KR20230107162A - Near Field Communication based Payment Method Using Token Code - Google Patents

Abstract

According to the short-range wireless communication-based payment method using the token code of the present invention, in the short-range wireless communication-based payment method using the token code executed through a wireless terminal having a short-range communication unit for short-range wireless communication, The customer's payment method information is stored in a storage medium, and at least one token generation information for dynamically generating a token code for authenticating the validity of a payment using the payment method information stored in the storage medium is received to designate a wireless terminal. storing in a storage area, and dynamically generating a token code for authenticating the validity of payment using the payment method information stored in the storage medium by using one or more token generation information including the stored token generation information at the time of payment; The token code is provided to a local payment terminal through short-range wireless communication, and the token code is transmitted to the payment processing system through a message transmitted from the local payment terminal to the payment processing system through a specified payment network. It is used for validating the payment using the payment method information stored in the storage medium.

Description

Near Field Communication based Payment Method Using Token Code

In the present invention, in a short-distance wireless communication-based payment method using a token code executed through a wireless terminal having a short-range communication unit for short-range wireless communication, customer payment method information is stored in a designated storage medium on a payment processing system, At least one token generation information for dynamically generating a token code for authenticating the validity of payment using the payment method information stored in the storage medium is received and stored in a designated storage area of the wireless terminal, and the stored token is received during payment. A token code for authenticating the validity of a payment using the payment method information stored in the storage medium is dynamically generated by using one or more token generation information including generation information, and the token is transmitted to a short-range payment terminal through the short-range wireless communication. code, and the token code is transmitted to the payment processing system through a telegram transmitted to the payment processing system through a designated payment network from the local payment terminal, and is used for payment using the payment method information stored in the storage medium. It relates to a short-distance wireless communication-based payment method using a token code used for validity authentication.

As Internet infrastructure and financial transaction infrastructure develop, user authentication has become very important for financial transactions or website access.

In particular, phishing, which steals personal financial transaction information (e.g., authentication number, credit card number, account information, etc.) Stealing a user's domain or tricking the domain name system (DNS) name to induce users to misunderstand it as a real site; Pharming stealing personal information such as personal ID, password, account information, or from a user's keyboard, etc. As keyboard hacking, which hacks input key input information (eg, personal ID, password, account information, etc.), has become a problem, a safer and more efficient method is being sought in financial transactions.

In addition, since there is generally no plurality of authentication information (e.g., ID and password) required for financial transaction login or financial transaction, when it is leaked to others through hacking, the user has to bear the damage intact. .

An object of the present invention is a short-range wireless communication-based payment method using a token code executed through a wireless terminal having a short-range wireless communication unit for short-range wireless communication, in which customer payment method information is stored in a designated storage medium on a payment processing system. A first step of receiving and storing at least one token generation information for dynamically generating a token code for authenticating the validity of payment using the payment method information stored in the storage medium and storing it in a designated storage area of the wireless terminal; A second step of dynamically generating a token code for authenticating the validity of payment using the payment method information stored in the storage medium by using one or more token generation information including the stored token generation information and the short-range wireless communication. and a third step of providing the token code to a local payment terminal through a telegram transmitted from the local payment terminal to the payment processing system through a specified payment network. It is to provide a short-distance wireless communication-based payment method using a token code transmitted and used for validating payment using payment method information stored in the storage medium.

A short-distance wireless communication-based payment method using a token code according to the present invention is a short-range wireless communication-based payment method using a token code executed through a wireless terminal having a short-range communication unit for short-range wireless communication, designated on the payment processing system. The customer's payment method information is stored in a storage medium, and at least one token generation information for dynamically generating a token code for authenticating the validity of a payment using the payment method information stored in the storage medium is received to designate a wireless terminal. In the first step of storing in the storage area and during payment, a token code for authenticating the validity of payment using the payment method information stored in the storage medium is dynamically generated by using one or more token generation information including the stored token generation information. and a second step of providing the token code to a local payment terminal through short-range wireless communication, wherein the token code is transferred from the local payment terminal to the payment processing system through a specified payment network. It is characterized in that it is transmitted to the payment processing system through the transmitted message and used for validating the payment using the payment method information stored in the storage medium.

In the short-distance wireless communication-based payment method using a token code according to the present invention, it is characterized in that it further comprises the step of connecting a short-range payment terminal and a short-range wireless communication session through the short-range communication unit during payment.

In the short-distance wireless communication-based payment method using a token code according to the present invention, the telegram includes a payment processing telegram transmitted from the payment terminal to the payment processing system through a payment network for payment processing. do.

The payment processing system according to the present invention includes a diagnosis unit that communicates with a program installed in a customer's wireless terminal for payment and performs a procedure for authenticating the validity of the program, and a customer's payment to be used for payment using the program of the customer's wireless terminal. A procedure of checking means information and storing it in a designated storage medium is performed, and unique information that can uniquely identify the customer, including information stored in the memory of the customer wireless terminal or included in the USIM of the customer wireless terminal, is converted to the payment means. An information storage unit that performs a procedure of mapping and storing information and a token code for payment that is dynamically generated for the payment and processed through the program of the customer's wireless terminal through a designated communication channel and confirms the designated unique information The information receiving unit and the authentication unit performing the procedure for authenticating the validity of the received token code for payment, and when the validity of the token code for payment is authenticated, the stored payment method information of the customer from the storage medium based on the unique information It is characterized by having a payment processing unit for processing to extract and perform a procedure used for the payment.

In the payment processing system according to the present invention, the communication channel includes a communication channel communicating with the customer wireless terminal or a communication channel communicating with a separate terminal that has received the payment token code from the customer wireless terminal characterized by being made.

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit is characterized in that it receives payment processing information including an amount to be processed for payment.

The payment processing system according to the present invention, after a program to be used for payment is installed in a customer's wireless terminal, communicates with the program installed in the customer's wireless terminal to perform a procedure for authenticating the validity of the program, and the program is installed. The number information of the customer's wireless terminal and the customer information of the customer are identified and stored in connection, and the customer's payment method information to be used for payment using the program is identified and stored in a designated storage medium. When the validity of the program installed in is authenticated, based on the authentication result of the token code for payment to be processed through the authenticated program, information for extracting payment method information stored in the storage medium is mapped with the payment method information and stored An information storage unit that performs a procedure, an information receiver that receives a token code for payment that is dynamically generated for the payment and processed through a program of the customer's wireless terminal through a designated communication channel, and the validity of the received token code for payment. An authentication unit that performs a procedure for authenticating and a payment processing unit that extracts the stored customer's payment method information from the storage medium and processes the procedure used for the payment when the validity of the token code for payment is authenticated. , The information for extracting the payment method information includes the number information of the customer's wireless terminal, the customer information of the customer, and the customer's wireless terminal that can be checked in conjunction with the process of receiving the payment token code through a designated communication channel. includes at least one information of the installed program, and the communication channel includes a communication channel connected to the customer wireless terminal or a communication channel connected to a terminal that received the payment token code from the customer wireless terminal; , The storage medium is provided on the payment processing system, or is characterized in that provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit is characterized in that it receives payment processing information including an amount to be processed.

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored customer's payment method information, and the payment processing unit transmits the received authentication information and the authentication information of the payment method information. It is characterized in that the processing is performed so that the validity of the payment approval procedure is verified by comparison.

A payment processing system according to the present invention includes a diagnostic unit that performs a procedure for authenticating the validity of a program using a code generated through a program installed in a customer wireless terminal after a program to be used for payment is installed in a customer wireless terminal; When the validity of the program is verified while checking and storing the number information of the customer's wireless terminal where the program is installed and the customer information of the customer, and checking and storing the customer's payment method information to be used for payment using the program A procedure for storing at least one information among number information of the customer wireless terminal having the authenticated program, information of the customer using the authenticated program, information of the authenticated program, and information on the payment method of the customer in a designated storage medium. When a payment is made using the information storage unit and the customer's payment method information stored in the storage medium, information for receiving the token code for payment dynamically generated for the payment and processed through the program of the customer's wireless terminal through a designated communication channel. An authentication unit that performs a procedure for authenticating the validity of the received token code for payment with the receiving unit, and when the validity of the token code for payment is authenticated, the stored customer's payment method information is extracted from the storage medium and used for the payment. It is characterized in that it includes a payment processing unit that processes so that the procedure is performed.

In the payment processing system according to the present invention, the information receiving unit receives the payment token code through a communication channel connected to the customer wireless terminal, or receives the payment token code through short-range communication from the customer wireless terminal. It is characterized in that the payment token code is received through a communication channel connected to the received terminal.

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit is characterized in that it receives payment processing information including an amount to be processed for payment.

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored customer's payment method information, and the payment processing unit transmits the received authentication information and the authentication information of the payment method information. It is characterized in that the processing is performed so that the validity of the payment approval procedure is verified by comparison.

In the payment processing system according to the present invention, after a program to be used for payment is installed in a customer wireless terminal, the number information of the customer wireless terminal in which the program is installed and the customer information of the customer are identified and stored, and payment using the program is performed. While confirming and storing the customer's payment method information to be used, a token code for program authentication that is dynamically generated and processed through the program of the customer's wireless terminal is received and authenticated through the program of the customer's wireless terminal to verify the validity of the program, When the validity of the program is authenticated through the program authentication token code, at least one of number information of the customer wireless terminal having the authenticated program, customer information using the authenticated program, and information of the authenticated program The information storage unit performs the procedure of linking the information with the customer's payment method information and storing it in a designated storage medium, and the payment token code generated dynamically for payment and processed through the program of the customer's wireless terminal through a designated communication channel. The information receiving unit and the authentication unit performing the procedure for authenticating the validity of the payment token code processed through the program of the customer wireless terminal and the validity of the token code for payment processed through the program of the customer wireless terminal are authenticated In this case, it is characterized by having a payment processing unit that extracts the customer's payment method information associated with the program from the storage medium and processes the procedure used for the payment to be performed.

In the payment processing system according to the present invention, the information receiving unit receives the payment token code through a communication channel connected to the customer wireless terminal, or receives the payment token code through short-range communication from the customer wireless terminal. It is characterized in that the payment token code is received through a communication channel connected to the received terminal.

In the payment processing system according to the present invention, the information receiving unit receives number information of the customer wireless terminal through the communication channel, or when the customer wireless terminal and the communication channel are connected, the customer wireless terminal through the communication channel. In the process of receiving a token code for payment from a terminal, the number information of the customer wireless terminal is checked, and the authentication unit uses one or more designated information including information stored in association with the number information of the customer wireless terminal for the payment. It is characterized by performing a procedure for authenticating the validity of the token code.

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit is characterized in that it receives payment processing information including an amount to be processed for payment.

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored customer's payment method information, and the payment processing unit transmits the received authentication information and the authentication information of the payment method information. It is characterized in that the processing is performed so that the validity of the payment approval procedure is verified by comparison.

In the payment processing system according to the present invention, after a program to be used for payment is installed in a customer wireless terminal, a diagnosis unit that communicates with the program driven in the customer wireless terminal to verify the validity of the program, and a diagnostic unit for authenticating the validity of the program In this case, the number information of the customer's wireless terminal where the program is installed and the customer information of the customer are identified and stored, and the payment method information of the customer to be used for payment using the authenticated program is identified and stored in connection with the program. An information storage unit that performs a process of storing in a medium, an information receiver that receives a token code dynamically generated for payment and processed through a program of a customer's wireless terminal through a designated communication channel, and processing through a program of the customer's wireless terminal. When the validity of the token code processed through the authentication unit and the program of the customer's wireless terminal is authenticated, the customer's payment method information associated with the program is extracted from the storage medium to perform a procedure for authenticating the validity of the token code. It is characterized by having a payment processing unit that processes to perform a procedure used for payment.

In the payment processing system according to the present invention, the information receiving unit receives the token code through a communication channel connected to the customer wireless terminal, or receives the token code from the customer wireless terminal through short-range communication. It is characterized in that the token code is received through a connected communication channel.

In the payment processing system according to the present invention, the information receiving unit receives number information of the customer wireless terminal through the communication channel, or when the customer wireless terminal and the communication channel are connected, the customer wireless terminal through the communication channel. In the process of receiving a token code from a terminal, the number information of the customer wireless terminal is checked, and the authentication unit determines the validity of the token code by using one or more designated information including information stored in association with the number information of the customer wireless terminal. It is characterized by performing a procedure for authenticating.

In the payment processing system according to the present invention, the authentication unit performs a procedure of authenticating the validity of the token code using one or more designated information including information obtained in the process of validating the program validity. .

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit is characterized in that it receives payment processing information including an amount to be processed.

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored customer's payment method information, and the payment processing unit transmits the received authentication information and the authentication information of the payment method information. It is characterized in that the processing is performed so that the validity of the payment approval procedure is verified by comparison.

In the payment processing system according to the present invention, after a program using a token code that is dynamically generated at the time of payment is installed in a customer wireless terminal owned by a specific customer, number information for uniquely identifying the customer wireless terminal on which the program is installed and the program are installed. A procedure for checking and storing customer information of a customer using a wireless terminal and information on a program installed in the customer's wireless terminal, registering the customer's payment method information to be used for payment using the program, and storing it in a designated storage medium. An information storage unit that performs processing, an information receiver that receives a token code generated dynamically for payment and processed through a program of a customer wireless terminal and number information of a customer wireless terminal in which the program is installed through a designated communication channel, and the communication channel An extractor for extracting information about a program associated with the number information of the customer wireless terminal received through the extraction unit and confirming whether the customer wireless terminal is equipped with the program, and information about the program associated with the number information of the customer wireless terminal When is extracted, the customer's payment method information stored in the storage medium is extracted by an authentication unit that performs a procedure for authenticating the validity of the token code received through the communication channel and the result of authenticating the validity of the token code, thereby making the payment It is characterized in that it includes a payment processing unit that processes so that the procedure used for is performed.

The payment processing system according to the present invention may further include a diagnosis unit configured to confirm the validity of the program by communicating with a program driven in the customer wireless terminal after the program is installed in the customer wireless terminal.

In the payment processing system according to the present invention, an interface unit for connecting a communication channel with a customer wireless terminal installed with the program or connecting a communication channel with a separate terminal provided in a short distance of the customer wireless terminal is further provided during payment, characterized by being made.

In the payment processing system according to the present invention, the token code is transmitted from the customer wireless terminal to the terminal through short-range communication when a communication channel is connected to a separate terminal provided in a short distance of the customer wireless terminal, or After being displayed on the screen of the wireless terminal, it is characterized in that a key is input into the terminal.

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit is characterized in that it receives payment processing information including an amount to be processed.

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored customer's payment method information, and the payment processing unit transmits the received authentication information and the authentication information of the payment method information. It is characterized in that the processing is performed so that the validity of the payment approval procedure is verified by comparison.

In the payment processing system according to the present invention, a program for processing a payment using a token code that is dynamically generated at the time of payment is installed in a customer wireless terminal owned by a specific customer, and then communicates with a program driven in the customer wireless terminal to obtain information about the program. When the validity of the program installed in the diagnosis unit and the customer wireless terminal is confirmed, the number information for uniquely identifying the customer wireless terminal on which the program is installed and the program are installed based on the result of verifying the validity of the program. An information storage unit that checks and stores customer information using one wireless terminal, receives registered payment method information issued to a customer corresponding to the customer information, and stores it in a designated storage medium, and installs the program at the time of payment An interface unit that connects a communication channel with one customer wireless terminal or connects a communication channel with a separate terminal provided in a short distance of the customer wireless terminal, and the token code dynamically generated for payment and processed through the program of the customer wireless terminal, and the above An information receiving unit that receives the number information of the customer wireless terminal on which the program is installed is compared with the received number information of the customer wireless terminal and the stored number information of the customer wireless terminal through the communication channel so that the program is transmitted to the customer wireless terminal. An extraction unit for confirming that the program is installed, an authentication unit for performing a procedure for authenticating the validity of the received token code when the program is installed in the customer wireless terminal, and the specified storage medium based on a result of authenticating the validity of the token code. It is characterized in that it comprises a payment processing unit for processing so that the customer's payment method information stored in is extracted and the procedure used for the payment is performed.

