, which may vary depending on the user, intention or custom of the operator. Therefore, the definition should be based on the contents throughout the present invention.

As a result, the technical idea of the present invention is determined by the claims, and the following embodiments are merely means for effectively explaining the technical idea of the present invention to a person having ordinary skill in the art to which the present invention belongs Only.

FIG. 1 is a diagram showing a configuration of a mobile phone micropayment processing system using OTP verification information according to a first embodiment of the present invention.

In more detail, FIG. 1 shows an example of a mobile communication company selection and a user's mobile phone 180 number and an interface for inputting a user's resident registration number to a user terminal (100) connected to a website And receives the mobile communication company selection information corresponding to the user mobile phone 180, the user mobile phone 180 number and the user's resident registration number information from the user's wired terminal 100 through the interface, (One Time Password) agent is installed in the user's mobile phone 180 through the mobile communication company server 175 of the mobile communication company server 175, And an OTP generation unit for inputting OTP generated by the provided OTP agent and OTP verification information for generating OTP 'to be compared with the OTP And receives OTP and OTP verification information input through the interface from the user's wired terminal 100. The OTP verification information is compared with the OTP verification information stored in the storage medium 170 The system checks the OTP 'generation validity to be compared with the OTP, and if the OTP' generation validity is verified, the OTP 'is generated and compared with the received OTP to process a cellular phone micro settlement. Those skilled in the art will be able to refer to and / or modify the FIG. 1 to various embodiments of the mobile phone micropayment processing system using the OTP verification information (for example, Subdivided, or combined practice), but the present invention includes all such contemplated embodiments, Becomes fish, it shall not be limited to the technical features that only the exemplary method shown in the figure 1.

For example, the mobile phone micropayment processing system shown in FIG. 1 can be applied to a system for processing a payment using a payment means of a customer, except that the payment amount is added to the communication fee of the user mobile phone 180, It is a matter of course that the present invention includes all settlement processing systems as described above.

1, the mobile phone micropayment processing system includes a user wired terminal 100 used by a user connected to a micro-settlement target website and a user mobile phone 180 carried by the user, A small-amount settlement target web which allows a user to sell type / intangible goods to the user through the terminal 100, and settle the settlement amount through the mobile phone settlement means which imposes the settlement amount on the sold goods on the communication charges of the user's mobile phone 180 A billing system 110 for processing a mobile phone micropayment using OTP verification information in cooperation with the user terminal 100 and the user mobile phone 180; And a mobile communication company server 175 on a mobile communication network to which the mobile communication terminal 180 is connected. The payment system 110 includes the web server 105, Or in the form of an internal component of the web server 105 or in the form of an internal component of the mobile communication company server 175, It is to be understood that the present invention is not limited thereto.

The user terminal (100) includes at least one personal computer and a notebook having a browser capable of accessing a web server (105) operating the micro-settlement target website, and the web server (105) And a mobile phone settlement interface for inputting the user mobile phone 180 number and the user's resident registration number from the mobile phone 110 to the screen output means, And transmits the selected mobile communication company selection information to the web server 105 or the payment system 110 by inputting the mobile communication company selection information corresponding to the user mobile phone 180 and the user mobile phone 180 number and user's resident registration number information.

The web server 105 has a function of selling the tangible / intangible goods to the user through the wired terminal 100 and charging the mobile phone 180 with a payment amount for the sold goods, The user terminal 100 selects the mobile payment means as the payment means for the payment amount, and the user terminal 100 transmits the payment amount to the mobile terminal 100, Or the billing system 110 may provide the mobile phone settlement interface to the wired terminal 100. The mobile phone settlement interface may be provided to the user terminal 100 through the payment system 110. [

The user mobile phone 180 is a mobile phone possessed by a user who purchases tangible / intangible goods sold by the web server 105, and authenticates the payment validity using the communication charge imposed on the user mobile phone 180 (For example, a screen output, or a function of outputting the generated OTP by using a local communication means such as Bluetooth, Wi-Fi, RF communication, etc.), a function of downloading an OTP agent (Which can be output to the wired terminal 100).

According to the present invention, the user terminal 100 is an example of a first terminal that a user connects to a server through a communication network and purchases tangible / intangible goods to be sold in the server, It is possible to carry out various modifications according to the type and characteristics of the communication network and the server.

According to the present invention, the user mobile phone 180 is an embodiment of a second terminal equipped with an OTP agent for authenticating payment validity for a purchase price of goods purchased through the first terminal, The terminal may include all communication terminals except for the first terminal.

For example, if the server connected to the first terminal is a home shopping server, the first terminal may include a user's IPTV, and the second terminal may include a wired phone / VoIP phone provided near the IPTV can do.

Alternatively, if the server to which the first terminal is connected is an ARS server, the first terminal may include a user's wired telephone / mobile phone / VoIP phone, and the second terminal may include another voice communication The second terminal includes a wired telephone / VoIP phone if the first terminal is a cellular phone, and the second terminal includes a wired / VoIP phone if the first terminal is a cellular phone, The second terminal may include a landline phone / mobile phone if the VoIP phone is a VoIP phone).

In other words, it is clear that the user terminal 100 of the present invention is not limited to the above-described wired terminal and that the user terminal 180 of the present invention is not limited to a mobile phone.

The mobile communication company server 175 is a collective term for a mobile communication company server that is provided on a mobile communication network connected to the user mobile phone 180 and interfaces with the mobile phone. A data exchange server, a WAP (WAP) server for transmitting information (or data) requesting to provide information (or data) to the user mobile phone 180 through a mobile communication system (e.g., an exchange, a base station, It is preferable that the server includes at least one server.

According to an embodiment of the present invention, the mobile communication company server 175 has a function of authenticating a user by inquiring a subscriber D / B (not shown) through a user's mobile phone 180 number and user's resident registration number information, 180 to provide an OTP agent or manage an OTP agent provided to the user's mobile phone 180 through a predetermined OTP server (not shown).

According to the embodiment of the present invention, when the OTP agent is provided to the user's mobile phone 180 or the OTP agent is provided to the user's mobile phone 180, the mobile communication company server 175 transmits the OTP agent to the user's mobile phone 180 It is preferable that the corresponding mobile phone number and the OTP agent information corresponding to the OTP agent included in the user mobile phone 180 are linked and stored.

Here, the OTP agent information may include at least one of version information of an OTP agent, an OTP generation algorithm, and an OTP generation method provided in a user's mobile phone 180 corresponding to the mobile phone number.

Here, the OTP generation algorithm and the OTP generation method can use different algorithms and generation methods for respective OTP agents, and thus the present invention is not limited thereto.

According to the present invention, the billing system 110 includes a mobile phone number 180 corresponding to a user mobile phone 180 having an OTP agent for generating an OTP for authenticating payment validity using a communication fee charged to the user mobile phone 180, OTP generation information including at least one fixed seed value for generating an OTP 'to be compared with the OTP generated through the OTP agent provided in the cellular phone and a parameter for determining a dynamic seed value, And a storage medium 170 for storing and storing OTP verification information for verifying the validity of generating OTP 'via information, or is connected through a communication network.

The mobile phone number is a generic term of information that can identify the user mobile phone 180 and includes at least one of a phone number, an ESN, and a subscriber identification number assigned to the user mobile phone 180, (Or unique code) encrypted in the memory of the mobile phone 180, a USIM serial number assigned to the USIM provided in the user cell phone 180, and a unique number (or unique code) recorded in the USIM .

The OTP generation information includes at least one fixed seed value used for generating an OTP according to the OTP generation algorithm and the OTP generation method in an OTP agent provided in the cellular phone, and a parameter for determining a dynamic seed value .

For example, if the OTP is generated in a time-synchronized manner, the fixed seed value of the OTP generation information includes a seed fixed to be substituted into the time-synchronized OTP generation algorithm, And synchronization time setting information for determining a synchronization time corresponding to the dynamic seed value of the time-synchronized OTP.

Alternatively, if the OTP is generated in a challenge-response manner, the fixed seed value of the OTP generation information includes a seed fixed to be substituted into the challenge-response OTP generation algorithm, and the parameters of the OTP generation information include the challenge- And a random number generation seed for generating a random number corresponding to the dynamic seed value of the response type OTP.

According to the embodiment of the present invention, the OTP generation information is encrypted and stored in the memory of the user's mobile phone 180 in association with the OTP agent downloaded to the user's mobile phone 180, It is desirable to store it in the USIM (capable of storing encrypted data).

The OTP verification information includes OTP agent information stored in the storage medium 170 when receiving the OTP agent generated from the OTP agent and the OTP agent included in the user's mobile phone 180 from the wired terminal 100 A user password or a user's personal identification number for verifying the generation of an OTP to be compared with the OTP.

According to the embodiment of the present invention, the OTP verification information may include a user password or a user's personal identification number input to generate the OTP by driving the OTP agent in the user's mobile phone 180, Or a second user's password or a user's personal identification number that is extracted (or decrypted when decrypted) from the memory (or USIM) provided in the cellular phone via the user's personal identification number or stored in the storage medium 170 It is preferable to include a separate user password or a user personal identification number registered to verify that the OTP to be compared with the OTP is generated using the OTP generation information.

Referring to FIG. 1, the billing system 110 includes a user terminal 120 connected to the web site for a small amount of payment, a mobile communication company 180 corresponding to the user mobile phone 180, A billing interface providing means 115 for providing a mobile phone settlement interface for inputting a resident registration number, mobile communication company selection information corresponding to the user mobile phone 180, user mobile phone 180 number and user's resident registration number And transmits the user's mobile phone 180 number and user's resident registration number information to the mobile communication company server 175 corresponding to the received mobile communication company selection information, The user authentication result corresponding to the number of the user's mobile phone 180 and the user's resident registration number A user authentication means 125 for authenticating the user by reading the user's phone number and checking whether or not an OTP agent is installed in the user's mobile phone 180 corresponding to the user's mobile phone number 180 via the mobile communication company server 175 A message including a callback URL for downloading an OTP agent to the user's mobile phone 180 when the OTP agent is not installed in the user's mobile phone 180; And an agent providing means 135 for processing the information.

When the OTP agent is installed in the user's mobile phone 180 or the OTP agent is downloaded and installed in the user's mobile phone 180, the billing system 110 transmits the OTP agent to the user's wired terminal 100, An OTP interface providing unit 140 for providing an OTP input interface for inputting OTP generated by the OTP agent included in the OTP agent 180 and OTP verification information for generating OTP to be compared with the OTP, An OTP receiving means 145 for receiving OTP and OTP verification information input through the interface from the wired terminal 100; and an OTP receiving means 145 for comparing the received OTP verification information with the OTP verification information stored in the storage medium 170, OTP validation means 150 for verifying the validity of OTP generation to be compared with the OTP, and an OTP validation means 150 for generating OTP 'to be compared with the OTP when the OTP' generation validity is verified. Determines a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, generates OTP' using the determined fixed seed value and dynamic seed value, and transmits the OTP ' A payment validity authentication means 155 for comparing the generated OTP 'to check the micropayment validity of the mobile phone number, an information providing means 155 for transmitting a micropayment validity result of the mobile phone number to the micropayment target website, (160).

According to the present invention, each means constituting the settlement system 110 may be realized as a separate server for each means, or in the form of a predetermined authentication server (or relay server) including the means, The above means may be embodied in the form of a component in the web server 105, or the means may be embodied in the form of a component in the mobile communication server 175, Some of the means may be implemented as components in the web server 105 and some of the means may be implemented as components in the carrier server 175 or some of the means may be implemented as components in the web server 105, The mobile communication company server 175 may be implemented as a component and the rest may be implemented as a separate server. Bayida put out to clarify SHALL not limited by the embodiment to which the present invention method.

The user connects to the web server 105 to purchase the type / intangible goods, and transmits a settlement amount corresponding to the purchase price for the goods to the user via the communication fee charged to the user phone 180 The payment interface providing means 115 may relay the web server 105 directly to the wired terminal 100 or the web server 105 through the communication network to which the wired terminal 100 is connected, The wired terminal 100 is provided with a mobile communication company selection corresponding to the user mobile phone 180 and a mobile phone payment interface for inputting the user mobile phone number 180 and the user's resident registration number.

When the mobile phone settlement interface is provided to the user terminal 100 by the payment interface providing means 115, the information receiving means 120 receives the information input through the mobile phone settlement interface from the user terminal 100 And connects a communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 180 and the user's mobile phone 180 number and the user's resident registration number information.

According to an embodiment of the present invention, the payment interface providing unit 115 connects a communication channel with the user terminal 100 and provides the mobile phone payment interface to the user terminal 100 through the communication channel The information receiving means 120 confirms the user terminal 100 information (for example, IP address) from the communication channel provided to the user terminal 100 through the mobile phone settlement interface, A communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 180 and the user's mobile phone 180 number and user's resident registration number information from the user's wired terminal 100 And a memory area allocated to receive the mobile communication company selection information, the user mobile phone number 180 and the user's resident registration number information, It is preferred to connect the communication thread (Thread) code).

According to another embodiment of the present invention, when the payment interface providing means 115 provides the mobile phone settlement interface to the user terminal 100 through the web server 105, the information receiving means 120 The mobile terminal 100 receives the user terminal 100 information (for example, an IP address) from the web server 105 and selects mobile communication company selection information corresponding to the user mobile phone 180 from the user terminal 100, (For example, a memory allocated to receive the mobile communication company selection information and the user mobile phone 180 number and user's resident registration number information from the wired terminal 100) for receiving the user's mobile phone 180 number and user's resident registration number information Area and a communication thread code).

The communication session encrypts and receives the mobile communication company selection information corresponding to the user mobile phone 180, the user mobile phone 180 number and the user's resident registration number information, Selection information, and a secure communication session for decrypting the user cell phone 180 number and user resident registration number information.

When the user terminal (100) is connected to the communication session, the information receiving means (120) receives from the user terminal (100) through the communication session the mobile communication company selection information corresponding to the user mobile phone (180) (180) number and user resident registration number information.

When the mobile communication company selection information corresponding to the user mobile phone 180, the user mobile phone number 180 and the user's resident registration number information are received from the user's wired terminal 100, the user authentication means 125 transmits the mobile communication company selection information Transmits the user's cell phone number 180 and user's resident registration number information to the corresponding mobile communication company server 175 and transmits the user's cell phone number 180 and user's resident registration number information to the mobile communication company server 175 through the subscriber D / The user authentication means 125 receives and reads the user authentication result and authenticates the user who has made a request for the micropayment of the mobile phone.

The agent checking means 130 transmits the number of the user's mobile phone 180 to the mobile communication company server 175 corresponding to the mobile communication company selection information and the OTP agent D / (Not shown) for checking whether or not an OTP agent for generating an OTP for authenticating the microcontent payment of the mobile phone is provided to the user's mobile phone 180 corresponding to the user's mobile phone 180 number, When the agent confirmation result is formed and transmitted, the agent checking means 130 receives and reads the OTP agent check result and generates an OTP agent for authenticating the mobile phone settlement to the user phone 180 Or the like.

According to the embodiment of the present invention, the agent checking means 130 receives and confirms the OTP agent checking result corresponding to the number of the user's mobile phone 180 transmitted to the mobile communication company server 175 by the user authentication means 125 It is preferable to check whether the OTP agent for reading OTP for authenticating the cellular phone settlement of payment to the user's cellular phone 180 is present.

If the OTP agent for generating the OTP for authenticating the cellular phone micro settlement is not provided to the user's mobile phone 180 as a result of the confirmation of the agent confirmation means 130, And a message including a callback URL for downloading an OTP agent is transmitted to the user mobile phone 180. [

According to the embodiment of the present invention, when it is confirmed that the OTP agent is not provided in the user's mobile phone 180, the agent providing means 135 displays a pop-up output via the mobile phone payment interface provided to the user terminal 100 Or an OTP agent download request (or a menu) included in the mobile phone settlement interface and output, and transmits the OTP agent download request to the user's mobile phone 180 in response to the OTP agent download request, It is desirable to process the message including the callback URL for OTP agent download to be transmitted.

The callback portal for downloading the OTP agent includes URL information of the mobile communication company server 175 or a predetermined OTP server that is configured / The user's mobile phone 180 having received the message including the callback URL may download the OTP agent according to the OTP agent download procedure using the predetermined mobile communication network, (180).

After the OTP agent is downloaded to the user's mobile phone 180, the mobile communication company server 175 (or the OTP server) provided with the OTP agent to the user's mobile phone 180 receives the OTP agent OTP generation information for generating an OTP to the user's mobile phone 180 via the network.

