WO2020184815A1 - One time password-based mobile automatic payment method and system using same - Google Patents

One time password-based mobile automatic payment method and system using same Download PDF

Info

Publication number
WO2020184815A1
WO2020184815A1 PCT/KR2019/017736 KR2019017736W WO2020184815A1 WO 2020184815 A1 WO2020184815 A1 WO 2020184815A1 KR 2019017736 W KR2019017736 W KR 2019017736W WO 2020184815 A1 WO2020184815 A1 WO 2020184815A1
Authority
WO
WIPO (PCT)
Prior art keywords
processing device
payment processing
payment
mobile device
service server
Prior art date
Application number
PCT/KR2019/017736
Other languages
French (fr)
Korean (ko)
Inventor
강민
목인경
Original Assignee
강민
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 강민 filed Critical 강민
Publication of WO2020184815A1 publication Critical patent/WO2020184815A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3227Aspects of commerce using mobile devices [M-devices] using secure elements embedded in M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3223Realising banking transactions through M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction

Definitions

  • the present invention relates to a one-time password (OTP)-based mobile automatic payment method and a system using the same, and more specifically, an OTP-based mobile in which mobile payment is automatically made without a user directly manipulating a mobile device during a transaction. It relates to an automatic payment method and a system using the same.
  • OTP one-time password
  • this simple payment method is also a method that is possible only when the mobile device is taken out, and there is a problem that a waiting time may occur in the process, since the mobile device must be taken out to run the application.
  • a payment password there is a risk of leakage of the payment password, which may cause security problems.
  • the present invention was created to solve the above problems, and an object of the present invention is to simplify the mobile payment process, and if the user inputs the identification information previously set in the payment processing device without separate operation of the mobile device It is to provide a mobile automatic payment method and system based on One Time Password (OTP) that automatically makes mobile payments.
  • OTP One Time Password
  • an object of the present invention is to provide an OTP-based mobile automatic payment method and system that enhances the security of mobile payments using OTP.
  • the user identification information may be matched with the mobile device.
  • the step (b) comprises: receiving, by the service server, an OTP of a payment processing device generated from a mobile automatic payment program using an OTP installed in the payment processing device; And checking, by the service server, the validity of the payment processing device using the payment processing device identification information and the OTP of the payment processing device. It may include.
  • the step (b) includes: receiving, by the service server, at least one of real-time location information or communication access information of the payment processing device; It may further include.
  • the mobile device may be characterized in that the short-range communication mode is turned on by receiving a short-range communication activation signal from the service server.
  • the short-range communication may be one of Bluetooth communication, high frequency communication, RFID communication, beacon communication, NFC communication, and Wi-Fi.
  • the step (d) includes, by the mobile device, broadcasting a first OTP generated from a mobile automatic payment program using an OTP installed in the mobile device according to a command of the service server; Broadcasting, by the payment processing device, a second OTP generated in a mobile automatic payment program using an OTP installed in the payment processing device according to a command of the service server; And detecting, by the mobile device and the payment processing device, each other's short-range communication unit names for a predetermined time by short-range communication. And when the mobile device detects the second OTP and the payment processing device detects the first OTP, the mobile device and the payment processing device are authenticated with each other.
  • the step (d) includes the steps of measuring, by the mobile device, a first distance from the mobile device to the payment processing device by short-range communication; Measuring a second distance from the payment processing device to the mobile device by short-range communication of the payment processing device; And determining, by the service server, whether the first distance and the second distance are within a set distance by receiving the first distance and the second distance. It may further include.
  • the step (d) comprises: receiving, by the service server, an OTP of a mobile device generated by a mobile automatic payment program using an OTP installed in the mobile device; And checking, by the service server, the validity of the mobile device by using the OTP of the mobile device. It may further include.
  • the user identification information may be matched with the mobile device.
  • the user identification information may include at least one payment source, and the user identification information may have a different value for each payment source.
  • An OTP-based mobile automatic payment system includes a mobile device having a short-range communication function and installed with a mobile automatic payment program using OTP; A payment processing device in which a mobile automatic payment program using the OTP is installed, and for a user to request a payment online or offline; And the OTP generated by the mobile automatic payment program using the OTP installed in the mobile device and the payment processing device, respectively, to check the validity of the mobile device and the payment processing device, and generated in the mobile automatic payment program using the OTP.
  • the service server receives the OTP of the payment processing device generated by the mobile automatic payment program using the OTP installed in the payment processing device, and uses the payment processing device identification information and the OTP of the payment processing device. It can be characterized by confirming justification.
  • the mobile device may be characterized in that the short-range communication mode is turned on by receiving a short-range communication activation signal from the service server.
  • the short-range communication may be one of Bluetooth communication, high frequency communication, RFID communication, beacon communication, NFC communication, and Wi-Fi.
  • the mobile device and the payment processing device broadcasting a first OTP generated by a mobile automatic payment program using an OTP installed in the mobile device; Broadcasting, by the payment processing device, a second OTP generated in a mobile automatic payment program using an OTP installed in the payment processing device according to a command of the service server; And detecting, by the mobile device and the payment processing device, each other's short-range communication unit names for a predetermined time by short-range communication. And, when the mobile device detects the second OTP and the payment processing device detects the first OTP, the mobile device and the payment processing device are authenticated with each other.
  • the distance measured by the mobile device from the mobile device to the payment processing device by short-range communication and the distance measured by the payment processing device from the payment processing device to the mobile device by short-range communication are all set distances. If determined to be within, it may be characterized in that the payment request is approved.
  • the service server receiving user identification information from the payment processing device; Providing, by the service server, a name of a short-range communication unit of the payment processing device to a mobile device corresponding to the user identification information, and providing a name of a short-range communication unit of the mobile device to the payment processing device; And receiving, by the service server, information indicating whether short-range communication between the payment processing device and the mobile device is possible, from the payment processing device or the mobile device.
  • the service server determines that short-range communication between the payment processing device and the mobile device is possible, a subsequent step of approving a payment request requested from the payment processing device using a payment source according to the user identification information
  • the mobile device is configured to broadcast the name of the short-range communication unit of the mobile device
  • the payment processing device is configured to broadcast the name of the short-range communication unit of the payment processing device.
  • the subsequent step may be executed only when the service server determines that short-range communication is possible between the payment processing device and the mobile device.
  • the name of the near field communication unit of the payment processing device may be a second OTP generated by the payment processing device
  • the name of the near field communication unit of the mobile device may be a first OTP generated by the mobile device
  • the time taken to execute the application of the mobile device is omitted, thereby enabling fast payment.
  • OTP One Time Password
  • the short-range communication mode since the short-range communication mode is turned on by receiving a short-range communication activation signal from the service server, unnecessary battery consumption of the mobile device can be prevented.
  • FIG. 1 is a system diagram of a mobile automatic payment system based on One Time Password (OTP) according to an embodiment of the present invention.
  • OTP One Time Password
  • FIG. 2 is a block diagram of a mobile device providing an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • FIG. 3 is a block diagram of a service server providing an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • FIG. 4 is a block diagram of a payment processing device providing an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • FIG. 5 is a flowchart illustrating an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • FIG. 6 is a flowchart illustrating an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • first and second are used to distinguish one component from other components, and the scope of rights is not limited by these terms.
  • a first component may be referred to as a second component, and similarly, a second component may be referred to as a first component.
  • the identification code (for example, a, b, c, etc.) is used for convenience of explanation, and the identification code does not describe the order of each step, and each step is clearly in a specific order in context. Unless otherwise stated, it may occur differently from the specified order. That is, each of the steps may occur in the same order as specified, may be performed substantially simultaneously, or may be performed in the reverse order.
  • the present invention can be implemented as computer-readable codes on a computer-readable recording medium
  • the computer-readable recording medium includes all types of recording devices storing data that can be read by a computer system.
