KR20200057564A - Clinet apparatus, service server and system for providing payment service using peer to peer network - Google Patents

Abstract

The present invention provides a physical card-blockchain system interlocking technique and an app card utilization technique for increasing the usability of an existing payment system. According to an embodiment, a client terminal includes a blockchain network system, a communication interface for communication with an external server providing a payment service on the blockchain network system, at least one memory interlocking with the client terminal and storing a first blockchain account address registered in the blockchain network system, a camera, an input interface, and at least one processor. The camera obtains, from a predetermined object, an image including a one-time password and second blockchain account address information. The input interface obtains information on a sum to be transferred to the first blockchain account address from the second blockchain account address. The at least one processor is set to obtain, from the image, the second blockchain account address and text data corresponding to the one-time password and transmit, to the external server, the one-time password and the first blockchain account address, the second blockchain account address, and the sum information constituting a transfer transaction to be executed on the blockchain network system.

Description

Client terminal, server, and system for providing payment service using peer-to-peer network {CLINET APPARATUS, SERVICE SERVER AND SYSTEM FOR PROVIDING PAYMENT SERVICE USING PEER TO PEER NETWORK}

Embodiments of this document relate to a technology for providing a payment service between a user and a merchant using a peer-to-peer network implementing a distributed database.

The blockchain system is one of peer-to-peer network (hereinafter, P2P network) systems composed of a plurality of computing devices, and implements a distributed database of a blockchain structure. The blockchain system has a feature that it is impossible to falsify the stored data while solving the double payment problem through an agreement algorithm. In order to utilize the characteristics of such a blockchain system, recent industries are attempting to integrate the blockchain system with existing services.

Meanwhile, a payment service has been launched to perform payment between users using a blockchain system to pay for goods or services. Payment services are mainly provided through wallets or cryptocurrency exchanges that work in conjunction with specific blockchain systems.

Payment transactions between users on the blockchain system may be performed through a transfer transaction that transfers cryptocurrency from the user to the merchant. The user enters information for generating a transfer transaction (e.g., the blockchain account information of the merchant, the amount of remittance), and then digitally signs the transfer transaction using the user's private key, You need to go through a series of processes to propagate the transfer transaction on the blockchain system. Blockchain wallets (e.g. meta-masks, Nova wallets, etc.) provide an interface to generate transfer transactions, but users have the inconvenience of typing in and entering the blockchain accounts of merchants, and sometimes users In some cases, you may have to enter your own secret key. Therefore, it is difficult for users who are not familiar with the blockchain system to use the driven payment service provided through the blockchain system.

Payment services through cryptocurrency exchanges inevitably impose high fees on users. This is because the cryptocurrency exchange uses a method of exchanging cryptocurrency or statutory currency for a cryptocurrency to be used as a payment method for a specific transaction and performing payment with the exchanged cryptocurrency. During the exchange process, the transaction fee charged by the cryptocurrency exchange constantly occurs, and of course, the fee on the blockchain system to process the transfer transaction also occurs.

In order to improve the usability of the existing payment system, the embodiments of this document are intended to provide a technique of integrating a physical card with a blockchain system, and a technique of utilizing an app card.

A client terminal according to an embodiment is a block chain network system, and a communication interface for communicating with an external server providing a payment service on the block chain network system, interworking with the client terminal, and registering the block with the blockchain network system. An image including one or more memories, a camera, an input interface, and one or more processors storing one blockchain account address, wherein the camera includes one time password and second blockchain account address information from a given object And the first or more processors acquire text data corresponding to the one-time password and the second blockchain account address from the image, and configure the transfer transaction to be executed on the blockchain network system. The address, the second blockchain account address, and the amount information and the one-time password can be set to be transmitted to the external server.

Further, the predetermined object includes a first area in which the one-time password is output through a display liquid crystal provided on one surface, and a second area in which a QR code including the second blockchain account address information is printed. It is a physical card, and the one or more processors may acquire text data corresponding to the one-time password from the first area, and obtain the second blockchain account address from the second area.

In addition, the first region and the second region may be disposed together on the one surface.

In addition, the predetermined object is a physical card that outputs one QR code including information on the one-time password and the second blockchain account address information through a display liquid crystal provided on one side, and the One or more processors may obtain text data corresponding to the one-time password and the second blockchain account address from the one QR code.

In addition, the predetermined object is an external device that outputs an image including the one-time password and second blockchain account address information through a display, and the one or more processors are connected to the one-time password from the image output by the external device. Corresponding text data and the second blockchain account address can be obtained.

In addition, the image output by the external device may include a QR code including the one-time password and the second blockchain account address information.

The service server according to an embodiment is a blockchain network system, and a communication interface for communicating with an external terminal participating in a payment service request on the blockchain network system-The payment service request includes a first blockchain account address and the first One-time password generated by the holder of the blockchain account, the second blockchain account address, and the amount of information to be transferred from the first blockchain account address to the second blockchain account address are included. And one or more processors and one or more processors to store a previously issued one-time password serial number used for verification, wherein the one or more processors receive the payment service request, based on the previously issued one-time password serial number. The integrity of the one-time password is determined, and when the integrity of the one-time password is determined, payment means on the blockchain system corresponding to the amount information is transferred from the first blockchain account address to the second blockchain account address. The transaction information may be generated, and a transaction may be set on the blockchain network system based on an authentication authority for generating the transaction information.

In addition, the one or more processors may perform the authentication through digital signature using the secret key of the first blockchain account stored in the one or more memories when the amount information is equal to or less than a predetermined amount.

In addition, the secret key of the first blockchain account stored in the one or more memories is set to be digitally signed only when the amount is equal to or less than the predetermined amount, and is composed of a string different from the secret key held by the owner of the first blockchain account Can be.