According to an embodiment of the present invention, the mobile communication company server 175 (or the OTP server) allocates one or more fixed seed values for generating an OTP through an OTP agent provided in the user mobile phone 180, Generating (or extracting from the database storing OTP generation information) OTP generation information including one or more fixed seed values assigned and parameters for determining one or more dynamic seed values required to generate an OTP through the OTP agent, It is preferable that the generated OTP generation information is provided to the user's mobile phone 180 through a mobile communication network and the OTP generation information is provided to the mobile phone server 175 Connects the secure mobile communication channel with the user mobile phone 180. [

According to the embodiment of the present invention, after the OTP agent is downloaded to the user's mobile phone 180 or the OTP agent downloaded to the user's mobile phone 180, It is preferable that the OTP generation information is generated (or extracted) and provided to the user's mobile phone 180. The OTP generation information is encrypted and stored in a memory provided in the user's mobile phone 180, A Universal Subscriber Identity Module (USIM) provided in the user's mobile phone 180).

According to the embodiment of the present invention, after the OTP agent is downloaded to the user's mobile phone 180 or when the OTP agent downloaded to the user's mobile phone 180 is initially executed, And stores the input user password or the user's personal identification number in a memory provided in the mobile phone, or transmits the encrypted OTP to the user's mobile phone 180 The OTP agent outputs an interface for inputting a user's password or a user's personal identification number when the OTP agent is generated by driving the OTP agent, (Or USIM) stored in the memory It is desirable to verify the validity of the OTP generation by comparing the user's password or the user's personal identification number.

When the user password or the user's personal identification number is used as the OTP verification information according to an embodiment of the present invention, the OTP agent transmits a communication channel (for example, And transmits the user password or the user personal identification number to the billing system 110. The billing system 110 transmits the user password or the user personal identification number to the billing system 110, (Or receives the user's personal identification number including the user's resident registration number information), and transmits the OTP verification information including the mobile phone number and the user's password or the user's personal identification number And stores it in the storage medium 170. [

According to another embodiment of the present invention, a second user password or a user personal identification number corresponding to the OTP verification information is stored in a memory (or USIM) provided in the user's mobile phone 180, in addition to the user password or the user's personal identification number The OTP agent outputs an interface for registering the OTP verification information and transmits a second user password or a user's personal identification number input through the interface to a memory (For example, a secure communication channel based on an encryption / decryption) with the billing system 110 via the user's mobile phone 180 after storing (or encrypting) Transmits a second user's password or a user's personal identification number stored in the memory (or USIM) to the billing system 110) confirms the mobile phone number corresponding to the user's mobile phone 180 that has transmitted the second user's password or the user's personal identification number (or receives the mobile phone number including the user's resident registration number information in the second user's password or the user's personal identification number ) And stores the OTP verification information including the mobile phone number and the second user password or the user's personal identification number in the storage medium 170 in association with each other. When the second user password or the user personal identification number is stored in the memory (or USIM), a second user password stored in the memory (or USIM) or a user personal identification number Is also output.

According to another embodiment of the present invention, when registering a separate user password or user's personal identification number in addition to the user password or the user's personal identification number, the OTP agent outputs an interface for registering the OTP verification information, Decryption-based secure communication channel) with the settlement system 110 through the user's mobile phone 180 when an additional user's password or a user's personal identification number is inputted through the user's mobile phone 180, The billing system 110 transmits the separate user password or the user's personal identification number to the system 110 and the billing system 110 transmits the separate user's password or the mobile phone number corresponding to the user's cell phone 180 that transmitted the user's personal identification number Confirmation (or the separate user password or user personal identification number Receiving information including a user social security number) and, in conjunction the OTP verification information including the separate user password or the user's personal identification number and the mobile phone number is stored in the storage medium 170.

When the OTP agent is found installed in the user mobile phone 180 by the agent checking means 130 or when the OTP agent is downloaded and installed in the user mobile phone 180 through the agent providing means 135, The OTP interface providing means 140 receives the OTP generated by the OTP agent included in the user's mobile phone 180 and verifies the validity of generating the OTP 'to be compared with the OTP And an OTP input interface for inputting OTP verification information for providing the OTP verification information.

According to the embodiment of the present invention, the OTP interface providing unit 140 directly or indirectly relays the web server 105 to the wired terminal 100 through a communication network connected to the wired terminal 100 It is preferable that the OTP input interface is provided to the user terminal 100.

When the OTP input interface is provided to the wired terminal 100 by the OTP interface providing means 140, the OTP receiving means 145 receives the OTP input interface from the wired terminal 100 via the OTP input interface OTP and OTP verification information, and may be omitted when a communication session with the user terminal 100 is connected.

According to an embodiment of the present invention, the OTP interface providing unit 140 connects a communication channel with the user terminal 100 and provides the OTP input interface to the user terminal 100 via the communication channel The OTP receiving means 145 confirms the user terminal 100 information (for example, IP address) from the communication channel provided to the user terminal 100 via the OTP input interface, (For example, communication with a memory area allocated for receiving the OTP and OTP verification information from the wired terminal 100) for receiving the OTP and OTP verification information from the wired terminal 100 A thread code) is preferably connected.

According to another embodiment of the present invention, when the OTP interface providing unit 140 provides the OTP input interface to the wired terminal 100 through the web server 105, the OTP receiving unit 145 A communication session for receiving the user terminal 100 information (e.g., IP address) from the web server 105 and receiving the OTP and OTP verification information from the user terminal 100 based on the information , And a memory area and a communication thread (Thread) code allocated to receive the OTP and OTP verification information from the wired terminal 100).

The communication session may include a secure communication session for encrypting and receiving the OTP and OTP verification information, and decrypting the encrypted OTP and OTP verification information.

When a communication session is established with the user terminal 100, the OTP receiving means 145 compares the received OTP with the OTP inputted through the OTP input interface from the user terminal 100 via the communication session And receives OTP verification information for verifying validity of generating OTP '.

The OTP validation means 150 may be configured to provide the OTP input interface to the user terminal 180 by the OTP interface providing means 140 and to provide the OTP input interface to the user terminal 180 from the storage medium 170 (Or the user's resident registration number information) or the OTP verification information associated with the mobile phone number to the user terminal 100 provided with the OTP input interface (for example, the IP address of the wired terminal 100) (For example, DB reference or pointer mapping) with the communication session information connected to the wired terminal 100 and transmits the OTP and OTP verification information from the user wired terminal 100 through the OTP receiving means 145 Is received.

If the OTP and OTP verification information is received from the user terminal 100 through the OTP receiving means 145, the OTP validation means 150 verifies whether the user terminal 140 (100) information or communication session information from the storage medium (170), confirms the OTP verification information connected to the user terminal (100) or the communication session information from the storage medium (170) And verifying the validity of generating OTP 'to be compared with the OTP.

According to another embodiment of the present invention, the OTP validation means 150 may be configured such that the user is authenticated by the user authenticating means 125 or is authenticated by the agent authenticating means 130, Or when the OTP agent is provided to the user's mobile phone 180 by the agent providing means 135, the information of the user terminal 100 and the storage medium 170 It is possible to connect and maintain OTP verification information stored in the OTP verification information, and thus the present invention is not limited thereto.

If the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, the payment validity authentication means 155 generates the OTP' to be compared with the OTP from the storage medium 170 Determining a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, and determining an OTP' to be compared with the received OTP using the determined fixed seed value and dynamic seed value, .

If the OTP 'is generated, the payment validity authentication unit 155 compares the received OTP with the generated OTP' to confirm the payment validity of the mobile phone number, (160) transmits the result of checking the micropayment validity of the mobile phone number to the web server (105) operating the micropayment target website.

Referring to FIG. 1, the billing system 110 includes a settlement processing means (not shown) for processing the settlement amount to be paid through a communication fee charged to the mobile phone when the settlement validity is authenticated by the settlement validity authentication means 155 (165).

According to the method of the present invention, the payment processing unit 165 confirms the payment amount to be charged to the communication rate of the user mobile phone 180 from the web server 105, It is preferable to inquire the payment limit for the number of the user's cell phone 180 and to compare the payment amount with the payment limit to approve payment through the communication fee charged to the mobile phone.

According to another embodiment of the present invention, the payment processing unit 165 can store and manage the number of the user's mobile phone 180 and the corresponding payment limit information through a separate database. In this case, The processing means 165 inquires the settlement limit for the number of the user's cell phone 180 through the database and compares the settlement amount with the settlement limit to approve payment through the communication fee charged to the mobile phone Do.

When payment using the communication fee charged to the mobile phone is approved, the payment processing unit 165 performs processing such that the payment amount is charged to the communication fee for the user mobile phone 180 through the mobile communication company server 175 And transmits payment approval information for the payment amount to the web server 105.

2 is a diagram illustrating a mobile phone settlement process using OTP verification information according to a first embodiment of the present invention.

In more detail, FIG. 2 shows an example of a mobile communication company selection and an interface for inputting a user mobile phone 180 number and a user's resident registration number to a user's wired terminal 100 connected to a web site for a small amount payment And receives the mobile communication company selection information corresponding to the user mobile phone 180, the user mobile phone 180 number and the user's resident registration number information from the user's wired terminal 100 through the interface, (One Time Password) agent is installed in the user's mobile phone 180 through the mobile communication company server 175 of the mobile communication company server 175, And an OTP generation unit for inputting OTP generated by the provided OTP agent and OTP verification information for generating OTP 'to be compared with the OTP Interface. Referring to FIG. 2 and / or modified by those skilled in the art, various implementations of a mobile phone settlement process using the OTP verification information (For example, an operation method in which some steps are omitted or the order is changed). However, the present invention includes all of the above-described embodiments, and the technical features Is not limited.

Hereinafter, the billing system 110 shown in FIG. 1 is referred to as a "server"

Referring to FIG. 2, a user connects to the web server 105 to purchase a type / intangible product, and transmits a payment amount corresponding to the purchase price for the goods to a communication fee charged to the user phone 180 (200), the server relays the web server (105) directly to the user terminal (100) through the communication network connected to the user terminal (100) A mobile phone settlement interface for inputting a mobile communication company selection number corresponding to the user mobile phone 180 and a user mobile phone number 180 and a user's resident registration number is processed 205 by the user's wired terminal 100, (210) and user resident registration number information received through the mobile phone settlement interface from the mobile communication terminal (210).

If the mobile communication company selection information, the user's mobile phone number 180 and the user's resident registration number information are received from the wired terminal 100 (215), the server accesses the mobile communication company server 175 corresponding to the mobile communication company selection information The mobile communication company server 175 requests the user authentication by transmitting the number of the user's cell phone 180 and the user's resident registration number and transmits the user authentication result of the user's cell phone number and the user's resident registration number information through the subscriber D / The user authentication result is received and read to authenticate the user requesting the micropayment of the mobile phone (220).

If the user is not authenticated (225), the server generates a user authentication error and transmits 230 a user authentication error to the wired terminal 100 (or the user mobile phone 180) and the web server 105.

If the user is authenticated (225), the server transmits the number of the user's mobile phone 180 to the mobile communication company server 175 corresponding to the mobile communication company selection information (the mobile communication company server 175 for user authentication) The user mobile phone 180 corresponding to the number of the user's mobile phone 180 through the OTP agent D / B (not shown) in the mobile communication company server 175, The OTP agent checking result of the OTP agent is received and read to confirm whether or not the OTP agent for generating the OTP agent for authenticating the mobile phone micropayment is provided, The mobile phone 180 checks whether an OTP agent for generating an OTP for authenticating the cellular phone settlement is provided (step 235).

If the OTP agent is not installed in the user's mobile phone 180, the server processes the OTP agent to be provided to the user's mobile phone 180 through the process shown in FIG.

On the other hand, if the OTP agent is installed in the user phone 180, the server generates an OTP generated through the OTP agent included in the user's cell phone 180 and an OTP 'to be compared with the OTP agent An OTP input interface for inputting OTP verification information for verifying validity is provided to the user terminal 100 (245).

3 is a diagram illustrating a process of providing an OTP agent to a user's mobile phone 180 according to a first embodiment of the present invention.

3 is a flowchart illustrating a method for providing an OTP agent to the user's mobile phone 180 when the OTP agent is not installed in the user's mobile phone 180 in the process illustrated in FIG. Message to the user's mobile phone 180 and providing the OTP agent to the user's mobile phone 180 through the message. The present invention is not limited to the above- It is possible to refer to and / or modify the FIG. 3 to infer various implementations (e.g., omitting some steps or changing the order) for providing the OTP agent to the user's mobile phone 180 It should be understood, however, that the present invention includes all such contemplated embodiments, Technical features are not limited.

Hereinafter, the billing system 110 shown in FIG. 1 is referred to as a "server"

Referring to FIG. 3, if the OTP agent is not installed in the user's mobile phone 180 in the process shown in FIG. 2, the server includes a callback URL for downloading the OTP agent to the user's mobile phone 180 The user mobile phone 180 receiving the message in response to the message transmits the message through the mobile communication network to the mobile communication company server 175 (or the OTP server) corresponding to the callback message, Lt; / RTI >

The mobile communication company server 175 (or OTP server) corresponding to the callback URL provides the OTP agent to the user's mobile phone 180 (305).

If the OTP agent is provided 310 to the user's mobile phone 180, the user's mobile phone 180 inputs a user password or a user's personal identification number for generating an OTP through the OTP agent, The password or the user's personal identification number is encrypted and stored in a memory provided in the mobile phone or stored in a USIM provided in the user's cell phone 180 and registered in the memory 315. The stored password is compared with the OTP generated through the OTP agent (Or confirms) OTP verification information for verifying the validity of generating the OTP, and transmits the OTP verification information to the server 320. The server checks the number of the user's cell phone 180 that transmitted the OTP verification information, The number of the user's cell phone 180 and the OTP verification information are linked and stored in the storage medium 170 (325).

4 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a first embodiment of the present invention.

4, the OTP input interface is provided to the user terminal 100 in the process shown in FIG. 2. After receiving the OTP and OTP verification information input through the OTP input interface, The verification result is read and the validity of the OTP 'generation is confirmed. Then, the OTP is generated and compared with the received OTP, the payment validity is verified and the payment approval process is performed. In the technical field of the present invention, , It is possible to refer to and / or modify the FIG. 4 to derive various implementation methods (for example, omitting some steps or changing the order) for the mobile phone payment approval process using the OTP verification information However, it should be understood that the present invention is not limited to the embodiments described above, The characteristics of the product are not limited.

Hereinafter, in FIG. 4, the billing system 110 shown in FIG. 1 is referred to as a "server" for the sake of convenience.

Referring to FIG. 4, after the OTP input interface is provided to the user terminal 100 in the process shown in FIG. 2, the server receives the OTP input from the user terminal 100 via the OTP input interface, And OTP verification information is received (400).

If the OTP and OTP verification information is received (405), the server compares the received OTP verification information with the OTP verification information stored in the storage medium 170 to verify the validity of OTP generation (410).

If the OTP generation validity is not confirmed at step 415, the server generates payment error information and transmits the generated payment error information to the wired terminal 100 (or the user mobile phone 180) and the web server 105 (step 420) .

On the other hand, if the OTP 'generation validity is confirmed (415), the server checks OTP generation information to generate OTP' to be compared with the received OTP (425), and generates OTP ' (430), generates OTP 'using the determined fixed seed value and dynamic seed value, and compares the received OTP with the received OTP to authenticate the payment validity (435).

If the payment validity is not authenticated 440, the server generates payment error information and transmits 420 the payment error information to the wired terminal 100 (or the user mobile phone 180) and the web server 105 (420).

If the payment validity is authenticated 440, the server generates the payment validation result and transmits it to the user terminal 110 (or the user's mobile phone 180) and the web server 105 (step 445) In response to the payment validity result, the payment approval is processed through the communication fee of the user mobile phone 180 (450).

According to the embodiment of the present invention, the server confirms a payment amount to be charged to the communication rate of the user's mobile phone 180 from the web server 105, and transmits the payment amount to the user's mobile phone 180 ), And confirms the settlement through the communication charge imposed on the mobile phone by comparing the settlement amount with the settlement limit.

FIG. 5 is a diagram illustrating a configuration of a system for processing micropayments for mobile phones using OTP verification information according to a second embodiment of the present invention.

In more detail, FIG. 5 shows an interface for inputting a mobile communication company selection corresponding to a user mobile phone 585 and a user's mobile phone number 585 and a user's resident registration number to a user terminal 500 connected to a website And receives the mobile communication company selection information corresponding to the user mobile phone 585, the user mobile phone number 585 and the user's resident registration number information from the user's wired terminal 500 via the interface, (One Time Password) agent is installed in the user's mobile phone 585 via the mobile communication company server 580 and then the user terminal 585 is connected to the user's wired terminal 500 And an OTP generation unit for inputting OTP generated by the provided OTP agent and OTP verification information for generating OTP 'to be compared with the OTP And receives the OTP and OTP verification information input through the interface from the user terminal 500 and transmits the OTP and OTP verification information to the OTP server 570 of the OTP agent provider of the user mobile phone 585, The OTP server 570 processes the micropayment of the mobile phone by authenticating the validity of the OTP 'generation and the validity of the payment, and is a person skilled in the art. (For example, a part of components may be omitted, or a fragmented or combined implementation method) may be inferred from the OTP verification information of the mobile phone micro settlement processing system using the OTP verification information. However, It is to be understood that all of the methods contemplated are contemplated and that the technical features of the method Shall not.