  • Examples of computer-readable recording media include ROM, RAM, CD-ROM, magnetic tape, floppy disk, optical data storage device, and the like, and are implemented in the form of a carrier wave (for example, transmission over the Internet). Also includes. Further, the computer-readable recording medium is distributed over a computer system connected by a network, so that the computer-readable code can be stored and executed in a distributed manner.
  • FIG. 1 is a system diagram of a mobile automatic payment system based on One Time Password (OTP) according to an embodiment of the present invention.
  • OTP One Time Password
  • an OTP-based mobile automatic payment system includes a short-range communication 100, a mobile device 200, a service server 300, a payment processing device 400, and a financial institution server 500. Includes.
  • the short-range communication 100 means short-range communication that can be utilized to perform the OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • the short-range communication 100 may be one of Bluetooth communication, high-frequency communication, RFID communication, beacon communication, NFC communication, and Wi-Fi, but is not limited thereto.
  • short-range communication units 270 and 470 may be integrally included in the mobile device 200 and the payment processing device 400 described in detail below, or may be provided detachably.
  • the mobile device 200 refers to a mobile device that is carried by a user during mobile automatic payment using an OTP-based mobile automatic payment method, and has a short-range communication and communication function through a communication company, thereby serving as an authentication means for payment.
  • This may include smartphones, tablet PCs, mobile PCs, and various wearable devices.
  • the mobile device 200 is equipped with a mobile automatic payment program (not shown) using OTP in order to perform the OTP-based mobile automatic payment method according to an embodiment of the present invention, and the user uses the mobile device 200 You may have already signed up for membership and automatically logged in to a mobile automatic payment program using OTP.
  • the service server 300 includes the mobile device 200 and the payment processing device 400 when a user has already registered as a member and is automatically logged into a mobile automatic payment program using OTP through the mobile device 200.
  • Mobile automatic payment program using the OTP installed in the mobile device 200 and the payment processing device 400 by activating the mobile automatic payment program when the distance between them is connected by wire or wireless to the specified specific distance.
  • Each of the OTPs generated in may be received to authenticate the mobile device 200 and the payment processing device 400, and approve a payment request.
  • the payment processing device 400 is provided with a communication function through short-range communication and a communication company, so that when a user inputs user identification information for payment in an online and offline payment environment, the user does not need to operate the mobile device 200. It means a device that can pay.
  • the payment processing device 400 is all devices that can perform offline payment functions, such as POS (Post Of Sale), kiosk (KIOSK), smartphones and tablet PCs, wearable devices and various mobile communication devices in offline stores. This may be the case.
  • the payment processing device 400 is equipped with a mobile automatic payment program (not shown) using OTP in order to perform the OTP-based mobile automatic payment method according to an embodiment of the present invention, and the payment processing device 400 is an OTP You may have already signed up and logged in to the mobile automatic payment program using.
  • the financial institution server 500 refers to a server that determines whether payment is possible using user identification information and payment information mediated through the service server 300. It refers to all companies that provide payment services such as credit card companies, banks, and Internet banks.
  • FIG. 2 is a block diagram of a mobile device 200 that provides an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • a mobile device 200 includes a data transmission/reception unit 210 for transmitting and receiving data to and from the service server 300, an OTP generation unit 230, a distance calculation unit 250, and A short-range communication unit 270 may be included.
  • the mobile device 200 may generate an OTP in the OTP generation unit 230 using an OTP-based mobile payment program. Since the OTP is generated in synchronization with the OTP generator of the service server, the service server can use it to check the validity of the mobile device 200.
  • the distance calculating unit 250 may measure a first distance from the mobile device 200 to the payment processing device 400 through short-range communication.
  • the short-range communication unit 270 may broadcast the name of the short-range communication unit of the mobile device 200 from the service server, and detect the name of the short-range communication unit of the payment processing device.
  • FIG. 3 is a block diagram of a service server 300 that provides an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • the service server 300 includes a data transmission/reception unit 310, an OTP-based mobile automatic payment DB 330, a validity check unit 350, a command unit 370, and a distance.
  • a determination unit 390 and a payment availability check unit 395 may be included.
  • the user's subscription information of a mobile automatic payment program using OTP user identification information, payment log, mobile device 200 or payment processing device 400 matching each user, identification information,
  • An OTP generation unit 331 and an OTP determination unit 333 for generating OTP in synchronization with OTP generated for each mobile device and payment processing device may be included.
  • User identification information is set when a user subscribes to a mobile automatic payment program using OTP through the mobile device 200 or before the mobile automatic payment method according to an embodiment of the present invention, and means all information that can identify the user. can do.
  • it may be a text created by combining some or all of numbers, letters, and special symbols, or a user's biometric information such as a user's fingerprint, voice, or iris, or a vehicle registration number.
  • the user identification information may be matched 1:1 with the user's mobile device, and a single mobile device may include a plurality of user identification information.
  • the user identification information may vary depending on the payment source. For example, user identification information may be set differently for each of the user's first card, second card, and third card, so that the user selects a payment card to pay according to the user identification information input to the payment processing device. I can.
  • each user identification information may be 1:1 matched with the payment source used by the user.
  • the user can select a payment card using different user identification information without taking out the mobile device.
  • the service server 300 may receive a short-range communication unit name and a distance calculation value sensed by the mobile device 200 and the payment processing device 400 through the data transmission/reception unit 310.
  • the OTP generation unit 331 is synchronized with the OTP generation unit of the mobile device or payment processing device on which the mobile automatic payment program is installed to generate the OTP in the same manner.
  • the OTP determination unit 333 determines whether the OTP received from the mobile device and the payment processing device and the OTP generated by the OTP generation unit 331 are the same.
  • the validity check unit 350 compares the OTP generated in the OTP-based mobile automatic payment DB according to the OTP generation method of the corresponding payment processing device from the identification information of the payment processing device with the OTP generated in the payment processing device. The validity of the payment processing device can be confirmed. In addition, in the OTP-based mobile automatic payment DB, the validity of the payment processing device may be verified by comparing the OTP generated according to the OTP generation method of the corresponding mobile device with the OTP generated by the mobile device.
  • the command unit 370 is a short-range communication device activation command unit 371 that issues an activation command of the short-range communication unit to the mobile device, and transmits the name of each short-range communication unit to the mobile device and the payment processing device, and the mobile device and the payment processing device Instructing the broadcasting command unit 373 and the mobile device to calculate the first distance from the mobile device to the payment processing device and the second distance from the payment processing device to the mobile device.
  • a distance calculation command unit 375 may be included.
  • the distance determination unit 390 may determine whether the mobile device and the payment processing device are within a distance in which short-range communication is possible from a distance received from the mobile device and the payment processing device.
  • it may further include a payment availability check unit 399 to check whether the payment source can be settled through the financial institution server.
  • FIG. 4 is a block diagram of a payment processing device 400 that provides an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • the payment processing device 400 includes an input unit 405, a data transmission/reception unit 410, an OPT generation unit 430, and a distance calculation unit 450 into which identification information is input by a user. ) And a short-range communication unit 470 may be included.
  • the user may input user identification information through the input unit 405.
  • the input unit 405 may be embedded in the payment processing device 400 or may be attached separately.
  • the payment processing device 400 may generate an OTP in the OTP generation unit 430 by an OTP-based mobile payment program. Since the OTP is generated in synchronization with the OTP generation unit of the service server, the service server can use it to check the validity of the payment processing device 400.
  • the distance calculating unit 450 may measure a second distance from the payment processing device 400 to the mobile device 200 by short-range communication.
  • the short-range communication unit 470 may broadcast the name of the short-range communication unit of the payment processing device 400 from the service server, and detect the name of the short-range communication unit of the mobile device.
  • 5 and 6 are flowcharts illustrating an OTP-based mobile automatic payment method according to an embodiment of the present invention.
  • the OTP-based mobile automatic payment method begins when a user inputs user identification information into the input unit 405 of the payment processing device 400 and requests a payment ( S100).
