WO2020032517A1 - 가상코드를 생성 및 제공하는 스마트카드와 그 방법 및 프로그램 - Google Patents
가상코드를 생성 및 제공하는 스마트카드와 그 방법 및 프로그램 Download PDFInfo
- Publication number
- WO2020032517A1 WO2020032517A1 PCT/KR2019/009760 KR2019009760W WO2020032517A1 WO 2020032517 A1 WO2020032517 A1 WO 2020032517A1 KR 2019009760 W KR2019009760 W KR 2019009760W WO 2020032517 A1 WO2020032517 A1 WO 2020032517A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- code
- smart card
- virtual code
- virtual
- time
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
Definitions
- the present invention relates to a smart card for generating and providing a virtual code, and a method and a program thereof. More specifically, the virtual code generates a virtual code that is not duplicated at each time point and provides the external code to make payment. It relates to a smart card for generating and providing a method and a program thereof.
- Code form data is used in many areas.
- IPIN number and social security number for user identification are code form data.
- An integrated circuit card is a card in which a semiconductor memory device (IC memory) is inserted into a credit card or a cash card.
- the IC card has an IC connector or antenna that can communicate with an external device to transmit information stored in the IC memory, and inserts the IC card into the card reader, or uses a short range wireless communication technology.
- the problem to be solved by the present invention is to provide a smart card, a method and a program for generating and providing a virtual code that can search for the actual card number without exposing the actual card information during the payment process using the card.
- the problem to be solved by the present invention is to provide a smart card, a method and a program for generating and providing a virtual code that is not duplicated every time a payment request using a smart card.
- the problem to be solved by the present invention is to provide a smart card and method and program for generating and providing a virtual code that can be used in place of the actual card information while maintaining the existing payment system and device.
- Smart card for generating and providing a virtual code for solving the above problems is a communication interface, which can receive the first power from an external device, and communicates with the external device, based on a specific time point
- the time measurement module for measuring time data from the initial time value given by, a virtual code generation unit for generating a virtual code based on the time count counted based on the time data using the first power source, the virtual code generation unit and the virtual Provide a code to the outside, including the communication interface, including a virtual code providing unit, wherein the virtual code is a virtual card number or a virtual token, matched to the actual card number by a virtual code generation function previously stored in the smart card It is generated as a code, which is used to search for the actual card number in the virtual code verification server, the time side Module includes a clock and measuring the time data, clock battery for supplying a second voltage to the clock.
- the communication interface may include at least one of an IC connector or an antenna, and the IC connector may be configured to physically contact the external device to supply first power from the external device when the smart card is used as a contact type.
- the antenna receives first power from the external device without physically contacting the external device.
- the external device may be a user terminal, and the first power may be supplied with a smart card tagged to the user terminal.
- the virtual code providing unit may include a display unit and output the virtual code to the display unit in the form of a code value or an image code.
- the apparatus may further include a fingerprint recognition unit for recognizing a user's fingerprint and confirming a use right, wherein the virtual code generation unit generates a virtual code only when the fingerprint recognized through the fingerprint recognition unit matches pre-registered fingerprint information. It features.
- the first time count measured by the time measurement module is verified to match the second time count measured by the virtual code verification server, and the difference between the first time count and the second time count is within a specific error range. If it is determined to match.
- the virtual code verification server stores and manages a time correction value in a unit count that matches the actual card number.
- the time correction value is specified based on an error history measured for each user. The count may be verified by reflecting the time correction value.
- the virtual code may be generated by combining a plurality of detailed codes.
- the plurality of detailed codes may include: a first code for setting a start point of a storage location search; And a second code for setting a search path from the starting point to the storage location according to a specific search method.
- a method for generating and providing a smart card-based virtual code wherein the smart card is supplied with a first power source from the outside, and the smart card uses the first power source.
- the measurement module includes a clock for measuring the time data and a clock battery for supplying a second power source to the clock.
- the smart card may include at least one of an IC connector and an antenna, and the IC connector may receive a first power supply from the external device by physically contacting an external device when the smart card is used as a contact type.
- the antenna is characterized in that when the smart card is used in a non-contact manner, the first power is supplied from the external device without physically contacting the external device.
- the external device is a user terminal, the step of receiving the first power from the external, characterized in that the smart card is tagged with the user terminal to receive the first power.
- the smart card may include a display unit, and the providing of the virtual code to the outside may include outputting the virtual code in the form of a code value or an image code to the display unit.
- the smart card further comprises the step of recognizing the user's fingerprint to check the usage rights, wherein the smart card is characterized in that it generates a virtual code only if the recognized fingerprint matches the pre-registered fingerprint information. .
- the difference between the first time count and the second time count is within a specific error range. It is characterized in that it is determined to match.
- the virtual code verification server stores and manages a time correction value in a unit count that matches the actual card number.
- the time correction value is specified based on an error history measured for each user. The count may be verified by reflecting the time correction value.
- the virtual code may be generated by combining a plurality of detailed codes.
- the plurality of detailed codes may include: a first code for setting a start point of a storage location search; And a second code for setting a search path from the starting point to the storage location according to a specific search method.
- the smart card-based virtual code generation and providing program according to another aspect of the present invention for solving the above-described problem is executed in combination with a computer which is hardware to generate and provide the smart card-based virtual code, the medium Are stored in.
- a virtual card that is, a virtual card number or a virtual token
- the actual card information can be prevented from being leaked.
- the virtual code is generated based on a different time count for each payment request, it is possible to generate a non-overlapping virtual code, so that even if the virtual code is leaked at a specific time point, the damage caused by the same can be prevented. It provides the effect that the actual card information is not leaked.
- the virtual code of the same format as the actual card number, etc. it is possible to maintain the existing payment process using the actual card number. For example, if an application providing a financial transaction service generates and provides a virtual card number that is not duplicated, the POS device and the PG company server are kept intact, and the virtual card number is transmitted to the token service server or the financial company server, and the token is provided. The service server or the financial institution server may search for the actual card number corresponding to the virtual card number and proceed with the payment. Through this, it is possible to minimize the parts that need to be changed in the existing process in order to increase security, and the user does not have to perform a separate step for improving security.
- FIG. 1 is a block diagram of a system for generating and providing a smart card based virtual code according to an embodiment of the present invention.
- FIG. 2 is a block diagram of a smart card according to an embodiment of the present invention.
- FIG 3 is an exemplary diagram of a communication interface included in a smart card according to an embodiment of the present invention.
- FIG. 4 is a block diagram of a time measurement module according to an embodiment of the present invention.
- FIG. 5 is an exemplary view of a virtual code providing unit including a display unit according to an embodiment of the present invention.
- FIG. 6 is an exemplary diagram illustrating a state in which a smart card according to an embodiment of the present invention is tagged and used by a user terminal.
- FIG. 7 is an exemplary view illustrating a fingerprint recognition unit included in a smart card according to an embodiment of the present invention.
- FIG. 8 is a flowchart of a method for generating and providing a virtual code by a smart card according to an embodiment of the present invention.
- FIG. 9 is a flowchart illustrating a method for generating and providing a virtual code by a smart card when a fingerprint recognition unit is added according to an embodiment of the present invention.
- FIG. 10 is a flowchart illustrating a method for generating and providing a virtual code by a smart card when a step of verifying whether a time count matches is added according to an embodiment of the present invention.
- 11 is a flowchart illustrating in detail a step of verifying whether a time count matches according to an embodiment of the present invention.
- FIG. 12 is a flowchart schematically illustrating a process of verifying whether a time count matches and determining whether a payment is approved according to an embodiment of the present invention.
- the term "smart card” refers to a card capable of generating and providing a virtual code.