In the payment processing system according to the present invention, the token code is characterized in that it is input to the terminal requesting the payment through short-range communication.

In the payment processing system according to the present invention, the token code is displayed on the screen of the wireless terminal through a program of the wireless terminal, and is characterized in that it further comprises a key input to the terminal requesting the payment.

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit receives payment processing information to be processed using payment method information to be extracted from the storage medium based on a result of authenticating the validity of the token code. to be

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored payment method information, and the payment processing unit compares the received authentication information with the authentication information of the payment method information. It is characterized in that processing is performed so that the validity of the payment approval procedure is authenticated.

In the payment processing system according to the present invention, a program for processing payment using a token code that is dynamically generated at the time of payment is installed in a wireless terminal of a specific customer and stores relationship information identifying a relationship used for payment processing of the customer. and an information storage unit that performs a procedure of storing the payment method information issued to the customer in a designated storage medium by linking it with the relationship information, and extracting the payment method information stored in the storage medium and using it for payment processing. After being dynamically generated and processed through a program of the wireless terminal, the information receiving unit receives the token code transmitted through the terminal that has requested the payment and is transmitted through the terminal, and the validity of the token code is verified. It is characterized by having a payment processing unit that extracts customer's payment method information stored in a storage medium and processes the procedure used for the payment to be performed.

In the payment processing system according to the present invention, the token code is characterized in that it is input to the terminal requesting the payment through short-range communication.

In the payment processing system according to the present invention, the token code is displayed on the screen of the wireless terminal through a program of the wireless terminal, and is characterized in that it further comprises a key input to the terminal requesting the payment.

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit receives payment processing information to be processed using payment method information to be extracted from the storage medium based on a result of authenticating the validity of the token code. to be

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored payment method information, and the payment processing unit compares the received authentication information with the authentication information of the payment method information. It is characterized in that processing is performed so that the validity of the payment approval procedure is authenticated.

The payment processing system according to the present invention stores wireless terminal information assigned to a wireless terminal loaded with a program to use a token code to be dynamically generated at the time of payment for payment processing, and transmits the program loaded in the wireless terminal to a specific customer. A procedure for storing customer information including relationship information identifying the relationship used for payment and the customer's personal information, and storing the payment method information issued to the customer in a designated storage medium by linking it with the wireless terminal information or customer information When a payment is made by extracting the information storage unit and the payment method information stored in the storage medium and using it for payment processing, the terminal that requested the payment after being dynamically generated for payment and processed through a program installed in the customer's wireless terminal The payment method information of the customer stored in the designated storage medium is extracted by the information receiving unit receiving the token code input and transmitted through the terminal and the validation result of the token code, and the procedure for using the payment is performed. It is characterized in that it comprises a payment processing unit for processing.

In the payment processing system according to the present invention, the wireless terminal information includes information for identifying a wireless terminal in which a unique secret key value assigned to the program is stored.

In the payment processing system according to the present invention, the token code is displayed on the screen of the wireless terminal through a program of the wireless terminal, and is characterized in that it is keyed into the terminal that requested the payment.

In the payment processing system according to the present invention, the token code is characterized in that it is input to the terminal requesting the payment through short-range communication.

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit receives payment processing information to be processed using payment method information to be extracted from the storage medium based on a result of authenticating the validity of the token code. to be

In the payment processing system according to the present invention, the information receiving unit is characterized in that it further receives information on a wireless terminal loaded with a program used for the payment.

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored payment method information, and the payment processing unit compares the received authentication information with the authentication information of the payment method information. It is characterized in that processing is performed so that the validity of the payment approval procedure is authenticated.

The payment processing system according to the present invention includes wireless terminal information for identifying a wireless terminal loaded with a program to display a token code to be dynamically generated at the time of payment, and relationship information for identifying a relationship between a customer using the program and the program. An information storage unit that performs a procedure for storing customer information including customer information and payment method information issued to the customer in a designated storage medium and upon payment, it is dynamically generated for the payment and the relationship information confirms that the customer is using it. An information reception unit that receives the token code displayed through the program of the identified wireless terminal and a procedure of extracting the customer's payment method information stored in the designated storage medium according to the result of authenticating the validity of the token code and approving the payment is performed. It is characterized in that it includes a payment processing unit that processes so as to be possible.

In the payment processing system according to the present invention, the wireless terminal information includes information for identifying a wireless terminal in which a unique secret key value assigned to the program is stored.

In the payment processing system according to the present invention, the storage medium is provided on the payment processing system or is provided on a network interworking with the payment processing system.

In the payment processing system according to the present invention, the information receiving unit receives payment processing information to be processed using payment method information to be extracted from the storage medium based on a result of authenticating the validity of the token code. to be

In the payment processing system according to the present invention, the information receiving unit receives and authenticates at least one of information about a wireless terminal in which the program is installed and relationship information identifying a relationship between the program and a customer, during payment. to be characterized

In the payment processing system according to the present invention, the information receiving unit receives authentication information associated with the stored payment method information, and the payment processing unit compares the received authentication information with the authentication information of the payment method information. It is characterized in that processing is performed so that the validity of the payment approval procedure is authenticated.

Through the payment processing method and system according to the present invention, when a customer performs a financial transaction, there is an advantage that a safer financial transaction is possible through a predetermined token code volatilized by time and/or a predetermined random variable. .

In addition, financial transaction instrument information (e.g., financial account information, credit card information, debit card information, cash card information, check card information, prepaid card information, electronic money information, etc.), more convenient and safer financial transactions are possible.

1 is a diagram illustrating a token code based payment processing system according to the present invention.
2 illustrates the configuration of a system for providing a predetermined token agent to the customer wireless terminal according to an embodiment of the present invention.
3 is a diagram illustrating token agent information to be provided to a wireless terminal according to an embodiment of the present invention.
4 is a diagram illustrating token agent information to be provided to a wireless terminal according to an embodiment of the present invention.
5 is a diagram illustrating an exemplary process of providing and loading a token agent program to a customer wireless terminal according to an exemplary embodiment of the present invention.
6 is a diagram illustrating an information configuration of wireless terminal information stored in the storage medium according to the implementation method of the present invention.
7 is a diagram illustrating an information configuration of token agent information stored in the storage medium according to the implementation method of the present invention.
8 is a diagram illustrating an information configuration of customer information stored in the storage medium according to the implementation method of the present invention.
9 is a diagram illustrating an information configuration of payment method information stored in the storage medium according to the implementation method of the present invention.
10 is a diagram illustrating a payment terminal or customer wireless terminal for payment processing based on a token code according to the implementation method of the present invention.
11 is a diagram showing a functional configuration of a wireless terminal equipped with a token agent according to an embodiment of the present invention.
12 is a diagram illustrating a token code structure according to an embodiment of the present invention.
13 is a diagram illustrating a functional configuration of a payment terminal 145 according to an exemplary embodiment of the present invention.
14 is a diagram illustrating a token code operation process according to an embodiment of the present invention.
15 is a diagram illustrating a process of operating a token code according to an embodiment of the present invention.
16 is a diagram illustrating a process of operating a token code according to an exemplary embodiment of the present invention.
17 is a diagram illustrating a process of operating a token code according to an embodiment of the present invention.
18 relates to an implementation process in which token code-based payment processing is applied to a card payment system according to an implementation method of the present invention.
19 illustrates a payment processing request message for payment processing based on a token code according to an exemplary embodiment of the present invention.
20 illustrates an implementation process in which token code-based payment processing is applied to an online payment system according to an implementation method of the present invention.
21 relates to an implementation process in which token code-based payment processing is applied to a wireless payment system according to an implementation method of the present invention.

Hereinafter, the operating principle of the preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. However, the drawings shown below and the description below relate to preferred implementation methods among various methods for effectively explaining the features of the present invention, and the present invention is not limited to only the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description will be omitted. In addition, terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to the intention or custom of a user or operator. Therefore, the definition should be made based on the contents throughout this title.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration in order to efficiently explain the technical components constituting the present invention, or system functions commonly provided in the technical field to which the present invention belongs. The configuration is omitted as much as possible, and the functional configuration that should be additionally provided for the present invention will be mainly described. If one has ordinary knowledge in the technical field to which the present invention belongs, one will be able to easily understand the functions of conventionally used components among the omitted functional configurations not shown below, and also the omitted configurations as described above. Relationships between elements and components added for the present invention will also be clearly understood.

In the present invention, each means constituting the payment processing system using the wireless terminal number is a program recorded on a recording medium provided in a predetermined server according to a unique characteristic (or role) defined in the corresponding means (eg, each It consists of a program including at least one functional component (Function) for performing the unique function (or role) of the means), and/or configured as an independent server that performs the unique function defined in the corresponding means ( For example, it is possible to configure a plurality of server systems that interwork with each other through a predetermined inter-server interface), and a preferred embodiment of the present invention to be practiced below is the above means to efficiently explain the technical components constituting the present invention. It will be described that these are implemented through a program recorded on a recording medium provided in a predetermined server and/or a plurality of interoperable servers, but the method of implementing the means is by no means limited to the case of the following embodiments. In addition, the following embodiment uses an implementation method in which a predetermined program is loaded into a customer wireless terminal, and thus, for convenience, the program loaded in the customer wireless terminal is named a token agent and/or a token agent program. In addition, terms used in the following embodiments will be appropriately modified and used depending on the field to which the token code-based payment processing according to the present invention is applied, and the present invention is not limited thereby.

As a result, the technical spirit of the present invention is determined by the claims, and the following embodiments are a means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention belongs. only

Figure 1 is a diagram showing a token code based payment processing system according to the present invention.

In more detail, FIG. 1 shows at least one payment means information, information on the customer wireless terminal 1100 possessing the payment means, and predetermined token generation program information for the token generation program provided in the wireless terminal 1100 to be linked to a predetermined value. When the information storage means 105 stored in the storage medium of the storage medium, and the customer who owns the payment means processes payment using the payment means, using a predetermined code (or pin number or password) input through a predetermined input means , a wireless terminal 1100 that drives a token generation program and generates a predetermined token code through the token generation program, predetermined token code information generated by the wireless terminal 1100 and information about the wireless terminal 1100 and a payment terminal 145 that generates a predetermined payment approval request message (or data) including at least one payment information, and requests predetermined payment approval by using the generated payment approval request message (or data). , Information receiving means 115 for receiving the full text of the payment approval request (or data), and information checking means 120 for checking the wireless terminal 1100 information included in the full text of the payment approval request (or data) 120, In connection with the storage medium (or storage medium operation means), the token generating program information associated with the checked wireless terminal 1100 information is checked, and the validity of the received token code is determined using the token generating program information. Payment processing corresponding to the payment approval request is performed by referring to the payment method information associated with the information of the wireless terminal 1100 according to the authentication means 125 for authenticating, and the validity authentication result of the token code. It relates to a payment processing system characterized in that it comprises a processing means (130).

Referring to Figure 1, the payment processing system preferably further includes a token agent providing unit 100 that provides a predetermined token generation program to the customer wireless terminal 1100 possessing the payment means.

In addition, the payment processing system transmits predetermined payment processing details (or payment approval text) data corresponding to the payment processing to the payment terminal 145 (or the customer's wireless terminal 1100 or wired terminal possessing the payment means). It is preferable to further include an information transmission means to do.

In addition, the payment processing system is information storage means for storing predetermined payment processing details (or payment approval text) data corresponding to the payment processing in a predetermined storage medium in association with the payment method information (and/or customer information). It is preferable to further include (140).

According to the implementation method of the present invention, the payment processing preferably includes offline payment processing and/or online payment processing, and the payment means includes a credit card payment method, a debit card payment method, It is preferable to include at least one of a cash card payment method, a check card payment method, a prepaid card payment method, a financial account payment method, and an electronic money payment method, and the payment terminal 145 owns the payment method. It is preferable to include at least one customer's wireless terminal 1100 or wired terminal, a financial transaction automation processing device such as a CD/ATM, a POS terminal, and a CAT terminal.

In addition, the wireless terminal 1100 includes a Personal Communication System (PCS) and/or a Global System for Mobile communications (GSM) terminal and/or a Personal Digital Cellular (PDC) and/or PHS (PDC). At least one Personal Handyphone System terminal and/or Personal Digital Assistant (PDA) and/or Smart Phone and/or Telematics and/or wireless data communication terminal and/or portable Internet terminal It is preferable to include the above, and a predetermined token agent program is loaded by the token agent providing means 100.

According to the implementation method of the present invention, the information transmission means transmits the payment processing details (or payment approval message) data via a predetermined relay server such as a VAN company server to the payment terminal 145 (or the wireless customer who owns the payment means). It is preferable to transmit to the terminal 1100 or wired terminal).

According to the implementation method of the present invention, it is preferable that the payment terminal 145 further transmits at least one authentication information (or secret code) associated with the payment means to the payment processing means 130, and the payment processing means 130. It is preferable that the means 130 determines whether or not to perform the payment processing based on the authentication information (or secret code).

According to the implementation method of the present invention, the payment terminal 145 outputs at least one payment method information associated with the wireless terminal 1100 information on a screen, and the customer who owns the payment method through a predetermined input means. It is preferable to receive input of predetermined payment method selection information to be used for payment processing.

In addition, when using the payment method online, the payment terminal 145 preferably receives predetermined payment information from a server on a communication network.

According to the implementation method of the present invention, the authentication means 125 refers to the token generation program information associated with the wireless terminal 1100 information to generate a predetermined token authentication code corresponding to the received token code, It is preferable to authenticate the validity of the received token code by comparing the token code with the token authentication code.

Figure 2 shows the configuration of a system for providing a predetermined token agent to the customer wireless terminal according to an embodiment of the present invention.

In more detail, Figure 2 shows that a predetermined token agent program is provided and installed in a customer wireless terminal that owns at least one payment method, and the at least one or more payment method information, customer wireless terminal information, and token agent information are stored in a predetermined manner. As a block diagram showing a preferred implementation of a token agent providing system stored in a medium 110, this drawing 1 is for easy explanation of the technical features of the present invention to those skilled in the art to which the present invention belongs. The token agent providing system issues at least one payment method with a predetermined customer's card medium (eg, MS (Magnetic Stripe) card and/or IC (Integrated Circuit) card), and/or mounts it on the customer's wireless terminal, or A payment means issuing server 200 that issues a predetermined payment means with the detached IC chip, a token agent providing server 215 that provides and loads a predetermined token agent program to the customer wireless terminal, and the customer wireless terminal It is shown to be configured to include an information storage server 235 for storing token agent information loaded in a predetermined storage medium 110 by linking the customer wireless terminal information and at least one payment method information issued to the customer. to explain. However, the technical features of the token agent providing system are not limited to those shown in Figure 2, and those of ordinary skill in the art to which the present invention belongs, refer to Figure 2 to the payment means issuing server ( 200), the token agent providing server 215, and the information storage server 235 are composed of one server, and/or a method of implementing various token agent providing systems composed of at least two or more plural servers can be easily inferred. You will be able to.

The payment method issuing server 200 is a credit card payment method, a debit card payment method, a cash card payment method, a check card payment method, a prepaid card payment method, a financial account payment method, and an electronic money payment method. As a server provided in a card company and/or a financial company that issues at least one payment method to the customer, referring to FIG. 2, a payment method issuing unit 205 that issues at least one payment method to the customer and , Payment method information D/B 210 for storing at least one payment method information issued to the customer in association with the customer information.

The payment means issuing unit 205 acquires predetermined customer information about the customer through a predetermined payment means issuing interface, and/or at least one payment means to be issued to the customer based on the obtained customer information. Information is generated, and the payment method information is stored and issued in a predetermined card medium (eg, MS card and/or IC card) and/or wireless chip medium (eg, IC chip mounted on or detached from the customer's wireless terminal). It is characterized by doing.