  • the user identification information is all information that can identify the user, for example, a character created by combining some or all of numbers, characters, special symbols, etc., or a user's biometrics such as a user's fingerprint, voice, iris It may be information, and may be a vehicle registration number.
  • the payment processing device 400 When the user's identification information is input, the payment processing device 400 generates an OTP in the OTP generation unit 430 of the payment processing device 400 installed with a mobile automatic payment program using OTP (S150), and the data
  • the user identification information, the payment processing device identification information, payment information, and the OTP of the payment processing device 400 are transmitted to the service server 300 through the transmission unit 410 (S200).
  • the service server 300 checks the validity of the payment processing device 400 using the identification information of the payment processing device 400 and the OTP of the payment processing device 400 received in step S200 (S300). By comparing the OTP generated by the OTP generation unit 331 corresponding to the identification information of the payment processing device 400 with the OTP of the payment processing device received from the payment processing device 400, the payment processing device 400 Justification can be checked.
  • the OTP-based mobile automatic payment DB 330 of the service server 300 has an OTP generation unit for each payment processing device, and the OTP generation unit is interlocked with the payment processing device 400 to generate OTP in the same manner. Therefore, the payment processing device 400 compares the OTP generated by the OTP generation unit 331 of the OTP-based mobile automatic payment DB 330 of the service server 300 with the OTP generated by the payment processing device 400 You can check the justification of
  • the service server 300 includes location information of the payment processing device 400, such as GPS, cell ID information, or the payment processing device 400. You can receive more information on the connection of the mobile operator. The legitimacy of the payment processing device may be further confirmed by using information when signing up for a mobile automatic payment program using OTP of the payment processing device 400 and the received location information or communication company access information.
  • the short-range communication unit activation command unit 371 of the service server 300 is a mobile device matching the user identification information received from the payment processing device 400.
  • the short-range communication unit activation command is given to the device 200 (S400), and if the validity of the payment processing device 400 is not confirmed, the process returns to step S200.
  • the short-range communication unit 270 of the mobile device 200 turns on the short-range communication unit 270 according to the short-range communication unit activation command of the short-range communication unit activation command unit 371 of the service server, so that the mobile device 200 Can prevent battery consumption.
  • the mobile device 200 since the mobile device 200 is automatically turned on according to the short-range communication unit activation command, the user can proceed with payment without taking out the mobile device 200.
  • the short-range communication unit 270 of the mobile device 200 may turn off the short-range communication mode when payment is completed from the service service.
  • step S500 the broadcasting command unit 373 of the service server 300 transmits the name of the short-range communication unit of the payment processing device 400 to the mobile device 200, and It is ordered to broadcast the name of the local area communication department.
  • the broadcasting command unit 373 of the service server 300 transmits the name of the short-range communication unit of the mobile device 200 to the payment processing device 400, and the broadcasting command unit 375 performs the payment process. Instructs to broadcast the name of the local area communication unit of the device 400.
  • the name of the short-range communication unit of the mobile device 200 is the first OTP generated by the OTP generation unit 230 of the mobile device 200
  • the name of the short-range communication unit of the payment processing device 400 is a payment processing device ( This is the second OTP generated by the OTP generation unit 430 of 400). Therefore, the first OTP may be separate from the OPT used to check the validity of the mobile device 200, and the second OTP may be separate from the OTP used to check the validity of the payment processing device 400. I can.
  • the OTP-based mobile automatic payment DB 330 of the service server 300 has an OTP generation unit for each payment processing device and a mobile device, and the OTP generation unit is interlocked with the corresponding payment processing device or mobile device to generate OTP in the same manner. do. That is, the OTP generation unit of the service server 300 generates the same OTP as the first OTP generated by the mobile device 200 and the second OTP generated by the payment processing device 400, respectively. Accordingly, the broadcasting command unit 373 of the service server 300 transmits the second OTP of the payment processing device 400 to the mobile device 300 and transmits the first OTP of the mobile device 300. Command to broadcast. In addition, the first OTP of the service server 300 is transmitted to the payment processing device 400, and a second OTP of the payment processing device 400 is instructed to broadcast.
  • the OTP-based mobile automatic payment method uses the OTP generated by the OTP generation unit by the mobile automatic payment program using OPT, instead of the name of the short-range communication unit of the mobile device and the payment processing device. And the payment processing device detect each other. Therefore, since the mobile device and the payment processing device detect each other by generating a new OTP whenever there is a payment request, the accuracy is higher than that of the method in which the mobile device and the payment processing device detect each other based on the conventional short-range communication unit name. It increases, and security is strengthened.
  • the distance calculation command unit 375 of the service server 300 issues a distance calculation command using short-range communication to the mobile device 200 and the payment processing device 400 (S550).
  • the mobile device 200 broadcasts the first OTP generated by the mobile device 200 (S600) and detects the second OTP generated by the payment processing device 400 using short-range communication ( S650), the payment processing device 400 broadcasts the second OTP generated in the payment processing device 400 (S600) and detects the first OTP generated in the mobile device 200 using short-range communication. Do (S650). When the mobile device 200 does not detect the second OTP or the payment processing device 400 does not detect the first OPT, the mobile device 200 and the payment processing device 400 are Payment cannot proceed because the payment program cannot be used.
  • the distance calculation unit 250 of the mobile device 200 The first distance from 200 to the payment processing device 400 is calculated and the value is sent to the service server 300, and the distance calculation unit 450 of the payment processing device 400 is the payment processing device The second distance from 400 to the mobile device 200 is sent to the service server 300.
  • the distance determination unit 390 of the service server 300 determines whether the first distance and the second distance are within a set distance (S740).
  • the set distance is a distance at which the mobile device 200 and the payment processing device 400 can detect each other through short-range communication.
  • the validity of the mobile device 200 may be additionally checked.
  • the OTP is generated by the OTP generation unit 230 of the mobile device 200 (S760) and transmits the OTP to the service server 300 (S770).
  • the OTP determination unit 333 of the service server 300 includes the OTP generated by the OTP generation unit 331 corresponding to the identification information of the mobile device 200 and the OTP of the mobile device transmitted from the mobile device 200. It is possible to check the validity of the mobile device 200 by comparing (S780).
  • the OTP-based mobile automatic payment DB 330 of the service server 300 has an OTP generation unit for each mobile device, and the OTP generation unit is interlocked with the mobile device 200 to generate OTP in the same manner. Therefore, by comparing the OTP generated by the OTP generation unit 331 of the OTP-based mobile automatic payment DB 330 of the service server 300 and the OTP generated by the mobile device 200, Justification can be checked.
  • the service server 300 When it is determined that the first distance and the second distance are within a set distance (S740), the service server 300 requests whether payment is possible to the financial institution server 500 (S900).
  • the financial institution server 500 checks the balance of the payment source according to the user identification information input by the user, and determines whether or not the amount of payment is possible (S900). If the financial institution server 500 determines that payment is possible (S930), whether payment is possible is transmitted to the service server 300 (S950).
  • the service server 300 approves the payment request (S970)
  • the OTP-based mobile automatic payment method according to an embodiment of the present invention is terminated.
  • the short-range communication unit 270 of the mobile device 200 may turn off the short-range communication mode when payment is completed from the service service.
  • the legitimacy of the mobile device 200 and the payment processing device 400 is confirmed based on the OTP, and the mobile device 200 and the payment processing device 400 ) Detect each other within a set time by short-range communication, the first distance from the mobile device 200 detected by the mobile device 200 to the payment processing device 400 and the payment detected by the payment processing device 400 When the second distance from the processing device 400 to the mobile device 200 is within the set distance, payment may be made. Therefore, even if the user does not take out the mobile device, if the user's identification information is input into the payment processing device 400, payment is automatically approved by the OTP-based mobile automatic payment method, thereby making the user's payment process convenient. In addition, since the validity of the payment processing device 400 and the mobile device 200 is verified using OTP, security is further improved compared to the conventional mobile automatic payment method.