In addition, the one or more processors transmits the transaction information to a first terminal held by the owner of the first blockchain account when the amount information is greater than or equal to a predetermined amount, and the authentication is the first stored in the first terminal. It can be done through digital signature using the secret key of the blockchain account.

Further, the payment means may be a cryptocurrency that is paid as a reward for block creation on the blockchain network system, or a token that can be exchanged for the cryptocurrency on the blockchain network system.

In addition, when receiving a new account creation request to be used for the payment service from an external terminal, the one or more processors generate the user's blockchain account information on the blockchain network system and generate the user's one-time password serial number. The user's blockchain account on the blockchain network system by determining a payment limit for transfer of the payment means from the user's blockchain account to another account for the user's account information. Can be set to record information.

In addition, the blockchain account information may include a private key used for digitally signing the transaction so that a transaction is generated by the user, and a public key functioning as the account address of the user. have.

The payment system according to an embodiment stores its first blockchain account address used on the blockchain network system, obtains one time password and second blockchain account address information from a predetermined object, Transfer transaction information including the amount of money to be transferred from the second blockchain account address to the first blockchain account address, and including the first blockchain account address, the second blockchain account address, and the amount information And the client terminal transmitting the one-time password to the service server, and receiving the transfer transaction information and the one-time password, and determining the integrity of the one-time password based on a previously issued one-time password serial number, and the integrity of the one-time password is If it is determined, authentication authority to generate transaction information to transfer payment means on the blockchain system corresponding to the amount information from the first blockchain account address to the second blockchain account address, and to generate the transaction information Based on the may include the service server to cause a transaction to occur on the blockchain network system.

Further, the predetermined object includes a first area in which the one-time password is output through a display liquid crystal provided on one surface, and a second area in which a QR code including the second blockchain account address information is printed. It may include a physical card (physical card).

In addition, the service server transmits the transaction information to a user terminal owned by the owner of the first blockchain account when the amount information is greater than or equal to a predetermined amount, and the system receives the transaction information and stores the transaction information The user terminal for digitally signing the transaction information using the secret key of the first blockchain account may be further included.

According to the embodiments of the present document, the user can conveniently perform payment (transfer transaction) performed on the blockchain system using a physical card or an app card.

According to the embodiments of the present document, a one-time password generator included in the physical card can be used to increase security in the payment process by the physical card and prevent financial damage to the user.

According to embodiments of the present document, a transaction fee can be reduced by enabling a direct transaction between the user and the merchant.

In addition, various effects that can be directly or indirectly identified through this document may be provided.

1 is a block diagram showing an operating environment of a payment system and a blockchain network system according to an embodiment.
2A is a diagram illustrating a payment process according to an embodiment
2B is an exemplary diagram of a physical card according to various embodiments.
3 is a configuration block diagram of a merchant terminal according to an embodiment.
4 is a block diagram of a service server according to an embodiment.
5 is a flowchart illustrating a member registration process and a card issuing process in a payment system according to an embodiment.
6 and 7 are flowcharts illustrating a payment process according to an embodiment.
In connection with the description of the drawings, the same or similar reference numerals may be used for the same or similar components.

Hereinafter, various embodiments of the present invention will be described with reference to the accompanying drawings. However, this is not intended to limit the present invention to specific embodiments, and it should be understood that various modifications, equivalents, and / or alternatives of embodiments of the present invention are included.

1 is a block diagram showing an operating environment of a payment system 10 and a blockchain network system 20 (hereinafter referred to as "blockchain system") according to an embodiment.

Referring to FIG. 1, the payment system 10 according to an embodiment may provide a payment service in cooperation with the blockchain system 20. The blockchain system 20 may be understood as a P2P network system that implements a distributed database of blockchain structure. However, the blockchain system 20 is an example, and the payment system 10 may provide a payment service in cooperation with a P2P network system that implements a distributed database of various different structures (eg, DAG structure, etc.).

The payment service may be provided through the physical card 50 held by the user, the merchant terminal 200, and the service server 300. In various embodiments, the same card image as the physical card 50 may be displayed on the display of the user's terminal (hereinafter, the user terminal 100). The card image displayed on the display can be understood as the mobile card 60.

The payment system 10 may include a user terminal 100, a merchant terminal 200, and a service server 300. The user terminal 100, the merchant terminal 200, and the service server 300 are connected to be operable through a network to transmit and receive information. The network may include a wired network and / or a wireless network. For example, the network may be a local area network (LAN), a wide area network (WAN), a virtual network, or a telecommunication network.

For example, the merchant may be a merchant who has subscribed to a payment service, and the user may be a customer using the merchant. Users and merchants are users of the blockchain system 20, and may have a blockchain account registered (stored) in the blockchain system 20. The user terminal 100 may operate in conjunction with the user's blockchain account, and the affiliated terminal 200 may operate in conjunction with the affiliated blockchain account. Payment between the user and the merchant may be made through the 'payment means' used on the payment system 10.

In one embodiment, the payment means may be a cryptocurrency used in a specific blockchain system 20. For example, the payment system 10 operating on the Bitcoin network system may use Bitcoin (BTC) as a payment means. The payment system 10 operating on the Ethereum network system may use Ethereum (ETH) as a payment means.

In various embodiments, payment system 10 may be implemented to operate on a plurality of different blockchain systems. In this case, the payment system 10 may use a plurality of different cryptocurrencies of the plurality of different blockchain systems as payment means. For example, when the payment system 10 is implemented to operate on a Bitcoin network system, an Ethereum network system, and an EOS network system, both Bitcoin (BTC), Ethereum (ETH), and EOS (EOS) Can be used as a means of payment.