- it is an arbitrary card that can conduct financial transactions, such as credit card, check card, cash card, there is no limitation on the type and purpose of the card.
- letter is a component constituting the code, and includes all or part of uppercase alphabet, lowercase alphabet, numbers and special characters.
- code means a string in which characters are listed.
- card number is used for a financial transaction such as payment, and means a number given to a card and delivered to a card company in a situation such as payment and cancellation of payment.
- a "real card number" is a number assigned to a card of a specific user by a card company. That is, the actual card number means a number given to a general physical card, mobile card, and the like.
- virtual code is a card number which is temporarily generated to be connected to an actual card number, and is a code of a specific digit consisting of letters including numbers.
- the virtual code includes a virtual card number used to search for a real card number in a financial company server, a virtual token used to search for a real card number in a virtual token verification server.
- the "detail code” means a part code included in the virtual code. That is, when the virtual code is generated by combining a plurality of separately generated codes, the detailed code refers to individual codes that are generated separately and constitute the virtual code.
- unit count is a unit defined as a specific time interval, and is changed as the time interval elapses. For example, one count may be set and used at a specific time interval (eg, 1.5 seconds).
- virtual code generation function means a function used to generate virtual code.
- the "detailed code generation function” means a function for generating each detailed code constituting the virtual code.
- the "detail code combining function” means a function of combining or combining a plurality of detailed codes to generate a virtual code (for example, a virtual card number or a virtual token).
- a "user terminal” is any device capable of performing arithmetic processing to provide a result to a user.
- a computer can be a desktop PC, a notebook, as well as a smart phone, tablet PC, cellular phone, PCS phone (Personal Communication Service phone), synchronous / asynchronous
- the mobile terminal of the International Mobile Telecommunication-2000 (IMT-2000), a Palm Personal Computer (PLM), a Personal Digital Assistant (PDA), and the like may also be applicable, but is not limited thereto.
- short-range wireless communication refers to a wireless communication technology that performs communication wirelessly as a physically separated terminal contacts or approaches.
- the short range wireless communication may correspond to a method of wireless communication in a state where a plurality of terminals are located within a range that can be controlled by hand while the user directly checks.
- FIG. 1 is a block diagram of a system for generating and providing a smart card based virtual code according to an embodiment of the present invention.
- a system for generating and providing a smart card-based virtual code includes a smart card 100 and an external device 200, and the server 300 as necessary. It may further include.
- Smart card 100 is a card that can perform a financial transaction, a card that performs a financial transaction using a virtual code instead of the actual card information.
- it is an arbitrary card that can conduct financial transactions, such as credit card, check card, cash card, there is no limitation on the type and purpose of the card.
- the material of the smart card 100 is any material, such as stainless steel, titanium, aluminum and amorphous alloys or non-metal materials as a metal material, and is not limited to the above-described examples.
- the smart card 100 directly generates a virtual code used for financial transactions without receiving data from the outside.
- the smart card 100 operates only upon a financial transaction request to generate and provide a virtual code, and the power required for generating and providing the virtual code ("first power" in this specification) is supplied from the outside. That is, the smart card 100 does not need to have a separate battery for supplying power required for generating and providing a virtual code. Therefore, the manufacturing cost of the smart card 100 can be reduced and the use of the smart card 100 is not restricted due to the life of the battery.
- the smart card 100 does not include a battery for supplying power for driving other components other than a power source for driving the clock 121 for measuring time ("second power source” herein). . That is, all the power for driving the configuration other than the clock 121 in the smart card 100 are the first power supplied from the outside at the time when the financial transaction request is made by the user, and the smart card 100 is the clock 121. It may include only the clock battery 122 for supplying a second power for driving ().
- the form in which the smart card 100 is supplied with power from the outside varies depending on whether the financial transaction request method is made in a contact type or a non-contact type and will be described in detail later.
- the smart card 100 measures time data from an initial time value given based on a specific time point.
- the virtual code is generated based on the time count counted based on the time data.
- the time data used for generating the virtual code is also measured directly by the smart card 100 itself without receiving from the outside.
- the time data should be continuously measured from a specific time point (for example, the point of use of the card or the time of card manufacture) as well as the request for financial transaction. That is, if the smart card does not measure the current time, the server may not generate a normal virtual code that can be determined to be valid at this time. Thus, the smart card continues to measure time while no external power is provided to obtain the same point in time as the server.
- the clock battery 122 may be a battery having a capacity capable of driving only the clock 121 for a specific period of time. For example, when the expiration date of the smart card 100 is set to five years from the production time of the smart card 100 or when the user starts using the smart card 100, the smart card 100 measures time. A clock battery 122 capable of driving the clock 121 to be performed for five years may be included.
- the time data measured by the clock 121 plays a key role in verifying whether the virtual code is normally generated at the time of the financial transaction request.
- a detailed description of the time measurement module 120 including the clock 121 and the clock battery 122 will be described later.
- the smart card 100 serves to provide the generated virtual code to the outside.
- the smart card 100 is not limited to the configuration of providing the virtual code to the outside and the subject of providing the virtual code to the outside.
- the component that provides the virtual code may be a communication interface 110 included in the smart card (100).
- the virtual code may be transmitted by physically contacting the external device 200 through the IC connector 111 included in the communication interface 110.
- the virtual code may be transmitted by wireless communication without physically contacting the external device 200 through the antenna 112 included in the communication interface 110.
- the smart card 100 may improve the security by applying the encryption method used for the virtual code in the financial transaction.
- it can be generated through the communication interface 110 to generate a payment standard, such as EMV standard.
- the smart card 100 may include a configuration that can provide a virtual code visually.
- the smart card 100 may include a separate display unit 141 and may be output and provided to the display unit 141 so that the user can visually check the virtual code.
- the form in which the virtual code is visually provided may be provided as a code value itself consisting of a combination of numbers and / or letters, or may be provided in the form of an image code such as a barcode or a QR code. It is possible.
- the virtual code is visually displayed on the screen of the user terminal through software and applications installed or embedded in the user terminal serving as the external device 200 from the smart card 100. It is also possible to indicate. That is, even if the display unit 141 is not provided in the smart card 100, it is also possible to output through the screen of the user terminal.
- the smart card 100 generates a virtual code in response to receiving the first power from the user terminal that is the external device 200, and wireless communication (for example, to a dedicated application in the user terminal). , NFC communication) can be transmitted through the virtual code. Through this, the user can visually check the real-time virtual code of the smart card 100 in a dedicated application.
- the external device 200 is any device that supplies the first power to the smart card 100 when a financial transaction using the smart card 100 is requested.
- the external device 200 may be a card reader (eg, an IC card reader or an NFC reader) that is an electronic device that reads a card.
- the smart card 100 is manufactured in the same standard as a general IC card or NFC card, it can be used in the same card reader (for example, IC card reader or NFC reader). . That is, there is an advantage that the card reader device and the financial transaction system installed in the affiliated store can be used as it is.
- a user terminal such as a mobile device possessed by the user may serve as the external device 200.
- a virtual code for example, a virtual card number or a virtual token
- the user may provide a first power source to the smart card 100 without using an IC card reader or an NFC reader to provide a virtual power.
- the code must be provided visually.
- the user may tag the smart card 100 to a user terminal serving as the external device 200 to receive the first power from the user terminal by using short-range wireless communication.
- the smart card 100 may output the virtual code to the display unit 141 provided in the smart card 100 using the first power supplied from the user terminal.
- the virtual code may be delivered to the user terminal in the form of a message, or provided to be confirmed through a dedicated application. Specific embodiments will be described later with reference to the exemplary drawings.