  • the OTP-based mobile automatic payment method can be implemented as a computer-readable code on a computer-readable recording medium.
  • the computer-readable recording medium includes all types of recording devices that store data that can be read by a computer system. Examples of the recording medium include ROM, RAM, CD-ROM, magnetic tape, floppy disk, optical data storage device, and the like.
  • the computer-readable recording medium can be distributed over a computer system connected through a network to store and execute computer-readable codes in a distributed manner.
  • the present invention is not limited to the above embodiments, and the embodiments of the present invention are easily changed by those of ordinary skill in the art to which the present invention pertains. It includes all changes to the extent deemed acceptable.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

Disclosed is a mobile automatic payment method comprising the steps of: receiving, by a service server, user identification information from a payment progress device; providing, by the service server, another device with a near field communication unit name of any one device from among the payment progress device and a mobile device corresponding to the user identification information; and receiving, by the service server, from the payment progress device or the mobile device, information indicating whether or not near field communication is possible between the payment progress device and the mobile device. When the service server determines that the near field communication is possible between the payment progress device and the mobile device, the service server is configured to execute a subsequent step for approving a payment request requested from the payment progress device by using a payment source according to the user identification information. Also, the any one device is configured to broadcast the near field communication unit name of the any one device.

Description

일회용 패스워드 기반 모바일 자동 결제방법 및 이를 이용한 시스템One-time password-based mobile automatic payment method and system using the same
본 발명은 일회용 패스워드(One Time Password; OTP) 기반 모바일 자동 결제방법 및 이를 이용한 시스템에 관한 것으로, 보다 상세하게는 거래 시, 사용자가 모바일기기를 직접 조작하지 않아도 자동으로 모바일 결제가 이뤄지는 OTP 기반 모바일 자동 결제방법 및 이를 이용한 시스템에 관한 것이다.The present invention relates to a one-time password (OTP)-based mobile automatic payment method and a system using the same, and more specifically, an OTP-based mobile in which mobile payment is automatically made without a user directly manipulating a mobile device during a transaction. It relates to an automatic payment method and a system using the same.
최근 스마트폰이 필수품으로 자리잡으면서 스마트폰을 이용한 모바일 결제가 다양하게 제공되고 있다. 일반적으로 모바일 결제는 모바일기기를 꺼내어 결제 어플리케이션을 실행한 뒤, 결제방법을 선택하고 보안 인증 과정을 거쳐 이루어져 그 과정이 복잡하다.Recently, as smartphones have become a necessity, various mobile payments using smartphones have been provided. In general, mobile payments are complicated by taking out a mobile device, running a payment application, selecting a payment method, and going through a security authentication process.
이러한 결제의 복잡성을 단순화하기 위하여, 근거리통신기술을 이용해 결제수단을 가맹점 단말기에 접촉시키면 결제가 이루어지게 하거나, 모바일 전자 지갑 앱에 미리 등록한 결제 비밀번호를 입력하면 결제가 진행되는 간편결제 등의 방안들이 제안되고 있다. In order to simplify the complexity of the payment, there are methods such as simple payment, in which payment is made when the payment method is contacted with the affiliated store terminal using short-range communication technology, or simple payment is made by entering the payment password registered in advance in the mobile electronic wallet app. It is being proposed.
그러나, 이러한 간편결제 방법 또한 모바일기기를 꺼내야 가능한 방법이며, 모바일기기를 꺼내어 어플리케이션을 실행해야 하므로 그 과정에서 대기 시간이 발생할 수 있는 문제점이 있다. 또한 결제 비밀번호의 경우, 결제 비밀번호의 유출 위험이 있어 보안상에도 문제가 발생할 수 있다.However, this simple payment method is also a method that is possible only when the mobile device is taken out, and there is a problem that a waiting time may occur in the process, since the mobile device must be taken out to run the application. In addition, in the case of a payment password, there is a risk of leakage of the payment password, which may cause security problems.
따라서, 본 발명은 상기와 같은 문제점을 해결하기 위하여 창출된 것으로, 본 발명의 목적은 모바일 결제과정을 간소화 시키며, 모바일기기의 별도의 조작 없이 결제진행장치에 사용자가 미리 설정한 식별정보를 입력하면 자동으로 모바일 결제가 이루어지는 일회용 패스워드(One Time Password; OTP) 기반 모바일 자동 결제방법 및 시스템을 제공하는 것이다.Accordingly, the present invention was created to solve the above problems, and an object of the present invention is to simplify the mobile payment process, and if the user inputs the identification information previously set in the payment processing device without separate operation of the mobile device It is to provide a mobile automatic payment method and system based on One Time Password (OTP) that automatically makes mobile payments.
또한, 본 발명의 목적은 OTP를 이용하여 모바일 결제의 보안을 강화하는 OTP 기반 모바일 자동 결제방법 및 시스템을 제공하는 것이다.In addition, an object of the present invention is to provide an OTP-based mobile automatic payment method and system that enhances the security of mobile payments using OTP.
이러한 목적을 달성하기 위한 본 발명의 실시예에 따른 일회용 패스워드(One Time Password; OTP)를 이용한 모바일 자동 결제 프로그램이 설치된 결제진행장치와 모바일기기의 OTP 기반 모바일 자동 결제방법에 있어서, (a) 결제진행장치가 사용자에 의해 사용자 식별정보 및 결제요청을 수신하는 단계; (b) 서비스서버가 상기 결제진행장치로부터 상기 사용자 식별정보, 결제진행장치 식별정보 및 결제정보를 수신하고, 상기 사용자 식별정보를 토대로 사용자의 모바일기기를 인식하는 단계; (c) 상기 서비스서버가 상기 결제진행장치에 설치된 OTP를 이용한 모바일 자동 결제 프로그램을 이용하여 상기 결제진행장치의 정당성을 확인하는 단계; (d) 상기 결제진행장치 및 상기 모바일 기기가 상기 OTP를 이용한 모바일 자동 결제 프로그램에서 생성된 OTP를 이용하여 서로 인증하는 단계; (e) 금융사서버가 상기 사용자 식별정보 및 결제정보를 이용하여 결제 가능 여부를 판단하는 단계; 및 (f) 상기 (c)단계 내지 (e)단계가 만족되면, 상기 서비스서버가 상기 결제요청을 승인하는 단계;를 포함할 수 있다.In the payment processing device installed with a mobile automatic payment program using a One Time Password (OTP) according to an embodiment of the present invention for achieving this purpose and an OTP-based mobile automatic payment method of a mobile device, (a) payment Receiving, by the processing device, user identification information and a payment request; (b) receiving, by a service server, the user identification information, payment processing device identification information, and payment information from the payment processing device, and recognizing the user's mobile device based on the user identification information; (c) the service server checking the validity of the payment processing device using a mobile automatic payment program using OTP installed in the payment processing device; (d) authenticating each other by the payment processing device and the mobile device using OTP generated by the mobile automatic payment program using the OTP; (e) determining, by a financial institution server, whether payment is possible using the user identification information and payment information; And (f) when the (c) to (e) steps are satisfied, the service server approving the payment request.
상기 사용자 식별정보는 상기 모바일기기와 매칭되어 있는 것을 특징으로 할 수 있다.The user identification information may be matched with the mobile device.
상기 (b)단계는 상기 서비스서버가 상기 결제진행장치에 설치된 OTP를 이용한 모바일 자동 결제 프로그램에서 생성된 결제진행장치의 OTP를 수신하는 단계; 및 상기 서비스서버가 상기 결제진행장치 식별정보 및 상기 결제진행장치의OTP를 이용하여 상기 결제진행장치의 정당성을 확인하는 단계; 를 포함할 수 있다.The step (b) comprises: receiving, by the service server, an OTP of a payment processing device generated from a mobile automatic payment program using an OTP installed in the payment processing device; And checking, by the service server, the validity of the payment processing device using the payment processing device identification information and the OTP of the payment processing device. It may include.