In one embodiment, the payment means may be a token used in a specific blockchain system 20. For example, the payment system 10 operating on the Ethereum network system may use the ERC-20 token as a payment means. According to various embodiments, various types of tokens provided by various general-purpose platforms may be used as payment means.

The service server 300 may receive information necessary for payment between the user and the affiliated store from the affiliated terminal 200 and record payment details on the blockchain system 20.

The user terminal 100 and the merchant terminal 200 may be implemented as various types of devices capable of transmitting and receiving information through a network. For example, it may include a portable communication device (eg, a smart phone), a computer device, a portable multimedia device, a point of sales (POS) device, a vending machine, a portable medical device, a camera 210, a wearable device, or a home appliance device. have.

Hereinafter, the blockchain system 20 used by the payment system 10 according to an embodiment will be described. As described above, the payment service may be provided on a P2P network system that implements a distributed database having a different structure than the blockchain system 20, but for convenience of description, the description and drawings of this document provide the blockchain system 20. It will be explained based on.

Referring back to FIG. 1, the blockchain system 20 may be understood as a peer-to-peer network including a plurality of nodes connected to each other through a network, and each node may be referred to as a computing device performing a predetermined operation. . A user using the blockchain system 20 may have blockchain account information (which may be abbreviated as account information) registered in the blockchain system 20. Blockchain account information may include a private key and a public key. The secret key may function as a digital signature of the user to cause a transaction (eg, a payment means transfer transaction between the user and the merchant) in the blockchain system 20. The public key can function as the user's account address. In various embodiments, the account information may further include an account name. The account name may include a human-readable string or numeric string, which means an account address.

Meanwhile, each node included in the blockchain system 20 may process a transaction when a transaction occurs, and store information associated with the processed transaction in a distributed database (hereinafter, a transaction database) implemented by a plurality of nodes.

When a transaction occurs, the blockchain system 20 may execute a transaction after going through an agreement process for a transaction based on an agreement algorithm (eg, POW, POS, DPOS) implemented in the blockchain system 20.

At this time, the executed transaction can be recorded in the transaction database. The transaction database can have a blockchain structure. The transaction database can be understood as a public ledger where a plurality of nodes share the same information.

In order for a plurality of nodes to share the same information, a specific node selected as a block producer among a plurality of nodes collects information about transactions processed for a certain period of time, and creates a new block to be connected to the previously generated block. Can be created. The newly created block by the block constructor can be propagated to other nodes.

Since transactions generated on the blockchain system 20 are encrypted and signed by the secret key of the blockchain account of the subject who generated the transactions, cryptographic proof data that cannot be tampered with can be recorded on the blockchain system 20. .

The blockchain system 20 can execute various application services provided by various service providers. Software implemented for application service provision can be distributed to the blockchain system 20 by service providers. The blockchain system 20 can run distributed software and process transactions generated according to the driving of the software.

The transaction may be generated by a client using the application service (eg, the user terminal 100, the merchant terminal 200, or the service server 300). The client can check the transaction processing result through the blockchain.

2A is a diagram illustrating a payment process according to an embodiment. The physical card 50 may include a QR code 52 and a one time password (OTP) generator 55 that stores information about a user's blockchain account address (eg, a public key). For example, the QR code 52 and the one-time password generator 55 may have a real card 50 disposed on one surface. The one-time password generator 55 may display a password valid for only a certain time through a liquid crystal (eg, LCD, e-paper). Although the example in which the one-time password 51 is implemented as a number is illustrated in FIG. 2A, the one-time password 51 may be implemented as any text in which numbers and characters are combined.

The merchant terminal 200 may recognize the QR code 52 of the physical card 50. The merchant terminal 200 can obtain the user's blockchain account address information by recognizing the QR code 52. The QR code 52 may include information encoding a block chain account address. The merchant terminal 200 may decode the QR code 52 and obtain blockchain account address information.

The merchant terminal 200 may recognize the one-time password 51 displayed on the one-time password generator 55 of the physical card 50 using a character recognition function. For example, the merchant terminal 200 may acquire an image of the physical card 50 through the camera, and recognize the one-time password 51 through an optical character reader (OCR) operation on the image. The merchant terminal 200 may acquire text data corresponding to the one-time password.

The QR code 52 and the one-time password generator 55 may be disposed in a fixed area defined in the manufacturing process of the physical card 50. The merchant terminal 200 may be implemented to recognize text located at a certain relative position from the QR code 52 after recognizing the direction (eg, up, down, left, right) of the QR code 52.

The merchant terminal 200 may transmit the recognized one-time password and blockchain account address to the service server 300. The service server 300 performs one-time password authentication, and when authentication for the one-time password is successful, payment between a user and an affiliate store may be performed.

Payment between the user and the merchant may be made through a transfer transaction of a means of payment of a certain amount from the user's blockchain account to the merchant's blockchain account. Since the transfer transaction is executed by the blockchain system 20, the payment history between the user and the merchant can be recorded in the blockchain system 20. Users and merchants can check the payment history by querying the data recorded in the blockchain system 20 at any time. Detailed description of the payment method will be described later with reference to FIGS. 6 and 7.

In various embodiments, the QR code 52 may include data to identify a user's blockchain account address. In order to prevent the blockchain account address from being directly exposed through the QR code 52 of the physical card 50, the QR code 52 may be made to include data corresponding to the blockchain account address. For example, the data corresponding to the blockchain account address may be text data in which letters and numbers are combined. In this case, the service server 300 may have data corresponding to the blockchain account address and mapping information for the blockchain account address. The service server 300 may receive data corresponding to the block chain account address from the merchant terminal 200 and identify the block chain account address based on the received data.