- the external device 200 may not only supply the first power to the smart card 100, but also communicate with the smart card 100 to receive a virtual code and to process a financial transaction request. have.
- the form of processing the financial transaction request may be made in a variety of ways, such as to approve the financial transaction itself in the external device 200, or transmit the financial transaction-related information to the server (300).
- the external device 200 serves only to supply the first power to the smart card 100, it may be provided with a separate device for processing the financial transaction request.
- a system for generating and providing a smart card based virtual code may further include a server 300.
- the server 300 is a virtual code verification server for verifying the virtual code generated by the smart card 100.
- the virtual code verification server may be a virtual token verification server (ie, Token Service Provider Server; TSP Server) or a financial institution server.
- a virtual token verification server ie, Token Service Provider Server; TSP Server
- TSP Server Token Service Provider Server
- financial institution server ie, a financial institution server
- Virtual Token Verification Server is a server that stores the actual card number and searches for the actual card number based on the virtual token and provides it to a payment service server or a financial institution server.
- the "financial company server” is a server that searches for a real card number using a virtual code (ie, a virtual card number) and determines whether the payment is approved based on this.
- the server 300 includes a virtual code verification means and determines whether to approve payment based on the actual card number, searches for the actual card number based on the virtual code, and verifies the virtual code. On the other hand, such a role may be made through the external device 200, rather than the server 300 is configured separately.
- FIG. 2 is a block diagram of a smart card according to an embodiment of the present invention.
- the smart card 100 includes a communication interface 110, a time measurement module 120, a virtual code generator 130, and a virtual code provider 140. do.
- the communication interface 110 receives the first power used for generating the virtual code from the external device 200 by the smart card 100 and communicates with the external device 200 to transmit and receive information.
- the communication interface 110 includes an IC connector 111 or an antenna 112.
- the IC connector 111 is used when the smart card 100 is used as a contact type such as being inserted into the external device 200, and the antenna 112 is used when the smart card 100 is used without contact through wireless communication. .
- IC connector 111 is a contact pad that is exposed so that the circuit pattern included in the smart card 100 can contact the outside.
- the IC connector 111 receives the first power from the external device 200 by physically contacting the external device 200 when the smart card 100 is used as a contact type.
- the antenna 112 is a configuration for wireless communication required to use the smart card 100 in a non-contact manner, detects radio frequency signals around the smart card 100 to send and receive data and communicate with the external device 200. Do it.
- the antenna 112 receives first power from the external device 200 without physically contacting the external device 200.
- the antenna 112 is any antenna, such as a loop antenna, a coil antenna, and the like, and is not limited in kind.
- the antenna 112 may be embedded separately from the IC chip in the smart card, it may be provided in the IC chip.
- the time measurement module 120 continuously measures the time data that is the basis of the time count that is the basis of virtual code generation from a specific point of time (for example, starting point of card use or time of card manufacture).
- the time count is a value counted based on the time data measured from the initial time value given based on a specific time point to the time when the user requests a financial transaction, even when the same smart card 100 is repeatedly used. Since the time of the transaction request will be different each time, the time data measured up to the time of the transaction request and the time count counted based on this time will also have different values. Therefore, in the present invention, the time data plays a key role in generating virtual code that is not duplicated every time according to the transaction request time. In addition, the virtual code can be generated so as not to be duplicated regardless of the generation time and the user at every point in time, even if the leaked virtual code at a particular point of time cannot be used after that point. The financial damage that can be caused by information leakage can be prevented, which enhances security.
- the time measurement module 120 includes a clock 121 and the clock battery 122.
- the clock 121 measures time data measured from an initial time value given based on a specific time point of the smart card 100 to a user's transaction request point.
- the smart card 100 does not need to receive separate time data from the outside in order to measure the time data. That is, the time data is measured without communication with the outside in the smart card 100 itself, thereby providing more enhanced security.
- the clock 121 does not operate only at the time of the transaction request of the user, but operates continuously from the time of manufacture of the card and measures time data. Accordingly, the clock 121, unlike the virtual code generation unit 130 and the virtual code providing unit 140 that operates only at the time of the financial transaction request of the user should also be continuously made. Therefore, the power provided to the virtual code generation unit 130 and the virtual code providing unit 140 ("first power supply” herein) and the power provided to the clock 121 (“second power supply”) are It is characterized by being distinguished.
- the first power is not a power supplied from the smart card 100, but is a power supplied by the smart card 100 from the external device 200 at the time of the transaction request of the user. Therefore, the power supplied only during the financial transaction process, the virtual code generation unit 130 and the virtual code provider 140 also operates only during the financial transaction to generate and provide virtual code.
- the second power source is a power source supplied by itself in the smart card 100.
- the time measurement module 120 of the smart card 100 includes a clock battery 122.
- the clock battery 122 is an internal battery provided in the smart card 100 that supplies power only to the clock 121. Since the clock battery 122 does not supply power to components other than the clock 121, a large capacity is not required, and the clock battery 122 may be a battery having a capacity capable of supplying power only for a specific period of time.
- the clock life of the clock battery 122 of the present invention is determined by the user's smart card 100. There is no problem in supplying power continuously without discharging during service period.
- the clock battery 122 may be replaced at regular intervals, or the user may charge the clock battery 122 by itself by providing the rechargeable smart card 100.
- the smart card 100 may provide the remaining life of the clock battery 122 so that the user of the smart card 100 can check.
- the virtual code generation unit 130 generates a virtual code based on the counted time count based on the time data measured by the clock 121 through the virtual code generation function. As described above, when the virtual code generation unit 130 is connected to the external device 200 in contact or contactless manner only at the time of the financial transaction request of the user, the virtual code generation unit 130 receives the first power from the external device 200 to operate the virtual code. Create
- the virtual code may be generated by combining a plurality of detailed codes used to verify the virtual code or search for the actual card number matching it.
- the virtual code generation function may include a detail code generation function for generating a plurality of detail codes and a detail code defect function for combining the plurality of detail codes.
- the plurality of detailed codes may include a first code for setting a start point of a storage location search and a second code for setting a search path from the start point to the storage location according to a specific search method. .
- a detailed description of the process of searching for the actual card number or verifying the virtual code based on the virtual code in the server 300 will be described later.
- the virtual code providing unit 140 serves to provide the virtual code generated by the virtual code generating unit 130 to the outside.
- the method of providing to the outside is not limited to the configuration of providing the external form and the subject of providing the virtual code to the outside. The detailed description is omitted since it is duplicated.
- FIG 3 is an exemplary diagram of a communication interface included in a smart card according to an embodiment of the present invention.
- the communication interface 110 included in the smart card 100 includes one or more of an IC connector 111 or an antenna 112.
- the IC connector 111 and the antenna 112 are shown in FIG. 3, but may include only one, and each configuration is not limited to a position located on the smart card 100.
- the role of each of the IC connector 111 and the antenna 112 is omitted because it overlaps with the above description.
- FIG. 4 is a block diagram of a time measurement module according to an embodiment of the present invention.
- the time measurement module 120 includes a clock 121 and a clock battery 122, and the clock 121 continuously operates by receiving a second power from the clock battery 122. . Detailed description of each role is omitted because it overlaps with the above description.
- FIG. 5 is an exemplary view of a virtual code providing unit including a display unit according to an embodiment of the present invention.
- the display unit 141 is shown on the exterior of the smart card 100 as an embodiment of the virtual code providing unit 140.
- the display unit 141 is illustrated at the lower right side, but the display unit 141 is not limited to a position on the smart card 100.