For example, the mobile phone micropayment processing system shown in FIG. 5 can be applied to a system for processing payment using a payment means of a customer, except that the payment amount is added to the communication fee of the user mobile phone 585, It is a matter of course that the present invention includes all settlement processing systems as described above.

5, the mobile phone micropayment processing system includes a user wired terminal 500 used by a user connected to a web site for micropayment and a user mobile phone 585 owned by the user, A small-amount settlement target web that allows a user to sell type / intangible goods to the user through the terminal 500, and settle the settlement amount for the sold goods through the mobile payment means for imposing the payment amount on the user's cellular phone 585 A billing system 510 for processing a mobile phone micropayment using OTP verification information in cooperation with the user terminal 500 and the user mobile phone 585, An OTP server 570 for authenticating payment validity through an OTP generated by an OTP agent provided in the mobile phone 585, The payment system 510 is implemented in the form of an authentication server (or a relay server) connected to the web server 505 and the mobile communication company server 580, It should be understood that the present invention is not limited thereto, and may be implemented in the form of an internal component of the web server 505 or an internal component of the mobile communication company server 580.

The wired terminal 500 includes one or more personal computers and a notebook having a browser capable of accessing a web server 505 operating the micro-settlement target website, and the web server 505 or the billing system And a mobile phone settlement interface for inputting the user mobile phone number and the user's resident registration number from the mobile phone user terminal 510 to the screen output means, And inputs the mobile communication company selection information corresponding to the user mobile phone 585, the user mobile phone number 585 and the user's resident registration number information to the web server 505 or the payment system 510 via the interface.

The web server 505 has a function of selling a type / intangible goods to the user through the wired terminal 500, and a mobile payment means for charging a sales amount of the goods to the user mobile phone 585 If the user terminal 500 selects the mobile phone payment means as the payment means for the payment amount, the user terminal 500 determines that the mobile terminal 500 is a mobile terminal, The mobile phone payment interface is provided to the user terminal 500 through the payment system 510 or the mobile phone payment interface is provided to the user terminal 500 through the payment system 510. [

The user mobile phone 585 is a mobile phone possessed by a user who purchases tangible / intangible goods sold by the web server 505, and authenticates the payment validity using the communication charge imposed on the user mobile phone 585 (For example, a screen output, or a function of outputting the generated OTP by using a local communication means such as Bluetooth, Wi-Fi, RF communication, etc.), a function of downloading an OTP agent (Which can be output to the wired terminal 500).

According to the present invention, the user terminal 500 is an example of a first terminal that a user connects to a server through a communication network and purchases tangible / intangible goods to be sold in the server, It is possible to carry out various modifications according to the type and characteristics of the communication network and the server.

According to the present invention, the user mobile phone 585 is an embodiment of a second terminal equipped with an OTP agent for authenticating payment validity for a purchase price of goods purchased through the first terminal, The terminal may include all communication terminals except for the first terminal.

For example, if the server connected to the first terminal is a home shopping server, the first terminal may include a user's IPTV, and the second terminal may include a wired phone / VoIP phone provided near the IPTV can do.

Alternatively, if the server to which the first terminal is connected is an ARS server, the first terminal may include a user's wired telephone / mobile phone / VoIP phone, and the second terminal may include another voice communication The second terminal includes a wired telephone / VoIP phone if the first terminal is a cellular phone, and the second terminal includes a wired / VoIP phone if the first terminal is a cellular phone, The second terminal may include a landline phone / mobile phone if the VoIP phone is a VoIP phone).

That is, it is to be appreciated that the user terminal 500 of the present invention is not limited to the above-described wired terminal and that the user terminal 585 of the present invention is not limited to a mobile phone.

The mobile communication company server 580 is a collective term for a mobile communication company server that is provided on a mobile communication network connected to the user mobile phone 585 and interfaces with the mobile phone. A data exchange server, a WAP (WAP) server for transmitting information (or data) requesting to provide information (or data) to the user's mobile phone 585 via a mobile communication system (e.g., It is preferable that the server includes at least one server.

According to the embodiment of the present invention, the mobile communication company server 580 has a function of authenticating a user by inquiring a subscriber D / B (not shown) through a user's mobile phone number 585 and user's resident registration number information, 585 to an OTP agent provided to the user's mobile phone 585 through an OTP server 570 that provides an OTP agent.

According to the embodiment of the present invention, when the OTP agent is provided to the user's mobile phone 585 or the OTP agent is provided to the user's mobile phone 585, the mobile communication company server 580 may transmit the OTP agent to the user's mobile phone 585 It is preferable that the corresponding mobile phone number and the OTP agent information corresponding to the OTP agent included in the user mobile phone 585 are linked and stored.

Here, the OTP agent information may include at least one of version information of an OTP agent, an OTP generation algorithm, and an OTP generation method provided in a user's mobile phone 585 corresponding to the mobile phone number.

Here, the OTP generation algorithm and the OTP generation method can use different algorithms and generation methods for respective OTP agents, and thus the present invention is not limited thereto.

The OTP server 570 authenticates the payment validity through the OTP generated by the OTP agent included in the user's mobile phone 585. The OTP server 570 may include an OTP agent for generating the OTP To determine one or more fixed seed values and a dynamic seed value for generating an OTP 'to be compared with an OTP generated through an OTP agent provided in the cellular phone, And a storage medium 575 for storing OTP verification information for verifying the validity of generating OTP 'through the OTP generation information in association with each other, .

The mobile phone number is a generic term of information capable of identifying the user mobile phone 585 and includes at least one of a phone number, an ESN, and a subscriber identification number assigned to the user mobile phone 585, (Or unique code) encrypted in the memory of the cellular phone 585, a USIM serial number assigned to the USIM provided in the user cellular phone 585, and a unique number (or unique code) recorded in the USIM .

The OTP generation information includes at least one fixed seed value used for generating an OTP according to the OTP generation algorithm and the OTP generation method in an OTP agent provided in the cellular phone, and a parameter for determining a dynamic seed value .

For example, if the OTP is generated in a time-synchronized manner, the fixed seed value of the OTP generation information includes a seed fixed to be substituted into the time-synchronized OTP generation algorithm, And synchronization time setting information for determining a synchronization time corresponding to the dynamic seed value of the time-synchronized OTP.

Alternatively, if the OTP is generated in a challenge-response manner, the fixed seed value of the OTP generation information includes a seed fixed to be substituted into the challenge-response OTP generation algorithm, and the parameters of the OTP generation information include the challenge- And a random number generation seed for generating a random number corresponding to the dynamic seed value of the response type OTP.

According to the embodiment of the present invention, the OTP generation information is encrypted in the memory of the user's mobile phone 585 in association with the OTP agent downloaded to the user's mobile phone 585, or stored in the user's mobile phone 585 It is desirable to store it in the USIM (capable of storing encrypted data).

The OTP verification information may include OTP agent information stored in the storage medium 575 when receiving the OTP agent generated from the OTP agent and the OTP agent provided in the user's cellular phone 585 from the wired terminal 500 A user password or a user's personal identification number for verifying the generation of an OTP to be compared with the OTP.

According to the embodiment of the present invention, the OTP verification information may include a user password or a user's personal identification number inputted to generate the OTP by driving the OTP agent in the user's mobile phone 585, Or a second user's password or a user's personal identification number extracted (or decrypted when decrypted) from the memory (or USIM) provided in the cellular phone via the user's personal identification number or stored in the storage medium 575 It is preferable to include a separate user password or a user personal identification number registered to verify that the OTP to be compared with the OTP is generated using the OTP generation information.

The OTP server 570 compares the OTP verification information with the OTP verification information stored in the storage medium 575 to obtain OTP and OTP verification information to be compared with the OTP verification information, When the generation validity of the OTP 'generation is verified, OTP generation information for generating OTP' to be compared with the OTP is confirmed, and a fixed seed value for generating OTP 'from the OTP generation information and a dynamic seed value , Generates OTP 'using the determined fixed seed value and dynamic seed value, compares the received OTP with the generated OTP' to check the micropayment validity of the mobile phone number, 510).

Referring to FIG. 5, the billing system 510 may include a mobile communication company selection corresponding to a user mobile phone 585, a user mobile phone 585 number, A billing interface providing means 515 for providing a mobile phone settlement interface for inputting a resident registration number, mobile communication company selection information corresponding to the user mobile phone 585 through the mobile phone payment interface, user's mobile phone 585 number and user's resident registration number The mobile communication company server 580 transmits the user's mobile phone number and user's resident registration number information to the mobile communication company server 580 corresponding to the received mobile communication company selection information, Receives the user authentication result corresponding to the number of the user's mobile phone 585 and the identification number of the user's resident registration number, A user authentication means 525 for authenticating the user by reading the user's phone number and confirming whether the OTP agent is installed in the user's mobile phone 585 corresponding to the user's mobile phone number 585 via the mobile communication company server 580 A message including a callback URL for downloading an OTP agent to the user's mobile phone 585 when the OTP agent is not installed in the user's mobile phone 585; And an agent providing means (535) for processing the information.

When the OTP agent is installed in the user's mobile phone 585 or the OTP agent is downloaded and installed in the user's mobile phone 585, An OTP interface providing unit 540 for providing an OTP input interface for inputting OTP generated by the OTP agent provided in the OTP agent 585 and OTP verification information for generating OTP to be compared with the OTP, An OTP receiving unit 545 for receiving OTP and OTP verification information input through the interface from the wired terminal 500; and an OTP receiving unit 545 for receiving the OTP and OTP verification information from the OTP agent provider An OTP providing unit 550 for transmitting the OTP generated from the OTP server 570 to the OTP server 570, an OTP 'based on the OTP verification information from the OTP server 570, An authentication result receiving means 555 for receiving a comparison result, and an information providing means for transmitting a result of a micropayment validity check result corresponding to the comparison result of OTP 'generated by the OTP' and the user's mobile phone 585 to the website And means (560).

According to the present invention, each of the means constituting the payment system 510 may be implemented as a separate server for each of the means, or in the form of a predetermined authentication server (or relay server) including the means, The above means may be implemented in the form of a component in the web server 505, or the means may be implemented in the form of a component in the mobile communication company server 580, Some of the means may be implemented as components in the web server 505 and the remainder may be implemented as components in the mobile carrier server 580 or some of the means may be implemented as components in the web server 505, And the remainder may be implemented as separate servers, and the billing system 510 may be implemented as a separate server Bayida put out to clarify SHALL not limited by the embodiment to which the present invention method.

The user connects to the web server 505 to purchase the type / intangible goods, and transmits a settlement amount corresponding to the purchase price for the goods to the mobile phone 585 through the communication fee charged to the user mobile phone 585 The payment interface providing means 515 may relay the web server 505 directly to the wired terminal 500 through the communication network to which the wired terminal 500 is connected, The wired terminal 500 is provided with a mobile communication company selection corresponding to the user mobile phone 585 and a mobile phone payment interface for inputting the user mobile phone number 585 and the user's resident registration number.

When the mobile phone payment interface is provided to the user terminal 500 by the payment interface providing means 515, the information receiving means 520 receives the mobile phone payment interface input from the user terminal 500 through the mobile phone payment interface And connects a communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 585 and the user's mobile phone 585 number and the user's resident registration number information.

According to an embodiment of the present invention, the payment interface providing unit 515 connects a communication channel with the user terminal 500 and provides the mobile phone payment interface to the user terminal 500 through the communication channel The information receiving means 520 confirms the user terminal 500 information (for example, an IP address) from the communication channel provided to the user terminal 500 through the mobile phone settlement interface, A communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 585 and the user's mobile phone number 585 and the user's resident registration number information from the user terminal 500 And a memory area allocated to receive the mobile communication company selection information, the user mobile phone number 585 and the user's resident registration number information, It is preferred to connect the communication thread (Thread) code).

According to another embodiment of the present invention, when the payment interface providing unit 515 provides the mobile phone settlement interface to the user terminal 500 through the web server 505, the information receiving unit 520 The mobile terminal 500 receives information on the user's wired terminal 500 from the web server 505 and selects the mobile communication company selection information corresponding to the user's mobile phone 585 from the wired terminal 500, (E.g., a memory allocated to receive the mobile communication company selection information and the user's mobile phone number 585 and user's resident registration number information from the wired terminal 500) for receiving the user's mobile phone number 585 and user's resident registration number information Area and a communication thread code).

Here, the communication session encrypts and receives the mobile communication company selection information corresponding to the user mobile phone 585, the user mobile phone 585 number and the user's resident registration number information, and transmits the encryption key to the mobile communication company 585 corresponding to the encrypted user mobile phone 585, Selection information, and a secure communication session for decrypting the user cell phone number 585 and user resident registration number information.

When the communication session is established with the user terminal 500, the information receiving means 520 receives the carrier selection information corresponding to the user's mobile phone 585 from the user terminal 500 through the communication session, (585) number and user resident registration number information.

When the mobile communication company selection information corresponding to the user's mobile phone 585, the user's mobile phone number 585 and the user's resident registration number information are received from the user's wired terminal 500, the user authentication means 525 adds Transmits the user's mobile phone number 585 and user's resident registration number information to the corresponding mobile communication company server 580 and transmits the user's resident registration number information and the user's resident registration number information to the mobile phone company server 580 via the subscriber D / The user authentication means 525 receives and reads the user authentication result, and authenticates the user who has requested the mobile phone micro settlement.

The agent confirmation means 530 transmits the number of the user's cellular phone 585 to the mobile communication company server 580 corresponding to the mobile communication company selection information and transmits the number of the user's cellular phone 585 to the OTP agent D / (Not shown), an OTP agent for generating an OTP for authenticating the cellular phone settlement of payment is provided to the user's cellular phone 585 corresponding to the number of the user's cellular phone 585, When the agent confirmation result is configured and transmitted, the agent confirmation unit 530 receives and reads out the OTP agent confirmation result and has an OTP agent for generating an OTP for authenticating the mobile phone micropayment to the user mobile phone 585 Or the like.

According to the embodiment of the present invention, the agent checking means 530 receives and confirms the OTP agent checking result corresponding to the number of the user's cellular phone 585 transmitted to the mobile communication company server 580 by the user authentication means 525 And confirms whether the OTP agent for generating OTP for authenticating the cellular phone settlement of payment to the user's cellular phone 585 is provided.

If the OTP agent for generating the OTP for authenticating the cellular phone micro settlement is not provided to the user's cellular phone 585 as a result of the confirmation of the agent confirmation means 530, And a message including a callback URL for downloading an OTP agent is transmitted to the user's mobile phone 585. [

According to the embodiment of the present invention, when it is confirmed that the OTP agent is not provided in the user's mobile phone 585, the agent providing means 535 outputs a pop-up output via the mobile phone payment interface provided to the user's wired terminal 500 Or an OTP agent download request (or a menu) included in the mobile phone payment interface and output, and transmits the OTP agent download request to the user's cellular phone 585 in response to the OTP agent download request, It is desirable to process the message including the callback URL for OTP agent download to be transmitted.

The callback URL for downloading the OTP agent preferably includes the URL information of the OTP server 570 that provides the OTP agent to the user's mobile phone 585. In addition, The user's cellular phone 585 downloads the OTP agent according to the OTP agent download procedure using the predetermined mobile communication network and mounts the OTP agent in the user's cellular phone 585.

After the OTP agent is downloaded to the user's mobile phone 585, the OTP server 570 provided by the OTP agent to the user's mobile phone 585 generates an OTP through the OTP agent provided in the user's mobile phone 585 To the user's cellular phone 585. The user's cellular phone 585 is connected to the Internet.

According to an embodiment of the present invention, the OTP server 570 allocates one or more fixed seed values for generating an OTP through an OTP agent provided in the user's cellular phone 585, (Or extracts OTP generation information from the database storing the OTP generation information) including a parameter and a parameter for determining one or more dynamic seed values necessary for generating an OTP through the OTP agent, and generates the generated OTP generation information The OTP server 570 may provide the OTP generation information to the user's mobile phone 585 through the mobile communication network 585. The OTP server 570 may provide the OTP generation information to the user's mobile phone 585, Lt; / RTI >

According to the embodiment of the present invention, after the OTP agent is downloaded to the user's cellular phone 585 or when the OTP agent downloaded to the user's cellular phone 585 is initially executed, the OTP server 570 generates the OTP The OTP generation information may be encrypted and stored in a memory provided in the user's cellular phone 585 or may be stored in the user's cellular phone 585 A Universal Subscriber Identity Module (USIM)).

