KR20170043960A - Device Injection Key managing apparatus - Google Patents
Device Injection Key managing apparatus Download PDFInfo
- Publication number
- KR20170043960A KR20170043960A KR1020150143690A KR20150143690A KR20170043960A KR 20170043960 A KR20170043960 A KR 20170043960A KR 1020150143690 A KR1020150143690 A KR 1020150143690A KR 20150143690 A KR20150143690 A KR 20150143690A KR 20170043960 A KR20170043960 A KR 20170043960A
- Authority
- KR
- South Korea
- Prior art keywords
- key
- terminal
- dik
- disposable
- merchant payment
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/20—Point-of-sale [POS] network systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
Landscapes
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Engineering & Computer Science (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Cash Registers Or Receiving Machines (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The present invention relates to a disposable terminal injection key management apparatus, and more particularly, to a disposable terminal injection key management apparatus for managing a single-use terminal injection key management apparatus by using a terminal master key (PMK) (DIK), which is the only symmetric key, to be efficiently managed.
Description
The present invention relates to a payment encryption technology, and more particularly to a disposable terminal injection key management device.
The asymmetric key cryptosystem is a method of performing encryption and decryption using a private key known to the user and a public key publicly known to each other, and a key for encryption and decryption is different.
The symmetric key cryptosystem uses encryption and decryption using the same cryptographic key. Compared to the asymmetric key cryptosystem, the encryption and decryption speed is fast and the encryption algorithm is not complicated.
Korean Patent Laid-Open No. 10-2002-0082670 (Oct. 31, 2002) proposes a technology for encrypting financial information in a personal mobile communication terminal using a symmetric key security algorithm.
The present inventor has developed a disposable terminal injection key (DIK) which is a unique symmetric key for each merchant payment terminal used to download a terminal master key (PMK) for downloading a POS Working Key (PWK) We have studied the technology that can manage efficiently.
SUMMARY OF THE INVENTION The present invention has been made in view of the above-mentioned circumstances, and it is an object of the present invention to provide a method and apparatus for downloading a POS Master Key (PMK) for downloading a POS Working Key (PWK) And an object thereof is to provide a disposable terminal injection key management apparatus capable of efficiently managing a disposable terminal injection key (DIK) as a key.
According to an aspect of the present invention, a disposable terminal injection key management apparatus includes a first communication unit for receiving a disposable terminal injection key (DIK), which is a unique symmetric key for each merchant payment terminal; A memory for storing a disposable terminal injection key (DIK) which is a unique symmetric key for each merchant payment terminal received by the first communication unit; A second communication unit for transmitting a disposable terminal injection key (DIK), which is a unique symmetric key for each merchant payment terminal stored in the memory, to the merchant payment terminal; (DIK), which is a unique symmetric key for each of the merchant payment terminals; And the like.
According to a further aspect of the present invention, the disposable terminal injection key management apparatus comprises an input unit for inputting user authentication information; And further comprising:
According to a further aspect of the present invention, when the control unit compares the user authentication information inputted through the input unit with the user authentication information stored in advance and confirms the user authentication information, the transmission / reception function of the disposable terminal injection key (DIK) .
According to a further aspect of the present invention, the first communication unit communicates with the temporary key storage device or the key management server through a serial communication, a USB communication, or an Ethernet communication method.
According to a further aspect of the present invention, the second communication unit communicates with the merchant payment terminal in a serial communication manner.
According to a further aspect of the present invention, the disposable terminal injection key (DIK) is used for encrypting and decrypting a POS Master Key (PMK) for downloading a POS Working Key (PWK) And is an encryption key to be used.
The present invention provides a disposable terminal injection key (DIK) which is a unique symmetric key for each merchant payment terminal used to download a terminal master key (PMK) for downloading a POS Working Key (PWK) ) Can be efficiently managed.
1 is a block diagram showing a configuration of an embodiment of a disposable terminal injection key management apparatus according to the present invention.
DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like reference numerals refer to the like elements throughout.
In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear.
The terms used throughout the specification of the present invention have been defined in consideration of the functions of the embodiments of the present invention and can be sufficiently modified according to the intentions and customs of the user or operator. It should be based on the contents of.
1 is a block diagram showing a configuration of an embodiment of a disposable terminal injection key management apparatus according to the present invention. 1, the disposable terminal injection
The
At this time, the disposable terminal injection key (DIK) may be a cryptographic key used for encrypting and decrypting a POS Master Key (PMK) for downloading a terminal working key (PWK) used for settlement .
The
Then, the disposable terminal injection
At this time, the disposable terminal injection key (DIK) which is the only symmetric key for each merchant payment terminal may include an injection key ID, injection key generation date and time, and injection key derivation frequency. The injection key ID may include a merchant payment terminal manufacturer ID and an injection key generation number.
Meanwhile, the
The
The
The
When the disposable terminal injection key (DIK), which is a unique symmetric key for each merchant payment terminal, is stored in the
The
The
The process of acquiring the terminal master key (PMK: POS Master Key) includes receiving the one-time terminal injection key (DIK), which is the only symmetric key corresponding to the merchant payment terminal, from the one- The
Then, the
At this time, the
Then, the
The
Then, the
At this time, the
The key serial number KSN may include information such as a van master key (VMK) ID, a randomly generated serial number, an ID of a merchant payment terminal manufacturer, identification information of a merchant payment terminal, and the number of transactions encrypted to date.
The
Meanwhile, when using the disposable terminal injection key (DIK), the
According to a further aspect of the present invention, the disposable terminal injection
When the user authentication information is inputted from the administrator through the
Therefore, according to the present invention, the present invention provides a unique symmetric key for each merchant payment terminal used for downloading a POS Master Key (PMK) for downloading a POS Working Key (PWK) Can be efficiently managed through the disposable terminal injection
While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it will be understood by those of ordinary skill in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims. .