상기 (b)단계는 상기 서비스서버가 상기 결제진행장치의 실시간 위치정보 또는 통신접속정보 중 적어도 하나를 수신하는 단계; 를 더 포함할 수 있다.The step (b) includes: receiving, by the service server, at least one of real-time location information or communication access information of the payment processing device; It may further include.
상기 모바일기기는 상기 서비스서버로부터 근거리통신 활성화 신호를 수신하여 근거리통신모드가 온(ON)되는 것을 특징으로 할 수 있다.The mobile device may be characterized in that the short-range communication mode is turned on by receiving a short-range communication activation signal from the service server.
상기 근거리통신은 블루투스 통신, 고주파 통신, RFID 통신, 비콘통신, NFC 통신 및 와이파이 중 하나인 것을 특징으로 할 수 있다.The short-range communication may be one of Bluetooth communication, high frequency communication, RFID communication, beacon communication, NFC communication, and Wi-Fi.
상기 (d)단계는 상기 모바일기기가 상기 서비스서버의 명령에 따라 상기 모바일기기에 설치된 OTP를 이용한 모바일 자동 결제프로그램에서 생성된 제1 OTP를 브로드캐스팅하는 단계; 상기 결제진행장치가 상기 서비스서버의 명령에 따라 상기 결제진행장치에 설치된 OTP를 이용한 모바일 자동 결제프로그램에서 생성된 제2 OTP를 브로드캐스팅하는 단계; 및 상기 모바일기기 및 결제진행장치가 근거리통신에 의해 일정 시간 동안 서로의 근거리통신부 명칭을 감지하는 단계; 를 포함하고, 상기 모바일기기가 상기 제2 OTP를 감지하고, 상기 결제진행장치가 상기 제1 OTP를 감지하면 상기 모바일기기와 상기 결제진행장치가 서로 인증되는 것을 특징으로 할 수 있다.The step (d) includes, by the mobile device, broadcasting a first OTP generated from a mobile automatic payment program using an OTP installed in the mobile device according to a command of the service server; Broadcasting, by the payment processing device, a second OTP generated in a mobile automatic payment program using an OTP installed in the payment processing device according to a command of the service server; And detecting, by the mobile device and the payment processing device, each other's short-range communication unit names for a predetermined time by short-range communication. And when the mobile device detects the second OTP and the payment processing device detects the first OTP, the mobile device and the payment processing device are authenticated with each other.
상기 (d)단계는 상기 모바일기기가 근거리통신에 의해 상기 모바일기기에서 상기 결제진행장치까지의 제1 거리를 측정하는 단계; 상기 결제진행장치의 근거리통신에 의해 상기 결제진행장치에서 상기 모바일기기까지의 제2 거리를 측정하는 단계; 및 상기 서비스서버가 상기 제1 거리 및 상기 제2 거리를 수신하여, 상기 제1 거리 및 상기 제2 거리가 설정 거리 이내인지 판단하는 단계; 를 더 포함할 수 있다.The step (d) includes the steps of measuring, by the mobile device, a first distance from the mobile device to the payment processing device by short-range communication; Measuring a second distance from the payment processing device to the mobile device by short-range communication of the payment processing device; And determining, by the service server, whether the first distance and the second distance are within a set distance by receiving the first distance and the second distance. It may further include.
상기 (d)단계는 상기 서비스서버가 상기 모바일기기에 설치된 OTP를 이용한 모바일 자동 결제 프로그램에서 생성된 모바일기기의 OTP를 수신하는 단계; 및 상기 서비스서버가 상기 모바일기기의 OTP를 이용하여 상기 모바일기기의 정당성을 확인하는 단계; 를 더 포함할 수 있다.The step (d) comprises: receiving, by the service server, an OTP of a mobile device generated by a mobile automatic payment program using an OTP installed in the mobile device; And checking, by the service server, the validity of the mobile device by using the OTP of the mobile device. It may further include.
상기 사용자 식별정보는 상기 모바일기기와 매칭되어 있는 것을 특징으로 할 수 있다.The user identification information may be matched with the mobile device.
상기 사용자 식별정보는 적어도 하나의 결제 원천을 포함하고 있으며, 상기 사용자 식별정보는 결제 원천마다 상이한 값을 갖는 것을 특징으로 할 수 있다.The user identification information may include at least one payment source, and the user identification information may have a different value for each payment source.
본 발명의 다른 실시예에 따른 OTP 기반 모바일 자동 결제시스템은 근거리통신 기능을 구비하며, OTP를 이용한 모바일 자동 결제 프로그램이 설치된 모바일기기; 상기 OTP를 이용한 모바일 자동 결제 프로그램이 설치되며, 사용자가 온라인 또는 오프라인에서 결제요청하는 결제진행장치; 및 상기 모바일기기와 상기 결제진행장치에 설치된 OTP를 이용한 모바일 자동 결제 프로그램에서 생성된 OTP를 각각 수신하여 상기 모바일기기와 상기 결제진행장치의 정당성을 확인하고, 상기 OTP를 이용한 모바일 자동 결제 프로그램에서 생성된 OTP 및 근거리통신에 의해 상기 모바일기기와 상기 결제진행장치가 서로 인증되면 상기 결제요청을 승인하는 서비스서버; 를 포함할 수 있다.An OTP-based mobile automatic payment system according to another embodiment of the present invention includes a mobile device having a short-range communication function and installed with a mobile automatic payment program using OTP; A payment processing device in which a mobile automatic payment program using the OTP is installed, and for a user to request a payment online or offline; And the OTP generated by the mobile automatic payment program using the OTP installed in the mobile device and the payment processing device, respectively, to check the validity of the mobile device and the payment processing device, and generated in the mobile automatic payment program using the OTP. A service server for approving the payment request when the mobile device and the payment processing device are authenticated with each other through the OTP and short-range communication; It may include.
상기 서비스서버는 상기 결제진행장치에 설치된 OTP를 이용한 모바일 자동 결제 프로그램에서 생성된 결제진행장치의 OTP를 수신하고, 상기 결제진행장치 식별정보 및 상기 결제진행장치의 OTP를 이용하여 상기 결제진행장치의 정당성을 확인하는 것을 특징으로 할 수 있다.The service server receives the OTP of the payment processing device generated by the mobile automatic payment program using the OTP installed in the payment processing device, and uses the payment processing device identification information and the OTP of the payment processing device. It can be characterized by confirming justification.
상기 모바일기기는 상기 서비스서버로부터 근거리통신 활성화 신호를 수신하여 근거리통신모드가 온(ON)되는 것을 특징으로 하는 것을 특징으로 할 수 있다.The mobile device may be characterized in that the short-range communication mode is turned on by receiving a short-range communication activation signal from the service server.
상기 근거리통신은 블루투스 통신, 고주파 통신, RFID 통신, 비콘통신, NFC 통신 및 와이파이 중 하나인 것을 특징으로 할 수 있다.The short-range communication may be one of Bluetooth communication, high frequency communication, RFID communication, beacon communication, NFC communication, and Wi-Fi.
상기 모바일기기와 상기 결제진행장치는 상기 모바일기기에 설치된 OTP를 이용한 모바일 자동 결제프로그램에서 생성된 제1 OTP를 브로드캐스팅하는 단계; 상기 결제진행장치가 상기 서비스서버의 명령에 따라 상기 결제진행장치에 설치된 OTP를 이용한 모바일 자동 결제프로그램에서 생성된 제2 OTP를 브로드캐스팅하는 단계; 및 상기 모바일기기 및 결제진행장치가 근거리통신에 의해 일정 시간 동안 서로의 근거리통신부 명칭을 감지하는 단계; 를 수행하고, 상기 모바일기기가 상기 제2 OTP를 감지하고, 상기 결제진행장치가 상기 제1 OTP를 감지하면 상기 모바일기기와 상기 결제진행장치가 서로 인증되는 것을 특징으로 할 수 있다.The mobile device and the payment processing device broadcasting a first OTP generated by a mobile automatic payment program using an OTP installed in the mobile device; Broadcasting, by the payment processing device, a second OTP generated in a mobile automatic payment program using an OTP installed in the payment processing device according to a command of the service server; And detecting, by the mobile device and the payment processing device, each other's short-range communication unit names for a predetermined time by short-range communication. And, when the mobile device detects the second OTP and the payment processing device detects the first OTP, the mobile device and the payment processing device are authenticated with each other.