According to the embodiment of the present invention, after the OTP agent is downloaded to the user's mobile phone 585 or when the OTP agent downloaded to the user's mobile phone 585 is initially executed, the user's mobile phone 585 transmits the OTP agent A user password or a user's personal identification number for generating an OTP is input to the mobile phone 585 and the input user password or the user's personal identification number is encrypted and stored in a memory provided in the mobile phone, The OTP agent outputs an interface for inputting a user's password or a user's personal identification number when the OTP agent is generated by driving the OTP agent, (Or USIM) stored in the memory It is desirable to verify the validity of the OTP generation by comparing the user's password or the user's personal identification number.

According to one embodiment of the present invention, when the user password or the user's personal identification number is used as the OTP verification information, the OTP agent communicates with the payment system 510 through the user's mobile phone 585, And transmits the user password or the user personal identification number to the payment system 510. The payment system 510 transmits the user password or the user personal identification number to the payment system 510, (Or receives the user's personal identification number including the user's resident registration number information), and transmits the OTP verification information including the mobile phone number and the user's password or the user's personal identification number And stores it in the storage medium 575.

According to another embodiment of the present invention, a second user password or a user personal identification number corresponding to the OTP verification information is stored in a memory (or USIM) provided in the user's cellular phone 585 in addition to the user password or the user's personal identification number The OTP agent outputs an interface for registering the OTP verification information and transmits a second user password or a user's personal identification number inputted through the interface to the memory (E.g., a secure communication channel based on an encryption / decryption) with the billing system 510 via the user's mobile phone 585 after storing (or encrypting) the billing system 510 Transmits a second user's password or a user's personal identification number stored in the memory (or USIM) to the billing system 510) confirms the mobile phone number corresponding to the user mobile phone 585 that has transmitted the second user password or the user personal identification number (or receives the mobile phone number including the user's resident registration number information in the second user password or the user personal identification number ), And stores the OTP verification information including the mobile phone number and the second user password or the user's personal identification number in the storage medium 575. When the second user password or the user personal identification number is stored in the memory (or USIM), a second user password stored in the memory (or USIM) or a user personal identification number Is also output.

According to another embodiment of the present invention, when registering a separate user password or user's personal identification number in addition to the user password or the user's personal identification number, the OTP agent outputs an interface for registering the OTP verification information, Decryption-based secure communication channel) with the settlement system 510 through the user's mobile phone 585 when an additional user password or a user's personal identification number is input through the user's mobile phone 585, The billing system 510 transmits the separate user password or the user's personal identification number to the system 510 and the billing system 510 transmits the separate user's password or the mobile phone number corresponding to the user's cellular phone 585 that transmitted the user's personal identification number Confirmation (or the separate user password or user personal identification number Receiving information including a user social security number) and, in conjunction the OTP verification information including the separate user password or the user's personal identification number and the mobile phone number is stored in the storage medium (575).

If the OTP agent is found installed in the user's mobile phone 585 by the agent checking means 530 or if the OTP agent is downloaded and installed in the user's mobile phone 585 through the agent providing means 535, The OTP interface providing unit 540 inputs the OTP generated by the OTP agent included in the user's mobile phone 585 to the user terminal 500 and verifies the validity of generating the OTP to be compared with the OTP And an OTP input interface for inputting OTP verification information for providing the OTP verification information.

According to an embodiment of the present invention, the OTP interface providing unit 540 directly or indirectly relays the web server 505 to the user terminal 500 through a communication network connected to the user terminal 500 It is preferable that the OTP input interface is provided to the user terminal 500.

When the OTP input interface is provided to the wired terminal 500 by the OTP interface providing means 540, the OTP receiving means 545 receives the OTP input interface from the user terminal 500 through the OTP input interface OTP and OTP verification information, and may be omitted when a communication session with the user terminal 500 is connected.

According to an embodiment of the present invention, the OTP interface providing unit 540 connects a communication channel with the wired terminal 500 and provides the OTP input interface to the wired terminal 500 through the communication channel The OTP receiving means 545 confirms the user terminal 500 information (for example, an IP address) from the communication channel provided to the user terminal 500 through the OTP input interface, (For example, communication with a memory area allocated to receive the OTP and OTP verification information from the wired terminal 500) for receiving the OTP and OTP verification information from the wired terminal 500 A thread code) is preferably connected.

According to another embodiment of the present invention, when the OTP interface providing unit 540 provides the OTP input interface to the wired terminal 500 through the web server 505, the OTP receiving unit 545 (For example, IP address) from the web server 505 and receives a communication session for receiving the OTP and OTP verification information from the user terminal 500 based on the information , And a memory area and a communication thread (Thread) code allocated to receive the OTP and OTP verification information from the user terminal 500.

The communication session may include a secure communication session for encrypting and receiving the OTP and OTP verification information, and decrypting the encrypted OTP and OTP verification information.

When the user terminal 500 is connected to the communication session, the OTP receiving means 545 compares the OTP inputted through the OTP input interface and the OTP from the user terminal 500 via the communication session The OTP providing unit 550 receives the OTP and OTP verification information from the OTP agent provider 585 included in the user's mobile phone 585, To the OTP server 570 of FIG.

The OTP providing means 550 may be configured to provide the OTP input interface to the user terminal 500 by the OTP interface providing means 540 and to provide the OTP input interface to the mobile phone number corresponding to the user's mobile phone 585 (For example, refer to a DB (see, for example, DB reference) connected to the wired terminal 500 information (for example, IP address of the wired terminal 500) provided with the OTP input interface or communication session information connected to the wired terminal 500 Or pointer reference), and maintains the OTP and OTP verification information from the user terminal 500 through the OTP receiving means 545 until the OTP and OTP verification information is received.

If the OTP and OTP verification information is received from the user terminal 500 through the OTP receiving means 545, the OTP providing means 550 transmits the OTP and OTP verification information to the user terminal 500) information or communication session information, identifies the mobile phone number associated with the user's wired terminal 500 information or communication session information, and transmits the mobile phone number and the received OTP and OTP verification information to the user's mobile phone 585 To the OTP server 570 of the OTP agent provider.

According to another embodiment of the present invention, the OTP provision means 550 may be configured such that the user is authenticated by the user authentication means 525 or the OTP Or when the OTP agent is provided to the user's cellular phone 585 by the agent providing means 535, the user terminal 500 and the mobile phone number are linked and maintained The present invention is not limited thereto.

The OTP server 570 receives the mobile phone number, OTP and OTP verification information from the payment system 510, checks OTP verification information associated with the mobile phone number from the storage medium 575, And verifies the validity of generating OTP 'to be compared with the OTP by comparing the OTP verification information with the OTP verification information.

If the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, the OTP server 570 transmits the OTP' Determines a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, generates an OTP' to be compared with the received OTP using the determined fixed seed value and the dynamic seed value .

If the OTP 'is generated, the OTP server 570 compares the received OTP with the generated OTP' to check the payment validity of the mobile phone number, and transmits the payment validity result to the payment system 510 The authentication result receiving means 555 receives and verifies the payment validity result from the OTP server 570 to confirm the payment validity.

The information providing means 560 transmits the result of the micropayment validity check corresponding to the OTP 'and the OTP generated by the user's mobile phone 585 to the web server 505 operating the micropayment target website .

Referring to FIG. 5, the payment system 510 includes a settlement processing unit 570 for processing the settlement amount through payment of a communication fee charged to the mobile phone when the payment validity is authenticated by the OTP server 570 565). ≪ / RTI >

According to the embodiment of the present invention, the payment processing means 565 confirms the payment amount to be charged to the communication fee of the user's mobile phone 585 from the web server 505, It is preferable to inquire the payment limit for the number of the user's mobile phone 585 and to compare the payment amount with the payment limit to approve payment through the communication fee charged to the mobile phone.

According to another embodiment of the present invention, the payment processing means 565 can store and manage the number of the user's mobile phone 585 and the corresponding payment limit information through a separate database. In this case, The processing means 565 inquires the payment limit for the number of the user's mobile phone 585 through the database and compares the payment amount with the payment limit to approve payment through the communication fee charged to the mobile phone Do.

When payment using the communication fee charged to the mobile phone is approved, the payment processing unit 565 performs processing such that the payment amount is charged to the communication fee for the user mobile phone 585 through the mobile communication company server 580 And transmits payment approval information for the payment amount to the web server 505.

6 is a diagram illustrating a mobile phone settlement process using OTP verification information according to a second embodiment of the present invention.

In more detail, FIG. 6 shows an interface for inputting a mobile communication company selection corresponding to a user mobile phone 585 and a user mobile phone number 585 and a user's resident registration number to a user terminal 500 connected to a web site for a small amount payment And receives the mobile communication company selection information corresponding to the user mobile phone 585, the user mobile phone number 585 and the user's resident registration number information from the user's wired terminal 500 via the interface, (One Time Password) agent is installed in the user's mobile phone 585 via the mobile communication company server 580 and then the user terminal 585 is connected to the user's wired terminal 500 And an OTP generation unit for inputting OTP generated by the provided OTP agent and OTP verification information for generating OTP 'to be compared with the OTP The present invention is not limited to the above embodiments and various changes and modifications may be made without departing from the spirit and scope of the present invention as defined by the following claims. (For example, an operation method in which some steps are omitted or the order is changed). However, the present invention includes all of the above-described embodiments, and the technical features Is not limited.

Hereinafter, in FIG. 6, the payment system 510 shown in FIG. 5 is referred to as a "server" for the sake of convenience.

Referring to FIG. 6, a user accesses the web server 505 to purchase a type / intangible goods and transmits a payment amount corresponding to the purchase price for the goods to a communication fee charged to the user mobile phone 585 (600), the server relays the web server (505) either directly to the user's wired terminal (500) through a communication network connected to the user terminal (500) A mobile phone settlement interface for inputting a mobile communication company selection number corresponding to the user mobile phone 585 and a user mobile phone number 585 and a user's resident registration number is processed 605, (610) whether the mobile communication company selection information input via the mobile phone payment interface and the user's mobile phone number (585) and the user's resident registration number information are received.

If the mobile communication company selection information, the user's mobile phone number 585, and the user's resident registration number information are received from the user's wired terminal 500 in step 615, the server accesses the mobile communication company server 580 corresponding to the mobile communication company selection information The mobile communication company server 580 requests the user authentication by transmitting the number of the user's mobile phone 585 and the user's resident registration number and transmits the user authentication result of the user's mobile phone number 585 and the user's resident registration number information through the subscriber D / And receives and verifies the user authentication result to authenticate the user who requested the microcontent settlement of the mobile phone (620).

If the user is not authenticated (625), the server generates a user authentication error and transmits it to the user terminal (500) (or the user mobile phone (585)) and the web server (505).

If the user is authenticated (625), the server transmits the number of the user's mobile phone (585) to the mobile communication company server (580) corresponding to the mobile communication company selection information (the mobile communication company server (580) The user mobile phone 585 corresponding to the number of the user's mobile phone 585 via the OTP agent D / B (not shown) in the mobile communication company server 580, The OTP agent checking result of the OTP agent is received and read to confirm whether or not the OTP agent for generating the OTP agent for authenticating the mobile phone micropayment is provided, The mobile phone 585 confirms whether an OTP agent for generating an OTP for authenticating the cellular phone settlement is provided (635).

If the OTP agent is not installed in the user's mobile phone 585, the server processes the OTP agent to be provided to the user's mobile phone 585 through the process shown in FIG.

On the other hand, if the OTP agent is installed in the user's cellular phone 585, the server generates an OTP generated through the OTP agent included in the user's cellular phone 585 and an OTP 'to be compared with the OTP An OTP input interface for inputting OTP verification information for verifying validity is provided to the user terminal 500 (645).

7 is a diagram illustrating a process of providing an OTP agent to a user's mobile phone 585 according to a second embodiment of the present invention.

7 is a flowchart illustrating a method for providing the OTP agent to the user's mobile phone 585 when the OTP agent is not installed in the user's mobile phone 585 in the process shown in FIG. Message to the user's cellular phone 585 and providing the OTP agent to the user's cellular phone 585 through the message. The present invention is not limited to the above- , It is possible to refer to and / or modify this FIG. 7 to infer various implementations (e.g., omitting some steps or changing the order) about the process of providing the OTP agent to the user's mobile phone 585 It should be understood, however, that the present invention includes all such contemplated embodiments, Technical features are not limited.

Hereinafter, the billing system 510 shown in FIG. 5 is referred to as a "server"

Referring to FIG. 7, if the OTP agent is not installed in the user's mobile phone 585 in the process shown in FIG. 6, the server includes a callback URL for downloading the OTP agent to the user's mobile phone 585 (700). In response to the message, the user's mobile phone (585) receiving the message requests the OTP agent to the OTP server (570) corresponding to the callback transaction.

The OTP server 570 corresponding to the callback URL provides the OTP agent to the user's mobile phone 585 (705).

If the OTP agent is provided to the user's mobile phone 585 in operation 710, the user's mobile phone 585 inputs a user password or a user's personal identification number for generating an OTP through the OTP agent, The password or the user's personal identification number is stored in the memory provided in the cellular phone or is stored in the USIM provided in the user's mobile phone 585 and registered in the memory 715. The OTP is compared with the OTP generated through the OTP agent (Or confirms) OTP verification information for verifying the validity of generating the OTP ', and transmits the OTP verification information to the server 720. The server confirms the number of the user mobile phone 585 that transmitted the OTP verification information, The number of the user's mobile phone 585 and the OTP verification information are linked and stored in the storage medium 575 (725).

FIG. 8 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a second embodiment of the present invention.

8 is a flow chart illustrating an OTP input interface provided to the user terminal 500 in the process shown in FIG. 6, and the OTP input and the OTP verification input through the OTP input interface in the billing system 510 The OTP server 570 generates OTP 'by verifying the validity of OTP' generation in the OTP server 570, authenticates the validity of the payment by comparing the OTP with the OTP, and provides the OTP to the payment system 510 The payment approval process is performed on the basis of the settlement validity in the settlement system 510. It will be apparent to those skilled in the art that the present invention can be implemented by referring to and / It is possible to infer various implementation methods (for example, omitting some steps or changing the order) regarding the mobile phone payment approval process using the OTP verification information And, the invention is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 8.

Hereinafter, in FIG. 8, the billing system 510 shown in FIG. 5 is referred to as a "server" for the sake of convenience.

Referring to FIG. 8, after the OTP input interface is provided to the user terminal 500 in the process shown in FIG. 6, the server receives the OTP input from the user terminal 500 through the OTP input interface And the OTP verification information is received (800).

If the OTP and OTP verification information is received (805), the server provides the received OTP and OTP verification information to the OTP server (570) (810). The OTP server (570) The OTP verification information stored in the storage medium 575 is compared to check the validity of OTP generation (815).

If it is determined that the OTP 'generation validity is not confirmed 820, the OTP server 570 generates and transmits the payment error information to the server 825. The server transmits the payment error information to the user terminal 500, (Or the user's mobile phone 585) and the web server 505 (830).

On the other hand, if the validation of the OTP 'generation is confirmed (820), the OTP server 570 checks (835) OTP generation information for generating an OTP' to be compared with the received OTP, and outputs OTP ' The generated fixed seed value and dynamic seed value are determined 840, and OTP 'is generated using the determined fixed seed value and the dynamic seed value, and the payment validity is verified 845 by comparing with the received OTP.

If the payment validity is not authenticated 850, the OTP server 570 generates and transmits the payment error information to the server 825, and the server transmits the payment error information to the user terminal 500 The user mobile phone 585) and the web server 505 (830).

If the payment validity is authenticated 850, the OTP server 570 generates the payment validation result and transmits the result to the server 855. The server transmits the payment validity result to the user terminal 500, (Or the user's mobile phone 585) and the web server 505 (step 860), and processes the acceptance of payment through the communication fee of the user's mobile phone 585 according to the payment validity result (step 865).

According to the embodiment of the present invention, the server confirms the payment amount to be charged to the communication fee of the user's mobile phone 585 from the web server 505, It is preferable to display the payment limit and compare the payment amount with the payment limit to approve payment through the communication fee charged to the mobile phone.

FIG. 9 is a diagram showing a configuration of a system for processing small volume payment of a mobile phone using OTP verification information according to a third embodiment of the present invention.

In more detail, FIG. 9 shows an interface for inputting a mobile communication company selection corresponding to a user mobile phone 985 and a user mobile phone number 985 and a user's resident registration number to a user wired terminal 900 connected to a website for a small- And receives the mobile communication company selection information corresponding to the user mobile phone 985, the user mobile phone number 985 and the user's resident registration number information from the user's wired terminal 900 through the interface, and responds to the mobile communication company selection information And confirms whether or not an OTP (One Time Password) agent is installed in the user's cellular phone 985 through the OTP server 970. Then, (OTP) generated by the OTP agent provided in the user's cellular phone 985 and the OTP ' The OTP server 970 receives the OTP and OTP verification information input through the interface from the wired terminal 900 and transmits the received OTP verification information to the OTP server 970. The OTP server 970 ), It is a system configuration for processing the microcontact settlement of a mobile phone by authenticating the OTP 'generation validity and the settlement validity in the mobile terminal 100. As a person skilled in the art to which the present invention pertains, (For example, a part of components may be omitted, or a fragmented or combined implementation method) may be inferred from the OTP verification information. However, the present invention can be applied to all the methods And the technical features thereof are not limited only by the method shown in FIG.