- the output virtual code is shown as "0000 0000 0000 0000" for convenience as a numeric string matching the number of digits of the actual card number. It is also possible to display an image code such as a QR code. It may be in any form provided visually.
- the display unit 141 is not limited to a general flat panel display, LCD, LED, OLED, flexible display, etc., a specific example, the electronic paper (E-Paper) Can be.
- Electronic paper is a display technology that applies the characteristics of general ink to paper, and uses reflected light as a general paper, unlike a flat panel display that uses a backlight to shine pixels. Therefore, the virtual code once output can be displayed without power consumption and is not damaged even when folded or bent.
- FIG. 6 is an exemplary diagram illustrating a state in which a smart card according to an embodiment of the present invention is tagged and used by a user terminal.
- the smart card 100 is tagged with the user terminal to be wirelessly connected to the user terminal, thereby providing a first power source. You can proceed with financial transactions by receiving.
- the virtual code is output through the display unit 141, but the virtual code is displayed in the form of a message to the user terminal. It is also possible to provide virtual code through software provided in the user terminal or installed. This can be useful when paying online, and can also be used when you need to enter or visually check the virtual code at an offline store as needed.
- FIG. 7 is an exemplary view illustrating a fingerprint recognition unit included in a smart card according to an embodiment of the present invention.
- the smart card 100 may further include a fingerprint recognition unit 150.
- the fingerprint recognition unit 150 recognizes the user's fingerprint and verifies whether the user who requested the financial transaction through the corresponding smart card 100 has a right of use. Therefore, even if the user loses the smart card 100, the third party can prevent the third party from acquiring and using the smart card 100, thereby enhancing the security by serving as a primary filtering function.
- the fingerprint recognition unit 150 recognizes the user's fingerprint, and verifies whether the right of use is determined by determining whether it matches the fingerprint information registered in advance in the smart card 100. Detailed description thereof will be described later.
- the fingerprint recognition unit 150 is shown at the upper right side for convenience, but the fingerprint recognition unit 150 is located on the smart card 100.
- FIG. 8 is a flowchart of a method for generating and providing a virtual code by a smart card according to an embodiment of the present invention.
- a step of receiving a first power from an external source (S400) and using a first power source may be performed.
- step S400 the smart card 100 is contacted or contactlessly connected to the external device 200 at the time of the transaction request to receive the first power from the external device 200
- step S500 is a smart card
- 100 is a step of generating a virtual code based on the time count measured by the time measurement module 120, using the first power supply
- step S600 provides the generated virtual code to the smart card 100 to the outside. It's a step. Detailed description of each step is omitted because it overlaps with the above.
- FIG. 9 is a flowchart illustrating a method for generating and providing a virtual code by a smart card when a fingerprint recognition unit is added according to an embodiment of the present invention.
- the method may further include a step (S450) of checking a user's fingerprint by comparing the fingerprint of the user with reference to FIG. 8.
- the smart card 100 further includes a fingerprint recognition unit 150, and the fingerprint recognition unit 150 recognizes the user's fingerprint and has a pre-stored right user's fingerprint. This step checks whether the information matches. For example, if the pre-stored fingerprint information and the input fingerprint information do not match, the smart card 100 may not proceed with the virtual code generation procedure. As another example, the smart card 100 proceeds separately from the fingerprint recognition and virtual code generation, and if the pre-stored fingerprint information and the input fingerprint information does not match, perform a separate identity authentication procedure during the financial transaction (for example, financial Enter a PIN number at the transaction terminal).
- a separate identity authentication procedure for example, financial Enter a PIN number at the transaction terminal.
- the user is issued a smart card 100 and undergoes a user registration process.
- the smart card 100 of the initial state issued to the user may be provided with a small amount of power enough to proceed with the user registration process, in this case using the above-described clock battery 122 or a separate A battery may be provided.
- the user registers user information in the smart card 100 using the small amount of power, and the user information includes fingerprint information of the user.
- the smart card 100 stores and manages fingerprint information of a user having a right to use a right, and it is also possible to add or register a user afterwards.
- FIG. 10 is a flowchart of a method for generating and providing a virtual code by a smart card when a step of verifying whether a time count matches is added according to an embodiment of the present invention.
- a step (S700) of searching for an actual card number storage location and a step (S800) of verifying whether a first time count and a second time count match in the server are further added.
- the server 300 searches for a unit count (storage location) in which the actual card number matching the virtual code received by the storage location search algorithm is stored using the virtual code verification means. Detailed descriptions of the virtual code verification means and the searching method will be given later.
- the "first time count” is a time count counted based on the time data measured by the time measurement module 120 of the smart card 100
- the "second time count” is a corresponding smart in the server 300.
- the second time count is a server ( 300 is a time count counted based on time data measured based on a GPS (Global Positioning System) base or the like.
- the server 300 verifies the virtual code received from the external device 200, the server 300 checks whether the first time count and the second time count coincide with each other so that the received virtual code is normally generated at the corresponding transaction request point. Verify that it is virtual code Detailed description of the verification process will be described later.
- 11 is a flowchart illustrating in detail a step of verifying whether a time count matches according to an embodiment of the present invention.
- the virtual code generated by the smart card 100 is provided to the external device 200 through steps S400 to S600.
- the external device 200 transmits the provided virtual code to the server 300 (S610).
- steps S700 to S830 are performed in the server 300 for convenience, but may be performed in the external device 200 itself.
- the server 300 searches for a storage location of the actual card number matching the received virtual code (S700), and a second time count in which the first time count based on the received virtual code is measured by the server 300 itself. It is verified whether or not to match (S800), and determines whether to approve the financial transaction according to the verification result (S830). Detailed description thereof will be described later with reference to FIG. 12.
- FIG. 12 is a flowchart schematically illustrating a process of verifying whether a time count matches and determining whether to approve payment according to an embodiment.
- the step S800 of verifying whether the first time count and the second time count coincide in the server 300 includes extracting the second time count (S810). And determining whether the first time count matches the second time count (S820) and determining whether to approve payment (S830-1, S830-2).
- the server 300 extracts a second time count corresponding to the found actual card number.
- the server 300 compares the extracted second time count with the first time count to determine whether they match. As a result of the determination, when the first time count and the second time count coincide with each other, the server 300 approves the payment to process the requested financial transaction, and when the mismatch is found, rejects the requested financial transaction (S830-1, S830-2).
- step S820 even if the first time count and the second time count does not perfectly match in step S820, if the difference between the first time count and the second time count falls within a specific error range can be determined to match. have. This is to allow more flexible verification in consideration of the possibility that an error occurs in the first time count measured by the smart card 100 or the second time count measured by the server 300.
- the server 300 sets an error range by a specific count before and after the second time count measured by the server 300, and if the first time count has a count value within the corresponding range, the first time count and the second time count. The payment is approved by determining that the time counts match.
- the server 300 may store and manage a time correction value in a unit count matching the actual card number.
- the "time correction value" is specified based on the error history measured for each user, and is a value different according to the user, the sun, the frequency of use, and the like. That is, the time correction value is not a fixed value but a value specified based on the measured and recorded data for each user.
- the server 300 verifies whether or not the time correction value coincides with the second time count based on the value reflected in the first time count. Through this, it is possible to minimize the transaction obstacles caused by the fundamental error that can occur in the time value measured by the time measuring device, and the time correction value that considers different usage habits for each user is used to provide more accurate time count verification. It becomes possible.
- the server 300 may include the same virtual code generation function as the smart card 100. That is, the server 300 checks whether the virtual code generated by using the same virtual code generation function and the virtual code received from the smart card 100 are identical to verify whether the virtual code is normally generated, and matches the actual card. You can search for numbers.