상기 서비스서버는 상기 모바일기기가 근거리통신에 의해 상기 모바일기기에서 상기 결제진행장치까지 측정한 거리와 상기 결제진행장치가 근거리통신에 의해 상기 결제진행장치에서 상기 모바일기기까지 측정한 거리가 모두 설정 거리 이내라고 판단되면, 상기 결제요청을 승인하는 것을 특징으로 할 수 있다.In the service server, the distance measured by the mobile device from the mobile device to the payment processing device by short-range communication and the distance measured by the payment processing device from the payment processing device to the mobile device by short-range communication are all set distances. If determined to be within, it may be characterized in that the payment request is approved.
본 발명의 다른 관점에 따라, 서비스서버가, 결제진행장치로부터 사용자 식별정보를 수신하는 단계; 상기 서비스서버가, 상기 결제진행장치의 근거리통신부명칭을 상기 사용자 식별정보에 대응하는 모바일 기기에게 제공하고, 상기 모바일 기기의 근거리통신부명칭을 상기 결제진행장치에게 제공하는 단계; 및 상기 서비스서버가, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한지 여부를 나타내는 정보를 상기 결제진행장치 또는 상기 모바일 기기로부터 수신하는 단계;를 포함하는 모바일 자동 결제방법이 제공될 수 있다. 이때, 상기 서비스서버가, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한 것으로 판단한 경우, 상기 사용자 식별정보에 따른 결제원천을 이용하여 상기 결제진행장치로부터 요청된 결제요청을 승인하기 위한 후속 단계를 실행하도록 되어 있고, 상기 모바일 기기는, 상기 모바일 기기의 근거리통신부명칭을 브로드캐스팅하도록 되어 있고, 그리고 상기 결제진행장치는, 상기 결제진행장치의 근거리통신부명칭을 브로드캐스팅하도록 되어 있다. According to another aspect of the present invention, the service server, receiving user identification information from the payment processing device; Providing, by the service server, a name of a short-range communication unit of the payment processing device to a mobile device corresponding to the user identification information, and providing a name of a short-range communication unit of the mobile device to the payment processing device; And receiving, by the service server, information indicating whether short-range communication between the payment processing device and the mobile device is possible, from the payment processing device or the mobile device. At this time, when the service server determines that short-range communication between the payment processing device and the mobile device is possible, a subsequent step of approving a payment request requested from the payment processing device using a payment source according to the user identification information The mobile device is configured to broadcast the name of the short-range communication unit of the mobile device, and the payment processing device is configured to broadcast the name of the short-range communication unit of the payment processing device.
이때, 상기 후속 단계는 상기 서비스서버가 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한 것으로 판단한 경우에만 실행되도록 되어 있을 수 있다.In this case, the subsequent step may be executed only when the service server determines that short-range communication is possible between the payment processing device and the mobile device.
이때, 상기 결제진행장치의 근거리통신부명칭은 상기 결제진행장치에서 생성한 제2 OTP이고, 상기 모바일 기기의 근거리통신부명칭은 상기 모바일 기기에서 생성한 제1 OTP일 수 있다.In this case, the name of the near field communication unit of the payment processing device may be a second OTP generated by the payment processing device, and the name of the near field communication unit of the mobile device may be a first OTP generated by the mobile device.
상술한 바와 같이 본 발명의 실시예에 따르면, 모바일기기를 꺼내지 않고 소지하고 있어도 결제가 진행되므로, 모바일기기의 어플리케이션을 실행하는 데 걸리는 시간이 생략되어 빠른 결제가 가능하다.As described above, according to the exemplary embodiment of the present invention, since payment is made even if the mobile device is not taken out and held, the time taken to execute the application of the mobile device is omitted, thereby enabling fast payment.
또한, 모바일기기를 꺼내지 않아도 되므로 결제가 간편해진다.In addition, payment is simplified because there is no need to take out a mobile device.
또한, 본 발명의 실시예에 따르면, 일회용 패스워드(One Time Password; OTP)를 이용하므로, 결제 비밀번호의 유출문제가 없어 보안성이 향상될 수 있다.In addition, according to an embodiment of the present invention, since a One Time Password (OTP) is used, there is no problem of leakage of a payment password, and security can be improved.
또한, 본 발명의 실시예에 따르면, 서비스서버로부터 근거리통신 활성화 신호를 수신하여 근거리통신모드가 온(ON)되므로, 모바일기기의 불필요한 배터리 소모를 방지할 수 있다.In addition, according to an embodiment of the present invention, since the short-range communication mode is turned on by receiving a short-range communication activation signal from the service server, unnecessary battery consumption of the mobile device can be prevented.
도 1은 본 발명의 실시예에 따른 일회용 패스워드(One Time Password; OTP) 기반 모바일 자동 결제시스템의 시스템도이다.1 is a system diagram of a mobile automatic payment system based on One Time Password (OTP) according to an embodiment of the present invention.
도 2는 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 제공하는 모바일기기의 구성도이다.2 is a block diagram of a mobile device providing an OTP-based mobile automatic payment method according to an embodiment of the present invention.
도 3은 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 제공하는 서비스서버의 구성도이다.3 is a block diagram of a service server providing an OTP-based mobile automatic payment method according to an embodiment of the present invention.
도 4는 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 제공하는 결제진행장치의 구성도이다.4 is a block diagram of a payment processing device providing an OTP-based mobile automatic payment method according to an embodiment of the present invention.
도 5는 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 도시한 흐름도이다.5 is a flowchart illustrating an OTP-based mobile automatic payment method according to an embodiment of the present invention.
도 6은 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 도시한 흐름도이다.6 is a flowchart illustrating an OTP-based mobile automatic payment method according to an embodiment of the present invention.
본 발명에 관한 설명은 구조적 내지 기능적 설명을 위한 실시예에 불과하므로, 본 발명의 권리범위는 본문에 설명된 실시예에 의하여 제한되는 것으로 해석되어서는 아니 된다. 즉, 실시예는 다양한 변경이 가능하고 여러 가지 형태를 가질 수 있으므로 본 발명의 권리범위는 기술적 사상을 실현할 수 있는 균등물들을 포함하는 것으로 이해되어야 한다. 또한, 본 발명에서 제시된 목적 또는 효과는 특정 실시예가 이를 전부 포함하여야 한다거나 그러한 효과만을 포함하여야 한다는 의미는 아니므로, 본 발명의 권리범위는 이에 의하여 제한되는 것으로 이해되어서는 아니 될 것이다.Since the description of the present invention is merely an embodiment for structural or functional description, the scope of the present invention should not be construed as being limited by the embodiments described in the text. That is, since the embodiments can be modified in various ways and have various forms, the scope of the present invention should be understood to include equivalents capable of realizing the technical idea. In addition, since the object or effect presented in the present invention does not mean that a specific embodiment should include all of them or only those effects, the scope of the present invention should not be understood as being limited thereto.
한편, 본 출원에서 서술되는 용어의 의미는 다음과 같이 이해되어야 할 것이다.Meanwhile, the meaning of terms described in the present application should be understood as follows.
"제1", "제2" 등의 용어는 하나의 구성요소를 다른 구성요소로부터 구별하기 위한 것으로, 이들 용어들에 의해 권리범위가 한정되어서는 아니 된다. 예를 들어, 제1 구성요소는 제2 구성요소로 명명될 수 있고, 유사하게 제2 구성요소도 제1 구성요소로 명명될 수 있다.Terms such as "first" and "second" are used to distinguish one component from other components, and the scope of rights is not limited by these terms. For example, a first component may be referred to as a second component, and similarly, a second component may be referred to as a first component.