For example, the mobile phone micropayment processing system shown in FIG. 9 can be applied to a system for processing a payment using a payment means of a customer, except for adding a payment amount to a communication fee of the user mobile phone 985, It is a matter of course that the present invention includes all settlement processing systems as described above.

9, the mobile phone micropayment processing system includes a user wired terminal 900 used by a user connected to a web site for micropayment and a user mobile phone 985 owned by the user, A small-amount settlement target web that allows a user to sell type / intangible goods to the user through the terminal 900 and settle the settlement amount for the sold goods through a mobile payment means that imposes the payment amount on the user's cellular phone 985 A billing system 910 for processing a mobile phone settlement using OTP verification information in cooperation with the user terminal 900 and the user mobile phone 985, An OTP server 970 for authenticating payment validity through an OTP generated by an OTP agent provided in the mobile phone 985, The payment system 910 may be implemented in the form of an authentication server (or relay server) connected to the web server 905 and the mobile communication company server 980, It is to be understood that the present invention is not limited to the above embodiments, and may be implemented in the form of an internal component of the web server 905 or an internal component of the mobile communication company server 980.

The user terminal (900) includes at least one personal computer and a notebook having a browser capable of accessing a web server (905) operating the micro-settlement target website, and the web server (905) And a mobile phone settlement interface for inputting the user mobile phone 985 number and the user's resident registration number from the mobile phone 910 to the screen output means, The mobile communication company selection information, the user mobile phone number 985, and the user's resident registration number information corresponding to the user mobile phone 985, and transmits the user's mobile phone 985 number and user's resident registration number information to the web server 905 or the payment system 910.

The web server 905 includes a mobile phone payment means for selling type / intangible goods to the user via the wired terminal 900 and imposing the payment amount for the sold goods on the communication charges of the user mobile phone 985, If the user terminal 900 selects the mobile phone payment means as the payment means for the payment amount, the user terminal 1000 may transmit the payment information to the user terminal 900, Or the billing system 910 processes the billing system 910 to provide the mobile phone settlement interface to the wired terminal 900.

The user mobile phone 985 is a mobile phone possessed by a user who purchases tangible / intangible goods sold by the web server 905, and authenticates the payment validity using the communication charge imposed on the user mobile phone 985 (For example, a screen output, or a function of outputting the generated OTP by using a local communication means such as Bluetooth, Wi-Fi, RF communication, etc.), a function of downloading an OTP agent And output to the wired terminal 900).

According to the present invention, the user terminal 1000 is a first terminal that a user connects to a server through a communication network and purchases tangible / intangible goods to be sold in the server, It is possible to carry out various modifications according to the type and characteristics of the communication network and the server.

According to the present invention, the user's mobile phone 985 is an embodiment of a second terminal equipped with an OTP agent for authenticating payment validity for a purchase price of goods purchased through the first terminal, The terminal may include all communication terminals except for the first terminal.

For example, if the server connected to the first terminal is a home shopping server, the first terminal may include a user's IPTV, and the second terminal may include a wired phone / VoIP phone provided near the IPTV can do.

Alternatively, if the server to which the first terminal is connected is an ARS server, the first terminal may include a user's wired telephone / mobile phone / VoIP phone, and the second terminal may include another voice communication The second terminal includes a wired telephone / VoIP phone if the first terminal is a cellular phone, and the second terminal includes a wired / VoIP phone if the first terminal is a cellular phone, The second terminal may include a landline phone / mobile phone if the VoIP phone is a VoIP phone).

In other words, it is clear that the user terminal 900 of the present invention is not limited to the above-described wired terminal, and that the user terminal 985 of the present invention is not limited to a mobile phone.

The mobile communication company server 980 is a collective term for a mobile communication company server that is provided on a mobile communication network to which the user mobile phone 985 is connected and which interfaces with the mobile phone. In the payment system 910, , A data exchange server, a WAP (WAP) server, and the like, which transmit information (or data) requesting to provide information (or data) to the user's mobile phone 985 via a mobile communication system (e.g., an exchange, a base station, It is preferable that the server includes at least one server.

According to an embodiment of the present invention, the mobile communication company server 980 preferably has a function of authenticating a user by inquiring a subscriber D / B (not shown) through the user's mobile phone number 985 and user resident registration number information .

The OTP server 970 authenticates the payment validity through the OTP generated by the OTP agent included in the user's cellular phone 985. The OTP server 970 generates the OTP for the payment validity authentication The OTP agent information included in the user's mobile phone 985 corresponding to the mobile phone number, and the OTP 'to be compared with the OTP generated through the OTP agent provided in the mobile phone, Or a storage medium 975 for storing and storing OTP generation information including parameters for determining a dynamic seed value or one or more fixed seed values for generating a dynamic seed value, , And the storage medium 975 further associates OTP verification information for verifying the validity of generating OTP 'through the OTP generation information Chapter It is desirable that.

The mobile phone number is a generic term of information that can identify the user mobile phone 985 and includes at least one of a phone number, an ESN, and a subscriber identification number assigned to the user mobile phone 985, (Or unique code) encrypted in the memory of the cellular phone 985, a USIM serial number assigned to the USIM provided in the user cellular phone 985, and a unique number (or unique code) recorded in the USIM .

The OTP agent information may include at least one of version information of an OTP agent, an OTP generation algorithm, and an OTP generation method provided in a user's mobile phone 985 corresponding to the mobile phone number.

Here, the OTP generation algorithm and the OTP generation method can use different algorithms and generation methods for respective OTP agents, and thus the present invention is not limited thereto.

The OTP generation information includes at least one fixed seed value used for generating an OTP according to the OTP generation algorithm and the OTP generation method in an OTP agent provided in the cellular phone, and a parameter for determining a dynamic seed value .

For example, if the OTP is generated in a time-synchronized manner, the fixed seed value of the OTP generation information includes a seed fixed to be substituted into the time-synchronized OTP generation algorithm, And synchronization time setting information for determining a synchronization time corresponding to the dynamic seed value of the time-synchronized OTP.

Alternatively, if the OTP is generated in a challenge-response manner, the fixed seed value of the OTP generation information includes a seed fixed to be substituted into the challenge-response OTP generation algorithm, and the parameters of the OTP generation information include the challenge- And a random number generation seed for generating a random number corresponding to the dynamic seed value of the response type OTP.

According to the embodiment of the present invention, the OTP generation information is encrypted and stored in the memory of the user's cellular phone 985 in association with the OTP agent downloaded to the user's cellular phone 985, It is desirable to store it in the USIM (capable of storing encrypted data).

The OTP verification information includes OTP agent information stored in the storage medium 975 when the OTP agent included in the user's mobile phone 985 and OTP generation information are received from the user terminal 900 A user password or a user's personal identification number for verifying the generation of an OTP to be compared with the OTP.

According to an embodiment of the present invention, the OTP verification information may include a user password or a user personal identification number input to generate the OTP by driving the OTP agent in the user's cellular phone 985, Or a second user's password or a user's personal identification number extracted (or decrypted if encrypted) from a memory (or USIM) provided in the mobile phone via the user's personal identification number, or stored in the storage medium 975 It is preferable to include a separate user password or a user personal identification number registered to verify that the OTP to be compared with the OTP is generated using the OTP generation information.

The OTP server 970 compares the OTP verification information with the OTP verification information already stored in the storage medium 975 to provide the OTP verification information to be compared with the OTP, if the OTP and OTP verification information is provided from the payment system 910. [ When the generation validity of the OTP 'generation is verified, OTP generation information for generating OTP' to be compared with the OTP is confirmed, and a fixed seed value for generating OTP 'from the OTP generation information and a dynamic seed value , Generates OTP 'using the determined fixed seed value and dynamic seed value, compares the received OTP with the generated OTP' to check the micropayment validity of the mobile phone number, 910).

9, the billing system 910 may include a mobile communication company selection corresponding to the user mobile phone 985, a number of the user mobile phone 985 and a number of the user mobile phone 985 corresponding to the user mobile phone 985, (915) for providing a mobile phone settlement interface for inputting a resident registration number; mobile communication company selection information corresponding to the user mobile phone (985) through the mobile phone settlement interface; a user mobile phone number (985) And transmits the user's mobile phone number 985 and user's resident registration number information to the mobile communication company server 980 corresponding to the received mobile communication company selection information, Receives the user authentication result corresponding to the user cell phone number (985) number and the result of checking the user's resident registration number A user authentication means 925 for authenticating the user by reading the OTP server 970 and a user phone 985 corresponding to the user phone number 985 via the OTP server 970 An agent confirmation means 930 for notifying the user that the OTP agent is not installed in the user's mobile phone 985 and a message including a callback URL for downloading the OTP agent to the user's mobile phone 985 if the OTP agent is not installed in the user's mobile phone 985 And an agent providing means (935).

When the OTP agent is installed in the user's mobile phone 985 or the OTP agent is downloaded and installed in the user's mobile phone 985, the payment system 910 may transfer the user's phone An OTP interface providing unit 940 for providing an OTP input interface for inputting OTP generated by an OTP agent provided in the OTP agent and OTP verification information for OTP generation to be compared with the OTP, An OTP receiving unit 945 for receiving OTP and OTP verification information input through the interface from the wired terminal 900; and an OTP receiving unit 945 for receiving the OTP and OTP verification information from the OTP agent provider An OTP providing unit 950 for transmitting the OTP generated from the OTP server 970 to the OTP server 970 and an OTP ' An authentication result receiving means 955 for receiving a comparison result, and an information providing means for transmitting a result of a micropayment validity check result corresponding to a comparison result of the OTP 'generated by the OTP' and the user's cellular phone 985 to the website And means (960).

According to the present invention, each of the means constituting the payment system 910 may be realized as a separate server for each means, or in the form of a predetermined authentication server (or relay server) including the means, The above means may be embodied in the form of components in the web server 905, or the means may be embodied in the form of components in the mobile carrier server 980, Some of the means may be implemented as components in the web server 905 and some of the means may be implemented as components in the carrier server 980 or some of the means may be implemented as components in the web server 905, May be implemented as a component in the mobile communication company server 980 and the other part may be implemented as a separate server, Bayida put out to clarify SHALL not limited by the embodiment to which the present invention method.

The user connects to the web server 905 to purchase the type / intangible goods, and transmits a settlement amount corresponding to the purchase price for the goods to the mobile phone 985 through the communication fee charged to the user mobile phone 985 The payment interface providing means 915 may relay the web server 905 directly to the wired terminal 900 through the communication network to which the wired terminal 900 is connected, The wired terminal 900 is provided with a mobile communication company selection corresponding to the user mobile phone 985 and a mobile phone payment interface for inputting the user mobile phone number 985 and the user's resident registration number.

When the mobile phone settlement interface is provided to the user terminal 1000 by the payment interface providing means 915, the information receiving means 920 receives the information input through the mobile phone settlement interface from the user terminal 900 And connects the communication carrier selection information corresponding to the user cellular phone 985 and the communication session for receiving the user cell phone number 985 and the user's resident registration number information.

According to an embodiment of the present invention, the payment interface providing unit 915 connects a communication channel with the user terminal 900 and provides the mobile phone payment interface to the user terminal 1000 through the communication channel The information receiving means 920 confirms the user's wired terminal 900 information (for example, an IP address) from the communication channel provided to the user's wired terminal 900 through the mobile phone settlement interface, A communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 985 and the user's mobile phone number 985 and the user's resident registration number information from the user's wired terminal 900 And a memory area allocated to receive the mobile communication company selection information, the user mobile phone number 985 and the user's resident registration number information, It is preferred to connect the communication thread (Thread) code).

When the payment interface providing unit 915 provides the mobile phone settlement interface to the user's wired terminal 900 through the web server 905 according to another embodiment of the present invention, The mobile terminal 900 receives the user terminal 900 information (e.g., IP address) from the web server 905 and selects the mobile communication company selection information corresponding to the user mobile phone 985 from the user terminal 900 (E.g., a memory allocated to receive the mobile communication company selection information and the user's mobile phone number 985 and user's resident registration number information from the wired terminal 900) for receiving the user's mobile phone number 985 and user's resident registration number information Area and a communication thread code).

Here, the communication session encrypts and receives the mobile communication company selection information corresponding to the user mobile phone 985, the user mobile phone number 985 and the user's resident registration number information, and transmits the encryption key to the mobile communication company 985 corresponding to the encrypted user mobile phone 985, Selection information, and a secure communication session for decrypting the user cell phone number 985 and user resident registration number information.

The information receiving means 920 receives the mobile communication company selection information corresponding to the user's mobile phone 985 from the user's wired terminal 900 through the communication session, (985) number and user resident registration number information.

When the mobile communication company selection information corresponding to the user's mobile phone 985 and the user's mobile phone number 985 and user's resident registration number information are received from the user's wired terminal 900, the user authentication means 925 transmits the mobile communication company selection information Transmits the user's mobile phone number 985 and user's resident registration number information to the corresponding mobile communication company server 980 and transmits the user's resident registration number information and user's resident registration number information to the mobile phone company server 980 through the subscriber D / The user authentication means 925 receives and reads the user authentication result and authenticates the user who has made a request for the micropayment of the mobile phone.

The agent confirmation unit 930 transmits the number of the user's cellular phone 985 to the OTP server 970 and transmits the number 985 of the user's cell phone 985 through the storage medium 975 to the OTP server 970. [ If the OTP agent for generating the OTP for authenticating the cellular phone micro settlement is provided in the user mobile phone 985 corresponding to the OTP agent, The controller 930 receives and reads out the OTP agent confirmation result and confirms whether the OTP agent for generating the OTP for authenticating the cellular phone settlement to the user's cellular phone 985 is present.

If the OTP agent for generating the OTP for authenticating the cellular phone micro settlement is not provided to the user's cellular phone 985 as a result of the confirmation of the agent confirmation means 930, And a message including a callback URL for downloading an OTP agent is transmitted to the user's mobile phone 985. [

According to the embodiment of the present invention, when it is confirmed that the OTP agent is not provided in the user's cellular phone 985, the agent providing means 935 outputs a pop-up output via the mobile phone payment interface provided to the user terminal Or an OTP agent downloading interface (or menu) included in the mobile phone payment interface and outputting the OTP agent download request, and transmits the OTP agent download request to the user's cellular phone 985 in response to the OTP agent download request, It is desirable to process the message including the callback URL for OTP agent download to be transmitted.

Here, the callback URL for downloading the OTP agent preferably includes the URL information of the OTP server 970 that provides the OTP agent to the user's cellular phone 985. In addition, The user's cellular phone 985 downloads the OTP agent according to an OTP agent download procedure using a predetermined mobile communication network and mounts the OTP agent in the user's cellular phone 985. [

After the OTP agent is downloaded to the user's mobile phone 985, the OTP server 970 provided by the OTP agent to the user's mobile phone 985 generates an OTP through the OTP agent included in the user's mobile phone 985 To the user's cellular phone 985. The OTP generation information is stored in the user's cellular phone 985. [

According to an embodiment of the present invention, the OTP server 970 allocates one or more fixed seed values for generating an OTP through an OTP agent provided in the user's cellular phone 985, (Or extracts OTP generation information from the database storing the OTP generation information) including a parameter and a parameter for determining one or more dynamic seed values necessary for generating an OTP through the OTP agent, and generates the generated OTP generation information The OTP server 970 may provide the OTP generation information to the user's cellular phone 985 via the mobile communication network and may provide the OTP generation information to the user's cellular phone 985. [ Lt; / RTI >

According to the embodiment of the present invention, after the OTP agent is downloaded to the user's mobile phone 985 or when the OTP agent downloaded to the user's mobile phone 985 is initially executed, the OTP server 970 generates OTP The OTP generation information may be encrypted and stored in a memory provided in the user's cellular phone 985 or may be provided to the user's cellular phone 985 A Universal Subscriber Identity Module (USIM)).

According to the embodiment of the present invention, after the OTP agent is downloaded to the user's cellular phone 985 or when the OTP agent downloaded to the user's cellular phone 985 is initially executed, the user's cellular phone 985 transmits the OTP agent And stores the input user password or the user's personal identification number in a memory provided in the cellular phone, or stores the user password in a memory provided in the user's cellular phone 985 The OTP agent outputs an interface for inputting a user's password or a user's personal identification number when the OTP agent is generated by driving the OTP agent, (Or USIM) stored in the memory It is desirable to verify the validity of the OTP generation by comparing the user's password or the user's personal identification number.