In one example, the QR code 52 may include card number information issued to the physical card 50. The card number information can be understood as text data (eg, a combination of letters and numbers). In this case, the service server 300 may have mapping information of the blockchain account address and card number of the user who issued the physical card 50. The service server 300 may receive a card number from the merchant terminal 200 and recognize a blockchain account address based on the received card number. Since the QR code 52 is exposed through the physical card 50, exposure of the user's blockchain account address can be prevented. Blockchain account address can be protected as user's personal information. Hereinafter, the block chain account address and data corresponding to the block chain account address may be collectively referred to as 'data associated with the block chain account address'.

2B is an illustration of physical cards in accordance with various embodiments.

2B, the physical card may be implemented in various forms. For example, the one-time password and information associated with the blockchain may be displayed in various forms on the physical card (eg, the physical card 50 in FIG. 2B).

In various embodiments, data associated with a blockchain account address may be displayed in the form of a barcode. The physical card 50a according to the embodiment of FIG. 2B may include a one-time password generator 55 and a barcode 52a including information associated with a blockchain account address on one side. The one-time password generator 55a (eg, the one-time password generator 55 of FIG. 2) may output the one-time password 51 to the liquid crystal for a predetermined time. The merchant terminal 200 may perform payment by recognizing the one-time password 51 and the barcode 52a.

The physical card 50b according to the embodiment of FIG. 2B may include a display panel 56b (eg, LCD, e-paper) equipped with a one-time password generation function and a QR code generation function on one side. The display panel 56b may output a one-time password 51 and a QR code 52b including data associated with a blockchain account address for a period of time. The merchant terminal 200 may perform payment by recognizing the one-time password 51 and the barcode 52b displayed on the display panel 56b.

The physical card 50c according to the embodiment of FIG. 2B may include a display panel 56c (eg, LCD, e-paper) equipped with a QR code generation function and a one-time password generation function. A QR code 53 including both the one-time password and data associated with the blockchain account address may be output to the display panel 56c. The merchant terminal 200 may acquire the one-time password information and the user's blockchain account information by recognizing the QR code 53 displayed on the display panel 56c, and perform payment.

3 is a configuration block diagram of a merchant terminal 200 according to an embodiment.

Referring to FIG. 3, the merchant terminal 200 according to an embodiment includes an input interface 205, a camera 210, a display 220, a processor 230, a memory 240, and a communication interface 250. can do. The user terminal 100 according to an embodiment may be configured to include a part or all of the configuration of the merchant terminal 200. The description of the merchant terminal 200 may be applied to the user terminal 100 as well. The input interface 205 acquires information input by the user (eg, amount information to be transferred through a payment service). For example, the input interface 205 is configured through a mechanical input button capable of acquiring the user's input information through a physical force or a display capable of sensing the user's touch and acquiring the input information through a capacitive / decompression method. Can be.

The camera 210 is a device that senses an external image. The camera 210 may sense a light source incident from the gaze direction. For example, the camera 210 may sense information displayed outside, such as a number, a letter, or a QR code. The camera 210 may be configured as an IR (Infrared) camera or an EO (Electro-Optical) camera.

The display 220 is a device that outputs a visual image or video. The display 220 may display information on a series of operating states, etc., occurring during the functioning of the merchant terminal 200. The display 220 may be composed of a liquid crystal display (LCD), a thin film transistor LCD (TFT-LCD), or organic light emitting diodes (OLED).

The processor 230 may control the overall operation of the merchant terminal 200. The processor may include a camera control module 231, an optical character reader (OCR) module 232, a quick response (QR) recognition module 233, and a payment request module 234. The merchant terminal 200 may include one or more processors 230. The processor 230 may execute commands stored in the memory 240 to drive the camera control module 231, the OCR module 232, the QR recognition module 233, and the payment request module 234.

The camera control module 231 may control the recognition distance or direction of the camera 210 so that the camera 210 senses a specific area. The camera control module 231 may specify an area including specific information (eg, the recognition area of FIG. 2A). For example, the camera control module 231 may display an image including one-time password information and blockchain account address information output to the user terminal 100 that outputs the image information of the real card 50 or the real card 50. By specifying, an image area including specific information can be obtained.

The OCR module 232 may acquire text data for the character string or numeric string when the character string or numeric string is included in the acquired image. For example, the OCR module 232 may acquire text data for a one-time password when there is a string or a number string of the one-time password in the acquired image.

When the QR code is included in the acquired image, the QR recognition module 233 may acquire information in the QR code. For example, when there is a QR code in the acquired image, the QR recognition module 233 may determine information included in the QR code to obtain one-time password information and / or blockchain account information.

The payment request module 234 is based on information obtained from the camera 210 (for example, information included in the user's physical card 50) and information included in the merchant terminal 200, the payment between the user and the merchant Payment service request can be sent to the service server 300 to be achieved. The payment service request is information constituting a transfer transaction to be executed on the blockchain system, the first blockchain account address of the blockchain to receive payment means, the second blockchain account address to which payment means will be withdrawn according to the payment request, and the transfer. It can be included based on the amount information. The payment request module 234 may transmit the one-time password obtained by the OCR module 232 to the service server 300 to the service server 300.

The first blockchain account address may be obtained from the memory 240 of the merchant terminal 200 as the merchant's blockchain account address. The second blockchain account address may be obtained from the physical card 50 or the user terminal 100 held by the user as the user's blockchain account address for payment of the payment amount. The one-time password is information generated from the one-time password serial number of the user who pays the payment, and may be obtained through the user's physical card 50 or the user terminal 100. The amount of money to be transferred can be obtained through the input interface 205.