According to one implementation method of the present invention, the payment means issuing unit 205 obtains customer information about the customer, receives the customer information through a document including a predetermined customer information entry form, and It is preferable to include a method of using a payment means issuing interface obtained in an offline manner through an information input means (eg, information input terminal) of, and / or a predetermined customer terminal used by the customer (eg, customer-owned wired It is preferable to include a method of providing a predetermined customer information input interface to a terminal and/or a wireless terminal owned by a customer) and using a payment means issuance interface for acquiring the customer information in an online manner through the customer information input interface. .

In addition, the payment method issuing unit 205 reads the acquired customer information (eg, customer credit rating) to generate at least one payment method information to be issued to the customer, and converts the generated payment method information to a predetermined value. It is preferable to issue the information to the customer by storing it in a card medium and/or a wireless chip medium.

When at least one payment method is issued to the customer as described above, the payment method issuing unit 205 connects the customer information and at least one or more payment method information issued to the customer to the payment method information D/B (210). ) is stored in

Referring to FIG. 2, the token agent providing server 215 includes a token agent D/B 225 storing at least one token agent corresponding to at least one customer wireless terminal platform, and the token agent D/B ( 225) to the customer wireless terminal, and an agent providing unit 220 for providing and loading the predetermined token agent, and the token loaded in the customer wireless terminal by the agent providing unit 220. It is preferable to further include a token agent diagnosis unit for diagnosing the validity of the agent.

The token agent D/B 225 stores at least one token agent program capable of operating in correspondence with a predetermined customer wireless terminal platform and token agent related information corresponding to the token agent program, A detailed description of the token agent D/B 225 will be given with reference to FIG. 3 or FIG. 4.

The agent provider 220 extracts a predetermined token agent program corresponding to the platform provided in the customer wireless terminal from the token agent D/B 225, and/or includes at least one token generation information. A predetermined token agent program executable on a platform provided in the customer wireless terminal is dynamically generated, and at least one token generation information associated with the token agent program and/or the token agent program through a predetermined token agent providing interface. It is characterized in that the customer wireless terminal is provided and loaded.

In order for the agent providing unit 220 to provide a predetermined token agent program to the customer wireless terminal, the customer wireless terminal information is required, and the customer wireless terminal information provides the customer wireless terminal with a request to load the token agent. provided by the subject.

According to one implementation method of the present invention, the payment means issuing server 200 issuing at least one payment means to the customer, and/or after issuing at least one payment means to the customer, based on the token code For payment processing, the token agent providing server 215 provides the token agent program to the customer wireless terminal to which the payment means was issued and requests to load it, and the payment means issuing server 200 requests the payment method included in the customer information. The customer wireless terminal information is provided to the agent providing unit 220 of the token agent providing server 215.

According to another implementation method of the present invention, the customer accesses the token agent providing server 215 through a predetermined customer terminal (eg, a wired terminal and/or a wireless terminal owned by the customer), and performs token code based payment processing. For this purpose, it is preferable to provide the customer wireless terminal information to the token agent providing server 215 .

As described above, when the customer wireless terminal information loaded with the token agent program is provided, the agent providing unit 220 identifies the platform of the customer wireless terminal based on the customer wireless terminal information. For example, when the customer wireless terminal is a mobile communication terminal accessing a predetermined mobile communication network, the agent providing unit 220 uses the wireless terminal information to provide a subscriber D/B (eg, home The wireless terminal platform may be identified by referring to a Home Location Register (HLR) or a Visitor Location Register (VLR) (not shown).

When the customer wireless terminal platform is confirmed as described above, the agent providing unit 220 extracts a predetermined token agent program corresponding to the wireless terminal platform from the token agent D/B 225, and/or at least one or more It is created dynamically including token generation information.

In addition, the agent providing unit 220 extracts at least one piece of token generation information corresponding to the token agent program from the token agent D/B 225, and the extracted (and/or dynamically generated) token agent. By linking the program and/or the extracted at least one piece of token generation information and transmitting the token to the customer wireless terminal through a predetermined token agent providing interface (eg, a wireless network to which the customer wireless terminal is connected), the token is transmitted to the customer wireless terminal. Install the agent program.

According to one embodiment of the present invention, the token agent program can be loaded on the customer wireless terminal platform and/or mounted on an IC chip mounted on or detached from the wireless terminal, whereby the present invention is not limited to

According to the present invention, the token agent program provided and installed in the customer wireless terminal includes at least one token code generation method of a time-synchronous method and a challenge-response method, The present invention is by no means limited by the token code generation method.

As described above, when the token agent program is installed in the customer wireless terminal, the token agent diagnosis unit diagnoses whether the token agent program loaded in the wireless terminal operates normally in conjunction with the customer wireless terminal.

According to one embodiment of the present invention, the method for diagnosing the token agent program loaded in the customer wireless terminal includes generating a predetermined token code for diagnosis by the token agent program loaded in the customer wireless terminal to diagnose the token agent. , the token agent diagnosis unit generates a predetermined diagnostic token authentication code corresponding to the received token code, compares the received token code with the generated token authentication code, and mounts the token to the customer wireless terminal. It is desirable to diagnose the validity of the token agent program.

According to the present invention, the token agent providing server 215 performs a function of a token generating program providing means for providing and loading a predetermined token agent program to the customer wireless terminal.

As described above, when a predetermined token agent program is normally provided and installed in a customer wireless terminal, the information storage server 235 stores at least one payment method information issued to the customer by the payment method issuing server 200, and the Predetermined wireless terminal information about the customer wireless terminal and token agent information loaded in the customer wireless terminal are interconnected and stored in a predetermined storage medium 110 .

Referring to Figure 1, the information storage server 235 includes at least one payment method information and/or customer information (eg, customer wireless terminal information) issued to the customer from the payment method information D/B 210. possible), and an information extraction unit 240 for extracting token agent information and/or customer wireless terminal information provided and loaded to the customer wireless terminal from the token agent D/B 225; It is characterized in that it comprises an information storage unit 245 for storing at least one or more payment method information, customer wireless terminal information, and token agent information provided and loaded to the customer wireless terminal in a predetermined storage medium 110 in association with each other. to be

According to the present invention, the information storage server 235 links at least one payment means information, customer wireless terminal information possessing the payment means, and predetermined token agent information about a token agent program provided in the wireless terminal to obtain a predetermined value. It performs the function of information storage means to store in the storage medium (110).

Figure 3 is a diagram illustrating token agent information to be provided to the wireless terminal 1100 according to an embodiment of the present invention.

In more detail, FIG. 3 shows a predetermined token for each platform corresponding to the platform of the wireless terminal 1100 on which the token agent is mounted in a predetermined token agent generating a time-synchronous token code. As an example of attribute information about an agent, the token agent information includes a token agent program (or a source code to be compiled into a token agent program) corresponding to each platform, a version of the token agent, and a token generation algorithm. And, at least one or more token generation information, and / or token renewal cycle, but at least one or more information items may be further included according to the intention of those skilled in the art, and the present invention is by no means limited by the information items. .

According to the present invention, the token agent program is installed in the wireless terminal (1100) owned by the customer and generates a predetermined token code, whereby the token agent program operates on the platform of the customer wireless terminal (1100). It is characterized in that it comprises a program code that can be driven and / or operated in. For example, if the wireless terminal 1100 is equipped with a WIPI (Wireless Internet Platform for Interoperability) platform, the token agent includes a program code that operates on the basis of WIPI, and other platforms (eg, GVM / SK-VM /BREW, etc.) is loaded, it includes the program code that operates on the platform.

3, the token agent program is provided in the token agent D/B 225 in the form of a pre-compiled program, and/or in the form of source code to be compiled in the token agent D/B 225 It is characterized in that stored in.

According to one embodiment of the present invention, when the token agent program is provided in the token agent D/B 225 in the form of a pre-compiled program, the token agent providing server 215 transmits the wireless network through a predetermined wireless network. At the time of providing and loading the token agent program into the terminal 1100, at least one piece of token generation information corresponding to the token agent program (e.g., a number corresponding to a number randomly generated by the token agent providing server 215) secret key value) is preferably provided to the wireless terminal 1100 and stored in a predetermined storage device, and at the time when the token agent program installed in the wireless terminal 1100 generates a predetermined token code, The token agent program stores at least one token generation information from the token agent external storage device (eg, the memory of the wireless terminal 1100 and/or the memory included in the IC chip mounted on or detached from the wireless terminal 1100). It is preferable to extract and generate a predetermined token code based on the token creation information.

According to another embodiment of the present invention, when the token agent program is stored in the token agent D/B 225 in the form of source code to be compiled, the token agent providing server 215 provides the wireless terminal 1100 At the time of providing the token agent program, at least one or more token generation information corresponding to the token agent program (eg, a secret key value corresponding to a number randomly generated by the token agent providing server 215) Substituting the token generation information variable included in the token agent source code, and compiling the token agent source code in which at least one or more token generation information is substituted into the predetermined token generation information variable as described above to generate a predetermined token agent program, , It is preferable to provide and load the dynamically generated token agent program to the wireless terminal 1100 through a predetermined wireless network, and the token agent program loaded in the wireless terminal 1100 is a predetermined token. At the time of code generation, the token agent program preferably generates a predetermined token code based on token generation information substituted into an internal variable of the token agent program.

According to another implementation method of the present invention, even when at least one token generation information is substituted into the token agent program as described above, the dynamically generated token agent program is provided to the wireless terminal 1100 according to the intention of a person skilled in the art. At the time of loading, at least one or more other token generation information is provided to the wireless terminal 1100 and stored in a predetermined storage device, and the token agent program loaded in the wireless terminal 1100 generates a predetermined token code At the time of generating, it is possible to generate a predetermined token code by using both the token generation information provided in the token agent program and the token generation information provided in the external storage device, thereby limiting the present invention. It doesn't work.

The version of the token agent information includes version information of a token agent program for each platform to be provided to the wireless terminal 1100 .

According to the implementation method of the present invention, the type and/or version of the applied token generation algorithm may be different depending on the version of the token agent program, even for the same type of token agent program (eg, a token agent program operating on the same platform). As a result, since the token code generated by the token agent program will also be different, the version information provides information for accurately determining the token agent loaded into the wireless terminal 1100. Token code authentication errors that may occur in the process of authenticating a predetermined token code generated in the wireless terminal 1100 can be minimized by the version information of the token code agent program.

The token generation algorithm of the token agent information includes hashing algorithm information applied to the token agent program and/or detailed property information of the hashing algorithm. Currently, the most commonly used hashing algorithms for token generation include MD4, MD5, and SHA. Depending on the application field, a hashing algorithm modified from the hashing algorithm (e.g., SHA1 hashing algorithm modified from SHA) is used. .

The token generation information of the token agent information is information for generating a time-synchronous token code. Referring to FIG. 3, the token code generation information indicates the time (or time) at which the token code is generated as first generation information. , and according to the implementation method, a secret key value corresponding to a value randomly generated by the token agent providing server 215 and/or a MIN/ESN uniquely assigned to the wireless terminal 1100 on which the token agent is mounted. It is preferable to use as the second creation information and/or the third creation information.

Referring to one embodiment of the present invention, when the token agent uses the MIN/ESN of the wireless terminal 1100 as token generation information for generating a predetermined token code, the MIN/ESN is used as token generation information. In order to prevent the token agent from overflowing in the process of generating the token code when the MIN/ESN has an excessively large value, a predetermined hash function is applied to the MIN/ESN It is possible to apply and convert to a value within a certain size and use it, which is determined according to the intention of a person skilled in the art and/or the computing capability of the wireless platform.

The token update cycle of the token agent information is a time interval at which a predetermined token code generated by the token agent is volatilized and invalidated in time when the token generation algorithm follows a time synchronization method, and the token code in the payment terminal In the process of transmitting to the financial transaction server, if it is difficult to transmit the time (or time) information at which the token code was generated together with the token code, the token generation time between the wireless terminal 1100 and the financial transaction server ( or time) used to synchronize information over a period of time. That is, the token code generated by the token agent must be transmitted to a predetermined financial transaction server within the token renewal period, and a predetermined token authentication code corresponding to the token code must be generated by the financial transaction server. That is, when a predetermined token code is generated by the token agent provided in the wireless terminal 1100 and then a predetermined token authentication code is generated by the financial transaction server within the torque update period, the validity of the token code is determined. certified Therefore, the token renewal cycle is the time required to provide the token code generated by the wireless terminal 1100 to a predetermined payment terminal, the time required to transmit the token code to the financial transaction server, and the financial transaction It is desirable to make a decision in consideration of the time required to generate a predetermined token authentication code in the server.

According to another embodiment of the present invention, when the token generation algorithm follows a time synchronization method and it is easy to transmit information on the time (or time) at which the token code was generated in the token agent to the financial transaction server, the The token renewal period may be omitted, or may be set to a very short time interval.

4 is a diagram illustrating token agent information to be provided to the wireless terminal 1100 according to an embodiment of the present invention.

In more detail, FIG. 4 shows a predetermined token agent for each platform corresponding to the platform of the wireless terminal 1100 on which the token agent is mounted, in a predetermined token agent generating a challenge-response token code. As an example of attribute information on a token agent, the token agent information includes a token agent program (or source code to be compiled into a token agent program) corresponding to each platform, the version of the token agent, and token generation. It includes an algorithm and at least one token generation information, and at least one or more information items may be further included according to the intention of a person skilled in the art, and the present invention is not limited by the above information items.

According to the present invention, the token agent program is installed in the wireless terminal (1100) owned by the customer and generates a predetermined token code, whereby the token agent program operates on the platform of the customer wireless terminal (1100). It is characterized in that it comprises a program code that can be driven and / or operated in. For example, if the wireless terminal 1100 is equipped with a WIPI (Wireless Internet Platform for Interoperability) platform, the token agent includes a program code that operates on the basis of WIPI, and other platforms (eg, GVM / SK-VM /BREW, etc.) is loaded, it includes the program code that operates on the platform.

4, the token agent program is provided in the token agent D/B 225 in the form of a pre-compiled program, and/or in the form of source code to be compiled in the token agent D/B 225 It is characterized in that stored in.

According to one embodiment of the present invention, the token agent program is provided in the token agent D/B 225 in the form of a pre-compiled program, and the token agent program receives the token code from a predetermined payment processing server 1000. It is characterized in that a predetermined challenge value is received as token generation information for generation, and the token agent providing server 215 provides the token agent program to the customer wireless terminal 1100 through a predetermined wireless network and mounts the Preferably, when the token agent program installed in the wireless terminal 1100 generates a predetermined token code, the token agent program based on a predetermined challenge value received from the payment processing server 1000 It is preferable to generate a predetermined token code with

According to another implementation method of the present invention, when the token agent program is provided in the token agent D/B 225 in the form of a pre-compiled program, the token agent providing server 215 transmits the program through a predetermined wireless network. At the time of providing and loading the token agent program to the wireless terminal 1100, at least one or more token generation information corresponding to the token agent program (e.g., corresponding to a number randomly generated by the token agent providing server 215) It is preferable to provide a secret key value) to the wireless terminal 1100 and store it in a predetermined storage device, and at the time when the token agent program installed in the wireless terminal 1100 generates a predetermined token code. , The token agent program is loaded into or removed from the predetermined challenge value received from the payment processing server 1000 and the token agent external storage device (eg, the memory of the wireless terminal 1100, and / or the wireless terminal 1100) Preferably, at least one piece of token generation information is extracted from a memory provided in an IC chip to be installed, and a predetermined token code is generated based on the token generation information.