According to an embodiment of the present invention, when the user password or the user's personal identification number is used as the OTP verification information, the OTP agent communicates with the payment system 910 through the user's mobile phone 985, And transmits the user password or the user's personal identification number to the payment system 910. The payment system 910 receives the user password or the user's personal identification number, (Or receives the user's personal identification number including the user's resident registration number information), and transmits the OTP verification information including the mobile phone number and the user's password or the user's personal identification number And stores it in the storage medium 975. [

According to another embodiment of the present invention, a second user password or a user personal identification number corresponding to the OTP verification information is stored in a memory (or USIM) provided in the user's cellular phone 985 in addition to the user password or the user's personal identification number The OTP agent outputs an interface for registering the OTP verification information, and transmits a second user password or a user personal identification number, input through the interface, to a memory (or memory) (E.g., a secure communication channel based on an encryption / decryption) with the billing system 910 through the user's mobile phone 985 after the billing system 910 (or the USIM) Transmits a second user's password or a user's personal identification number stored in the memory (or USIM) to the billing system 910) confirms the mobile phone number corresponding to the user's cellular phone 985 that has transmitted the second user password or the user's personal identification number (or receives the second user's password or the user's personal identification number including the user's resident registration number information ), And stores the OTP verification information including the mobile phone number and the second user password or the user's personal identification number in the storage medium 975. When the second user password or the user personal identification number is stored in the memory (or USIM), a second user password stored in the memory (or USIM) or a user personal identification number Is also output.

According to another embodiment of the present invention, when registering a separate user password or user's personal identification number in addition to the user password or the user's personal identification number, the OTP agent outputs an interface for registering the OTP verification information, Decryption-based secure communication channel) with the settlement system 910 via the user's mobile phone 985, and transmits the settlement request message to the settlement system 910 via the user's mobile phone 985, The billing system 910 transmits the separate user password or the user's personal identification number to the system 910 and the billing system 910 transmits a mobile phone number corresponding to the user's mobile phone 985 that has transmitted the separate user password or the user's personal identification number Confirmation (or the separate user password or user personal identification number Receiving information including a user social security number) and, in conjunction the OTP verification information including the separate user password or the user's personal identification number and the mobile phone number is stored in the storage medium (975).

If the OTP agent is found installed in the user's mobile phone 985 by the agent checking means 930 or if the OTP agent is downloaded and installed in the user's mobile phone 985 through the agent providing means 935, The OTP interface providing means 940 inputs an OTP generated by the OTP agent provided in the user's cellular phone 985 to the user terminal 900 and verifies the validity of generating the OTP 'to be compared with the OTP And an OTP input interface for inputting OTP verification information for providing the OTP verification information.

According to the embodiment of the present invention, the OTP interface providing unit 940 directly or indirectly relays the web server 905 to the user's wired terminal 900 through the communication network connected to the user's wired terminal 900 It is preferable that the OTP input interface is provided to the user terminal terminal 900.

When the OTP input interface is provided to the wired terminal 900 by the OTP interface providing means 940, the OTP receiving means 945 receives the OTP input interface from the user wired terminal 900 through the OTP input interface OTP and OTP verification information, and may be omitted when a communication session with the user's wired terminal 900 is pre-connected.

According to an embodiment of the present invention, the OTP interface providing unit 940 connects a communication channel with the user's wired terminal 900 and provides the OTP input interface to the user's wired terminal 900 through the communication channel The OTP receiving means 945 confirms the user's wired terminal 900 information (for example, IP address) from the communication channel provided to the user wired terminal 900 through the OTP input interface, (For example, communication with a memory area allocated to receive the OTP and OTP verification information from the user terminal 1000) for receiving the OTP and OTP verification information from the user terminal 1000, A thread code) is preferably connected.

According to another embodiment of the present invention, when the OTP interface providing unit 940 provides the OTP input interface to the wired terminal 900 through the web server 905, the OTP receiving unit 945 (For example, IP address) from the web server 905 and receives a communication session (for example, an IP address) for receiving the OTP and OTP verification information from the wired terminal 900 based on the received information , And a memory area and a communication thread (Thread) code allocated to receive the OTP and OTP verification information from the user terminal (900).

The communication session may include a secure communication session for encrypting and receiving the OTP and OTP verification information, and decrypting the encrypted OTP and OTP verification information.

The OTP receiving means 945 is compared with the OTP inputted through the OTP input interface from the user's wired terminal 900 through the communication session and the OTP The OTP providing unit 950 receives the OTP and OTP verification information from the OTP agent providing unit 985 of the user's mobile phone 985, To the OTP server 970 of FIG.

The OTP providing unit 950 may be configured to provide the OTP input interface to the user terminal 1000 by the OTP interface providing unit 940 so that the mobile phone number corresponding to the user's mobile phone 985 (For example, a DB reference) connected to the user terminal terminal 900 provided with the OTP input interface (for example, the IP address of the user terminal terminal 900) or the communication session information connected to the user terminal terminal 900 Or pointer reference), and holds the OTP and OTP verification information from the user terminal terminal 900 through the OTP receiving means 945 until the OTP and OTP verification information is received.

If the OTP and OTP verification information is received from the user terminal 900 through the OTP receiving means 945, the OTP providing means 950 transmits the OTP verification information to the user terminal 1000 corresponding to the user terminal 1000 900) information, or communication session information, confirms the mobile phone number associated with the user wired terminal 900 information or the communication session information, and transmits the mobile phone number and the received OTP and OTP verification information to the user mobile phone 985 To the OTP server 970 of the OTP agent provider.

According to another embodiment of the present invention, the OTP providing means 950 may be configured such that the user is authenticated by the user authenticating means 925 or by the agent authenticating means 930 to the user mobile phone 985 via the OTP Or if the OTP agent is provided to the user's cellular phone 985 by the agent providing means 935, the user terminal 900 and the mobile phone number are linked and maintained The present invention is not limited thereto.

The OTP server 970 receives the mobile phone number, OTP and OTP verification information from the payment system 910, checks OTP verification information associated with the mobile phone number from the storage medium 975, And verifies the validity of generating OTP 'to be compared with the OTP by comparing the OTP verification information with the OTP verification information.

If the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, the OTP server 970 transmits OTP' to the storage medium 975 to generate OTP ' Determines a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, generates an OTP' to be compared with the received OTP using the determined fixed seed value and the dynamic seed value .

If the OTP 'is generated, the OTP server 970 compares the received OTP with the generated OTP' to check the payment validity of the mobile phone number, and transmits the payment validity result to the payment system 910 The authentication result receiving means 955 receives and reads out the settlement validity result from the OTP server 970 and confirms the settlement validity.

The information providing means 960 transmits the result of the micropayment validity check corresponding to the OTP 'and the OTP generated by the user's mobile phone 985 to the web server 905 operating the micropayment target website .

9, the billing system 910 includes a settlement processing unit 930 for processing the settlement amount to be paid through a communication fee charged to the mobile phone when the payment validity is authenticated by the OTP server 970 965). ≪ / RTI >

According to the embodiment of the present invention, the payment processing means 965 confirms the payment amount to be charged to the communication fee of the user's cellular phone 985 from the web server 905, It is preferable to inquire the payment limit for the number of the user's mobile phone 985 and to compare the payment amount with the payment limit to approve payment through the communication fee charged to the mobile phone.

According to another embodiment of the present invention, the payment processing means 965 can store and manage the number of the user's mobile phone 985 and the corresponding payment limit information through a separate database. In this case, The processing means 965 may inquire the payment limit for the number of the user's cellular phone 985 through the database and compare the payment amount with the payment limit to approve payment through the communication fee charged to the mobile phone Do.

If the settlement using the communication fee charged to the mobile phone is approved, the settlement processing means 965 processes the settlement amount to be charged to the communication fee for the user's cellular phone 985 through the mobile communication company server 980 And transmits payment approval information for the payment amount to the web server 905.

10 is a diagram illustrating a mobile phone settlement process using OTP verification information according to a third embodiment of the present invention.

In more detail, FIG. 10 shows an example of a mobile communication company selection corresponding to a user mobile phone 985 and an interface for inputting a user mobile phone number 985 and a user's resident registration number to a user wired terminal 900 connected to a website And receives the mobile communication company selection information corresponding to the user mobile phone 985, the user mobile phone number 985 and the user's resident registration number information from the user's wired terminal 900 through the interface, and responds to the mobile communication company selection information And confirms whether or not an OTP (One Time Password) agent is installed in the user's cellular phone 985 through the OTP server 970. Then, (OTP) generated by the OTP agent provided in the user's cellular phone 985 and the OTP ' And the OTP verification information is input to the OTP verification apparatus 100. If the OTP verification information is input to the OTP verification apparatus, It will be appreciated that various implementations of the mobile payment process (e.g., some steps may be omitted, or alternate implementations) may be inferred, but the present invention includes all of the above- And the technical features thereof are not limited only by the illustrated method.

Hereinafter, in FIG. 10, the settlement system 910 shown in FIG. 9 is referred to as a "server" for the sake of convenience.

Referring to FIG. 10, a user connects to the web server 905 to purchase a type / intangible goods and transmits a payment amount corresponding to the purchase price for the goods to a communication fee charged to the user's cellular phone 985 The server may relay the web server 905 directly to the wired terminal 900 through the communication network connected to the wired terminal 900 by relaying the web server 905, A mobile phone settlement interface for inputting a mobile phone number corresponding to the user mobile phone 985 and a user's mobile phone number 985 and a user's resident registration number is processed 1005 by the user's wired terminal 900, (1010) whether the mobile communication company selection information inputted through the mobile phone payment interface and the user's mobile phone number 985 and user's resident registration number information are received.

If the mobile communication company selection information, the user mobile phone number 985 and the user's resident registration number information are received from the wired terminal 900 in operation 1015, the server transmits the mobile communication company selection information to the mobile communication company server 980 corresponding to the mobile communication company selection information The mobile communication company server 980 requests the user authentication by transmitting the number of the user's mobile phone 985 and the user's resident registration number and transmits the user authentication result of the user's mobile phone number 985 and the user's resident registration number information through the subscriber D / And receives and verifies the user authentication result to authenticate the user who requested the microcontent settlement of the mobile phone (1020).

If the user is not authenticated (1025), the server generates a user authentication error and transmits it to the user terminal (900) (or the user mobile phone (985)) and the web server (905).

When the user is authenticated (1025), the server transmits the number of the user's cellular phone 985 to the OTP server 970 and transmits the number of the user's cellular phone 985 via the storage medium 975 to the user's cellular phone 985 ) Number of the mobile phone 985 is included in the OTP agent confirmation result, the OTP agent confirmation result corresponding to the OTP agent result is transmitted to the OTP agent 985, (1035) whether or not an OTP agent for generating an OTP for authenticating the cellular phone settlement is provided to the user's cellular phone (985).

If the OTP agent is not installed in the user's mobile phone 985, the server processes the OTP agent to be provided to the user's mobile phone 985 through the process shown in FIG.

On the other hand, if the OTP agent is installed in the user's cellular phone 985, the server generates an OTP generated through the OTP agent included in the user's cellular phone 985 and an OTP 'to be compared with the OTP (1045) so that an OTP input interface for inputting OTP verification information for verifying validity is provided to the user terminal (900).

FIG. 11 is a diagram illustrating a process of providing an OTP agent to a user's mobile phone 985 according to a third embodiment of the present invention.

FIG. 11 is a flowchart illustrating a method of providing the OTP agent to the user's cellular phone 985 when the OTP agent is not installed in the user's cellular phone 985 in the process illustrated in FIG. Message to be transmitted to the user's cellular phone 985 and providing the OTP agent to the user's cellular phone 985 through the message. The present invention is not limited to the above- , It is possible to refer to and / or modify the FIG. 11 to infer various implementations (e.g., omitting some steps or changing the order) about the process of providing the OTP agent to the user's mobile phone 985 It should be understood, however, that the present invention includes all such contemplated embodiments, Its technical characteristics are not limited.

Hereinafter, in FIG. 11, the payment system 910 shown in FIG. 9 is referred to as a "server" for the sake of convenience.

Referring to FIG. 11, when the OTP agent is not installed in the user's mobile phone 985 in the process shown in FIG. 10, the server includes a callback URL for downloading the OTP agent to the user's mobile phone 985 (1100). In response to the message, the user's cellular phone 985 requests the OTP agent to the OTP server 970 corresponding to the callback service.

The OTP server 970 corresponding to the callback URL provides the OTP agent to the user's mobile phone 985 (1105).

If the OTP agent is provided to the user's cellular phone 985 in operation 1110, the user's cellular phone 985 inputs a user password or a user's personal identification number for generating an OTP through the OTP agent, The password or the user's personal identification number is stored in the memory provided in the cellular phone or stored in the USIM provided in the user's cellular phone 985 and registered in the memory 1115. The OTP is compared with the OTP generated through the OTP agent (Or confirms) OTP verification information for verifying the validity of generating the OTP, and transmits the OTP verification information to the server 1120. The server checks the number of the user's cellular phone 985 that has transmitted the OTP verification information, The number of the user's cellular phone 985 and the OTP verification information are linked and stored in the storage medium 975 (1125).

FIG. 12 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a third embodiment of the present invention.

12 is a flowchart illustrating an OTP input interface provided to the wired terminal 900 in the process shown in FIG. 10, and an OTP and OTP verification input through the OTP input interface in the billing system 910. FIG. And provides the received information to the OTP server 970. The OTP server 970 verifies the validity of the OTP generation to generate the OTP, compares the generated OTP with the OTP and verifies the validity of the payment, and provides the received payment information to the payment system 910 A payment approval process is performed based on the settlement validity in the settlement system 910. It should be understood by those skilled in the art that the present invention can be implemented by referring to and / It is possible to infer various implementation methods (for example, omitting some steps or changing the order) regarding the mobile phone payment approval process using the OTP verification information However, the present invention is not limited to the above-described embodiments, and the technical features of the present invention are not limited only by the method shown in FIG.

Hereinafter, in FIG. 12, the payment system 910 shown in FIG. 9 is referred to as a "server" for the sake of convenience.

Referring to FIG. 12, after the OTP input interface is provided to the wired terminal 900 in the process shown in FIG. 10, the server receives the OTP input from the user wired terminal 900 through the OTP input interface, And OTP verification information is received (1200).

If the OTP and OTP verification information is received (1205), the server provides the received OTP and OTP verification information to the OTP server 970 (1210), and the OTP server 970 transmits the OTP verification information The OTP verification information stored in the storage medium 975 is compared to confirm the validity of OTP generation (1215).

If the validity of OTP generation is not confirmed 1220, the OTP server 970 generates and transmits the payment error information to the server 1225. The server transmits the payment error information to the user terminal 900, (Or the user mobile phone 985) and the web server 905 (1230).

On the other hand, if the validity of OTP 'generation is confirmed 1220, the OTP server 970 checks OTP generation information to generate an OTP' to be compared with the received OTP 1235, and extracts OTP 'from the OTP generation information The generated fixed seed value and the dynamic seed value are determined 1240, and OTP 'is generated using the fixed seed value and the dynamic seed value to compare the received OTP with the received OTP to authenticate the payment validity 1245.

If the payment validity is not authenticated 1250, the OTP server 970 generates and transmits the payment error information to the server 1225. The server transmits the payment error information to the user terminal 900 The user mobile phone 985) and the web server 905 (1230).

If the payment validity is authenticated 1250, the OTP server 970 generates the payment validation result and transmits it to the server 1255. The server transmits the payment validity result to the user terminal 900, (Or the user's mobile phone 985) and the web server 905 (step 1260), and proceeds to step 1265 in response to the result of the payment validity check.

According to the embodiment of the present invention, the server confirms the payment amount to be charged to the communication fee of the user's cellular phone 985 from the web server 905, It is preferable to display the payment limit and compare the payment amount with the payment limit to approve payment through the communication fee charged to the mobile phone.

FIG. 13 is a diagram showing the configuration of a cellular phone micropayment processing system using OTP verification information according to a fourth embodiment of the present invention.

In more detail, FIG. 13 shows a user terminal 1300 connected to a web site for a small amount of payment, an interface for inputting a mobile communication company selection corresponding to the user mobile phone 1380 and a user mobile phone 1380 number and a user's resident registration number And receives the mobile communication company selection information corresponding to the user mobile phone 1380, the user mobile phone 1380 number and the user's resident registration number information from the user's wired terminal 1300 via the interface, (One Time Password) agent is installed in the user's mobile phone 1380, the user terminal 1300 transmits the user authentication result corresponding to the user's resident registration number confirmation result to the user's wired terminal 1300 OTP generated by the provided OTP agent and OTP verification for generating OTP 'to be compared with the OTP And receives OTP and OTP verification information input through the interface from the user terminal 1300. The OTP verification information and the OTP verification information stored in the storage medium 1370 The system compares the information to verify the validity of OTP 'generation to be compared with the OTP, and when the validity of OTP' generation is verified, compares the generated OTP 'with the received OTP to process the cellular phone micro settlement. Those skilled in the art will be able to refer to and / or modify the FIG. 13 to various embodiments of a cellular phone micropayment processing system using the OTP verification information (for example, Omitted, or refined, or aggregated), but the present invention encompasses all such envisioned implementations Is made, including the method, to which the technical feature that is not limited to the exemplary method shown in the figure 13.