The operations performed by the camera control module 231, the OCR module 232, the QR recognition module 233, and the payment request module 234 may be understood as operations performed by the processor 230.

The memory 240 may store instructions capable of performing the operation of the processor 230, and the merchant terminal 200 may store information transmitted and received by the payment system 10 including one or more memories 240. .

The memory 240 may store a payment application 241 including instructions for controlling the operation of the processor 230 through information obtained from the input interface 205, the camera 210, or the display 220. .

The payment application 241 may be understood as a program implemented to provide a payment service. The payment application 241 may include a wallet function for the blockchain system 20 to be provided with a payment service. In various embodiments, the payment application 241 may be configured to include an integrated wallet function for a plurality of blockchain systems.

The merchant terminal 200 can access the blockchain system 10 through the payment application 241. The processor 230 may digitally sign the transaction through the payment application 241 and transmit the transaction to the blockchain system 10.

The payment application 241 may include a login function, a card recognition function, a payment execution function, and a payment history inquiry function.

In various embodiments, the payment application 241 may be set differently for users and merchants. For example, the payment application for the user may further include a real card 50 display function. The user may display the same image as the real card 50 through the screen using the display function of the real card 50. In this case, the image displayed on the screen may be understood as the mobile card 60. The mobile card 60 may include a QR code containing information associated with a block chain account address and a one-time password generator (software module).

The payment application for the user may include information on the real card 50 required to generate the mobile card 60. For example, information about the physical card 50 may include a card number, a user name, a blockchain account address, and a serial number of a one-time password generator. The one-time password generator module included in the mobile card 60 has the same serial number as the one-time password generator of the physical card 50.

In various embodiments, the payment application for a user may have a mobile card issuing function. The mobile card issuing process can be processed in the same way as the physical card issuing process. The process of issuing the real card 50 and the mobile card 60 will be described below with reference to FIG. 5. The user may be issued a mobile card 60 first, and then a physical card 50, if necessary.

In various embodiments, the mobile card may be designed in a different form from the physical card 50. The mobile card can be generated in the form of a QR code and / or barcode (disposable QR code or disposable barcode) valid for a period of time. For example, the one-time QR code can be configured to include one-time passwords generated by the software OTP generation module and information associated with the blockchain account address. For another example, the disposable QR code can be configured to include a signature signed with a secret key among the user's blockchain accounts at a timestamp. In this case, the merchant terminal 200 or the service server 300 that has received the signature may authenticate the user.

The communication interface 250 communicates with the blockchain system 20 and enables information to be transmitted and received with external devices (eg, the user terminal 100 and the service server 300) included in the payment system 10. For example, the communication interface 250 may transmit a message for the payment service request to the service server 300. To this end, the communication interface 250 may include a wireless communication module or a wired communication module.

4 is a configuration block diagram of a service server 300 according to an embodiment.

Referring to FIG. 4, a service according to an embodiment may include a communication interface 305, a processor 310, and a memory 320.

The communication interface 305 communicates with the blockchain system 20 and enables information to be transmitted and received with external devices (eg, the user terminal 100 and the merchant terminal 200) included in the payment system 10. The communication interface 305 may include a wireless communication module or a wired communication module.

The processor 310 may control the overall operation of the service server 300. The processor 310 may include a membership subscription and card issuance module 311, an OTP authentication module 312, and a payment module 313. The merchant terminal 200 may include one or more processors 310. The processor 310 may include a member registration and card issuance module 311, an OTP authentication module 312, and a payment module 313 by executing instructions stored in the memory 320.

The membership registration and card issuance module 311 may process a member subscription request received from the user terminal 100 or the merchant terminal 200. For example, information necessary for membership registration (member subscription information) may be received from the user terminal 100 or the merchant terminal 200. The membership registration and card issuing module 311 may perform identity authentication for the user based on the membership registration information and transmit a request to create a blockchain account for the user to the blockchain system 20. In addition, the procedure for issuing the physical card 50 or the mobile card 60 to the user may be performed. The operation of the membership registration and card issuance module 311 will be described later with reference to FIG. 5.

The OTP authentication module 312 may be a module for authenticating a one-time password generated by the OTP generator included in the physical card 50 and the mobile card 50. The OTP authentication module 312 uses the second OTP generator having the same serial number as the first OTP generator included in the physical card 50 and the mobile card 50, and whether the one-time passwords generated on both sides match. Can judge. For example, the second OTP generator may be stored in an external server or stored in the memory 320 of the service server 300.

The payment module 313 may generate payment information based on the information received from the merchant terminal 200. The payment information may include data constituting a transfer transaction and additional data associated with payment. The payment module 313 may transmit payment information to the user terminal 100 and request approval for payment. Alternatively, the payment module 313 may directly generate a transfer transaction based on the payment information and transmit the generated transfer transaction to the blockchain system 20.

The memory 320 may store instructions that control the operation of the processor 310. The service server 300 may include one or more memories 320. The memory 320 may store member information 321 of members who have subscribed to the payment service. For example, the member information 321 may include at least some of the user's personal information and the user's blockchain account information. The memory 320 may store one-time password serial numbers of members who subscribe to the payment service. For example, the one-time password serial number may include the same serial number 322 as the first OTP generator included in the user's physical card 50 and mobile card 60.

Hereinafter, the operation of each of the user terminal 100, the merchant terminal 200, and the service server 300 constituting the payment system 10 will be described with reference to FIGS. 5 to 7.

5 is a flowchart for explaining a membership registration process and a card issuance process in the payment system 10 according to an embodiment.