단수의 표현은 문맥상 명백하게 다르게 뜻하지 않는 한 복수의 표현을 포함하는 것으로 이해되어야 하고, "포함 하다"또는 "가지다" 등의 용어는 실시된 특징, 숫자, 단계, 동작, 구성요소, 부분품 또는 이들을 조합한 것이 존재함을 지정하려는 것이며, 하나 또는 그 이상의 다른 특징이나 숫자, 단계, 동작, 구성요소, 부분품 또는 이 들을 조합한 것들의 존재 또는 부가 가능성을 미리 배제하지 않는 것으로 이해되어야 한다. 이하, 본 발명의 바람직한 실시예를 첨부한 도면에 의거하여 상세하게 설명하면 다음과 같다.Singular expressions are to be understood as including plural expressions unless the context clearly implies otherwise, and terms such as "include" or "have" refer to implemented features, numbers, steps, actions, components, parts, or It is to be understood that it is intended to designate that a combination exists and does not preclude the presence or addition of one or more other features or numbers, steps, actions, components, parts, or combinations thereof. Hereinafter, a preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings.
각 단계들에 있어 식별부호(예를 들어, a, b, c 등)는 설명의 편의를 위하여 사용되는 것으로 식별부호는 각 단 계들의 순서를 설명하는 것이 아니며, 각 단계들은 문맥상 명백하게 특정 순서를 기재하지 않는 이상 명기된 순 서와 다르게 일어날 수 있다. 즉, 각 단계들은 명기된 순서와 동일하게 일어날 수도 있고 실질적으로 동시에 수 행될 수도 있으며 반대의 순서대로 수행될 수도 있다.In each step, the identification code (for example, a, b, c, etc.) is used for convenience of explanation, and the identification code does not describe the order of each step, and each step is clearly in a specific order in context. Unless otherwise stated, it may occur differently from the specified order. That is, each of the steps may occur in the same order as specified, may be performed substantially simultaneously, or may be performed in the reverse order.
본 발명은 컴퓨터가 읽을 수 있는 기록매체에 컴퓨터가 읽을 수 있는 코드로서 구현될 수 있고, 컴퓨터가 읽을 수 있는 기록 매체는 컴퓨터 시스템에 의하여 읽혀질 수 있는 데이터가 저장되는 모든 종류의 기록 장치를 포함 한다. 컴퓨터가 읽을 수 있는 기록 매체의 예로는 ROM, RAM, CD-ROM, 자기 테이프, 플로피 디스크, 광 데이터 저장 장치 등이 있으며, 또한, 캐리어 웨이브(예를 들어 인터넷을 통한 전송)의 형태로 구현되는 것도 포함한다. 또한, 컴퓨터가 읽을 수 있는 기록 매체는 네트워크로 연결된 컴퓨터 시스템에 분산되어, 분산 방식으로 컴퓨터가 읽을 수 있는 코드가 저장되고 실행될 수 있다.The present invention can be implemented as computer-readable codes on a computer-readable recording medium, and the computer-readable recording medium includes all types of recording devices storing data that can be read by a computer system. . Examples of computer-readable recording media include ROM, RAM, CD-ROM, magnetic tape, floppy disk, optical data storage device, and the like, and are implemented in the form of a carrier wave (for example, transmission over the Internet). Also includes. Further, the computer-readable recording medium is distributed over a computer system connected by a network, so that the computer-readable code can be stored and executed in a distributed manner.
여기서 사용되는 모든 용어들은 다르게 정의되지 않는 한, 본 발명이 속하는 분야에서 통상의 지식을 가진 자에 의해 일반적으로 이해되는 것과 동일한 의미를 가진다. 일반적으로 사용되는 사전에 정의되어 있는 용어들은 관련 기술의 문맥상 가지는 의미와 일치하는 것으로 해석되어야 하며, 본 출원에서 명백하게 정의하지 않는 한 이상적이거나 과도하게 형식적인 의미를 지니는 것으로 해석될 수 없다.All terms used herein have the same meaning as commonly understood by one of ordinary skill in the field to which the present invention belongs, unless otherwise defined. Terms defined in commonly used dictionaries should be construed as having meanings in the context of related technologies, and cannot be construed as having an ideal or excessive formal meaning unless explicitly defined in the present application.
도 1은 본 발명의 실시예에 따른 일회용 패스워드(One Time Password; OTP) 기반 모바일 자동 결제시스템의 시스템도이다.1 is a system diagram of a mobile automatic payment system based on One Time Password (OTP) according to an embodiment of the present invention.
도 1을 참고하면, 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제시스템은 근거리통신(100), 모바일기기(200), 서비스서버(300), 결제진행장치(400) 및 금융사서버(500)을 포함한다.Referring to FIG. 1, an OTP-based mobile automatic payment system according to an embodiment of the present invention includes a short-range communication 100, a mobile device 200, a service server 300, a payment processing device 400, and a financial institution server 500. Includes.
상기 근거리통신(100)은 본 발명의 실시예에 따른 OTP 기반 모바일 자동결제방법을 수행하기 위해 활용 가능한 근거리통신을 의미한다. 상기 근거리통신(100)은 블루투스 통신, 고주파 통신, RFID 통신, 비콘통신, NFC 통신 및 와이파이 중 하나일 수 있으며, 이에 한정되지 아니한다.The short-range communication 100 means short-range communication that can be utilized to perform the OTP-based mobile automatic payment method according to an embodiment of the present invention. The short-range communication 100 may be one of Bluetooth communication, high-frequency communication, RFID communication, beacon communication, NFC communication, and Wi-Fi, but is not limited thereto.
또한, 근거리통신부(270, 470)는 이하에서 상세히 설명하는 모바일기기(200) 및 결제진행장치(400)에 일체형으로 포함될 수도 있으며 탈부착 가능하게 제공될 수도 있다.In addition, the short- range communication units 270 and 470 may be integrally included in the mobile device 200 and the payment processing device 400 described in detail below, or may be provided detachably.
상기 모바일기기(200)는 OTP 기반 모바일 자동 결제방법을 이용한 모바일 자동 결제 시 사용자가 휴대하고 있으며, 근거리통신 및 통신사를 통한 통신 기능을 구비하여 결제를 위한 인증 수단이 되는 모바일기기를 의미한다. 스마트폰, 테블릿 PC, 모바일 PC, 각종 웨어러블 기기가 이에 해당 될 수 있다.The mobile device 200 refers to a mobile device that is carried by a user during mobile automatic payment using an OTP-based mobile automatic payment method, and has a short-range communication and communication function through a communication company, thereby serving as an authentication means for payment. This may include smartphones, tablet PCs, mobile PCs, and various wearable devices.
상기 모바일기기(200)에는 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 수행하기 위해, OTP를 이용한 모바일 자동 결제 프로그램(미도시)이 설치되어 있으며, 사용자는 상기 모바일기기(200)를 통해 OTP를 이용한 모바일 자동 결제 프로그램에 이미 회원가입 및 자동 로그인 되어 있을 수 있다. The mobile device 200 is equipped with a mobile automatic payment program (not shown) using OTP in order to perform the OTP-based mobile automatic payment method according to an embodiment of the present invention, and the user uses the mobile device 200 You may have already signed up for membership and automatically logged in to a mobile automatic payment program using OTP.