For example, the mobile phone micropayment processing system shown in FIG. 13 can be applied to a system for processing a payment using a payment means of a customer, except for adding the payment amount to the communication fee of the user's mobile phone 1380, It is a matter of course that the present invention includes all settlement processing systems as described above.

Referring to FIG. 13, the mobile phone micropayment processing system includes a user wired terminal 1300 used by a user connected to a web site for micropayment and a user mobile phone 1380 owned by the user, A small-amount settlement target web which allows a user to sell tangible / intangible goods to the user through the terminal 1300, and to pay through the mobile phone payment means for imposing the settlement amount for the sold goods on the communication charges of the user's mobile phone 1380 A billing system 1310 for processing a mobile phone micropayment using OTP verification information in cooperation with the user terminal 1300 and the user mobile phone 1380, And a mobile communication company server 1375 on a mobile communication network to which the mobile communication network 1380 is connected. The payment system 1310 is connected to the web server 1305 and an authentication server (or a relay server) connected to the mobile communication company server 1375 or in the form of an internal component of the web server 1305 or an internal configuration of the mobile communication company server 1375 It is to be understood that the present invention is not limited thereto.

The user terminal 1300 includes at least one personal computer and a notebook having a browser capable of accessing a web server 1305 operating the micro-settlement target website, and the web server 1305 or the payment system And a mobile phone settlement interface for inputting the user mobile phone 1380 number and the user's resident registration number from the mobile phone 1310 to the screen output means, The mobile communication company selection information, the user mobile phone 1380 number, and the user's resident registration number information corresponding to the user's mobile phone 1380 and transmits the selected information to the web server 1305 or the payment system 1310.

The web server 1305 has a function of selling a type / intangible goods to the user through the wired terminal 1300 and a mobile payment means 1360 for charging the amount of money for the sold goods to the user mobile phone 1380 communication fee If the user terminal 1300 selects the mobile phone payment means as the payment means for the payment amount, the user terminal 1300 transmits a payment request to the user terminal 1300, The mobile phone payment interface is provided to the user terminal 1300 or the mobile phone payment interface is provided to the user terminal 1300 through the payment system 1310. [

The user mobile phone 1380 is a mobile phone possessed by a user who purchases tangible / intangible goods sold by the web server 1305. The user mobile phone 1380 is a mobile phone having a user authentication function for authenticating the payment using the communication charge imposed on the user mobile phone 1380 (For example, a screen output, or a function of outputting the generated OTP by using a local communication means such as Bluetooth, Wi-Fi, RF communication, etc.), a function of downloading an OTP agent And can be output to the wired terminal 1300).

According to the present invention, the user terminal 1300 is an example of a first terminal that a user connects to a server through a communication network and purchases tangible / intangible goods to be sold in the server, It is possible to carry out various modifications according to the type and characteristics of the communication network and the server.

According to the present invention, the user's mobile phone 1380 is an embodiment of a second terminal equipped with an OTP agent for authenticating payment validity for a purchase price of goods purchased through the first terminal, The terminal may include all communication terminals except for the first terminal.

For example, if the server connected to the first terminal is a home shopping server, the first terminal may include a user's IPTV, and the second terminal may include a wired phone / VoIP phone provided near the IPTV can do.

Alternatively, if the server to which the first terminal is connected is an ARS server, the first terminal may include a user's wired telephone / mobile phone / VoIP phone, and the second terminal may include another voice communication The second terminal includes a wired telephone / VoIP phone if the first terminal is a cellular phone, and the second terminal includes a wired / VoIP phone if the first terminal is a cellular phone, The second terminal may include a landline phone / mobile phone if the VoIP phone is a VoIP phone).

That is, it is to be appreciated that the user terminal 1300 of the present invention is not limited to the above-described wire terminal, and that the user terminal 1380 of the present invention is not limited to a cellular phone.

The mobile communication company server 1375 is a collective term for a mobile communication company server that is provided on a mobile communication network to which the user mobile phone 1380 is connected and interfaces with the mobile phone. In the payment system 1310, A data exchange server, a WAP (WAP) server, and the like, which transmit information (or data) requesting to provide information (or data) to the user's mobile phone 1380 through a mobile communication system (e.g., an exchange, a base station, It is preferable that the server includes at least one server.

According to the present invention, the payment system 1310 includes a mobile phone number 1380 corresponding to a user mobile phone 1380 having an OTP agent for generating an OTP for authenticating payment validity using a communication fee charged to the user mobile phone 1380, And one or more fixed Seed values for generating OTP 'to be compared with the OTP agent information provided in the user's mobile phone 1380 corresponding to the mobile phone number and the OTP agent generated through the OTP agent provided in the mobile phone And a storage medium 1370 for storing and storing OTP generation information including a parameter for determining a dynamic seed value, or is connected through a communication network. The storage medium 1370 is connected to the OTP It is preferable to further associate and store OTP verification information for verifying the validity of generating OTP 'through generation information.

According to an embodiment of the present invention, the storage medium 1370 stores the mobile phone number and OTP agent information in a first storage medium, and stores the OTP generation information and OTP verification information in a second storage medium Stores the OTP agent information, OTP generation information and OTP verification information in a second storage medium, or stores the mobile phone number in a first storage medium, or stores the mobile phone number in a first storage medium, And storing the OTP agent information and the OTP generation information in a second storage medium and storing the OTP verification information in a third storage medium, And the location of each storage medium may also be provided within the payment system 1310 or outside the payment system 1310 via a communication network , Whereby the present invention is not limited thereto.

The mobile phone number is a generic term of information that can identify the user mobile phone 1380 and includes at least one of a phone number, an ESN, and a subscriber identification number assigned to the user mobile phone 1380, (Or unique code) encrypted in the memory of the cell phone 1380, a USIM serial number assigned to the USIM provided in the user cell phone 1380, and a unique number (or unique code) recorded in the USIM .

The OTP agent information may include at least one of version information of an OTP agent, an OTP generation algorithm, and an OTP generation method in a user's cellular phone 1380 corresponding to the mobile phone number.

Here, the OTP generation algorithm and the OTP generation method can use different algorithms and generation methods for respective OTP agents, and thus the present invention is not limited thereto.

The OTP generation information includes at least one fixed seed value used for generating an OTP according to the OTP generation algorithm and the OTP generation method in an OTP agent provided in the cellular phone, and a parameter for determining a dynamic seed value .

For example, if the OTP is generated in a time-synchronized manner, the fixed seed value of the OTP generation information includes a seed fixed to be substituted into the time-synchronized OTP generation algorithm, And synchronization time setting information for determining a synchronization time corresponding to the dynamic seed value of the time-synchronized OTP.

Alternatively, if the OTP is generated in a challenge-response manner, the fixed seed value of the OTP generation information includes a seed fixed to be substituted into the challenge-response OTP generation algorithm, and the parameters of the OTP generation information include the challenge- And a random number generation seed for generating a random number corresponding to the dynamic seed value of the response type OTP.

According to the embodiment of the present invention, the OTP generation information is encrypted and stored in the user's mobile phone 1380 memory in association with the OTP agent downloaded to the user's mobile phone 1380, It is desirable to store it in the USIM (capable of storing encrypted data).

The OTP verification information includes OTP agent information stored in the storage medium 1370 when the OTP agent provided in the user's mobile phone 1380 and OTP generation information are received from the wired terminal 1300 A user password or a user's personal identification number for verifying the generation of an OTP to be compared with the OTP.

According to the embodiment of the present invention, the OTP verification information may include a user password or a user's personal identification number inputted to generate the OTP by driving the OTP agent in the user's mobile phone 1380, Or a second user's password or a user's personal identification number extracted (or decrypted when decrypted) from a memory (or USIM) provided in the mobile phone via the user's personal identification number or stored in the storage medium 1370 It is preferable to include a separate user password or a user personal identification number registered to verify that the OTP to be compared with the OTP is generated using the OTP generation information.

Referring to FIG. 13, the billing system 1310 includes a user terminal 1300 connected to the web site for a micropayment, a mobile communication company selection corresponding to the user's mobile phone 1380, A billing interface providing means 1315 for providing a mobile phone settlement interface for inputting a resident registration number, mobile communication company selection information corresponding to the user mobile phone 1380 through the mobile phone settlement interface, user's mobile phone 1380 number and user's resident registration number A user authentication means 1325 for authenticating a user through a user's mobile phone 1380 number and a user's resident registration number; a user's mobile phone 1380 corresponding to the user's mobile phone 1380 number; An agent checking means 1330 for checking whether or not an OTP agent is installed in the portable terminal, Agent providing means 1335 for processing a message including a callback URL for downloading an OTP agent to the user's mobile phone 1380 when the OTP agent is not installed in the phone 1380 .

When the OTP agent is installed in the user's mobile phone 1380 or the OTP agent is downloaded and installed in the user's mobile phone 1380, the payment system 1310 can transfer the user's mobile phone 1300, An OTP interface providing unit 1340 for providing an OTP input interface for inputting OTP generated by the OTP agent provided in the OTP agent 1380 and OTP verification information for generating OTP to be compared with the OTP, OTP receiving means 1345 for receiving OTP and OTP verification information input through the interface from the wired terminal 1300, and OTP verification information stored in the storage medium 1370 with the received OTP verification information, OTP validation means 1350 for verifying the validity of OTP generation to be compared with the OTP, and an OTP validation means 1360 for generating OTP ' OTP generation information, determines a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, generates OTP' using the determined fixed seed value and dynamic seed value, A payment validity authentication means 1355 for comparing the generated OTP 'with the mobile phone number to confirm the micropayment validity of the mobile phone number, and a payment validity authentication means 1355 for checking the micropayment validity of the mobile phone number And a providing means (1360).

According to the present invention, each means constituting the settlement system 1310 may be implemented as a separate server for each means, or in the form of a predetermined authentication server (or relay server) including the means, The above means may be implemented in the form of a component in the web server 1305, or the means may be implemented in the form of a component in the mobile communication company server 1375, Some of the means may be implemented as components in the web server 1305 and some of the means may be implemented as components in the carrier server 1375 or some of the means may be implemented as components in the web server 1305, The billing system 1310 can be implemented as a component in the mobile communication company server 1375 and the other part can be implemented as a separate server, It will be clear that the invention is not limited by the method of implementation.

The user connects to the web server 1305 to purchase the type / intangible goods, and transmits a settlement amount corresponding to the purchase price for the goods to the mobile phone 1380 through a communication fee charged to the user mobile phone 1380 The payment interface providing means 1315 may relay the web server 1305 directly to the user terminal 1300 through the communication network to which the user terminal 1300 is connected, The wired terminal 1300 is provided with a mobile communication company selection corresponding to the user mobile phone 1380 and a mobile phone payment interface for inputting the user mobile phone 1380 number and the user's resident registration number.

If the mobile phone settlement interface is provided to the user terminal 1300 by the payment interface providing means 1315, the information receiving means 1320 may receive the mobile phone payment interface from the user terminal 1300 via the mobile phone settlement interface A communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 1380 and the user's mobile phone 1380 number and the user's resident registration number information.

According to an embodiment of the present invention, the payment interface providing unit 1315 connects a communication channel with the user terminal 1300 and provides the mobile phone payment interface to the user terminal 1300 through the communication channel The information receiving means 1320 confirms the user terminal 1300 information (for example, IP address) from the communication channel provided to the user terminal 1300 through the mobile phone settlement interface, A communication session for receiving the mobile communication company selection information corresponding to the user mobile phone 1380 and the user's mobile phone 1380 number and user's resident registration number information from the user's wired terminal 1300, ), A memo allocated to receive the mobile communication company selection information, the user mobile phone 1380 number and the user's resident registration number information It is desirable to connect the data area and the communication thread code.

When the payment interface providing unit 1315 provides the mobile phone settlement interface to the user terminal 1300 through the web server 1305 according to another embodiment of the present invention, The user terminal 1300 receives the user terminal 1300 information (for example, an IP address) from the web server 1305 and selects the mobile communication company selection information corresponding to the user mobile phone 1380 from the user terminal 1300 (E.g., a memory allocated to receive the mobile communication company selection information and the user's mobile phone 1380 number and user's resident registration number information from the user's wired terminal 1300) for receiving the user's mobile phone 1380 number and user's resident registration number information Area and a communication thread code).

Here, the communication session encrypts and receives the mobile communication company selection information corresponding to the user mobile phone 1380, the user mobile phone 1380 number and the user's resident registration number information, and transmits the encryption key to the mobile communication company 1380 corresponding to the encrypted user mobile phone 1380 Selection information and a secure communication session for decrypting the user cell phone 1380 number and user resident registration number information.

When the user terminal 1300 is connected to the communication session, the information receiving means 1320 receives the mobile communication company selection information corresponding to the user mobile phone 1380 from the user terminal 1300 through the communication session, (1380) number and user resident registration number information.

When the mobile communication company selection information corresponding to the user's mobile phone 1380, the user's mobile phone 1380 number and the user's resident registration number information are received from the user's wired terminal 1300, the user authentication means 1325 transmits the member D / (1380) number, the user's resident registration number information, the received user's mobile phone number 1380, and the user's resident registration number information stored in the user's mobile phone 1380 (omitted).

The agent confirmation unit 1330 may include an OTP agent 1330 for generating an OTP for authenticating the mobile phone settlement to the user's mobile phone 1380 through the OTP agent information stored in the storage medium 1370 in association with the mobile phone number, Is provided.

If the OTP agent for generating the OTP for authenticating the cellular phone micro settlement is not provided to the user's cellular phone 1380 as a result of the confirmation of the agent confirmation means 1330, And a message including a callback URL for downloading an OTP agent is transmitted to the user's mobile phone 1380. [

According to the embodiment of the present invention, when it is determined that the OTP agent is not included in the user's cellular phone 1380, the agent providing means 1335 outputs a pop-up output via the mobile phone payment interface provided to the user terminal 1300 Or an OTP agent downloading interface (or menu) included in the mobile phone payment interface and outputting the OTP agent download request, and transmits the OTP agent download request to the user's cellular phone 1380 in response to the OTP agent download request, It is desirable to process the message including the callback URL for OTP agent download to be transmitted.

Here, the callback portal for downloading the OTP agent includes URL information of the settlement system 1310, or a predetermined OTP server (not shown) configured / affiliated with the settlement system 1310 to manage the OTP agent, The user mobile phone 1380 receiving the message including the callback URL downloads the OTP agent according to the OTP agent download procedure using the predetermined mobile communication network and transmits the OTP agent to the user mobile phone 1380 ).

After the OTP agent is downloaded to the user's mobile phone 1380, the payment system 1310 (or OTP server) provided by the OTP agent to the user's mobile phone 1380 transmits an OTP agent provided in the user's mobile phone 1380 And provides OTP generation information for generating an OTP to the user's cellular phone 1380. [

According to an embodiment of the present invention, the billing system 1310 (or the OTP server) allocates one or more fixed seed values for generating an OTP through an OTP agent provided in the user's cellular phone 1380, (Or extracts from OTP generation information storing OTP generation information) OTP generation information including one or more fixed seed values and parameters for determining one or more dynamic seed values necessary for generating OTP through the OTP agent, It is preferable that the generated OTP generation information is provided to the user's cellular phone 1380 through a mobile communication network. In order to provide the OTP generation information to the user's cellular phone 1380, the billing system 1310 (or the OTP server) And connects the user's cellular phone 1380 to a secure communication channel.

According to an embodiment of the present invention, the payment system 1310 (or the OTP server) may be configured to allow the OTP agent downloaded after the OTP agent is downloaded to the user's mobile phone 1380, It is preferable that the OTP generation information is generated (or extracted) and provided to the user's cellular phone 1380. The OTP generation information is encrypted and stored in a memory provided in the user's cellular phone 1380, A Universal Subscriber Identity Module (USIM) provided in the mobile phone 1380).

According to the embodiment of the present invention, after the OTP agent is downloaded to the user's cellular phone 1380 or when the OTP agent downloaded to the user's cellular phone 1380 is initially executed, the user's cellular phone 1380 transmits the OTP agent And stores the input user password or the user's personal identification number in a memory provided in the cellular phone, or stores the user password in a memory provided in the user's cellular phone 1380 The OTP agent outputs an interface for inputting a user's password or a user's personal identification number when the OTP agent is generated by driving the OTP agent, (Or USIM) stored in the memory It is desirable to verify the validity of the OTP generation by comparing the user's password or the user's personal identification number.