In one embodiment, the subscriber terminal (user terminal 100 or merchant terminal 200) may request membership in the payment service. The membership registration process may include operations 501 to 503. The subscriber terminal may transmit the member registration information necessary for membership registration to the service server 300 (501). Membership registration information may include, for example, personal information (eg, name, photo, nationality, etc.) of the subscriber or information necessary for identification, such as the passport of the subscriber. Membership registration information may differ for each country where payment service is performed.

The service server 300 may perform KYC (Know Your Information) authentication for the subscriber by using at least some of the received member subscription information (502). The service server 300 acts for the subscriber's KYC authentication to facilitate the convenience of the subscriber.

The service server 300 may act for the creation of a blockchain account to be used by subscribers. The service server 300 may transmit a block chain account creation request to the blockchain system 20 (503). When a blockchain account is created and KYC authentication is successful, the service server 300 may record that the KYC authentication for the subscriber, the owner of the account, is completed in the blockchain system 20 (503). Specifically, the service server 300 may transmit the information to the blockchain system 20 so that the KYC authentication for the blockchain account and the performed KYC authentication level are recorded in the blockchain system 20.

In operation 503, when a blockchain account is created, a secret key and a public key may be generated together. The secret key and public key can be referred to as account information below. The service server 300 may transmit the generated secret key and public key to the subscriber terminal. In various embodiments, when a blockchain account is created, an account name composed of a separate string rather than a public key (eg, an account name of a 16-digit string supported by the EOS system) may be generated together. The account name may be further included in the account information.

In operation 503 according to various embodiments, when a user delegates authority to perform a digital signature for a blockchain account (hereinafter, a service blockchain account) of the service server 300 on the blockchain system 10, The service server 300 may perform digital signature with a service blockchain account on behalf of the user. For example, a digital signature delegation function provided by a permission system may be used in the EOS system. The inconvenience of the user having to perform a digital signature every time can be eliminated.

For example, only for transfer transactions of a certain amount or less, the service server 300 may obtain a digital signature with the service blockchain account instead of the user's blockchain account with the user's consent. In this case, when the payment amount is high, the user can directly perform digital signature, thereby increasing security and for convenience of the user for small payment.

The service server 300 may check the generated account information, map the public key among the account information to the member subscription information received from the subscriber, and store it in the memory 320. In some examples, service server 300 may keep the user's secret key. For example, if the user agrees to the secret key storage service, the service server 300 may directly store the subscriber's secret key. In this case, the service server 300 may digitally sign the transaction directly using the subscriber's secret key.

In various embodiments, at least some of the operations 501 to 503 may be omitted for a user who already owns a blockchain account. For example, a user who owns a blockchain account can transmit a public key among his blockchain account information to the service server 300 when applying for membership. In this case, the service server 300 may perform KYC authentication for the user and record the KYC authentication result in the blockchain system 20. Alternatively, if the user already has a blockchain account that has already completed KYC authentication, the subscriber terminal only needs to perform the operation 501 for transmitting member subscription information. In this case, the membership registration information may further include information on whether a public key or KYC is authenticated among blockchain accounts.

When the membership registration process is completed, the card issuing process may be performed. The 'user' who has subscribed to the card service can proceed with the card issuance process.

The service server 300 may issue the serial number of the one-time password (OTP) generator, and map and store the OTP serial number with the user's blockchain account (505). The OTP serial number can be understood as a unique number of the OTP generator (H / W) to be included in the physical card 50. The software OTP generator included in the mobile card 60 also has the same unique number.

In various embodiments, the service server 300 may determine a payment limit for the user (507). The payment limit can be understood as the limit of the amount of money that the user can pay through the payment service. For example, the service server 300 may set different payment limits for each user according to the user's personal information and credit information, and may determine the payment limit according to the user's application. To this end, the service server 300 obtains the user's credit information from an external database (eg, a credit rating agency), or based on at least some of the member subscription information obtained from the user stored in the memory 320, the user's Credit limits can be determined.

The service server 300 may transmit payment limit information to the blockchain system 20 (509), and the blockchain system 20 may record the payment limit for the user's blockchain account (511). For example, when a transfer transaction occurs from a user, in the case of a transfer transaction for an amount exceeding the user's payment limit, the blockchain system 20 may be implemented not to execute the transfer transaction.

6 and 7 are flowcharts illustrating a payment process according to an embodiment.

6 and 7, payment processes made through the user's physical card 50 are illustrated. However, the payment processors of FIGS. 6 and 7 may be made through the mobile card 60 displayed through the user terminal 100.

The merchant terminal 200 may recognize a one-time password (OTP) and a QR code included in the physical card 50 (601). The merchant terminal 200 may acquire information associated with the blockchain account included in the one-time password and QR code.

The merchant terminal 200 may receive payment amount information (603). The merchant terminal 200 may further receive additional information related to payment. The additional information may include, for example, information that can be stored in the payment history, such as information on the goods / services subject to payment, payment time information, and the like.

The merchant terminal 200 may perform OTP authentication between the service server 300 (605). For example, the merchant terminal 200 may transmit the obtained one-time password to the service server 300, and the service server 300 may perform OTP authentication using the received one-time password.

The service server 300 may have an OTP generating module having the same serial number as the OTP generator 55 included in the physical card 50. Alternatively, the service server 300 may receive an OTP of the same OTP serial number from an external OTP authentication server.

The service server 300 may store the user's blockchain account information and the mapped OTP serial number in advance. The service server 300 may obtain a user's blockchain account address based on information associated with the blockchain, and obtain an OTP serial number stored in mapping with the blockchain account address. The obtained OTP serial number is the serial number of the OTP generator 55 included in the physical card 50. Therefore, the service server 300 may acquire OTP based on the obtained OTP serial number, and perform OTP authentication in a manner that compares with the OTP received from the physical card 50. Through OTP authentication, it can be verified that payment is made by a user who has the corresponding physical card 50. If the OTP authentication fails, the following payment operation does not proceed, and the service server 300 may re-request OTP recognition from the merchant terminal 200.