- the virtual code may be generated by combining a plurality of detailed codes used to verify the virtual code or search for the actual card number matching it.
- the server 300 searches for the storage location of the actual card number in the storage location search algorithm using the first code and the second code.
- the server 300 may set a search path from the start point to the storage location according to a first code and a specific search method for setting a start point of the storage location search included in the plurality of detailed codes.
- a search path from the start point to the storage location according to a first code and a specific search method for setting a start point of the storage location search included in the plurality of detailed codes.
- the server 300 sets the position corresponding to the first code as a starting point, and based on the second code according to the search method applied to the second code, the server 300 is assigned to the actual card number in the arrangement state of the k-square. Search for a matched point (ie, a particular vertex of a k-square). The actual card number matches each vertex of the k-square. The point where the first code track (that is, the first track) and the k-square correspond to the storage location search start point corresponding to the first code. The server 300 searches for a matching point of the card storage location for authentication based on the second code at the search starting point.
- the server 300 may have an angle corresponding to the second code at a position on the first track where the k-squares are in contact (for example, a specific angle of 180 degrees divided by M N to face the vertices of the k-squares). According to the indication, the vertex of the k-square that is the storage location of the actual card number can be searched based on the virtual code.
- the server 300 may refer to the entire center angle (ie, 360 degrees) based on the center of the k-square and the contact point on the first track. ) Is divided into M N , and each angle is matched to M N second codes. At this time, the direction of the line moving a certain number of unit angles (that is, 360 degrees / M N ) from the line connecting the center of the k-square and the contact point on the first track becomes a specific vertex of the k-square. Therefore, when a second code corresponding to a specific angle is received, the server 300 may search for a vertex located in the corresponding angle direction.
- the specific position of the second code may be used to determine the angle calculation direction. That is, when generating the second code using N characters (N is a natural number), the angle measurement direction may be determined by one digit. For example, when the server 300 matches the second code to each angle by dividing the entire center angle (that is, 360 degrees) based on the center of the k-square and the contact point on the first track, the center of the k-square is matched. The angle measured in the left direction or the angle measured in the right direction from the line connecting the contact point on the first track can be determined as the value of one digit.
- the method of searching for the storage location of the actual card number in the k-square based on the second code is not limited thereto, and stores a point that divides the point on the k-square corresponding to the second code and the contact point on the first track by a specific ratio.
- Various methods, such as searching by location, may be applied.
- the storage location search algorithm moves on a track based on a plurality of detailed codes constituting a virtual code and moves to a point matched with a real card number storage location.
- the point matched with the actual card number storage location may be a point on the track corresponding to the count (that is, time point) that issued the actual card number to the virtual code generating means.
- the virtual code verifying means sets the count on the track to which the code value corresponding to the first code is matched as a search start point, and the second code (or the extraction code is set to the second code). If used, the point on the track (i.e., the actual card) is returned from the search start point along the track by the count value calculated by applying the inverse function of the extraction code generation function to issue the virtual card number to the virtual code generating means. Search for the number matching the number storage location).
- the virtual code verification means 20 may perform a movement track (ie, a second movement track) for a second code arranged in parallel with a movement track (ie, a first movement track) for a first code.
- the search start point moved by the first code is set as the origin, and is arranged in the reverse direction to the moving direction according to the first code.
- the virtual code verifying means moves to the position of the code value corresponding to the second code on the second movement track, and searches for a point on the first movement track corresponding to this position to the actual card number storage position.
- the virtual code verification means requests the financial transaction proceeding or the financial transaction proceeding to the actual card number extracted from the storage location.
- the smart card 100 In order to use a virtual code while maintaining an existing financial transaction system (for example, a POS device and a PG company server when the financial transaction is payment in a store), the smart card 100 has the same number of digits as the actual card number. Branch code must generate virtual code.
- the smart card 100 generates a virtual code by combining a plurality of detailed codes, but generates a detailed code to be the code of the same digits as the actual card number.
- the virtual code may be generated by combining a plurality of detailed codes such as a fixed code, an OTP code, a conversion code, and an extraction code according to a specific rule.
- the virtual code generation function may include an OTP function, an extraction code generation function, and a detailed code combining function for generating an OTP code.
- the smart card 100 generates the OTP code based on the OTP function stored therein at the time when the virtual code generation is requested.
- the smart card 100 reflects the count (that is, the time point at which the virtual code corresponding to the actual card number is requested for the financial transaction from the user) based on the specific seed data (or serial number).
- Generate OTP code The OTP code is generated in a specific number of numerical arrays based on an OTP function and used for calculating a conversion code. That is, when the virtual code is transmitted to the virtual code verifying means (for example, a virtual code verifying server), the virtual code verifying means searches for the conversion code based on the OTP number, and then converts the converted code into the actual card number storage location search. Used as the first code or the second code used.
- the smart card 100 is used as a seed data of the OTP function, the count issued by the real card number to the specific user in the financial company server or registered the real card number in the virtual token verification server. That is, the virtual code verification means (that is, the financial company server or the virtual token verification server) uses the actual card number issuing count or the actual card number registration count distinguished for each user as seed data. Through this, the virtual code verifying means may search for the count of which the actual card number is issued or registered by using the OTP code extracted from the virtual code. In addition, through this, the smart card 100, since the actual card number of another user is registered or issued a different count, the OTP function is driven using different seed data. That is, the smart card 100 may generate different OTP codes at the same time point for each user by using different actual card number registration or issue counts as seed data for each user.
- the OTP code generated by the smart card 100 is used to calculate the conversion code used as the first code or the second code in the virtual code verification server. That is, the OTP code is input to the conversion code generation function as a seed value and used to generate a specific conversion code.
- the conversion code generation function may be stored in the virtual code verification server.
- the smart card 100 may include a conversion code generation function to generate a conversion code to the OTP code when the conversion code is used as a seed value in the extraction code generation function.
- the conversion code may be matched one-to-one with the OTP code according to a specific rule. That is, the conversion code generation function may form a one-to-one matching relationship between the OTP code and the conversion code having different digits.
- the conversion code is calculated by inputting a count value for generating the OTP code and a virtual code into a conversion code generation function as a seed value. That is, the conversion code generation function may generate a different conversion code according to the count value even if the same OTP value is used as the seed value by using the OTP code and the count value requested for generating the virtual code as the seed value.
- the OTP code is a numeric string having a smaller number of digits than the conversion code
- the first code or the second code used for searching the actual card number storage location may be used as the number of conversion codes when the OTP code is larger than the OTP code.
- the smart card 100 when the fixed code is newly assigned to a virtual code of a specific card type, the smart card 100 generates a specific number combination that is placed in place of the valid period as a variable code,
- the variable code and the OTP code can be used together as the seed (i.e. variable) of the conversion code generation function. That is, the conversion code is generated by using the variable code and the OTP code as seed values.
- the number combinations arranged in the validity period are generated by changing each unit count, and can be used as the actual validity period, and are included within the maximum period from the current count.
- the validity period must be a value within the validity period from the present time. For example, when the valid period of the actual card is five years, the smart card 100 generates a number combination corresponding to the year and month combination within five years from the time the payment is requested according to a specific rule.
- the number difference between the combination of the OTP code and the variable code and the conversion code is reduced. For example, if a number combination within 5 years is used within the expiration date, and only 3 digits are used as the OTP code and 9 digits are used as the conversion code, 60 number combinations may be used as the variable code.
- the combination of codes is 60 * 10 3 , so that the difference in the number of cases is reduced compared to using only OTP codes as seed values without variable codes.
- the smart card 100 serves to generate an extraction code used as the first code or the second code used for the actual card number storage location search in the virtual code verification means (for example, the virtual code verification server).