According to another embodiment of the present invention, when the token agent program is stored in the token agent D/B 225 in the form of source code to be compiled, the token agent providing server 215 transmits the wireless terminal 1100 ), at the time of providing the token agent program, at least one or more token generation information corresponding to the token agent program (eg, a secret key value corresponding to a number randomly generated by the token agent providing server 215) A predetermined token agent program is generated by substituting the token generation information variable included in the token agent source code and compiling the token agent source code in which at least one token generation information is substituted into a predetermined token generation information variable as described above. And, it is preferable to provide and install the dynamically generated token agent program to the wireless terminal 1100 through a predetermined wireless network, and the token agent program loaded in the wireless terminal 1100 At the time of generating the token code, the token agent program generates a predetermined token code based on a predetermined challenge value received from the payment processing server 1000 and token generation information substituted into an internal variable of the token agent program it is desirable

According to another implementation method of the present invention, even when at least one token generation information is substituted into the token agent program as described above, the dynamically generated token agent program is provided to the wireless terminal 1100 according to the intention of a person skilled in the art. At the time of loading, at least one or more other token generation information is provided to the wireless terminal 1100 and stored in a predetermined storage device, and the token agent program loaded in the wireless terminal 1100 generates a predetermined token code At the time of generating the token agent program, the predetermined challenge value received from the payment processing server 1000, the token generation information provided inside the corresponding token agent program, the token generation information provided in the external storage device, etc. It is possible to generate a predetermined token code using, and the present invention is not limited thereby.

The version of the token agent information includes version information of a token agent program for each platform to be provided to the wireless terminal 1100 .

According to the implementation method of the present invention, the type and/or version of the applied token generation algorithm may be different depending on the version of the token agent program, even for the same type of token agent program (eg, a token agent program operating on the same platform). As a result, since the token code generated by the token agent program will also be different, the version information provides information for accurately determining the token agent loaded into the wireless terminal 1100. Token code authentication errors that may occur in the process of authenticating a predetermined token code generated in the wireless terminal 1100 can be minimized by the version information of the token code agent program.

The token generation algorithm of the token agent information includes hashing algorithm information applied to the token agent program and/or detailed property information of the hashing algorithm. Currently, the most commonly used hashing algorithms for token generation include MD4, MD5, and SHA. Depending on the application field, a hashing algorithm modified from the above hashing algorithm (eg, SHA-1 hashing algorithm modified from SHA, etc.) It is being used.

The token generation information of the token agent information is information for generating a time-synchronous token code. Referring to FIG. 4, the token code generation information is the token agent program provided in the wireless terminal 1100 At the time of generating the token code, a predetermined challenge value provided to the wireless terminal 1100 through the payment processing server 1000 is set as first generation information, and according to the implementation method, the token agent providing server 215 It is preferable to use the secret key value corresponding to the randomly generated value and/or the MIN/ESN uniquely assigned to the wireless terminal 1100 on which the token agent is mounted as the second generation information and/or the third generation information. desirable.

According to the implementation method of the present invention, the challenge value is randomly generated by the payment processing server 1000 at the time when the token agent program provided in the wireless terminal 1100 generates a predetermined token code. As a value, the payment processing server 1000 transmits to the wireless terminal 1100 until the token code generated based on the challenge value (eg, response corresponding to the challenge) is received from the wireless terminal 1100 It is preferable to maintain one challenge value, and when the token code is received, it is preferable to authenticate the received token code by generating a predetermined token authentication code based on the challenge value.

Referring to one embodiment of the present invention, when the token agent uses the MIN/ESN of the wireless terminal 1100 as token generation information for generating a predetermined token code, the MIN/ESN is used as token generation information. In order to prevent the token agent from overflowing in the process of generating the token code when the MIN/ESN has an excessively large value, a predetermined hash function is applied to the MIN/ESN It is possible to apply and convert to a value within a certain size and use it, which is determined according to the intention of a person skilled in the art and/or the computing capability of the wireless platform.

5 is a diagram illustrating an exemplary process of providing and loading a token agent program to a customer wireless terminal according to an exemplary method of the present invention.

In more detail, this Figure 5 relates to the process of loading a token agent program for token code-based payment processing into a predetermined customer wireless terminal. With reference to the implementation method shown below, various implementation methods of loading a predetermined token agent into the customer wireless terminal can be easily inferred, and it is to be noted that the present invention is not limited by the present implementation method. .

Referring to Figure 5, predetermined wireless terminal information (and/or customer information) to be loaded with a token agent program for token code-based payment processing is provided to the token agent providing server 215 (500).

According to the implementation method of the present invention, the process 500 is a predetermined wireless terminal information (and / or customer information), and/or the customer accesses the token agent providing server 215 to provide wireless terminal information (and/or customer information) for the wireless terminal owned by the customer It is preferable to include a process.

If the customer wireless terminal information is provided as described above, the token agent providing server 215 reads the wireless terminal information (and/or customer information) and provides a predetermined token agent program to the customer wireless terminal to determine whether to load it. Confirm (505).

According to one implementation method of the present invention, when a valid token agent program is preloaded in the customer wireless terminal, the token agent providing server 215 does not need to load the token agent into the wireless terminal, and When a valid token agent program is not loaded, it is preferable to provide and load the token agent.

If it is necessary to provide and load a predetermined token agent program to the customer wireless terminal (510), the token agent providing server 215 reads the customer wireless terminal information and prepares a token agent program to be provided to the customer wireless terminal. Confirm (515).

According to one embodiment of the present invention, the token agent providing server 215, when the wireless terminal information accesses the mobile communication network, subscriber D/B (eg, home location register or visit location register) provided in the mobile communication network ), it is preferable to check the token agent program to be provided to the customer wireless terminal by checking the wireless terminal platform. Alternatively, in order to process the process of providing the token agent independently of the mobile carrier according to the implementation method, platform information (or model information of the wireless terminal) of the wireless terminal is further included in the process of receiving the wireless terminal information (500). It is also possible to provide.

As described above, when the token agent to be provided to the customer wireless terminal is identified, the token agent providing server 215 extracts the identified token agent program from the token agent D/B 225 or compiles and dynamically creates the program. and/or extracts predetermined token generation information required for the token agent program to generate a predetermined token code from the token agent D/B 225, or dynamically generates (eg, generates a random value) Do (520).

As described above, when a predetermined token agent program to be provided and installed in a customer wireless terminal and at least one token generation information corresponding to the token agent program are prepared, the token agent providing server 215 transfers the token to the customer wireless terminal. The agent is provided and loaded (525).

According to one embodiment of the present invention, the token agent providing server 215 sends a predetermined wireless message (eg SMS (Short Message Service)) including a predetermined callback URL for providing the token agent to the customer wireless terminal. Message Service), Enhanced Message Service (EMS), Multimedia Messaging Service (MMS), etc.), and when the wireless terminal accesses the token agent providing server 215 through the callback URL, the wireless terminal It is desirable to provide and load a token agent.

According to another implementation method of the present invention, the token agent providing server 215 uses a different type of wireless software loading method that does not use the callback URL according to the intent of a person skilled in the art and/or a policy of a wireless network operator to the customer. It is possible to provide and load the token agent into a wireless terminal, and the present invention is not limited thereby.

As described above, after a predetermined token agent program is loaded into the customer wireless terminal, the customer wireless terminal determines to execute the diagnostic mode for the loaded token agent program. If the diagnostic mode for the token agent is executed (530 ), the wireless terminal executes the loaded token agent program to generate a predetermined diagnostic token code and transmits it to the token agent providing server 215 (535), and the token agent providing server 215 generates the diagnostic token A predetermined diagnostic token authentication code corresponding to the code is generated (540), and the validity of the token agent program loaded in the customer wireless terminal is checked by comparing the diagnostic token code with the diagnostic token authentication code (545).

According to one embodiment of the present invention, the token agent program installed in the customer wireless terminal generates a predetermined token code in a time-synchronous manner, and for this purpose, the token agent program determines the current time from an internal timer provided in the wireless terminal. It is preferable to extract (or time) information and generate a diagnosis token code by using the extracted time (or time) information as predetermined token generation information for diagnosis token code generation. Of course, according to the intent and/or implementation method of those skilled in the art, the token agent program may generate at least one or more token generation information from a storage device included in the wireless terminal (e.g., in the process of providing the token agent program in the token agent providing server 215). It is possible to generate the diagnostic token code by further including a secret key including a random value transmitted together, and/or MIN/ESN information of the wireless terminal stored in a NAM (Number Assignment Module) of the wireless terminal, etc.) .

The diagnostic token code generated as described above is provided to the token agent providing server 215 through a predetermined wireless network, and the token agent providing server 215 generates the diagnostic token code in the wireless terminal (or time) information, a predetermined diagnosis token authentication code is generated, and the validity of the token agent program loaded in the wireless terminal is confirmed by comparing the received diagnosis token code with the generated diagnosis token authentication code.

According to another implementation method of the present invention, the token agent program installed in the customer wireless terminal generates a predetermined token code in a challenge-response manner, and for this purpose, the token agent providing server 215 generates a predetermined challenge value It is preferable to generate and provide the token to the wireless terminal, and the token agent program generates a diagnosis token code by using the provided challenge value as predetermined token generation information for diagnosis token code generation. Of course, according to the intent and/or implementation method of those skilled in the art, the token agent program may generate at least one or more token generation information from a storage device included in the wireless terminal (e.g., in the process of providing the token agent program in the token agent providing server 215). It is possible to generate the diagnosis token code by further including a private key including a random value transmitted together, and/or MIN/ESN information of the wireless terminal stored in the NAM of the wireless terminal.

The diagnostic token code generated as described above is provided to the token agent providing server 215 through a predetermined wireless network, and the token agent providing server 215 receives the challenge used to generate the diagnostic token code in the wireless terminal. A predetermined diagnosis token authentication code including a value is generated, and the validity of the token agent program loaded in the wireless terminal is confirmed by comparing the received diagnosis token code with the generated diagnosis token authentication code.

If the token diagnosis token code and the diagnosis token authentication code do not match (550), the token agent providing server 215 requests retransmission of the token diagnosis token code to the wireless terminal (555), and the steps (535-555) 545) is repeated to confirm the validity of the token agent.

On the other hand, if the validity of the token agent is authenticated by matching the token diagnosis token code and the diagnosis token authentication code (550), the information storage server 235 stores the customer wireless terminal information and the token agent loaded in the customer wireless terminal. Information and the payment method information issued to the customer by the payment method issuing server 200 are linked and stored in a predetermined storage medium (560).

6 is a diagram illustrating an information configuration of wireless terminal information stored in the storage medium according to the implementation method of the present invention.

In more detail, FIG. 6 illustrates a preferred information configuration of customer wireless terminal information linked to the payment method information and/or token agent information for token code based payment, each stored in the storage medium. It is possible that at least one or more information items may be further added according to the intention of a person skilled in the art to implement the present invention, and the present invention is not limited thereby.

Referring to FIG. 6, the wireless terminal information includes at least one wireless terminal number information among a phone number (MIN) and a serial number (ESN) of a wireless terminal owned by a financial transaction customer on which the token agent is mounted. and may further include platform information about the wireless terminal, carrier information, terminal model information, and the like.

According to the implementation method of the present invention, at least one or more information items may be further added to the wireless terminal information according to the intention of a person skilled in the art. For example, the wireless terminal information may further include IC chip unique information (ICCHIP) (not shown) in an IC chip mounted on or detached from the wireless terminal, and/or a Subscriber Identity Module (SIM) in the wireless terminal. ) or UIM (Universal Identification Module) or USIM (Universal Subscriber Identity Module) is provided, the SIM information, UIM information, or USIM information may be further included.

7A and 7B are diagrams illustrating an information configuration of token agent information stored in the storage medium according to the method of implementation of the present invention.

In more detail, FIG. 7a and FIG. 7b illustrate a preferred information configuration of token agent information corresponding to the token agent program installed in the customer wireless terminal for token code-based payment. Specifically, FIG. 7a shows a time-synchronous token A preferred information configuration of token agent information corresponding to an agent program is illustrated, and FIG. 7B illustrates a preferred information configuration of token agent information corresponding to a challenge-response type token agent program.

According to the implementation method of the present invention, the token agent information is preferably linked to customer wireless terminal information and/or payment method information on which the token agent program is installed, and each information stored in the storage medium is the present invention. It is possible that at least one or more information items may be further added according to the intention of a person skilled in the art who performs the above, and the present invention is not limited thereby.

Referring to FIGS. 7A and 7B , token agent information is information for determining what type of token agent is installed in the customer wireless terminal and for generating a token authentication code for authenticating the token code generated by the token agent. To this end, the token agent information includes platform information of a wireless terminal loaded with a token agent program, a token agent version loaded on the platform, a token generation algorithm, and at least one token generation information, It is done.

Referring to FIG. 7a according to an embodiment of the present invention, it is preferable that the token agent information of the time synchronization method further includes a predetermined token renewal period in which time synchronization is maintained.

Referring to Figure 7b according to another embodiment of the present invention, the challenge value of the token generation information included in the token agent information of the challenge-response method (eg, the first generation information of Figure 7b) is transmitted to the customer wireless terminal. It includes a null value before the challenge value is generated, and when the challenge value to be transmitted to the customer wireless terminal is generated, the generated challenge value is substituted, and the token agent program installed in the wireless terminal receives the challenge It is preferable to maintain the assigned challenge value until a predetermined token code (response) corresponding to the value is received, and after an authentication procedure for the received token code is performed through the challenge value (e.g., the After the token authentication code corresponding to the received token code is generated through the maintained challenge value), the challenge value of the token generation information (eg, the first generation information in FIG. 7B) preferably includes a null value again. .

The wireless terminal information includes at least one wireless terminal number information among a telephone number (MIN) and a serial number (ESN) of a wireless terminal owned by a customer for financial transaction on which the token agent is installed. It may further include platform information, communication company information, terminal model information, and the like.

According to the implementation method of the present invention, at least one or more information items may be further added to the wireless terminal information according to the intention of a person skilled in the art. For example, the wireless terminal information may further include IC chip unique information (ICCHIP) (not shown) in an IC chip mounted on or detached from the wireless terminal, and/or a Subscriber Identity Module (SIM) in the wireless terminal. ) or UIM (Universal Identification Module) or USIM (Universal Subscriber Identity Module) is provided, the SIM information, UIM information, or USIM information may be further included.

8 is a diagram illustrating an information configuration of customer information stored in the storage medium according to the implementation method of the present invention.

In more detail, FIG. 8 illustrates a preferred information configuration of predetermined customer information about a customer that is linked to the payment method information and/or linked to token agent information for token code-based payment, and is stored in the storage medium. Each stored information can be further added with at least one information item according to the intention of a person skilled in the art who practices the present invention, and the present invention is not limited thereby.

Referring to Figure 8, the customer information includes customer personal information including at least one name, resident registration number, address, etc. of the customer, and token agent relationship information for establishing a relationship between the customer and the token agent. characterized by being made.

Referring to FIG. 8 according to a preferred embodiment of the present invention, the token agent relationship information preferably includes information on a wireless terminal owned by the financial transaction customer, whereby a token agent program loaded in the customer wireless terminal is used. Token code based payment is performed.

9 is a diagram illustrating an information configuration of payment method information stored in the storage medium according to the implementation method of the present invention.

In more detail, FIG. 9 illustrates a preferred information configuration of payment method information associated with the customer wireless terminal information and/or linked with token agent information loaded in the customer wireless terminal for token code-based payment processing. More specifically, if the payment method issued to the customer by a predetermined payment method issuing institution is a Magnetic Stripe (MS) card including at least one track-II and/or track-III data, the MS card This is an example of included payment method information.

If one of ordinary skill in the art to which the present invention pertains, referring to this Figure 9, in addition to the payment method information included in the MS card, an IC (Integrated Circuit) card and / or mounted on or detached from the customer wireless terminal It will be possible to easily infer the desirable information configuration of the payment method information provided in the IC chip (e.g., the information included in Track-II of the MS card is also included in the payment method provided in the IC card and/or the IC chip). , The present invention is not limited by the payment method information configuration item. For example, if payment method information provided in an IC card and/or IC chip equipped with a predetermined public certificate is stored in the storage medium, the information item includes information corresponding to the public certificate (e.g., public certificate issuing authority, public certificate copy, etc.) will be further included.