If the OTP authentication is successful, the service server 300 may transmit the user's blockchain account address, merchant's blockchain account address, and payment amount to the user terminal 100 as payment information (611). The payment information constitutes a transfer transaction. The service server 300 may transmit a request for approval for payment to the user terminal 100 (611). Since payment is made as a transfer transaction of a payment means corresponding to a payment amount from a user's blockchain account to a merchant's blockchain account, a digital signature by the user's blockchain account is required. Therefore, requesting a digital signature becomes a request for approval for payment. Since the user's secret key is stored by the user terminal 100, a digital signature may be made by the user terminal 100.

If the user terminal 100 agrees to the payment approval request of the service server 300, the payment information may be used to generate a digitally signed transfer transaction by the user blockchain account (613). When receiving the payment approval request from the service server 300, the user terminal 100 provides an interface for requesting payment approval through a payment application installed in the user terminal 100 (for example, the payment application 241 in FIG. 3). can do. The user may input an approval in response to the provision of the interface.

The user terminal 100 may transmit a digitally signed transfer transaction by the generated user's blockchain account to the blockchain system 20 (615). The blockchain system 20 may execute the received transfer transaction and record it in the transaction database (617).

Some of the plurality of nodes constituting the blockchain system 20 verify the integrity of the transaction, and relate to the transaction based on the consensus algorithm (eg, POW, POS, DPOS) implemented in the blockchain system 20. The transaction can be executed through the consensus process.

When a transaction is recorded in the blockchain system 20, the user terminal 100 and the merchant terminal 200 can confirm that the payment is completed by querying the payment history recorded in the blockchain system 20 (619, 621). . When the processing of the transfer transaction on the blockchain system 20 is completed, the service server 300 may transmit a notification of payment completion to the user terminal 100 and the merchant terminal 200. The user terminal 100 and the merchant terminal 200 may display the notification through a payment application.

Referring to FIG. 7, an embodiment in which the service server 300 performs digital signature is illustrated to improve user convenience. Since operations 601 to 607 of FIG. 6 correspond to 701 to 707 of FIG. 7, duplicate description is omitted.

When the OTP authentication is completed, the service server 300 may generate a digitally signed transfer transaction using payment information (713).

In one embodiment, the service server 300 may perform a digital signature using the user's secret key. For example, the service server 300 may directly store the user's secret key when the user consents. In another embodiment, the service server 300 may digitally sign the secret key of the service blockchain account.

The service server 300 may transmit the generated transfer transaction to the blockchain (715). Blockchain system 20 may execute and record transfer transactions (717). The service server 300, the user terminal 100, and the merchant terminal 200 can check the payment completion details through the blockchain system 20. It should be understood that various embodiments of the document and terms used therein are not intended to limit the technical features described in this document to specific embodiments, and include various modifications, equivalents, or substitutes of the embodiment. In connection with the description of the drawings, similar reference numerals may be used for similar or related components. The singular form of a noun corresponding to an item may include one item or plural items, unless the context clearly indicates otherwise.

In this document, “A or B”, “at least one of A and B”, “at least one of A or B,” “A, B or C,” “at least one of A, B and C,” and “A , B, or C. Each of the phrases such as “may include all possible combinations of the items listed together in the corresponding phrase of the phrases. Terms such as "first", "second", or "first" or "second" can be used to simply distinguish the component from other components, and to separate the components from other aspects (eg, importance or Order). Any (eg first) component is referred to as “coupled” or “connected” to another (eg second) component, with or without the term “functionally” or “communically” When mentioned, it means that one component can be connected directly to another component (eg, by wire), wirelessly, or through a third component.

As used herein, the term "module" may include units implemented in hardware, software, or firmware, and may be used interchangeably with terms such as logic, logic blocks, components, or circuits. The module may be an integrally configured component or a minimum unit of components or a part thereof performing one or more functions. For example, according to an embodiment, the module may be implemented in the form of an application-specific integrated circuit (ASIC).

Various embodiments of the present document may be implemented as software (eg, a program) including one or more instructions stored in a storage medium (eg, memory) readable by a machine (eg, electronic device). Storage media includes random access memory (RAM), memory buffers, hard drives, databases, erasable programmable read-only memory (EPROM), electrically erasable read-only memory (EEPROM), read-only memory (ROM), and / or the like. It can contain.

Further, the processor of the embodiments of the present document may call and execute at least one of one or more instructions stored from a storage medium. This enables the device to be operated to perform at least one function according to at least one command called. These one or more instructions may include code generated by a compiler or code executable by an interpreter. The processor may be a general purpose processor, a field programmable gate array (FPGA), an application specific integrated circuit (ASIC), a digital signal processor (DSP), and / or the like. The storage medium readable by the device may be provided in the form of a non-transitory storage medium. Here, 'non-transitory' means that the storage medium is a tangible device and does not include a signal (eg, electromagnetic wave), and this term is used when data is stored semi-permanently. It does not distinguish between temporary storage cases.

A method according to various embodiments disclosed in this document may be provided as being included in a computer program product. Computer program products are products that can be traded between sellers and buyers. The computer program product is distributed in the form of a device-readable storage medium (eg compact disc read only memory (CD-ROM)), or through an application store (eg play store) or two user devices (eg : Smartphones) can be distributed directly or online (eg, downloaded or uploaded). In the case of online distribution, at least a portion of the computer program product may be stored at least temporarily on a storage medium readable by a device such as a memory of a manufacturer's server, an application store's server, or a relay server, or may be temporarily generated.