According to one embodiment of the present invention, when the user password or the user's personal identification number is used as the OTP verification information, the OTP agent transmits a communication channel (for example, And transmits the user password or the user's personal identification number to the payment system 1310. The payment system 1310 transmits the user password or the user's personal identification number to the payment system 1310, (Or receiving the user's personal identification number including the user's resident registration number information), and transmits the OTP verification information including the mobile phone number and the user's password or the user's personal identification number And stores it in the storage medium 1370.

According to another embodiment of the present invention, a second user password or a user personal identification number corresponding to the OTP verification information is stored in a memory (or USIM) provided in the user's cellular phone 1380, in addition to the user password or the user's personal identification number The OTP agent outputs an interface for registering the OTP verification information and transmits a second user's password or a user's personal identification number input through the interface to a memory (E.g., an encryption / decryption based secure communication channel) with the billing system 1310 via the user's cellular phone 1380 after the billing system 1310 (or the USIM) Transmits a second user's password or a user's personal identification number stored in the memory (or USIM) The system 1310 confirms the mobile phone number corresponding to the user's mobile phone 1380 that transmitted the second user's password or the user's personal identification number (or includes the user's resident registration number information in the second user's password or the user's personal identification number) And stores OTP verification information including the mobile phone number and the second user password or the user's personal identification number in the storage medium 1370. When the second user password or the user personal identification number is stored in the memory (or USIM), a second user password stored in the memory (or USIM) or a user personal identification number Is also output.

According to another embodiment of the present invention, when registering a separate user password or user's personal identification number in addition to the user password or the user's personal identification number, the OTP agent outputs an interface for registering the OTP verification information, Decryption-based secure communication channel) with the settlement system 1310 via the user's mobile phone 1380 when the user's personal identification number is input through the user's mobile phone 1380, The billing system 1310 transmits the separate user password or the user's personal identification number to the system 1310, and the billing system 1310 transmits a mobile phone number corresponding to the user's mobile phone 1380 that transmitted the separate user's password or the user's personal identification number Confirmation (or the separate user password or user identification number And stores OTP verification information including the mobile phone number and the separate user password or user's personal identification number in the storage medium 1370.

When the OTP agent is installed in the user's mobile phone 1380 by the agent checking means 1330 or when the OTP agent is downloaded and installed to the user's mobile phone 1380 through the agent providing means 1335, The OTP interface providing unit 1340 inputs the OTP generated by the OTP agent provided in the user's mobile phone 1380 to the user terminal 1300 and verifies the validity of generating the OTP to be compared with the OTP And an OTP input interface for inputting OTP verification information for providing the OTP verification information.

According to the embodiment of the present invention, the OTP interface providing unit 1340 directly or indirectly relays the web server 1305 to the wired terminal 1300 through a communication network connected to the wired terminal 1300 It is preferable that the OTP input interface is provided to the user terminal 1300.

When the OTP input interface is provided to the user terminal 1300 by the OTP interface providing unit 1340, the OTP receiving unit 1345 receives the OTP input interface from the user terminal 1300 through the OTP input interface OTP and OTP verification information, and may be omitted when a communication session with the user terminal 1300 is connected.

According to an embodiment of the present invention, the OTP interface providing unit 1340 connects a communication channel with the wired terminal 1300 and provides the OTP input interface to the wired terminal 1300 through the communication channel The OTP receiving means 1345 confirms the user terminal 1300 information (for example, IP address) from the communication channel provided to the user terminal 1300 through the OTP input interface, (For example, communication with a memory area allocated to receive the OTP and OTP verification information from the user terminal 1300) for receiving the OTP and OTP verification information from the user terminal 1300 A thread code) is preferably connected.

According to another embodiment of the present invention, when the OTP interface providing unit 1340 provides the OTP input interface to the wired terminal 1300 through the web server 1305, the OTP receiving unit 1345 (For example, IP address) from the web server 1305 and receives a communication session for receiving the OTP and OTP verification information from the wired terminal 1300 based on the information , And a memory area and a communication thread (Thread) code allocated to receive the OTP and OTP verification information from the user terminal 1300).

The communication session may include a secure communication session for encrypting and receiving the OTP and OTP verification information, and decrypting the encrypted OTP and OTP verification information.

When the user terminal 1300 is connected to a communication session, the OTP receiving means 1345 is compared with the OTP inputted through the OTP input interface from the user terminal 1300 through the communication session and the OTP And receives OTP verification information for verifying validity of generating OTP '.

The OTP validation unit 1350 may be configured to provide the OTP input interface to the user terminal 1300 when the OTP input interface is provided to the user terminal 1300 by the OTP interface providing unit 1340 (Or the user's resident registration number information) or the OTP verification information associated with the mobile phone number to the user terminal 1300 information (for example, the IP address of the user terminal 1300) provided with the OTP input interface, (For example, DB reference or pointer mapping) with the communication session information connected to the wired terminal 1300 and transmits the OTP and OTP verification information from the user wired terminal 1300 via the OTP receiving means 1345 Is received.

If OTP and OTP verification information is received from the user terminal 1300 through the OTP receiving means 1345, the OTP validation means 1350 verifies the OTP validity of the user terminal 1300 corresponding to the user terminal 1300, (1300) information or communication session information, confirms the OTP verification information connected to the user terminal 1300 or the communication session information from the storage medium 1370, And verifying the validity of generating OTP 'to be compared with the OTP.

According to another embodiment of the present invention, the OTP validation means 1350 may be configured such that the user is authenticated by the user authenticating means 1325 or is authenticated by the agent authenticating means 1330, Or when the OTP agent is provided to the user's cellular phone 1380 by the agent providing means 1335, the information of the user terminal 1300 and the storage medium 1370 It is possible to connect and maintain the OTP verification information stored in the OTP verification information, and thus the present invention is not limited thereto.

If the validity of generating the OTP 'to be compared with the OTP is verified through the OTP verification information, the payment validity authentication unit 1355 generates OTP' to be compared with the OTP from the storage medium 1370 And determines a fixed seed value and a dynamic seed value for generating OTP 'from the OTP generation information, and determines an OTP to be compared with the received OTP using the determined fixed seed value and dynamic seed value, &Quot;

If the OTP 'is generated, the payment validity authentication unit 1355 compares the received OTP with the generated OTP' to confirm the payment validity of the mobile phone number, (1360) transmits the result of the micropayment validity check on the mobile number to the web server (1305) operating the micropayment website.

Referring to FIG. 13, when the payment validity is authenticated by the payment validity authentication unit 1355, the settlement system 1310 performs settlement processing for processing the settlement amount through the communication fee charged to the mobile phone (1365).

According to the method of the present invention, the payment processing unit 1365 confirms the payment amount to be charged to the communication fee of the user's mobile phone 1380 from the web server 1305, and, in connection with the mobile communication company server 1375 It is preferable to inquire the payment limit for the number of the user's mobile phone 1380 and to compare the payment amount with the payment limit to approve payment through the communication fee charged to the mobile phone.

According to another embodiment of the present invention, the payment processing unit 1365 can store and manage the number of the user's mobile phone 1380 and the corresponding payment limit information through a separate database. In this case, The processing means 1365 may inquire the settlement limit for the number of the user's cellular phone 1380 through the database and compare the settlement amount with the settlement limit to approve payment through the communication fee charged to the mobile phone Do.

If payment using the communication fee charged to the mobile phone is approved, the payment processing unit 1365 processes the payment amount to be charged to the communication fee for the user's cellular phone 1380 through the mobile communication company server 1375 And transmits payment approval information for the payment amount to the web server 1305.

FIG. 14 is a diagram illustrating a mobile phone settlement process using OTP verification information according to a fourth embodiment of the present invention.

In more detail, FIG. 14 shows a user terminal 1300 connected to a web site for a small amount payment, an interface for inputting a mobile communication company selection corresponding to the user mobile phone 1380 and a user mobile phone 1380 number and a user's resident registration number And receives the mobile communication company selection information corresponding to the user mobile phone 1380, the user mobile phone 1380 number and the user's resident registration number information from the user's wired terminal 1300 via the interface, (One Time Password) agent is installed in the user's mobile phone 1380, the user terminal 1300 transmits the user authentication result corresponding to the user's resident registration number confirmation result to the user's wired terminal 1300 OTP generated by the provided OTP agent and OTP verification for generating OTP 'to be compared with the OTP A user who has an ordinary skill in the art will be able to refer to and / or modify the FIG. 14 to provide a mobile phone settlement process using the OTP verification information It is to be understood that the invention may be practiced otherwise than as specifically described herein, but it will be appreciated that the invention may be practiced otherwise than as specifically described herein, The technical characteristics thereof are not limited.

Hereinafter, in FIG. 14, the payment system 1310 shown in FIG. 13 is referred to as a "server" for the sake of convenience.

Referring to FIG. 14, a user accesses the web server 1305 to purchase a type / intangible goods and transmits a payment amount corresponding to the purchase price for the goods to a communication fee charged to the user's cellular phone 1380 (1400), the server relays the web server 1305 directly to the wired terminal 1300 through the communication network to which the wired terminal 1300 is connected, A mobile phone settlement interface for inputting a mobile communication company selection number corresponding to the user mobile phone 1380 and a user mobile phone 1380 number and a user's resident registration number is processed by the user terminal 1300, (1380) number and user's resident registration number information input via the mobile phone payment interface (step < RTI ID = 0.0 > 1410).

If the mobile communication company selection information, the user mobile phone 1380 number and the user's resident registration number information are received from the user terminal 1300 in operation 1415, the server receives the user's mobile phone 1380 number stored in the member D / B (not shown) The user resident registration number information, the received user mobile phone number 1380, and the user's resident registration number information to authenticate the user requesting the micropayment of the mobile phone 1420.

If the user is not authenticated 1425, the server generates a user authentication error and transmits it to the user terminal 1300 (or the user mobile phone 1380) and the web server 1305 (1430).

On the other hand, if the user is authenticated 1425, the server generates an OTP for authenticating the cellular phone settlement to the user's cellular phone 1380 through the OTP agent information stored in the storage medium 1370 in association with the cellular phone number It is checked whether an OTP agent is provided (1435).

If the OTP agent is not installed in the user's mobile phone 1380, the server processes the OTP agent to be provided to the user's mobile phone 1380 through the process shown in FIG.

On the other hand, if the OTP agent is installed in the user's mobile phone 1380 (1440), the server generates an OTP generated through the OTP agent included in the user's mobile phone 1380 and an OTP 'to be compared with the OTP An OTP input interface for inputting OTP verification information for verifying validity is provided to the user terminal 1300 (1445).

FIG. 15 is a diagram illustrating a process of providing an OTP agent to a user's mobile phone 1380 according to a fourth embodiment of the present invention.

More specifically, FIG. 15 is a flow chart illustrating a method for providing the OTP agent to the user's mobile phone 1380 when the OTP agent is not installed in the user's mobile phone 1380 in the process shown in FIG. 14 Message to be transmitted to the user's cellular phone 1380 and providing the OTP agent to the user's cellular phone 1380 through the message. The present invention is not limited to the above- It is possible to refer to and / or modify the FIG. 15 to infer various implementations (e.g., omissions of some of the steps, or alternate implementations) of the process of providing the OTP agent to the user's mobile phone 1380 However, the present invention includes all of the above-described embodiments, and only the embodiment shown in FIG. 15 The technical features are not limited to.

Hereinafter, in FIG. 15, the settlement system 1310 shown in FIG. 13 is referred to as a "server" for the sake of convenience.

Referring to FIG. 15, if the OTP agent is not installed in the user's mobile phone 1380 in the process shown in FIG. 14, the server includes a callback URL for downloading the OTP agent to the user's mobile phone 1380 (1500). In response to the message, the user's mobile phone (1380) requests the OTP agent to the server (or OTP server) corresponding to the callback URL.

The server (or OTP server) corresponding to the callback URL provides the OTP agent to the user's mobile phone 1380 (1505).

If the OTP agent is provided to the user mobile phone 1380 in operation 1510, the user mobile phone 1380 inputs a user password or a user's personal identification number for generating an OTP through the OTP agent, The password or the user's personal identification number is stored in the memory provided in the cellular phone or is stored in the USIM provided in the user's cellular phone 1380 and registered in the memory 1515 and compared with the OTP generated through the OTP agent (Or confirms) the OTP verification information for verifying the validity of generating the OTP, and transmits the OTP verification information to the server 1520. The server checks the number of the user's cellular phone 1380 that transmitted the OTP verification information, The number of the user's mobile phone 1380 and the OTP verification information are linked and stored in the storage medium 1370 (1525).

FIG. 16 is a diagram illustrating a mobile phone payment approval process using OTP verification information according to a fourth embodiment of the present invention.

16, the OTP input interface is provided to the user terminal 1300 in the process shown in FIG. 14, and then receives OTP and OTP verification information input through the OTP input interface. The verification result is read and the validity of the OTP 'generation is confirmed. Then, the OTP is generated and compared with the received OTP, the payment validity is verified and the payment approval process is performed. In the technical field of the present invention, It is possible to refer to and / or modify the FIG. 16 to various implementations of the mobile phone payment approval process using the OTP verification information (e.g., omitting some steps or changing the order) However, the present invention is not limited to the above-described embodiments, Technological features are not limited.

Hereinafter, in FIG. 16, the payment system 1310 shown in FIG. 13 is referred to as a "server" for the sake of convenience.

Referring to FIG. 16, after the OTP input interface is provided to the user terminal 1300 in the process shown in FIG. 14, the server receives the OTP input interface from the user terminal 1300 through the OTP input interface Confirm that OTP and OTP verification information is received (1600).

If the OTP and OTP verification information is received (1605), the server compares the received OTP verification information with the OTP verification information stored in the storage medium 1370 to check whether the OTP generation is valid (1610).

If the validity of OTP generation is not confirmed 1615, the server generates payment error information and transmits it to the user terminal 1300 (or the user's mobile phone 1380) and the web server 1305 (1620) .

On the other hand, when the validity of OTP 'generation is confirmed (1615), the server checks (1625) OTP generation information for generating OTP' to be compared with the received OTP (1625) and generates OTP ' (1630), generates OTP 'using the determined fixed seed value and dynamic seed value, and compares it with the received OTP to authenticate the payment validity (1635).

If the payment validity is not authenticated 1640, the server generates payment error information and transmits it to the user terminal 1300 (or the user mobile phone 1380) and the web server 1305 in operation 1620.

If the payment validity is authenticated 1640, the server generates the payment validation result and transmits it to the user terminal 1300 (or the user's mobile phone 1380) and the web server 1305 (1645) In response to the payment validity check result, the payment approval is processed through the communication fee of the user mobile phone 1380 (1650).

According to the embodiment of the present invention, the server confirms the payment amount to be charged to the communication rate of the user's mobile phone 1380 from the web server 1305, and transmits the payment amount to the user's mobile phone 1380 ), And confirms the settlement through the communication charge imposed on the mobile phone by comparing the settlement amount with the settlement limit.

100: User wired terminal 105: Web server
110: Payment system 115: Payment interface providing means
120: Information receiving means 125: User authentication means
130: Agent checking means 135: Agent providing means
140: OTP interface providing means 145: OTP receiving means
150: OTP validation means 155: Payment validity authentication means
160: Information providing means 165: Payment processing means
170: mobile communication company server 175: user mobile phone

Claims (5)

In a method executed by a server,
A first step of checking the identification number stored in a designated storage area of the user's mobile phone and storing the identification number in a designated storage medium when the user's mobile phone installed a program implementing OTP (One Time Password)
The OTP, which is implemented through a program executed in the user's mobile phone, and the identification number extracted from the storage area designated by the program, are provided to a nearby terminal through the local communication means of the mobile phone at the time of confirming the payment request using the user's mobile phone, Via a second step; And
Determining whether to perform a procedure for authenticating the validity of the OTP by performing a procedure for authenticating the validity of the received identification number;
And a fourth step of performing a designated procedure for authenticating the validity of the OTP when the validity of the identification number is authenticated,
Wherein the payment is processed using the payment means specified based on a result of authenticating the validity of the OTP.
2. The method according to claim 1,
Wherein the user terminal is registered through a program executed first in the user's mobile phone.
The method according to claim 1,
Further comprising the step of authenticating whether a program registered with the identification number is installed in the user's mobile phone when the payment request using the user's mobile phone is confirmed.
The method of claim 3,
Further comprising the step of performing a procedure for installing the program on the user's mobile phone when the program is not installed in the user's mobile phone.
The communication system according to claim 1,
A Bluetooth communication means using Bluetooth, or
And at least one of a near-RF communication unit between the user's cellular phone and the near-end terminal.

Images