Referring to FIG. 9, the payment method information stored in the storage medium includes a credit card payment method, a debit card payment method, a cash card payment method, a check card payment method, a prepaid card payment method, and a financial account payment method. and payment method information including at least one electronic money payment method, the payment method issuing institution that issued the payment method, and the payment method that owns the payment method (e.g., issuing a predetermined payment method from the payment method issuing institution). received) customer name (eg, customer name in English), and also includes information stored in track-II and/or information stored in track-III of the payment method.

According to the implementation method of the present invention, the information stored in the track-II of the payment method includes at least one of a 16-digit card number, an issue date of the payment method, an expiration date of the payment method, and a CVC number. Preferably, the information stored in the track-III of the payment means further includes at least one affiliate information and/or additional service information affiliated with the payment means.

According to one embodiment of the present invention, the payment method information as shown in FIG. 9, the customer wireless terminal information (and/or customer information), and the token agent information are linked and stored in the storage medium, so that on/offline It is possible to process payment through the wireless terminal information and/or a predetermined token code generated by the token agent program installed in the wireless terminal without the payment means in the provided payment terminal (or the customer wireless terminal).

Referring to FIG. 10A, the payment processing server 1000 includes an interface unit 1005 connecting at least one payment terminal 145 and a communication channel for payment processing for payment processing based on a token code, and the interface Receiving payment processing information (or data) for payment processing based on the token code from the payment terminal 145 through the unit 1005, including at least one wireless terminal information and token code An information receiver 1010, an information checker 1015 that reads the received payment processing message (or data) and checks the wireless terminal information, and the wireless terminal is stored in the storage medium based on the checked wireless terminal information. An extraction unit 1020 that extracts token agent information associated with terminal information, and the same condition (e.g., the same token code generated by the token agent program provided in the wireless terminal based on the extracted token agent information) Authentication for authenticating validity of the received token code by generating a predetermined token authentication code using generation information and token generation algorithm) and comparing the generated token authentication code with the token code received from the payment terminal 145 It is characterized in that it comprises a portion (1025).

In addition, when the validity of the received token code is authenticated by the authentication unit 1025, the payment processing server 1000 responds to the payment processing information received included in the payment processing message (or data). It is characterized in that it is made by further comprising a payment processing unit 1030 for performing payment processing to.

In addition, when the payment processing is normally performed by the payment processing unit 1030, the payment processing server 1000 links at least one payment processing detail with the payment method information and/or customer information to store a predetermined storage medium. It is characterized in that it is made by further comprising a storage unit 1035 to store in ().

In addition, the payment processing server 1000 transmits the payment processing details to the payment terminal 145 through the interface unit 1005 when the payment processing is normally performed by the payment processing unit 1030 It is characterized in that it is made by further comprising a transmission unit (1040).

The interface unit 1005 is characterized in that it connects at least one payment terminal 145 and a payment processing communication channel for payment processing based on the token code through a predetermined payment processing network. The processing network includes at least one wired network (eg, TCP/IP-based Internet) and/or wireless network (eg, CDMA-based mobile communication network) and/or value-added communication network (), depending on the type of the payment terminal 145. And/or it is preferable to include at least one or more financial joint networks.

The information receiving unit 1010 receives payment processing message (or data) including at least one payment processing information transmitted from the payment terminal 145 through the interface unit 1005, wireless terminal information, and a token code. characterized by

According to one embodiment of the present invention, the wireless terminal information and the token code are preferably included in the payment processing message (or data) including the payment processing information and received by the information receiver 1010.

According to another implementation method of the present invention, the wireless terminal information and the token code are used when the payment processing message (or data) including the payment processing information is received by the information receiving unit 1010 from the payment terminal 145. It is preferable to receive a message (or data) for separate token code transmission beforehand.

According to another embodiment of the present invention, the payment processing message (or data) including the payment processing information is received by the information receiving unit 1010 from the payment terminal 145 as the wireless terminal information and token code. It is preferable to receive it through a separate message (or data) for token code transmission after being sent.

The information checking unit 1015 reads the payment processing message (or data) received by the information receiving unit 1010 to check and extract the wireless terminal information included in the payment processing message (or data). Characterized in that, when the wireless terminal information is received through a separate token code transmission message (or data), it is preferable to check and extract the wireless terminal information by reading the token code transmission message (or data) do.

The extractor 1020 extracts token agent information associated with the wireless terminal information from the storage medium using the extracted wireless terminal information and provides the extracted token agent information to the authentication unit 1025 .

The authentication unit 1025 generates a predetermined token authentication code through the same token generation information used to generate the token code in the token agent program provided in the wireless terminal and a token generation algorithm based on the extracted token agent information. and authenticating the validity of the received token code by comparing the token code received from the payment terminal 145 with the generated token authentication code. Authenticating the validity of the token code includes securing confidentiality, authentication, integrity, and nonrepudiation for payment processing based on the token code.

When the validity of the token code is authenticated by the authentication unit 1025, the payment processing unit 1030 performs payment processing corresponding to the payment processing information included in the payment processing message (or data). to be

According to one embodiment of the present invention, the payment processing unit 1030 preferably performs payment processing corresponding to the payment processing information and generates predetermined payment processing details corresponding to the payment processing/financial transaction], The storage unit 1035 is characterized by storing the generated at least one payment processing details in a predetermined storage medium ( ) in association with the payment method information and / or customer information, and the information transmission unit 1040 transmits the generated payment processing details to the payment terminal 145 through the interface unit 1005 .

According to another embodiment of the present invention, when the token code received from the payment terminal 145 is generated in a challenge-response manner, the authenticator 1025 further functions to dynamically generate a random challenge value Preferably, the information transmitter 1040 includes a function of transmitting the generated challenge value to the customer wireless terminal.

Referring to FIG. 10B, the payment processing server 1000 includes an interface unit 1005 for connecting at least one customer wireless terminal to a payment processing communication channel for payment processing based on a token code, and the interface unit ( 1005) from the wireless terminal 1100, the information receiving unit 1010 for receiving payment processing information for payment processing based on the token code and payment processing data including at least one wireless terminal information and token code; and An extractor 1020 for extracting token agent information associated with the wireless terminal information from the storage medium based on the wireless terminal information that transmitted the payment processing data; and the wireless terminal based on the extracted token agent information. A token agent program provided in generates a predetermined token authentication code under the same conditions (eg, the same token generation information and token generation algorithm) that generated the token code, and the token code received from the customer wireless terminal and the generated It is characterized in that it comprises an authentication unit 1025 for authenticating the validity of the received token code by comparing the token authentication code.

In addition, when the validity of the received token code is authenticated by the authentication unit 1025, the payment processing server 1000 performs payment processing corresponding to the received payment processing information included in the payment processing data. It is characterized in that it is made by further comprising a payment processing unit 1030 to perform.

In addition, when the payment processing is normally performed by the payment processing unit 1030, the payment processing server 1000 links at least one payment processing detail with the payment method information and/or customer information to store a predetermined storage medium. It is characterized in that it is made by further comprising a storage unit 1035 to store in ().

In addition, the payment processing server 1000 is an information transmission unit for transmitting the payment processing details to the customer wireless terminal through the interface unit 1005 when the payment processing is normally performed by the payment processing unit 1030 It is characterized in that it further comprises (1040).

The interface unit 1005 is characterized in that it connects at least one customer wireless terminal through a predetermined payment processing network to a payment processing communication channel for payment processing based on the token code. The network preferably includes a predetermined wireless network (eg, a CDMA-based mobile communication network).

The information receiving unit 1010 is characterized in that it receives payment processing data transmitted from the customer wireless terminal through the interface unit 1005, payment processing data including at least one of wireless terminal information and token code, It is characterized in that the wireless terminal information is extracted as sender information in the process of receiving payment processing data.

According to one embodiment of the present invention, the wireless terminal information and the token code are preferably included in the payment processing data including the payment processing information and received by the information receiving unit 1010 .

According to another implementation method of the present invention, the wireless terminal information and the token code are separately transmitted before the payment processing data including the payment processing information is received by the information receiving unit 1010 from the customer wireless terminal. Preferably received via data.

According to another embodiment of the present invention, the wireless terminal information and the token code are separate token codes after the payment processing data including the payment processing information is received by the information receiving unit 1010 from the customer wireless terminal. It is preferably received via transmission data.

According to another embodiment of the present invention, when the token code received from the customer wireless terminal is generated in a challenge-response manner, the authentication unit 1025 further includes a function of dynamically generating a random challenge value, , The information transmission unit 1040 preferably includes a function of transmitting the generated challenge value to the customer wireless terminal.

Figure 11 is a diagram showing the functional configuration of a wireless terminal equipped with a token agent according to an embodiment of the present invention.

In more detail, FIG. 11 shows a case in which a mobile communication terminal accessing a mobile communication network based on CDMA (Code Division Multiple Access) performs a function of a wireless terminal for generating a token code for payment processing based on the token code, It relates to a preferred functional configuration of the mobile communication terminal for generating the token code. If one of ordinary skill in the art to which the present invention pertains, referring to this Figure 11, other wireless terminals (e.g., wireless data communication terminals, or The functional configuration of a portable Internet terminal) can be easily inferred. As a result, the functional configuration of the wireless terminal equipped with the token agent program is by no means limited to that shown in FIG. It is possible to implement a modification.

In terms of hardware, a wireless terminal providing mobile communication service is composed of a body, speaker, microphone, keypad, LCD (Liquid Crystal Display), antenna and battery 1125, etc. (Code Division Multiple Access) Modem, CPU/MPU (Central Processing Unit/ Micro Processing Unit), predetermined modem chip (e.g., MSM series modem chip from Qualcomm, USA) with built-in functions such as vocoder, and various memories device, a duplexer filter that separates the transmission and reception signals from one antenna, a power amplifier that amplifies the transmission signal, a High Power Amplifier (HPA), an isolator that prevents the high-power transmission signal from returning to the opposite side, and a desired RF/IF SAW filter to remove unnecessary out-of-band signals, frequency up-conversion circuit of the transmit path, frequency down-conversion circuit of the receive path, VCTCXO (Voltage Controlled Temperature Compensated X-tal Oscillator) corresponding to the reference clock source, frequency up-down circuit It is composed of a UHF frequency synthesizer used as a local signal for conversion and a codec chip for converting an analog voice signal into a digital signal. The internal components as described above are gradually being integrated into the modem chip, and the modem Chips are integrated with various functions for various multimedia services and/or additional services in addition to core components for mobile communication services as described above.

Referring to Figure 11, the wireless terminal that generates a predetermined token code for the token code-based payment processing basically includes a control unit 1105, a screen output unit 1110, a sound processing unit 1115, a key input unit 1120, A wireless processing unit 1130, a short-range communication unit 1135, a memory unit 1155, and a battery 1125 for supplying power, and an IC chip 1150 mounted on or detachable from the wireless terminal according to an implementation method, and the above A functional configuration including an IC chip reader 1145 for reading/writing predetermined information or data to the IC chip 1150 is further included.

The control unit 1105 includes a processor including a CPU/MPU included in the modem chip and an execution memory, and a predetermined program routine for providing functions specific to the wireless terminal from a predetermined memory device. And / or a bus (BUS) for inputting and outputting program data and a predetermined electronic circuit (or integrated circuit) provided therefor, and the execution memory from a predetermined memory device and / or chipset in terms of software Generic term for program routines and/or program data that are loaded into and processed through the processor to perform specific functions (therefore, in the present invention, to generate token codes for token code-based payment processing, A predetermined token agent program routine to be recorded is described as being included in the control unit 1105 for convenience.), various functions to be implemented in the wireless terminal are realized by the control unit 1105, and also the It is characterized in that the overall operation of the wireless terminal is controlled and managed in order to realize functions such as In particular, when power is input to the wireless terminal to perform the function of the control unit 1105 that controls and manages the overall operation of the wireless terminal, an operating system routine stored in a predetermined memory device, a system management routine, and/or System variables are loaded into the execution memory and processed by the processor to serve as variables for providing an operating system, a system management program, and/or a mobile communication service.

The screen output unit 1110 is a LCD (Liquid Crystal Display) driver for screen output, and is a key input unit 1120 by the control unit 1105 (eg, a program routine that outputs predetermined information or data to the LCD). ), various information, signals, and/or contents (e.g., text contents, image contents, and/or multimedia contents) extracted and/or generated in the process of performing a predetermined function provided in the wireless terminal. ) to a predetermined screen output device (eg, LCD panel), and the screen output unit 1110 is interlocked with the screen output device (LCD) for payment processing based on the token code. It is desirable to perform a function of outputting predetermined information required in the token code generation process.

The sound processing unit 1115 encodes a predetermined sound signal input from a microphone provided in the wireless terminal and provides it to the controller 1105, or a predetermined sound extracted and/or generated by the controller 1105. It is characterized in that the signal is decoded and outputted through a speaker. For this purpose, the sound processing unit 1115 is equipped with a predetermined vocoder and codec. The function of the sound input unit provided in the wireless terminal is performed through the sound processing unit 1115 and the microphone, or the function of the sound output unit provided in the wireless terminal is performed through the sound processing unit 1115 and the speaker. .

The key input unit 1120 includes at least one key button including a predetermined number key and/or character key and/or function key. Detect information (or signal) input from the keypad, and in the specific input mode and/or operation mode of the wireless terminal controlled by the control unit 1105, a predetermined key button provided on the keypad When information (or signal) is input, key events (e.g., MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the input information (or signal) are generated and the generated key events are provided to the controller 1105. The controller 1105 reads predetermined key data corresponding to the key event in the current input mode and/or operation mode of the wireless terminal (e.g., in each wireless terminal input mode and/or operation mode). Reading a key data in a key event from a key table storing (managing) at least one key data corresponding to a specific key event), and/or reading a command that executes a predetermined function matched with the key event. It is characterized by output. The key input unit 1120 and the keypad having one or more key buttons interwork with each other to perform the function of a key input means provided in the wireless terminal.

The wireless processing unit 1130 performs location registration and/or slot mode and/or power control and/or power control in association with the control unit 1105 (eg, a program routine for providing mobile communication service). Alternatively, it is characterized by providing a mobile communication service including a hand-off and/or call processing procedure. In the process of providing the mobile communication service, a base station corresponding to an end of a mobile communication network An RF processing function for transmitting and receiving radio frequency signals (eg, antenna control, modulation, synthesis, amplification and/or filtering of radio frequency signals) is further included. In particular, the wireless processing unit 1130 processes information or signals transmitted from the wireless terminal to the base station into a CDMA stack to provide the mobile communication service, or transmits predetermined information or signals from the CDMA stack received from the base station. It is characterized in that it provides a reading function.

According to the implementation method of the present invention, the wireless terminal connects a base station on a predetermined mobile communication network and a predetermined wireless section through the wireless processing unit 1130, and connects the mobile communication network and a predetermined wireless section through a predetermined wired section including the base station. It is preferable to connect a predetermined server (or device) provided on a predetermined communication network that interworks with the mobile communication network and a predetermined communication channel.

According to one embodiment of the present invention, the wireless processing unit 1130 connects the token agent providing server 215 and a predetermined communication channel to load a predetermined token agent program into the wireless terminal, and the control unit 1105 ) to receive a predetermined token agent program from the token agent providing server 215.

According to another implementation method of the present invention, when the token agent program generates a predetermined token code for payment processing based on the predetermined token code in a challenge-response manner, the wireless processing unit 1130 controls the control unit 1105 ) to connect the payment processing server 1000 and a predetermined communication channel, and receive a predetermined challenge value for generating the token code from the payment processing server 1000.