According to various embodiments, each component (eg, module or program) of the described components may include a singular or a plurality of entities. According to various embodiments, one or more components or operations of the above-described corresponding components may be omitted, or one or more other components or operations may be added. Alternatively or additionally, a plurality of components (eg, modules or programs) may be integrated into one component. In this case, the integrated component may perform one or more functions of each component of the plurality of components the same or similar to that performed by the corresponding component among the plurality of components prior to integration. According to various embodiments, operations performed by a module, program, or other component may be executed sequentially, in parallel, repeatedly, or heuristically, or one or more of the operations may be executed in a different order, omitted, or the like. , Or one or more other actions can be added.

Claims (16)

In the client terminal,
A blockchain network system and a communication interface for communicating with an external server providing a payment service on the blockchain network system;
At least one memory interworking with the client terminal and storing a first blockchain account address registered in the blockchain network system;
camera; Input interface; And one or more processors,
The camera acquires an image including a one time password and second blockchain account address information from a predetermined object;
The one or more processors may obtain text data corresponding to the one-time password and the second blockchain account address from the image, and configure the transfer transaction to be executed on the blockchain network system. Set to transmit the second blockchain account address, and the amount information and the one-time password to the external server,
Client terminal. According to claim 1,
The predetermined object includes a first area in which the one-time password is output through a display liquid crystal provided on one surface, and a second area in which a QR code including the second blockchain account address information is printed. It is a physical card,
The one or more processors acquire text data corresponding to the one-time password from the first area, and obtain the second blockchain account address from the second area,
Client terminal. According to claim 2,
The first region and the second region are disposed together on the one surface,
Client terminal. According to claim 1,
The predetermined object is a physical card that outputs one QR code including information about the one-time password and the second blockchain account address information through a display liquid crystal provided on one side,
The one or more processors acquire text data corresponding to the one-time password and the second blockchain account address from the one QR code,
Client terminal. According to claim 1,
The predetermined object is an external device that outputs an image including the one-time password and second blockchain account address information through a display,
The one or more processors acquire text data corresponding to the one-time password and the second blockchain account address from the image output by the external device,
Client terminal. The method of claim 5,
The image output by the external device includes a QR code including the one-time password and the second blockchain account address information,
Client terminal. In the service server,
Blockchain network system, and a communication interface for communicating with an external terminal participating in a payment service request on the blockchain network system-The payment service request includes a first blockchain account address and a holder of the first blockchain account One time password, second blockchain account address, and amount information to be transferred from the first blockchain account address to the second blockchain account address are included;
One or more memories storing a previously issued one-time password serial number used for verification of the one-time password; And
One or more processors,
When receiving the payment service request, the one or more processors determine the integrity of the one-time password based on the previously issued one-time password serial number;
When the integrity of the one-time password is determined, transaction information is generated to transfer payment means on the blockchain system corresponding to the amount information from the first blockchain account address to the second blockchain account address, and the transaction A transaction is set to occur on the blockchain network system based on the authentication authority to generate information,
Service server. The method of claim 7,
The one or more processors perform the authentication through digital signature using the secret key of the first blockchain account stored in the one or more memories when the amount information is equal to or less than a predetermined amount,
Service server. The method of claim 8,
The secret key of the first blockchain account stored in the one or more memories is set to perform digital signature only when the amount is equal to or less than the preset amount, and is composed of a string different from the secret key held by the owner of the first blockchain account,
Service server. The method of claim 7,
The one or more processors transmit the transaction information to a first terminal held by the owner of the first blockchain account when the amount information is equal to or greater than a predetermined amount,
The authentication is performed through a digital signature using a secret key of the first blockchain account stored in the first terminal,
Service server. The method of claim 7,
The payment means is a cryptocurrency that is paid as a reward for block creation on the blockchain network system, or a token that can be exchanged for the cryptocurrency on the blockchain network system,
Service server. The method of claim 7,
The one or more processors, when receiving a new account creation request to be used for the payment service from an external terminal, generates the user's blockchain account information on the blockchain network system,
The user's one-time password serial number is generated and stored in the one or more memories,
For the user's account information, it is set to determine the payment limit for transferring the payment means from the user's blockchain account to another account and record it in the user's blockchain account information on the blockchain network system.
Service server. The method of claim 12,
The blockchain account information includes a private key used for digitally signing the transaction so that a transaction is generated by the user, and a public key functioning as the account address of the user,
Service server. Stores its own first blockchain account address used on the blockchain network system, obtains one time password and second blockchain account address information from a predetermined object, and obtains the second blockchain account address from the second blockchain account address. Receive the amount of money to be transferred to the first blockchain account address, transfer transaction information including the first blockchain account address, the second blockchain account address, and the amount information and the one-time password to the service server A transmitting client terminal; And
The transfer transaction information and the one-time password are received, and the integrity of the one-time password is determined based on a previously issued one-time password serial number. Transaction information is generated to transfer payment means from the first blockchain account address to the second blockchain account address, and a transaction is generated on the blockchain network system based on authentication authority to generate the transaction information. To include the service server
Payment system. The method of claim 14,
The predetermined object includes a first area in which the one-time password is output through a display liquid crystal provided on one surface, and a second area in which a QR code including the second blockchain account address information is printed. Including a physical card,
Payment system. The method of claim 14,
The service server transmits the transaction information to a user terminal held by the owner of the first blockchain account when the amount information is equal to or greater than a predetermined amount,
The system further includes the user terminal receiving the transaction information and performing digital signature on the transaction information using a secret key of a first blockchain account that is pre-stored,
Payment system.

Images