- the virtual code verifying means uses the converted code calculated based on the OTP code as the first code
- the virtual code verifying means uses the extracted code as the second code. That is, the conversion code or the extraction code is used as the first code or the second code according to the condition set by the virtual code verification means.
- the first code is for setting a starting point for searching for a storage position of an actual card number in the virtual code verification means
- the second code is a search path from the starting point to the storage position according to a specific search method. To set it.
- the extraction code corresponds to a conversion code calculated from an OTP code generated at the same count, so that the virtual code verification means is generated based on the extraction code in the virtual code of the specific count and the OTP code in the virtual code of the specific count.
- the actual code number storage location is searched using the conversion code.
- the matching relationship between the conversion code and the extraction code and the first code and the second code may be set in advance in the smart card 100 and the virtual code verification means (for example, the virtual code verification server). If the matching relationship between the conversion code and the extraction code and the first code and the second code is applied inversely, the virtual code verification server cannot search the storage location of the actual card number, so when the virtual code generation device is issued or when the virtual code generation function is stored. Is set in advance.
- the smart card 100 includes, in one embodiment, an extraction code generation function that has a correlation with the OTP function. That is, the smart card 100 includes a function for generating a code value at the same count, which can be used with a conversion code based on an OTP code generated at a specific count, to search the actual card number storage location, as an extraction code generation function. do.
- the smart card 100 inputs the OTP code itself into the extraction code generation function as a seed value, the extraction code that can find the actual card number storage location with the conversion code (that is, converted to a specific count) Extract code that correlates with the code).
- the smart card 100 includes a conversion code generation function that calculates a conversion code based on the OTP code in the same way as the virtual code verification server, and generates the OTP code generated by the smart card 100. The conversion code may be generated based on the extracted code, and the extracted code may be generated by inputting the conversion code as a seed into the extraction code generation function.
- the extraction code is generated as all or part of the number of numbers except the fixed code and the OTP code from the total number of virtual codes. That is, the smart card 100 has a valid code (for example, 4 digits) and a fixed code (for example, a total of 23 digits if the card identification number is 16 digits and the card security code is 3 digits). For example, all or part of the number of digits (for example, the range excluding the fixed code in the card identification number and the 13 digits including the range of the card security code) is a combination of the extraction code and the OTP code.
- the columns are arranged.
- the smart card 100 when the last digit of the card identification number is used as a check digit, the smart card 100 combines the extraction code and the OTP code in the remaining digits (for example, 12 digits) except the check digit digit. Array of numbers. Specifically, the virtual code generation unit 130 combines the OTP code and the extraction code through a detailed code combining function, and lists them in the position excluding the fixed code from the card identification number and the position of the card security code.
- the smart card 100 generates an OTP code with fewer digits than the conversion code used as the first code or the second code in the virtual code verification means.
- the OTP code is generated by the number of card security codes in the actual card number
- the second code is a number of numbers excluding the fixed code, the OTP code, and an expiration date from the total number of virtual codes. It is generated in whole or in part. That is, if the card security code is 3 digits, the smart card 100 generates an OTP code with 3 digits, and the fixed code 6 digits, the expiration date 4 digits, the OTP code 3 digits and the check digit 1 out of the total number of 23 card numbers. Generate extraction code with 9 digits except digits.
- the virtual code growth value can be used for the extraction code 9 digits in the place of the limited actual card number, the number of codes that can be used as the extraction code can be increased to improve security.
- the extraction code can generate 9 digits with 10 numbers from 0 to 9, thereby utilizing 10 9 codes.
- the conversion code generated based on the OTP code may be generated as a numeric string having the same number of digits as the extraction code.
- the conversion code and the extraction code may be used as the first code or the second code in the virtual code verification server.
- a large part of the virtual code can be utilized for the extraction code (ie, 12 digits) in the area that can be used for the OTP code and the extraction code. .
- the smart card 100 is given a number of digits to the extraction code that is used directly as the first code or the second code, because the OTP code is given to the rest of the security Can improve.
- the user receives the smart card 100 registered in the virtual code verification server.
- the smart card 100 for the user is applied.
- the smart card 100 is registered at a specific location (that is, a storage location corresponding to the time point at which the application is issued) within the virtual code verification server. After receiving the smart card 100, the user can use it after receipt confirmation without going through a separate registration procedure.
- the user when the user receives the smart card 100, the user performs a registration process through a dedicated application of the smart card 100.
- a dedicated application of the smart card 100 For example, an envelope or a case including a smart card 100 received by a user in an envelope or a case (for example, a small battery to which the IC connector 111 of the smart card 100 is connected for fingerprint registration of the user).
- the smart card 100 stores the starting point of use and transmits the starting point of use data to the virtual code verification server through a dedicated application.
- the user may correct the point of use in the server in the process of using the smart card 100 for payment. have.
- Smart card 100 may perform a financial transaction procedure for a specific actual card number.
- the user may perform a financial transaction procedure using a specific real card number registered by using the smart card 100 in the virtual code verification server. For example, when the online or offline payment is made with the smart card 100, the virtual code verification server searches for the actual card number registered based on the virtual code to make the payment.
- the user may change the card to which the smart card 100 is connected to perform a financial transaction using a dedicated application.
- the virtual code verification server may perform a financial transaction by searching for the actual card number of the changed card based on the virtual code provided by the smart card. That is, the smart card generates and provides a virtual code corresponding to the financial transaction time point based on the virtual code generation function without any change, but as the card is changed by a dedicated application, the user uses the virtual code generated from the smart card. You can proceed with the financial transaction with the card you want to use at this time.
- the user requests the server 300 to change the basic card through a dedicated application.
- the user selects a basic card through an application built in or installed in the user terminal.
- the user may request a basic card change by selecting an image of the card or selecting an identification number.
- the server 300 searches the UID of the smart card 100 based on the virtual card number, extracts the actual card number storage space connected to the UID, and changes the basic card in the actual card number storage space. For example, if the identification number of the card preset as the primary card is '1' and the identification number of the basic card requested to be changed by the user is '3', the server 30 stores '3' in the basic card setting area. do. After that, when the payment request is received from the user terminal, the server 300 checks the identification information of the basic card, for example, '3' in the basic card setting area, and the identification number corresponds to '3' in the card number storage area. The financial card is processed by extracting the actual card number.
- the dedicated application may include the same virtual code generation function as the smart card 100 to change the card. Specifically, since the virtual code generated by the same rule as the smart card 100 is required to search the UID to which the real card number storage space of the user's actual card number is stored, the dedicated application is the same as the smart card 100. Contains the virtual code generation function.
- the steps of a method or algorithm described in connection with an embodiment of the present invention may be implemented directly in hardware, in a software module executed by hardware, or by a combination thereof.
- the software module may be a random access memory (RAM), read only memory (ROM), erasable programmable ROM (EPROM), electrically erasable programmable ROM (EEPROM), flash memory, hard disk, removable disk, CD-ROM, or It may reside in any form of computer readable recording medium well known in the art.
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
Description
Claims (19)
- 외부기기로부터 제1 전원을 공급받고, 상기 외부기기와 통신할 수 있는, 통신 인터페이스;특정시점을 기준으로 부여되는 초기시간값으로부터 시간데이터를 측정하는, 시간측정모듈;상기 제1 전원을 이용하여 상기 시간데이터를 기초로 카운트되는 시간카운트를 기반으로 가상코드를 생성하는, 가상코드생성부; 및상기 가상코드를 외부로 제공하는, 가상코드제공부를 포함하고,상기 가상코드는,가상카드번호 또는 가상토큰이고, 스마트카드에 사전 저장된 가상코드생성함수에 의해 실제카드번호에 매칭된 코드로 생성되는 것으로서, 가상코드검증서버에서 상기 실제카드번호 탐색에 이용되는 것이며,상기 시간측정모듈은,상기 시간데이터를 측정하는 클락과, 상기 클락에 제2 전원을 공급하는 클락용배터리를 포함하는 것인,가상코드를 생성 및 제공하는 스마트카드.