According to another implementation method of the present invention, in the process of providing the predetermined token code generated by the token agent program to the payment processing server 1000, the token code is transmitted from the wireless terminal through a predetermined wireless network. In the case of providing to the payment processing server 1000 (eg, transmitting part of the generated token code to the payment processing server 1000 or transmitting the generated token code to the payment processing server 1000) case), the wireless processing unit 1130 interworks with the control unit 1105 to connect the payment processing server 1000 and a predetermined communication channel, and transmits the generated token code to the payment processing server 1000 it is desirable

The short-distance communication unit 1135 is infrared (Infrared Ray) communication and / or RF (Radio Frequency) communication and / or Bluetooth (BlueTooth) and / or wireless LAN (Wireless LAN) and / or Wi-Fi (Wi-Fi), ultra-wideband It is characterized by connecting a predetermined terminal (or device) and a short-range wireless communication session through at least one short-range wireless communication means including communication (Ultra Wide Band; UWB), and the infrared communication, RF communication, It includes a predetermined short-distance wireless communication module for short-range wireless communication including Bluetooth, wireless LAN, Wi-Fi, and ultra-wideband communication, and includes a communication protocol and/or driver for short-range wireless communication in software.

According to the implementation method of the present invention, the wireless terminal connects a wireless section connecting a predetermined short-range device 1140 and a predetermined short-range wireless communication session through the short-range communication unit 1135, and the short-range device 1140 It is preferable to connect a predetermined server (or device) provided on a predetermined communication network and a predetermined communication channel through a wired section including a predetermined network to which it is connected.

According to one embodiment of the present invention, the short-distance communication unit 1135 communicates with the token agent providing server 215 through the short-range device 1140 to load a predetermined token agent program into the wireless terminal. and receive a predetermined token agent program from the token agent providing server 215 in conjunction with the control unit 1105.

According to another implementation method of the present invention, when the token agent program generates a predetermined token code for payment processing based on the predetermined token code in a challenge-response manner, the short-range communication unit 1135 controls the control unit 1105 ) to connect a predetermined communication channel with the payment processing server 1000 through the local device 1140, and receive a predetermined challenge value for generating the token code from the payment processing server 1000. there is.

According to another implementation method of the present invention, the short-distance device 1140 may be a payment terminal 145 that processes payment processing based on the token code, and/or a short-distance communication module provided in the payment terminal 145, , In this case, the short-range communication unit 1135 interworks with the control unit 1105 to connect the short-range device 1140 and a predetermined short-range communication channel, and the token agent to the short-range device 1140 through the short-range communication channel. It is possible to provide a program-generated token code.

The memory unit 1155 includes information input/output when an operation by a predetermined program routine (or code) and/or program data (eg, program routine (or code)) for controlling the overall operation of the wireless terminal is performed. and/or data), ROM (Read Only memory) corresponding to read-only memory, read/write flash memory (FM), and EEPROM (Electrically Erasable and Programmable Read Only) memory), etc. In general, the ROM stores system information that must not be deleted, and the flash memory stores an operating system routine, a call processing program routine, and/or an application program routine provided through the wireless terminal and information or data therefor. The EEPROM stores terminal registration related parameters and phone numbers (eg, address book) or at least one piece of information and/or data extracted and/or generated while executing an application provided in the wireless terminal.

According to the implementation method of the present invention, the token generation information is read from an internal functional configuration provided in the wireless terminal (e.g., when the token agent program generates a token code in a time-synchronized manner, the timer provided in the wireless terminal). The current time (or time) information may be read as token generation information), stored in the token generation information area of the memory unit 1155, and/or included in the token agent program. The unit 1155 preferably stores at least one token generation information defined to be stored in a storage device provided in the wireless terminal. For example, the memory unit 1155 stores MIN/ESN information for the wireless terminal in a NAM (Number Assignment Module) area, and/or stores at least one uniquely assigned token agent program in a predetermined token generation information area. More than one secret key value can be stored.

The IC chip reader unit 1145 configures functions related to the IC chip provided in the wireless terminal through IC chip standards including ISO/IEC 7816 and/or ISO/IEC 14443 (e.g., IC chip agent provided in the wireless terminal). It is characterized by providing information and/or data exchange between a program) and an IC chip 1150 mounted on or detached from the wireless terminal. For example, the IC chip reader unit 1145 provides information and/or data exchange between the IC chip agent program and the IC chip 1150 through an Application Protocol Data Unit (APDU).

Referring to standards including ISO/IEC 7816 and/or ISO/IEC 14443, etc., the IC chip 1150 mounted or detached from a customer wireless terminal includes a power supply (VCC), a reset signal (RST), and a clock signal ( CLK), ground (GND), programming power supply (VPP), and/or input/output (I/O) interface to communicate with the IC chip reader 1145 (e.g., exchange commands or data) And, a processor unit composed of at least one or more arithmetic elements including a CPU (Central Process Unit), an MPU (Micro Process Unit), and/or a coprocessor, a ROM (Read Only Memory), RAM (Random Access) Memory), EEPROM (Electrically Erasable and Programmable Read Only Memory), FM (Flash Memory), etc. A chip operating system (COS) that manages and operates IC card internal resources is stored, and predetermined power is supplied from the IC chip reader unit 1145 through the power supply (VCC) contact point of the input/output interface. In this case, the COS stored in the memory unit is loaded into a predetermined execution memory to control the overall operation of the IC chip 1150, and based on the clock frequency (eg, 3.57 MHz or 4.9 MHz) of the contact point of the clock signal CLK. Information or data exchange between the IC chip 1150 and the IC chip reader 1145 is controlled through an Application Protocol Data Unit (APDU).

According to another implementation method of the present invention, the token agent program can be provided in the IC chip 1150 (eg, the token agent program is recorded in a recording medium provided in the IC chip 1150). The present invention is not limited by

According to another implementation method of the present invention, when the token agent program is provided in the wireless terminal platform and/or in the IC chip 1150, some of the token generation information is stored in the IC chip 1150. It is possible to be stored in the memory unit provided in ), and the present invention is not limited thereby.

Referring to Figure 11, the token agent is received in association with a predetermined token agent installed in the wireless terminal and a token agent providing server 215 on the wireless network, and/or a predetermined token is received by the token agent. It includes a communication processing unit 1180 that generates a code or performs a communication function required to process the token code for a predetermined payment process.

Referring to Figure 11 according to a preferred implementation method of the present invention, the token agent installed in the wireless terminal includes an input unit 1160 for receiving at least one piece of information (or data) for generating the token code, and a predetermined token code. A reader 1165 that reads at least one piece of token generation information required to generate a generator 1170 that generates a predetermined token code by applying the read token generation information to a predetermined token generation algorithm; and , and an output unit 1175 outputting the generated token code on the screen of the wireless terminal.

The input unit 1160 is characterized in that it receives at least one piece of information (or data) for generating the token code in conjunction with the key input means, and the input information (or data) generates a predetermined token code. outputting a token generation command to do so, and/or predetermined PIN (Personal Identification Number) information for internal authentication of the generated token code, and/or the generated token code on the screen of the wireless terminal, or the communication In conjunction with the processing unit 1180, at least one token code output command is included to output the token code to the outside of the wireless terminal through the wireless processing unit 1130 and/or the short-range communication unit 1135.

According to one embodiment of the present invention, the generation unit 1170 input from the key input means through the input unit 1160 can be used as predetermined token generation information for generating a predetermined token code, And/or the token code generated by the generation unit 1170 may be combined with the token code in the process of being output (eg, output to the screen of the wireless terminal and/or output to the outside of the wireless terminal).

According to another implementation method of the present invention, when the token agent is included in the IC chip 1150 mounted on or detachable from the wireless terminal, the PIN information performs a user authentication procedure defined in the IC chip 1150. It is preferable to further include performing.

The reader 1165 determines whether the token agent is determined from the wireless terminal internal resources and/or the token agent internal code and/or the memory unit 1155 and/or the memory unit provided in the IC chip 1150. It is characterized by reading at least one token code generation information defined to be used to generate a token code of.

According to the implementation method of the present invention, the reading unit 1165 preferably reads the time (or time) information required for generating the token code from internal resources of the wireless terminal (eg, timer resources in the wireless terminal), , and/or reading a predetermined secret key value set for generating the token code from the token agent internal code and/or the memory unit 1155 and/or the memory unit provided in the IC chip 1150. It is preferable, and/or it is preferable to read a predetermined MIN/ESN from the NAM area of the memory unit 1155.

In addition, in the case of token generation information defined to apply a predetermined hash function among the read token generation information, the reader 1165 applies a predetermined hash function to the read token generation information to obtain the corresponding token generation information. It is preferable to further include a function of converting (or limiting) to a value within a certain size.

According to another implementation method of the present invention, the reading unit 1165 is generated in real time from the payment processing server 1000 in conjunction with the communication processing unit 1180 (eg, randomly dynamic in the payment processing server 1000). It is preferable to include receiving a predetermined challenge value generated as predetermined token generation information used to generate a predetermined token code in the generator 1170.

The generation unit 1170 is characterized in that it generates an unpredictable predetermined token code according to a predetermined token generation algorithm based on at least one piece of token generation information read by the reader 1165, and the token code It is preferable to include a data block of a predetermined length.

The output unit 1175 is characterized by outputting the token code generated by the generation unit 1170 on the screen of the wireless terminal, and the wireless processing unit 1130 and/or the short-range communication unit 1135 The payment terminal 145 that provides part (or all) of the generated token code to the payment processing server 1000 and/or processes the token code based payment processing through the short-range communication unit 1135 ) is preferably provided.

The communication processing unit 1180 is characterized in that it receives a predetermined token agent to be loaded in the wireless terminal in association with the token agent providing server 215 on the wireless network, and the customer wireless terminal through the control unit 1105 It is preferable to further include a functional configuration to be mounted on (or installed).

In addition, when the token agent receives a predetermined challenge value from the payment processing server 1000 in the process of generating a predetermined token code, the communication processing unit 1180 connects the wireless processing unit 1130 and/or the short-range communication unit (1135) to connect a predetermined communication channel to the payment processing server 1000 (or the communication channel connection process can be omitted only when the challenge value is received through a wireless message), and the payment processing through the communication channel It is desirable to receive a predetermined challenge value dynamically generated by the server 1000 .

In addition, when the token code and/or part of the token code generated by the token agent is transmitted to the payment processing server 1000 through the wireless processing unit 1130 and/or the short-range communication unit 1135, the communication The processing unit 1180 interworks with the wireless processing unit 1130 and/or the short-range communication unit 1135 to connect a predetermined communication channel to the payment processing server 1000, and to the payment processing server 1000 through the communication channel. It is preferred to transmit the generated token code and/or a portion of the token code.

In addition, when providing the token code and/or a part of the token code generated by the token agent to the payment terminal 145 processing the token code based payment processing through the short range communication unit 1135, the communication The processing unit 1180 interworks with the short-range communication unit 1135 to connect the payment terminal 145 and a predetermined short-range communication channel, and transmits the generated token code and/or the generated token code to the payment terminal 145 through the short-range communication channel. Alternatively, it is desirable to transmit part of the token code.

According to another implementation method of the present invention, the wireless terminal may perform the function of the payment terminal 145 for processing the token code based payment processing, and for this purpose, the wireless terminal processes the token code based payment processing. It is possible to further include a payment unit 1185 to do so.

12 is a diagram illustrating a token code structure according to an embodiment of the present invention.

In more detail, FIG. 12 shows a preferred embodiment of the token code generated by the token agent program, and each information position constituting the token code can be changed by a person skilled in the art. A person skilled in the art to which the present invention belongs will be able to easily infer a token code structure including more information with reference to this Figure 12, and the present invention is not limited thereby by any means.

Referring to Figure 12, the token code generated by the token agent program is generated through a hash algorithm for generating a predetermined token code based on at least one token generation information in the token agent as shown in (a) of Figure 12. It is characterized by including a predetermined hashing code, and at least one or more pieces of information may be further included in the hashing code according to the intention of a person skilled in the art and/or an information subject to be intuitively authenticated through the token code.

Referring to (b) of Figure 12, the token code is a predetermined hash code generated through a hash algorithm for generating a predetermined hash token code defined in the token agent program and input by the user (customer). Further including PIN information, or further including predetermined user input information input by the user (customer) as shown in (c) of FIG. 12, or as shown in (d) of FIG. 12, the user It is possible to further include hashed input information (eg, reducing the length of user input information to within a certain length) by applying a predetermined hash function to the input information, and the present invention is not limited thereby.

Referring to (e) of FIG. 12, the token code further includes the PIN information and the user input information in a predetermined hashing code generated through a hash algorithm for generating a predetermined hash token code defined in the token agent program. Alternatively, as shown in (f) of FIG. 12, it is possible to further include hashed input information obtained by applying a predetermined hash function to the PIN information and the user input information in the hashing code, whereby the present invention Not limited.

Figure 13 is a diagram showing the functional configuration of the payment terminal 145 according to an embodiment of the present invention.

In more detail, FIG. 13 illustrates a preferred functional configuration of the offline payment terminal 145 generating and transmitting a predetermined payment processing related telegraphic message to the payment processing server 1000 for payment processing using the token code. As such, if one has ordinary knowledge in the technical field to which the present invention pertains, referring to this figure 13, an online payment terminal 145 (eg, provided in the form of a plug-in in a web browser) for payment processing using the token code The functional configuration of can be easily inferred.

Referring to Figure 13, the payment terminal 145 basically includes a control unit 1305, a memory unit 1350, a card interface 1310, a key input unit 1320, a screen output unit 1315, a communication unit 1330, and security It includes a power supply unit for supplying power to the application module 1335, the printing unit 1340, and the payment terminal 145.

The controller 1305 controls the overall operation of the payment terminal 145 in terms of functional configuration, manages the flow of information or data between each component, and is provided in the payment terminal 145 for payment processing using token codes. It is characterized by controlling elements, and in terms of hardware, at least one processor including a CPU (Central Processing Unit) / MPU (Micro Processing Unit) and an execution memory (eg, registers and / or RAM (Random Access Memory)) and It is characterized in that it includes a bus (BUS) for inputting and outputting predetermined data, and is loaded from a predetermined recording medium into the execution memory to perform functions specific to the payment terminal 145 in terms of software. Contains a predetermined program routine and/or program data calculated and processed by the processor (therefore, a predetermined program and/or program recorded on a recording medium provided in the payment terminal 145 for payment processing using a token code) It is characterized in that a component that can be processed in software among the functional components provided in the payment terminal 145 for payment processing using a token code is shown as being provided in the control unit 1305).

The memory unit 1350 is a predetermined program routine (or code) for controlling the overall operation of the payment terminal 145 and/or program data (eg, information input and output when an operation by a program routine (or code) is performed). or data) as a generic term for non-volatile memory for storing EEPROM (Electrically Erasable and Programmable Read Only Memory) and/or FM (Flash Memory) and/or HDD (Hard Disk Drive) in terms of hardware. It includes a storage means, and a predetermined program routine and program data required for the control unit 1305 to perform a predetermined control function (eg, data input or output for the program routine to perform a predetermined function) It is characterized in that is stored.

The card interface 1310 is characterized by providing an interface for reading at least one piece of information or data provided in a predetermined card in order to realize card payment, and based on the ISO/IEC 7810 standard, MS (Magnetic Stripe) An MS interface providing an interface between the card and the payment terminal 145, and/or a contact IC interface providing an interface between the contact IC card and the payment terminal 145 based on the ISO/IEC 7816 standard, and/ Alternatively, a contactless IC interface providing an interface between the contactless IC card and the payment terminal 145 based on the ISO/IEC 14443 standard is included.

The key input unit 1320 is a terminal operator and / or a terminal operator and / Alternatively, it is characterized in that the corresponding key data generated by clicking a predetermined key is input to the control unit 1305, and the control unit 1305 receives key data input through the key input unit 1320. A predetermined function and/or a predefined task corresponding to the key data is controlled in association with at least one component provided in the reading and payment terminal 145 .