The present invention is industrially applicable in the field of payment encryption technology and its application technology.
100: Disposable terminal injection key management device
110: first communication section
120: Memory
130: second communication section
140:
150:
200: Key management server
300: Merchant payment terminal
Claims (6)
A memory for storing a disposable terminal injection key (DIK) which is a unique symmetric key for each merchant payment terminal received by the first communication unit;
A second communication unit for transmitting a disposable terminal injection key (DIK), which is a unique symmetric key for each merchant payment terminal stored in the memory, to the merchant payment terminal;
(DIK), which is a unique symmetric key for each of the merchant payment terminals, to control the entire apparatus including the transmission / reception and storage control of the disposable terminal injection key (DIK);
Wherein the key input device is a key input device.
The disposable terminal injection key management apparatus comprising:
An input unit for inputting user authentication information;
Further comprising: a first key input unit for inputting a key for inputting a key to the terminal;
Wherein the control unit comprises:
Wherein the user authentication information comparing unit compares the user authentication information inputted through the input unit with the user authentication information stored in advance and confirms the user authentication if the user authentication information matches the user authentication information and activates the transmission / reception function of the disposable terminal injection key (DIK) .
Wherein the first communication unit comprises:
And communicates with the temporary key storage device or the key management server through a serial communication, a USB communication, or an Ethernet communication method.
Wherein the second communication unit comprises:
And communicates with the merchant payment terminal in a serial communication manner.
Wherein the disposable terminal injection key (DIK) comprises:
And a cryptographic key used for encrypting and decrypting a POS Master Key (PMK) for downloading a POS Working Key (PWK) used for settlement.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150143690A KR101764363B1 (en) | 2015-10-14 | 2015-10-14 | Device Injection Key managing apparatus |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150143690A KR101764363B1 (en) | 2015-10-14 | 2015-10-14 | Device Injection Key managing apparatus |
Publications (2)
Publication Number | Publication Date |
---|---|
KR20170043960A true KR20170043960A (en) | 2017-04-24 |
KR101764363B1 KR101764363B1 (en) | 2017-08-02 |
Family
ID=58704493
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020150143690A KR101764363B1 (en) | 2015-10-14 | 2015-10-14 | Device Injection Key managing apparatus |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR101764363B1 (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20200046451A (en) * | 2018-10-24 | 2020-05-07 | 테크온미디어(주) | Method for contents distribution based peer to peer, apparatus and system for executing the method |
KR20220076030A (en) * | 2020-11-30 | 2022-06-08 | 한국정보통신주식회사 | Card terminal performing card payment using secure access module and method of operating the same |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101449644B1 (en) * | 2013-05-22 | 2014-10-15 | 한국정보통신주식회사 | POS System and Method for Payment using Encrypted Card Information |
-
2015
- 2015-10-14 KR KR1020150143690A patent/KR101764363B1/en active IP Right Grant
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20200046451A (en) * | 2018-10-24 | 2020-05-07 | 테크온미디어(주) | Method for contents distribution based peer to peer, apparatus and system for executing the method |
KR20220076030A (en) * | 2020-11-30 | 2022-06-08 | 한국정보통신주식회사 | Card terminal performing card payment using secure access module and method of operating the same |
Also Published As
Publication number | Publication date |
---|---|
KR101764363B1 (en) | 2017-08-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11521203B2 (en) | Generating a cryptographic key based on transaction data of mobile payments | |
CN108377190B (en) | Authentication equipment and working method thereof | |
US10460314B2 (en) | Pre-generation of session keys for electronic transactions and devices that pre-generate session keys for electronic transactions | |
EP2695148B1 (en) | Payment system | |
CN1960363B (en) | Method and equipment for implementing remote updating information security devices through network | |
EP3608860A1 (en) | Payment system for authorising a transaction between a user device and a terminal | |
WO2018090763A1 (en) | Method and device for configuring terminal master key | |
CN103988464A (en) | System and method for key management for issuer security domain using global platform specifications | |
KR20150011377A (en) | Electronic authentication client system and processing method, and electronic authentication system and method | |
US20170353315A1 (en) | Secure electronic entity, electronic apparatus and method for verifying the integrity of data stored in such a secure electronic entity | |
EP3292654B1 (en) | A security approach for storing credentials for offline use and copy-protected vault content in devices | |
CN115374405A (en) | Software authorization method, license authorization method, device, equipment and storage medium | |
KR101764363B1 (en) | Device Injection Key managing apparatus | |
KR101347124B1 (en) | Method of managing electronic prescription based on one-time public information and apparatus using the same | |
KR101771484B1 (en) | Creation Method of Signature Key to use Security Token efficiently | |
JP2017108237A (en) | System, terminal device, control method and program | |
KR101764362B1 (en) | Device Injection Key managing method | |
KR20100087493A (en) | Method and system for providing synthesis membership using mobile communication terminal and mobile communication terminal having synthesis membership providing function | |
CN107682147B (en) | Security management method and system for smart card chip operating system file | |
KR101955950B1 (en) | Method for authentication using multi-channel, Authentication Server and AuthenticationAPPARATUS | |
KR101834522B1 (en) | Apparatus for confirming data and method for confirming data using the same | |
KR101664471B1 (en) | Method for Processing Mobile OTP Based On Network | |
KR101625036B1 (en) | Simple Payment System for Improving Certification and Method thereof | |
KR101957885B1 (en) | Method of payment processing and security card reader device performing the same | |
JP2013073299A (en) | Information processing system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
E701 | Decision to grant or registration of patent right | ||
GRNT | Written decision to grant |