- 제1항에 있어서,상기 통신 인터페이스는, IC커넥터 또는 안테나 중 하나 이상을 포함하고,상기 IC커넥터는, 상기 스마트카드가 접촉식으로 사용될 때, 상기 외부기기와 물리적으로 접촉하여 상기 외부기기로부터 제 1전원을 공급받고,상기 안테나는, 상기 스마트카드가 비접촉식으로 사용될 때, 상기 외부기기와 물리적으로 접촉하지 않고 상기 외부기기로부터 제 1전원을 공급받는,가상코드를 생성 및 제공하는 스마트카드.
- 제2항에 있어서,상기 외부기기는 사용자단말이며,상기 제1 전원은 스마트카드가 상기 사용자단말에 태깅되어 공급받는 것인,가상코드를 생성 및 제공하는 스마트카드.
- 제3항에 있어서,상기 가상코드제공부는 디스플레이부를 포함하고, 상기 디스플레이부에 상기 가상코드를 코드값 또는 이미지코드로 출력하는,가상코드를 생성 및 제공하는 스마트카드.
- 제4항에 있어서,사용자의 지문을 인식하여 사용권한을 확인하는 지문인식부를 더 포함하고,상기 가상코드생성부는 상기 지문인식부를 통해 인식된 지문이 사전 등록된 지문정보와 일치하는 경우에만 가상코드를 생성하는,가상코드를 생성 및 제공하는 스마트카드.
- 제1항에 있어서,상기 시간측정모듈에서 측정된 제1 시간카운트는 상기 가상코드검증서버에서 측정된 제2 시간카운트와 일치하는지 검증되고,상기 제1 시간카운트와 상기 제2 시간카운트의 차이가 특정한 오차범위 내인 경우 일치하는 것으로 판단되는,가상코드를 생성 및 제공하는 스마트카드.
- 제6항에 있어서,상기 가상코드검증서버에는 상기 실제카드번호와 매칭되는 단위카운트에 시간보정값이 저장 및 관리되며, 상기 시간보정값은 각 사용자별로 측정된 오차 이력을 기반으로 특정되는 것이고,상기 제1 시간카운트는 상기 시간보정값이 반영되어 검증되는,가상코드를 생성 및 제공하는 스마트카드.
- 제1항에 있어서,상기 가상코드는 복수의 세부코드를 조합하여 생성되는 것인,가상코드를 생성 및 제공하는 스마트카드.
- 제8항에 있어서,상기 복수의 세부코드는,저장위치탐색의 시작지점을 설정하는 제1 코드; 및특정한 탐색방식에 따라, 상기 시작지점으로부터 상기 저장위치로의 탐색경로를 설정하는 제2 코드를 포함하는 것인,가상코드를 생성 및 제공하는 스마트카드.
- 스마트카드가 외부로부터 제1 전원을 공급받는 단계;상기 스마트카드가 상기 제1 전원을 이용하여 시간카운트를 기반으로 가상코드를 생성하는 단계; 및상기 스마트카드가 상기 가상코드를 외부로 제공하는 단계를 포함하고,상기 가상코드는,가상카드번호 또는 가상토큰이고, 상기 스마트카드에 사전 저장된 가상코드생성함수에 의해 실제카드번호에 매칭된 코드로 생성되는 것으로서, 가상코드검증서버에서 상기 실제카드번호 탐색에 이용되는 것이며,상기 시간카운트는,상기 스마트카드에 포함된 시간측정모듈에 의해 특정시점을 기준으로 부여되는 초기시간값으로부터 측정된 시간데이터를 기초로 카운트되는 것이고,상기 시간측정모듈은,상기 시간데이터를 측정하는 클락과, 상기 클락에 제2 전원을 공급하는 클락용배터리를 포함하는 것인,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 제10항에 있어서,상기 스마트카드는, IC커넥터 또는 안테나 중 하나 이상을 포함하고,상기 IC커넥터는, 상기 스마트카드가 접촉식으로 사용될 때, 외부기기와 물리적으로 접촉하여 상기 외부기기로부터 제 1전원을 공급받고,상기 안테나는, 상기 스마트카드가 비접촉식으로 사용될 때, 상기 외부기기와 물리적으로 접촉하지 않고 상기 외부기기로부터 제 1전원을 공급받는,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 제11항에 있어서,상기 외부기기는 사용자단말이며,상기 외부로부터 제1 전원을 공급받는 단계는, 스마트카드가 상기 사용자단말에 태깅되어 제1 전원을 공급받는 것인,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 제12항에 있어서,상기 스마트카드는 디스플레이부를 포함하고,상기 가상코드를 외부로 제공하는 단계는, 상기 디스플레이부에 상기 가상코드를 코드값 또는 이미지코드로 출력하는 것인,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 제13항에 있어서,상기 스마트카드가 사용자의 지문을 인식하여 사용권한을 확인하는 단계를 더 포함하고,상기 스마트카드는 인식된 지문이 사전 등록된 지문정보와 일치하는 경우에만 가상코드를 생성하는,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 제10항에 있어서,상기 스마트카드에서 측정된 제1 시간카운트는 상기 가상코드검증서버에서 측정된 제2 시간카운트와 일치하는지 검증되고,상기 제1 시간카운트와 상기 제2 시간카운트의 차이가 특정한 오차범위 내인 경우 일치하는 것으로 판단되는,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 제15항에 있어서,상기 가상코드검증서버에는 상기 실제카드번호와 매칭되는 단위카운트에 시간보정값이 저장 및 관리되며, 상기 시간보정값은 각 사용자별로 측정된 오차 이력을 기반으로 특정되는 것이고,상기 제1 시간카운트는 상기 시간보정값이 반영되어 검증되는,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 제10항에 있어서,상기 가상코드는 복수의 세부코드를 조합하여 생성되는 것인,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 제17항에 있어서,상기 복수의 세부코드는,저장위치탐색의 시작지점을 설정하는 제1 코드; 및특정한 탐색방식에 따라, 상기 시작지점으로부터 상기 저장위치로의 탐색경로를 설정하는 제2 코드를 포함하는 것인,스마트카드 기반의 가상코드를 생성 및 제공하는 방법.
- 하드웨어인 컴퓨터와 결합되어, 제10항 내지 제18항 중 어느 한 항의 방법을 실행시키기 위하여 매체에 저장된, 스마트카드 기반의 가상코드 생성 및 제공 프로그램.