According to a preferred implementation method of the present invention, the key input unit 1320 provides a function of a key input means for inputting a predetermined token code generated by a token agent installed in the wireless terminal 1100 and wireless terminal information. it is desirable

The screen output unit 1315 outputs a liquid crystal display (LCD) and/or a liquid crystal display (LCD) and/or Characterized in that at least one information or data that is predefined or defined in real time to be output to a predetermined screen output means including a CRT (Cathode Ray Tube) is output through a predefined screen interface, and the payment terminal ( Information or data predefined to be output on the screen in 145) is stored or generated by key data input through the key input unit 1320 and/or components provided in the payment terminal 145 It includes at least one information (or data), information (or data) transmitted and received through the communication unit 1330, and/or (or data) corresponding to a predetermined operation result performed by the payment terminal 145. .

According to a preferred implementation method of the present invention, the screen output unit 1315 outputs information input in the payment processing process using the token code and/or information transmitted to the payment processing server 1000 and/or the payment processing server. It is desirable to provide a function of outputting information received from (1000).

The communication unit 1330 communicates with a server (or terminal) on the network and/or the payment terminal 145 in a process in which the payment terminal 145 performs a predetermined function (eg, electronic payment processing function using a card). To provide a predetermined communication means for connecting a communication session with a terminal (or device) connected through a cable of and / or a terminal (or device) connected through a predetermined short-range wireless communication with the payment terminal 145 It is characterized by hardware, and a predetermined wired network including a Value Added Network (VAN) or a financial network or high-speed Internet (eg, ADSL / VDSL / Cable Network / ... / satellite communication) and / or A network communication unit 1330 that connects a communication channel with a server (or terminal) on a wired/wireless network through a predetermined wireless network including a mobile communication network or a wireless data communication network, and/or a predetermined terminal (or device) through predetermined cable communication ) and a cable communication unit 1330 that connects the communication session, and/or infrared (Infrared Ray) communication, RF (Radio Frequency) communication, Bluetooth (BlueTooth), wireless LAN (Wireless LAN), Wi-Fi (Wi-Fi) and at least one short-range wireless communication unit 1330 that connects a predetermined terminal (or device) and a short-range wireless communication session through at least one short-range wireless communication means, and the communication channel (or communication session ) is made by including a communication protocol and / or driver for connecting.

According to one embodiment of the present invention, it is preferable that the short-distance wireless communication unit 1330 further includes a function of receiving a predetermined token code and wireless terminal information from the wireless terminal 1100 through short-range wireless communication. .

The secure application module 1335 (Secure Application Module; SAM) provides confidentiality and/or authentication required in the process of the payment terminal 145 performing electronic payment and/or electronic payment using the card. ) and/or integrity and/or nonrepudiation, etc., in a secure and reliable structure within the payment terminal 145 without using an authentication server (or payment server) on the network. As a safety device for performing, encrypting a predetermined message (information or data) processed in the process of the payment terminal 145 performing a predetermined security request function (eg, electronic payment and / or electronic payment function), or It is characterized by performing a function of decrypting the message, adding an authenticator to prevent forgery (or falsification) of the message, or storing important core information in the process of performing the security request function.

In general, the security application module 1335 is preferably composed of a predetermined security application module 1335 inserter and a security application module 1335 chip, and the security application module 1335 chip is a chip with a built-in CPU of at least 8 bits or more. ASIC (Application Specific Integrated Circuit) chip (e.g. PLCC 44-pin chip) and/or IC chip (e.g. SIM (Subscriber Identity Module) type IC card) with performance of 2 MIPS (Million Instructions Per Second) or more It is preferable to include.

In addition, the security application module 1335 includes at least one security application data (eg, at least one identifier, version, expiration date, issue date, code value, etc.) required for the payment terminal 145 to perform a predetermined security request function. ) and / or keys (eg, one master key and at least one application key) and / or protocols (eg, transaction protocol, re-transaction protocol, previous transaction cancellation protocol, collection protocol, SAM issuance protocol, (electronic money company / card company) ) registration protocol, permission acquisition protocol, mode switching protocol, key download protocol, SAM revocation protocol) and/or commands (e.g., read/authenticate/transmit/register/set/mode switch/collect/delete/discard/initialize at least one of them) /reprocess/cancel command).

The printing unit 1340 is a process in which the payment terminal 145 performs a predetermined function (eg, electronic payment processing function using a card) and/or predetermined information or data generated as a result (eg, payment processing result). information or data) to a predetermined printing device 1345 (eg, a receipt printer), and the printing information or data is printed through the predetermined printing device 1345 according to a predefined printing form. It includes a printing protocol and a driver for printing.

Referring to Figure 13, the payment terminal 145 includes a message generator 1355 generating a payment processing request message (or data) for payment processing using the token code, and the payment processing request message (or data). It is characterized in that it comprises a transmission unit 1365 for transmitting to the payment processing server 1000, and a reception unit 1360 for receiving the payment processing approval message (or data) from the payment processing server 1000.

The telegram generating unit 1355 is characterized in that it generates a payment processing request telegram (or data) for payment processing using the token code in addition to the conventional payment related telegram generated by the payment terminal 145 .

According to another implementation method of the present invention, when the payment terminal 145 is the online payment terminal 145, the message generator 1355 transmits predetermined payment processing approval request information for payment processing using the token code. function to create it.

The transmission unit 1365 transmits the payment processing request message (or data) generated by the message generation unit 1355 to the payment processing server 1000 through the communication unit 1330, When the communication network to which the communication unit 1330 is connected is an open communication network allowing external access, such as the Internet (or when the payment terminal 145 is the online payment terminal 145), the transmission unit 1365 transmits the It is preferable to further include a functional configuration for encrypting and transmitting the payment processing request message (or data).

The receiving unit 1360 is characterized in that it receives a predetermined payment processing approval message (or data) (or payment processing error message) corresponding to the payment processing request message (or data) from the payment processing server 1000. .

14a and 14b are diagrams illustrating a process of operating a token code according to an embodiment of the present invention.

In more detail, FIGS. 14a and 14b show that the token agent provided in the wireless terminal generates a 10-digit token code, and the generated 10-digit token code is passed through a predetermined payment terminal 145 to the payment processing server. (1000), and for a preferred implementation method of authenticating the token code in the payment processing server 1000, for convenience, the token agent runs the token agent program and / or performs an internal authentication procedure. The process of entering PIN information is omitted.

However, although FIG. 14a and FIG. 14b show that only the token code is transmitted from the payment processing to the payment processing server 1000 in order to efficiently explain the token code operation process, If you have the knowledge, the token code is included in a predetermined payment processing request message (or data) including predetermined payment information (or payment processing request information) and the wireless terminal information for the token code-based payment processing It will be clearly understood that it is transmitted to the payment processing server 1000, and the present invention is not limited thereby.

Referring to FIG. 14A, according to a predetermined token code generation command input by the input unit 1160 of the token agent program, the reader 1165 reads the wireless terminal internal resources and/or the token agent internal code and/or At least one token code generation information defined to be used for generating a predetermined token code by the token agent is read from the memory unit 1155 and/or the memory unit provided in the IC chip 1150 (1400) , Provides the read at least one token generation information to the generator 1170 (1405).

The generation unit 1170 generates an unpredictable predetermined token code by applying a predetermined token generation hash algorithm based on at least one piece of token generation information provided from the reader 1165 (1410), and outputs the The unit 1175 outputs the generated token code on the screen of the wireless terminal (1415).

As described above, when the token code is output on the screen of the wireless terminal, the token code is input to the payment terminal 145 through a predetermined key input means provided in the payment terminal 145 (1420), or the wireless terminal 145 The token code is transmitted (1420) to the payment terminal 145 through a predetermined short-range communication means provided in the terminal and the payment terminal 145, and the payment terminal 145 passes through a predetermined payment network 150. is transmitted to the payment processing server 1000 (1425).

According to the implementation method of the present invention, the payment terminal 145 transmits the token code to the payment processing server 1000 through the payment network 150 for payment processing based on the token code. In step 145, the token code, the wireless terminal information that generated the token code, and predetermined payment information (or payment processing request information) for token-based payment processing are included in a predetermined payment processing request message (or data), It is preferable to transmit to the payment processing server (1000).

Referring to FIG. 14B, the information receiver of the payment processing server 1000 receives a predetermined token code, wireless terminal information, and payment information (or payment processing request information) from the payment terminal 145 through the payment network 150. receiving (1430) the transmitted payment processing request message (or data), the information checking unit checks the wireless terminal information from the payment processing request message (or data) (1435), and the confirmed payment processing request Full text (or data) is provided to the extraction unit (1440).

The extractor receiving the wireless terminal information extracts predetermined token agent information associated with the wireless terminal information (or corresponding to the received token code) from the storage medium (1445), and converts the extracted token agent information to It is provided to the authentication unit (1440).

According to the implementation method of the present invention, it is preferable that the information verification unit confirms the wireless terminal information by checking caller information of the wireless terminal that has transmitted the token code, and/or the token code contains the wireless terminal information. When received in association, it is preferable that the information confirmation unit confirms the received wireless terminal information in association with the token code.

If the token agent information is provided as described above, the authentication unit obtains the same token generation information as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal and/or the token based on the token agent information. The agent generates a predetermined token authentication code through the same procedure as the procedure for generating the token code (1455), and compares the generated token authentication code with the token code received through the information receiving unit. Validation is checked (1460). If the validity of the token code is authenticated (1465), the payment processing unit 1030 of the payment processing server 1000 provides payment processing information (or payment information) through predetermined payment method information associated with the wireless terminal information. Perform payment processing corresponding to

15a, 15b, and 15c are diagrams illustrating a process of operating a token code according to an embodiment of the present invention.

In more detail, FIG. 15a, FIG. 15c and FIG. 15c show that the token agent provided in the wireless terminal receives a predetermined challenge value from the payment processing server 1000 and generates a 10-digit token code, and the generated As for a preferred implementation method of transmitting a 10-digit token code to the payment processing server 1000 through a predetermined [payment terminal/financial terminal] and authenticating the token code in the payment processing server 1000, for convenience, the token The process of inputting predetermined PIN information to drive the token agent program and/or perform an internal authentication procedure in the agent is omitted.

However, although FIG. 15a and FIG. 15b show that only the token code is transmitted from the payment processing to the payment processing server 1000 in order to efficiently explain the token code operation process, If you have the knowledge, the token code is included in a predetermined payment processing request message (or data) including predetermined payment information (or payment processing request information) and the wireless terminal information for the token code-based payment processing It will be clearly understood that it is transmitted to the payment processing server 1000, and the present invention is not limited thereby.

Referring to Figure 15a, the authentication unit provided in the payment processing server 1000 extracts predetermined wireless terminal information to transmit a predetermined challenge value from the storage medium (1500), and uses a token agent program provided in the wireless terminal When a predetermined challenge value to be transmitted is dynamically generated (1505) and the wireless terminal information and challenge value are provided to the information transmission unit, the information transmission unit transmits the information through the predetermined payment network 150 based on the wireless terminal information. The generated challenge value is transmitted to the wireless terminal (1510).

When the generated challenge value is transmitted to the wireless terminal equipped with the token agent program as described above, the authentication unit stores the challenge value transmitted to the wireless terminal in the storage medium (1515).

Referring to FIG. 15B, the reader 1165 of the token agent program receives a predetermined challenge value received from the payment processing server 1000 through the communication processor (1520), and includes the received challenge value At least one token defined so that the token agent is used to generate a predetermined token code from the internal code of the token agent and/or the memory unit 1155 and/or the memory unit provided in the IC chip 1150. Code generation information is read (1525), and the read at least one token generation information is provided to the generator 1170 (1530).

The generation unit 1170 generates an unpredictable predetermined token code by applying a predetermined token generation hash algorithm based on at least one token generation information provided from the reader 1165 (1535), and the output The unit 1175 outputs the generated token code on the screen of the wireless terminal (1540).

If the token code is output on the screen of the wireless terminal as described above, the token code is input to the [payment terminal/financial terminal] through a predetermined key input means provided in the [payment terminal/financial terminal] (1545). , or is transmitted to the [payment terminal / financial terminal] through a predetermined short-range communication means provided in the wireless terminal and the [payment terminal / financial terminal] (1545), and the [payment terminal / financial terminal] The token code is transmitted to the payment processing server 1000 through the payment network 150 (1550).

According to the implementation method of the present invention, in the process of the [payment terminal/financial terminal] transmitting the token code to the payment processing server 1000 through the payment network 150 for the token code-based payment processing, the [Payment terminal/financial terminal] includes the token code, the wireless terminal information that generated the token code, and predetermined payment information (or payment processing request information) for token-based payment processing in the predetermined payment processing request message (or data). It is preferable to be included in and transmitted to the payment processing server (1000).

Referring to FIG. 15C, the information receiver of the payment processing server 1000 receives a predetermined token code, wireless terminal information, and payment information (or payment processing request information) from [payment terminal/financial terminal] through the payment network 150. ) and receives the transmitted payment processing request message (or data) (1555), the information confirmation unit checks the wireless terminal information from the payment processing request message (or data) (1560), and the confirmed payment The processing request message (or data) is provided to the extraction unit (1565).

The extractor receiving the wireless terminal information extracts predetermined token agent information associated with the wireless terminal information (or corresponding to the received token code) from the storage medium (1570), and converts the extracted token agent information to It is provided to the authentication unit (1575).

If the token agent information is provided as described above, the authentication unit obtains the same token generation information as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal and/or the token based on the token agent information. The agent generates a predetermined token authentication code through the same procedure as the procedure for generating the token code (1580), and compares the generated token authentication code with the token code received through the information receiving unit. Validate (1585). If the validity of the token code is authenticated (1590), the payment processing unit 1030 of the payment processing server 1000 provides payment processing information (or payment information) through predetermined payment method information associated with the wireless terminal information. Perform payment processing corresponding to

16a and 16b are diagrams illustrating a process of operating a token code according to an embodiment of the present invention.

In more detail, FIGS. 16A and 16B show that the token agent provided in the wireless terminal generates a 10-digit token code, and the generated 10-digit token code is transmitted from the wireless terminal through a predetermined wireless network 140. As for a preferred implementation method of transmitting to the payment processing server 1000 and authenticating the token code in the payment processing server 1000, for convenience, the token agent runs the token agent program and/or performs an internal authentication procedure. The process of inputting predetermined PIN information is omitted.

However, although FIG. 16a and FIG. 16b show that only the token code is transmitted from the wireless terminal to the payment processing server 1000 in order to efficiently explain the token code operation process, Those with knowledge will clearly understand that the token code can be transmitted to the payment processing server 1000 in association with predetermined payment information (or payment processing request information) for payment processing based on the token code. , The present invention is not limited thereby.

Referring to FIG. 16A, according to a predetermined token code generation command input by the input unit 1160 of the token agent program, the reader 1165 reads the wireless terminal internal resources and/or the token agent internal code and/or At least one token code generation information defined to be used for generating a predetermined token code by the token agent is read from the memory unit 1155 and/or the memory unit provided in the IC chip 1150 (1600) , Provides the read at least one token generation information to the generator 1170 (1605).

The generation unit 1170 generates an unpredictable predetermined token code by applying a predetermined token generation hash algorithm based on at least one piece of token generation information provided from the reader 1165 (1610), and the output The unit 1175 outputs the generated token code on the screen of the wireless terminal (1615), and the payment processing server 1000 through a predetermined wireless network 140 in conjunction with the communication processing units 1180 and 1180. Transmits the generated token code to (1620).

According to another implementation method of the present invention, when the wireless terminal equipped with the token agent program performs a predetermined [payment terminal/financial terminal] function for payment processing based on the token code, the output unit 1175 ) and the communication processing unit 1180 transmits the generated token code and the payment information (or payment processing request information) to the payment processing server 1000 through the wireless network 140 in association.

Referring to FIG. 16B, the information receiving unit of the payment processing server 1000 receives a predetermined token code transmitted from a wireless terminal through the wireless network 140 (1630), and the information receiving unit receives the token code. In the process, the wireless terminal information having transmitted the token code in the form of the sender information is extracted and provided to the extractor (1640), and the extractor extracts the wireless terminal information associated with (or received token code from the storage medium) Corresponding to), predetermined token agent information is extracted (1645), and the extracted token agent information is provided to the authentication unit (1640).