Priority Applications (7)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2021506752A JP7192089B2 (ja) | 2018-08-09 | 2019-08-06 | 仮想コードを生成及び提供するスマートカードとその方法及びプログラム |
SG11202006096VA SG11202006096VA (en) | 2018-08-09 | 2019-08-06 | Smart card for generating and providing virtual code, and method and program therefor |
EP19848742.3A EP3712830B1 (en) | 2018-08-09 | 2019-08-06 | Virtual code generating and providing smart card, method therefor, and program therefor |
CN201980053676.8A CN112567413A (zh) | 2018-08-09 | 2019-08-06 | 生成并提供虚拟代码的智能卡及其方法和程序 |
US16/906,606 US11922411B2 (en) | 2018-08-09 | 2020-06-19 | Smart card for generating and providing virtual code, and method and program therefor |
IL280506A IL280506B2 (en) | 2018-08-09 | 2021-01-28 | Smart card for issuing and providing a virtual code, and method and software therefor |
JP2022195446A JP2023027187A (ja) | 2018-08-09 | 2022-12-07 | 仮想コードを生成及び提供するスマートカードとその方法及びプログラム |
Applications Claiming Priority (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR20180093349 | 2018-08-09 | ||
KR10-2018-0093349 | 2018-08-09 | ||
KR1020190094493A KR102115013B1 (ko) | 2018-08-09 | 2019-08-02 | 가상코드를 생성 및 제공하는 스마트카드와 그 방법 및 프로그램 |
KR10-2019-0094493 | 2019-08-02 |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US16/906,606 Continuation US11922411B2 (en) | 2018-08-09 | 2020-06-19 | Smart card for generating and providing virtual code, and method and program therefor |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2020032517A1 true WO2020032517A1 (ko) | 2020-02-13 |
Family
ID=69413808
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/KR2019/009760 WO2020032517A1 (ko) | 2018-08-09 | 2019-08-06 | 가상코드를 생성 및 제공하는 스마트카드와 그 방법 및 프로그램 |
Country Status (1)
Country | Link |
---|---|
WO (1) | WO2020032517A1 (ko) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2023003746A1 (en) * | 2021-07-20 | 2023-01-26 | Capital One Services, Llc | Generating account numbers using biometric information obtained via a generic transaction card |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20020096353A (ko) * | 2001-06-19 | 2002-12-31 | 한국모바일페이먼트서비스(주) | 일회용 가상 카드 서비스 시스템 및 방법 |
KR20150005788A (ko) * | 2013-07-05 | 2015-01-15 | 주식회사 비즈모델라인 | 사용자 키 값을 이용한 사용자 인증 방법 |
KR101583515B1 (ko) * | 2014-11-24 | 2016-01-12 | 김승훈 | Rf 지문형 스마트 콤비 카드 및 이를 이용한 거래 방법 |
KR20160036471A (ko) * | 2014-08-27 | 2016-04-04 | 유한회사 실릭스 | 오티피 기반의 가상 번호 결제 방법, 컴퓨터 판독가능한 기록매체 및 시스템 |
KR101675927B1 (ko) * | 2015-10-08 | 2016-11-14 | 주식회사 지씨엠씨 | 신용 조회 단말기, 결제 관리 서버, 결제 관리 방법, 결제 단말, 결제 단말의 동작방법, 결제 관리를 위해 매체에 저장된 컴퓨터 프로그램 및 신용 조회 단말기 |
-
2019
- 2019-08-06 WO PCT/KR2019/009760 patent/WO2020032517A1/ko active Application Filing
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20020096353A (ko) * | 2001-06-19 | 2002-12-31 | 한국모바일페이먼트서비스(주) | 일회용 가상 카드 서비스 시스템 및 방법 |
KR20150005788A (ko) * | 2013-07-05 | 2015-01-15 | 주식회사 비즈모델라인 | 사용자 키 값을 이용한 사용자 인증 방법 |
KR20160036471A (ko) * | 2014-08-27 | 2016-04-04 | 유한회사 실릭스 | 오티피 기반의 가상 번호 결제 방법, 컴퓨터 판독가능한 기록매체 및 시스템 |
KR101583515B1 (ko) * | 2014-11-24 | 2016-01-12 | 김승훈 | Rf 지문형 스마트 콤비 카드 및 이를 이용한 거래 방법 |
KR101675927B1 (ko) * | 2015-10-08 | 2016-11-14 | 주식회사 지씨엠씨 | 신용 조회 단말기, 결제 관리 서버, 결제 관리 방법, 결제 단말, 결제 단말의 동작방법, 결제 관리를 위해 매체에 저장된 컴퓨터 프로그램 및 신용 조회 단말기 |
Non-Patent Citations (1)
Title |
---|
See also references of EP3712830A4 * |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2023003746A1 (en) * | 2021-07-20 | 2023-01-26 | Capital One Services, Llc | Generating account numbers using biometric information obtained via a generic transaction card |
US11663601B2 (en) | 2021-07-20 | 2023-05-30 | Capital One Services, Llc | Generating account numbers using biometric information obtained via a generic transaction card |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
KR102370173B1 (ko) | 가상코드를 생성 및 제공하는 스마트카드와 그 방법 및 프로그램 | |
WO2017065583A1 (ko) | 이동통신단말기간 카드 결제를 수행하는 모바일 카드 결제 시스템 및 방법 | |
WO2014030876A1 (en) | Method and apparatus for determining item based on interaction environment | |
WO2014030836A1 (en) | Method and system for authenticating transaction request from device | |
WO2014030875A1 (en) | Apparatus and method for providing interaction information by using image on device display | |
WO2014171680A1 (en) | Mobile terminal, security server and payment method thereof | |
WO2017061758A1 (ko) | 세그먼트 블록 기반 수기서명 인증 시스템 및 방법 | |
WO2017176051A1 (ko) | 모바일 기기를 이용하여 사물 인터넷 기기를 인증하는 방법 및 시스템 | |
WO2020032498A1 (ko) | 인증용가상코드를 이용한 사용자 인증 방법 및 시스템 | |
WO2017039287A1 (ko) | 세그먼트 기반 수기서명 인증 시스템 및 방법 | |
WO2017099555A1 (ko) | 시간분할 세그먼트 블록 기반 수기서명 인증 시스템 및 방법 | |
WO2015076605A1 (ko) | 터치와 근거리 통신 기반의 전자 도장 및 이를 이용한 전자 날인 인증 시스템 | |
WO2021157790A1 (ko) | 얼굴 정보를 이용한 등록 및 결제 방법, 장치, 및 시스템 | |
WO2020032517A1 (ko) | 가상코드를 생성 및 제공하는 스마트카드와 그 방법 및 프로그램 | |
WO2020171516A1 (en) | Electronic device for authenticating biometric information and operating method thereof | |
WO2019031716A2 (ko) | 가상토큰 기반의 결제제공시스템, 가상토큰생성장치, 가상토큰검증서버, 가상토큰 기반의 결제제공방법 및 가상토큰 기반의 결제제공프로그램 | |
WO2016175422A1 (ko) | 모바일 스탬프 장치 | |
WO2016143964A1 (en) | Terminal and operating method thereof | |
WO2019009685A1 (ko) | 얼굴사진이 표출되는 여권인증카드에 의한 위변조 여권 검사방법 및 그 처리시스템 | |
WO2022139474A1 (ko) | 디지털 아이디 정보를 제공하는 전자 장치 및 그 방법 | |
WO2021235673A1 (ko) | 해외 금융거래 제어 시스템 및 방법 | |
WO2020162706A1 (ko) | 가상법인카드 기반의 금융거래를 제공하는 방법, 프로그램 및 시스템 | |
WO2019017705A1 (ko) | 전자 카드 및 전자 카드 동작 방법 | |
WO2021040462A1 (ko) | 가상법인카드 기반의 금융거래를 제공하는 방법, 프로그램 및 시스템 | |
WO2017018861A1 (ko) | 생체정보를 이용하는 금융기기 및 그것의 동작방법 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 19848742 Country of ref document: EP Kind code of ref document: A1 |
|
ENP | Entry into the national phase |
Ref document number: 2019848742 Country of ref document: EP Effective date: 20200617 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 280506 Country of ref document: IL |
|
ENP | Entry into the national phase |
Ref document number: 2021506752 Country of ref document: JP Kind code of ref document: A |
|
NENP | Non-entry into the national phase |
Ref country code: DE |