According to the implementation method of the present invention, it is preferable that the information verification unit confirms the wireless terminal information by checking caller information of the wireless terminal that has transmitted the token code, and/or the token code contains the wireless terminal information. When received in association, it is preferable that the information confirmation unit confirms the received wireless terminal information in association with the token code.

If the token agent information is provided as described above, the authentication unit obtains the same token generation information as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal and/or the token based on the token agent information. The agent generates a predetermined token authentication code through the same procedure as the procedure for generating the token code (1655), and compares the generated token authentication code with the token code received through the information receiving unit. Validation is checked (1660). If the validity of the token code is authenticated (1665), the payment processing unit 1030 of the payment processing server 1000 provides payment processing information (or payment information) through predetermined payment method information associated with the wireless terminal information. Perform payment processing corresponding to

17a, 17b, and 17c are diagrams illustrating a process of operating a token code according to an embodiment of the present invention.

In more detail, FIGS. 17a, 17b, and 17c show that the token agent provided in the wireless terminal receives a predetermined challenge value from the payment processing server 1000 and generates a 10-digit token code, and the generated A preferred implementation method of transmitting a 10-digit token code from the wireless terminal to the payment processing server 1000 through a predetermined wireless network 140 and authenticating the token code in the payment processing server 1000, for convenience. The process of inputting predetermined PIN information to drive the token agent program and/or perform an internal authentication procedure in the token agent is omitted.

However, although FIG. 17a and FIG. 17b show that only the token code is transmitted from the wireless terminal to the payment processing server 1000 in order to efficiently explain the token code operation process, Those with knowledge will clearly understand that the token code can be transmitted to the payment processing server 1000 in association with predetermined payment information (or payment processing request information) for payment processing based on the token code. , The present invention is not limited thereby.

Referring to Figure 17a, the authentication unit provided in the payment processing server 1000 extracts predetermined wireless terminal information to transmit a predetermined challenge value from the storage medium (1700), and uses a token agent program installed in the wireless terminal When a predetermined challenge value to be transmitted is dynamically generated (1705) and the wireless terminal information and challenge value are provided to the information transmitter, the information transmitter transmits the wireless terminal information through a predetermined wireless network 140. The generated challenge value is transmitted to the wireless terminal (1710).

When the generated challenge value is transmitted to the wireless terminal equipped with the token agent program as described above, the authentication unit stores the challenge value transmitted to the wireless terminal in the storage medium (1715).

Referring to Figure 17b, the reader 1165 of the token agent program receives a predetermined challenge value received from the payment processing server 1000 through the communication processor (1720), and includes the received challenge value At least one token defined so that the token agent is used to generate a predetermined token code from the internal code of the token agent and/or the memory unit 1155 and/or the memory unit provided in the IC chip 1150. Code generation information is read (1725), and the read at least one token generation information is provided to the generator 1170 (1730).

The generation unit 1170 generates an unpredictable predetermined token code by applying a predetermined token generation hash algorithm based on at least one token generation information provided from the reader 1165 (1735), and outputs the The unit 1175 outputs the generated token code on the screen of the wireless terminal (1740), and interworks with the communication processing unit 1180 to the payment processing server 1000 through a predetermined wireless network 140. transmitted token code (1745).

According to another implementation method of the present invention, when the wireless terminal equipped with the token agent program performs a predetermined [payment terminal/financial terminal] function for payment processing based on the token code, the output unit 1175 ) and the communication processing unit 1180 transmits the generated token code and the payment information (or payment processing request information) to the payment processing server 1000 through the wireless network 140 in association.

Referring to FIG. 17C, the information receiving unit of the payment processing server 1000 receives a predetermined token code transmitted from a wireless terminal through the wireless network 140 (1755), and the information receiving unit receives the token code. In the process, the wireless terminal information having transmitted the token code in the form of the sender information is extracted and provided to the extractor (1765), and the extractor extracts information associated with (or received token code from) the wireless terminal information from the storage medium. (corresponding to) predetermined token agent information is extracted (1770), and the extracted token agent information is provided to the authentication unit (1775).

If the token agent information is provided as described above, the authentication unit obtains the same token generation information as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal and/or the token based on the token agent information. The agent generates a predetermined token authentication code through the same procedure as the procedure for generating the token code (1780), and compares the generated token authentication code with the token code received through the information receiving unit. Validate (1785). If the validity of the token code is authenticated (1790), the payment processing unit 1030 of the payment processing server 1000 provides payment processing information (or payment information) through predetermined payment method information associated with the wireless terminal information. Perform payment processing corresponding to

Figure 18 relates to an implementation process in which token code-based payment processing is applied to a card payment system according to an implementation method of the present invention.

In more detail, Figure 18 relates to an implementation method in which the token code-based payment processing method according to the present invention is applied to a card payment system including at least one credit card, debit card, and check card, specifically card payment processing. In order to minimize the burden of VAN usage fees in a predetermined payment terminal 145 for the above, the present invention relates to a method of including and processing the wireless terminal information and token code for the token code-based payment processing in the card payment related message.

However, the implementation method of applying the token code-based payment processing method according to the present invention to the card payment system is not limited to the case of Figure 18, and those skilled in the art to which the present invention belongs, 18, various implementation methods of applying the token code-based payment processing method according to the present invention to a card payment system (eg, implementation method of transmitting wireless terminal information and token code to a server before/after card payment processing is performed, etc. ) can be easily deduced.

Referring to Figure 18, the payment terminal 145 (eg, CAT (Credit Authorization Terminal)) switches to the token code-based payment mode according to the present invention at the request of the customer, inputs a predetermined payment amount, and/or By receiving the payment amount from the POS, predetermined payment information is generated (1800) that satisfies the components required for card payment processing (eg, including information to be included in the full text of the payment processing request), and is included in the payment information in the above process. Information that is not read is card information to be read from the card medium owned by the customer.

When the payment information is generated as described above, the payment terminal 145 (eg, the payment terminal 145 switched to the token code-based payment mode) requests input of the customer wireless terminal information through a predetermined key input means. (1805).

If the customer wireless terminal information is input (1810), the payment terminal requests input of a predetermined token code generated by a token agent provided in the wireless terminal 1100 through a predetermined key input means (1815 ), the customer wireless terminal 1100 drives a predetermined token agent provided in the wireless terminal 1100 through a predetermined PIN (1820), and the driven token agent includes at least one token generation information and token generation A predetermined token code is generated based on an algorithm and displayed on the screen of the wireless terminal 1100 (1825), and the customer receives the output token code through a predetermined key input means provided in the payment terminal 145. Enter

According to another implementation method of the present invention, when the wireless terminal 1100 and the payment terminal 145 are provided with a predetermined short-range communication function, the wireless terminal information and the token code are transmitted through the short-range communication to the payment terminal ( 145) is possible.

If the generated token code is input (1830), the payment terminal 145 performs predetermined payment processing including the wireless terminal information input through the key input means, the token code, and the generated payment information. A request text is generated (1835), and the generated payment processing request text is transmitted to the server (eg, a server that performs validity authentication and payment processing for the token code) (1840).

Upon receiving the full text of the payment processing request from the payment terminal 145, the server reads the full text of the payment processing request, extracts the wireless terminal information and token code (1845), and stores the wireless terminal from the storage medium 110. predetermined token agent information associated with the information is extracted, and based on the extracted token agent, the same token generation information and token generation algorithm as used by the token agent provided in the wireless terminal 1100 to generate the token code. A predetermined token authentication code is generated through (1850), and the validity of the received token code is checked by comparing the received token code with the generated token authentication code (1855).

If the validity of the received token code is not authenticated (eg, the token code and the token authentication code do not match) (1860), the server generates a predetermined payment processing error message, and the payment terminal 145 It is transmitted to and output, and a receipt including the full text of the payment processing error is printed (1865).

On the other hand, if the validity of the received token code is authenticated (eg, if the token code and the token authentication code match) (1860), the server determines a predetermined payment method associated with the wireless terminal information from the storage medium 110. (or payment means) is extracted to perform predetermined payment processing on the payment information included in the full payment processing request (1870), generate a predetermined payment processing approval full text corresponding to the payment processing result, and It is transmitted to the terminal 145 and output, and a receipt including the full text of the payment processing approval is printed (1875).

According to the implementation method of the present invention, the server preferably further performs a process of storing predetermined payment approval processing details corresponding to the payment approval result in association with the payment method information in a predetermined storage medium 135. .

Figure 19 illustrates a payment processing request message for payment processing based on a token code according to an embodiment of the present invention.

In more detail, this drawing 19 shows a wireless terminal that includes the token code-based payment approval request identifier according to the present invention in the transaction classification of the full text of the payment processing request, and follows the card number system in the track-II data area of the full text of the payment processing request. It is about the full text of a payment processing request for token code-based payment processing, characterized in that it includes information and a token code.

Referring to FIG. 19, the wireless terminal information (eg, 11-digit numbers) is included in 19-digit card information (eg, 16-digit card number and 3-digit CVC number), and the VAN company that has received the payment processing request message In order to normally relay and transmit the payment processing request message to the server, the front 4 digits of the 19-digit card information include the server access number, and the wireless terminal information is included in 11 of the remaining 15 digits. In addition, the token code is included by allocating 10 characters to the valid period area of the track-II data area.

Figure 20 relates to an implementation process in which token code-based payment processing is applied to an online payment system according to an implementation method of the present invention.

In more detail, this drawing 20 relates to an implementation method in which the token code-based payment processing method according to the present invention is applied to an online payment system including an Internet shopping mall, specifically processing online payment without a predetermined payment method in the online payment process. It's about how to do it.

Referring to Figure 20, when a customer connects to a web server that provides token code-based payment processing according to the present invention and requests token code-based online payment (2000), the web server sends a message to the wired terminal 145. Corresponding predetermined payment information is generated (2005), and the wired terminal 145 information and the generated payment information are transmitted to a predetermined server (eg, a server that provides token code based online payment processing) (2010). ).

The server receiving information on the wired terminal 145 generates wireless terminal information for token-based online payment according to the present invention to the wired terminal 145 and a token agent provided in the wireless terminal 1100. Upon requesting input of a predetermined token code (2015), the customer wireless terminal 1100 drives a predetermined token agent provided in the wireless terminal 1100 through a predetermined PIN (2020), and the driven token agent generates a predetermined token code based on at least one token generation information and a token generation algorithm and outputs it to the screen of the wireless terminal 1100 (2025), and the customer sends the output token code to the wired terminal It is input through a predetermined key input means.

According to another embodiment of the present invention, when the wireless terminal 1100 and the wired terminal have a predetermined short-range communication function, the wireless terminal information and the token code are sent to the wired terminal 145 through the short-range communication. It is possible to enter

If the generated token code is input (2030), the wired terminal transmits the wireless terminal information and the token code input through the key input means to the server (2035)

Upon receiving the wireless terminal information and the token code from the wired terminal, the server extracts predetermined token agent information associated with the wireless terminal information from the storage medium 110, and based on the extracted token agent, the server The token agent provided in the terminal 1100 generates a predetermined token authentication code through the same token generation information and token generation algorithm used to generate the token code (2040), and the received token code and the generated token The validity of the received token code is checked by comparing the authentication code (2045).

If the validity of the received token code is not authenticated (eg, the token code and the token authentication code do not match) (2050), the server generates predetermined token code authentication error data, and the wired terminal 145 ) to output (2055).

On the other hand, if the validity of the received token code is authenticated (eg, if the token code and the token authentication code match) (1660), the server determines a predetermined payment method associated with the wireless terminal information from the storage medium 110. Information is extracted (2060), payment is processed for the payment information received from the web server through the extracted payment method information (2065), and predetermined payment processing details corresponding to the payment processing are generated to It is transmitted and output to the terminal 145 (2070), and the payment method information (or payment method information and the payment processing details are linked and stored in a predetermined author medium (2075)).

Figure 21 relates to an implementation process in which token code-based payment processing is applied to a wireless payment system according to an implementation method of the present invention.

In more detail, this drawing 21 relates to an implementation method in which the token code-based payment processing method according to the present invention is applied to a WAP/IC chip-based wireless payment system using the customer wireless terminal 1100, which is common in the technical field to which the present invention belongs. Since those with knowledge of the WAP/IC chip-based wireless payment system and wireless payment procedure will already be familiar with the above, a detailed description thereof will be omitted, and the present invention is not limited thereby.

Referring to Figure 21, a server that performs token code-based payment processing through the wireless terminal 1100 sends predetermined payment information (eg, payment amount information, payment request) to the wireless terminal 1100 through the wireless terminal information. It includes at least one store (shopping mall) information, payment method information (or payment method selection information), whereby a WAP-based and/or IC chip-based wireless payment procedure is performed.) and/or payment request information (e.g., server , and transmits and outputs information requested to perform a WAP-based wireless payment procedure), thereby requesting that the wireless terminal 1100 perform a WAP/IC chip-based wireless payment (2100).

Upon receiving the payment information and/or payment request information, the wireless terminal 1100 performs wireless payment based on a WAP/IC chip according to a predetermined wireless payment procedure (2105), and while performing the wireless payment procedure, the wireless terminal 1100 performs the present invention. When a token code input according to is requested (2110), the wireless terminal 1100 drives a predetermined token agent provided in the wireless terminal 1100 through a predetermined PIN (2115), and the driven token agent A predetermined token code is generated based on at least one token generation information and a token generation algorithm and transmitted to the server (2120).

In the process of receiving the token code from the wireless terminal 1100, the server extracts caller information about the wireless terminal 1100 as the customer wireless terminal information and associates it with the wireless terminal information from the storage medium 110. The extracted token agent information is extracted, and based on the extracted token agent, the token agent provided in the wireless terminal 1100 uses the same token generation information used to generate the token code and the token generation algorithm. A token authentication code is generated (2125), and validity of the received token code is checked by comparing the received token code with the generated token authentication code (2130).

If the validity of the received token code is not authenticated (eg, the token code and the token authentication code do not match) (2135), the server generates predetermined token code authentication error data and returns the wireless terminal 1100 It is transmitted and output to (2140).

On the other hand, if the validity of the received token code is authenticated (eg, if the token code and the token authentication code match) (1660), the server determines a predetermined payment method associated with the wireless terminal information from the storage medium 110. Information is extracted (2145), payment is processed for the payment information received from the web server through the extracted payment method information (2150), and predetermined payment processing details corresponding to the payment processing are generated to It is transmitted and output to the terminal (2155).

100: Token agent providing means 105: Information storage means
110: storage medium 115: information receiving means
120: information confirmation means 125: authentication means
130: payment processing means 135: storage medium
140: information storage means 145: payment terminal
150: payment network

Claims (3)

In the short-range wireless communication-based payment method using a token code executed through a wireless terminal having a short-range communication unit for short-range wireless communication,
Customer's payment method information is stored in a designated storage medium on the payment processing system, and at least one token generation information for dynamically generating a token code for authenticating the validity of payment using the payment method information stored in the storage medium is received. A first step of storing the data in a designated storage area of a wireless terminal;
A second step of dynamically generating a token code for validating payment using payment method information stored in the storage medium by using one or more token generation information including the stored token generation information during payment; and
A third step of providing the token code to a local payment terminal through the short-range wireless communication;
The token code is transmitted to the payment processing system through a message transmitted from the local payment terminal to the payment processing system through a specified payment network, and is used for validation of payment using payment method information stored in the storage medium. Short-range wireless communication-based payment method using a token code, characterized in that.
According to claim 1,
When paying, the short-range wireless communication-based payment method using a token code, characterized in that further comprising the step of connecting a short-range payment terminal and a short-range wireless communication session through the short-range communication unit.
The method of claim 1, wherein the full text,
A short-range wireless communication-based payment method using a token code, characterized in that it comprises a payment processing message transmitted from the payment terminal to the payment processing system through the payment network for payment processing.

Images