상기 서비스서버(300)는 상기 모바일기기(200)를 통해 OTP를 이용한 모바일 자동 결제 프로그램에 사용자가 이미 회원가입 및 자동 로그인되어 있는 경우에, 상기 모바일기기(200)와 상기 결제진행장치(400)에 유무선으로 연결되어 이들 사이의 거리가 지정된 특정 거리를 넘지 않는 경우에 상기 모바일 자동 결제 프로그램을 활성화시켜 상기 모바일기기(200)와 상기 결제진행장치(400)에 설치된 상기 OTP를 이용한 모바일 자동 결제 프로그램(미도시)에서 생성되는 OTP를 각각 수신하여 상기 모바일기기(200)와 상기 결제진행장치(400)를 인증하고, 결제 요청을 승인할 수 있다.The service server 300 includes the mobile device 200 and the payment processing device 400 when a user has already registered as a member and is automatically logged into a mobile automatic payment program using OTP through the mobile device 200. Mobile automatic payment program using the OTP installed in the mobile device 200 and the payment processing device 400 by activating the mobile automatic payment program when the distance between them is connected by wire or wireless to the specified specific distance. Each of the OTPs generated in (not shown) may be received to authenticate the mobile device 200 and the payment processing device 400, and approve a payment request.
상기 결제진행장치(400)는 근거리통신 및 통신사를 통한 통신기능을 구비하여 온라인과 오프라인의 결제 환경에서 사용자가 결제를 위하여 사용자 식별정보로 입력하면 사용자가 상기 모바일기기(200)를 조작할 필요 없이 결제할 수 있는 기기를 의미한다. 상기 결제진행장치(400)는 오프라인 매장의 POS(Post Of Sale; POS), 키오스크(KIOSK), 스마트폰 및 태블릿 PC, 웨어러블 기기 및 각종 이동 통신 기기 등 오프라인에서 결제 기능이 수행될 수 있는 모든 기기가 이에 해당될 수 있다.The payment processing device 400 is provided with a communication function through short-range communication and a communication company, so that when a user inputs user identification information for payment in an online and offline payment environment, the user does not need to operate the mobile device 200. It means a device that can pay. The payment processing device 400 is all devices that can perform offline payment functions, such as POS (Post Of Sale), kiosk (KIOSK), smartphones and tablet PCs, wearable devices and various mobile communication devices in offline stores. This may be the case.
상기 결제진행장치(400)에는 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 수행하기 위해, OTP를 이용한 모바일 자동 결제 프로그램(미도시)이 설치되어 있으며, 결제진행장치(400)는 OTP를 이용한 모바일 자동 결제 프로그램에 이미 회원가입 및 자동 로그인 되어 있을 수 있다.The payment processing device 400 is equipped with a mobile automatic payment program (not shown) using OTP in order to perform the OTP-based mobile automatic payment method according to an embodiment of the present invention, and the payment processing device 400 is an OTP You may have already signed up and logged in to the mobile automatic payment program using.
금융사서버(500)는 상기 서비스서버(300)를 통해 중개된 사용자 식별정보 및 결제정보를 이용하여 결제 가능 여부를 판단하는 서버를 의미한다. 카드사, 은행, 인터넷전문은행 등 결제 서비스를 진행하는 모든 업체를 의미한다. The financial institution server 500 refers to a server that determines whether payment is possible using user identification information and payment information mediated through the service server 300. It refers to all companies that provide payment services such as credit card companies, banks, and Internet banks.
도 2는 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 제공하는 모바일기기(200)의 구성도이다.2 is a block diagram of a mobile device 200 that provides an OTP-based mobile automatic payment method according to an embodiment of the present invention.
도 2를 참고하면, 본 발명의 실시예에 따른 모바일기기(200)는 서비스서버(300)와 데이터를 송수신하는 데이터송수신부(210), OTP생성부(230), 거리산출부(250) 및 근거리통신부(270)를 포함할 수 있다. 2, a mobile device 200 according to an embodiment of the present invention includes a data transmission/reception unit 210 for transmitting and receiving data to and from the service server 300, an OTP generation unit 230, a distance calculation unit 250, and A short-range communication unit 270 may be included.
상기 모바일기기(200)는 OTP기반 모바일 결제프로그램에 의해 상기 OTP생성부(230)에서 OTP를 생성할 수 있다. 상기 OTP는 서비스서버의 OTP생성부와 동기화되어 생성되므로 서비스서버는 이를 이용하여 상기 모바일기기(200)의 정당성을 확인할 수 있다. The mobile device 200 may generate an OTP in the OTP generation unit 230 using an OTP-based mobile payment program. Since the OTP is generated in synchronization with the OTP generator of the service server, the service server can use it to check the validity of the mobile device 200.
상기 거리산출부(250)는 상기 모바일기기(200)로부터 근거리통신에 의해 결제진행장치(400)까지의 제1 거리를 측정할 수 있다. The distance calculating unit 250 may measure a first distance from the mobile device 200 to the payment processing device 400 through short-range communication.
상기 근거리통신부(270)는 상기 서비스서버로부터 상기 모바일기기(200)의 근거리통신부명칭을 브로드캐스팅할 수 있으며, 결제진행장치의 근거리통신부명칭을 감지할 수 있다.The short-range communication unit 270 may broadcast the name of the short-range communication unit of the mobile device 200 from the service server, and detect the name of the short-range communication unit of the payment processing device.
도 3은 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 제공하는 서비스서버(300)의 구성도이다.3 is a block diagram of a service server 300 that provides an OTP-based mobile automatic payment method according to an embodiment of the present invention.
도 3을 참고하면, 본 발명의 실시예에 따른 서비스서버(300)는 데이터송수신부(310), OTP 기반 모바일 자동 결제 DB(330), 정당성확인부(350), 명령부(370), 거리판단부(390), 결제가능여부확인부(395)를 포함할 수 있다.3, the service server 300 according to the embodiment of the present invention includes a data transmission/reception unit 310, an OTP-based mobile automatic payment DB 330, a validity check unit 350, a command unit 370, and a distance. A determination unit 390 and a payment availability check unit 395 may be included.
상기 OTP 기반 모바일 자동 결제 DB(310)에는 사용자의 OTP를 이용한 모바일 자동 결제 프로그램의 가입정보, 사용자식별정보, 결제로그, 사용자 별로 매칭된 모바일기기(200) 또는 결제진행장치(400)식별정보, 각 모바일기기 및 결제진행장치 별로 생성되는 OTP와 동기화되어 OTP를 생성하는 OTP생성부(331) 및 OTP판단부(333) 등이 포함될 수 있다.In the OTP-based mobile automatic payment DB 310, the user's subscription information of a mobile automatic payment program using OTP, user identification information, payment log, mobile device 200 or payment processing device 400 matching each user, identification information, An OTP generation unit 331 and an OTP determination unit 333 for generating OTP in synchronization with OTP generated for each mobile device and payment processing device may be included.
사용자식별정보는 사용자가 모바일기기(200)를 통해 OTP를 이용한 모바일 자동 결제 프로그램의 가입 시 또는 본 발명의 실시예에 따른 모바일 자동 결제방법 이전에 설정된 것으로, 사용자를 식별할 수 있는 모든 정보를 의미할 수 있다. User identification information is set when a user subscribes to a mobile automatic payment program using OTP through the mobile device 200 or before the mobile automatic payment method according to an embodiment of the present invention, and means all information that can identify the user. can do.
예를 들어, 숫자, 문자, 특수 기호 등의 일부 또는 전체를 조합하여 만들어진 문자 또는 사용자의 지문, 음성, 홍채 등 사용자의 생체 정보일 수 있으며, 자동차 등록 번호일 수 있다.For example, it may be a text created by combining some or all of numbers, letters, and special symbols, or a user's biometric information such as a user's fingerprint, voice, or iris, or a vehicle registration number.
상기 사용자식별정보는 사용자의 모바일기기와 1:1로 매칭되어 있을 수 있으며, 단일 모바일기기에는 다수의 사용자 식별정보를 포함할 수 있다. The user identification information may be matched 1:1 with the user's mobile device, and a single mobile device may include a plurality of user identification information.
상기 사용자식별정보는 결제 원천에 따라 달라질 수 있다. 예를 들어 사용자의 제1 카드, 제2 카드, 제3 카드 별로 사용자 식별정보가 상이하게 설정될 수 있어, 결제 시 결제진행장치에 입력되는 사용자 식별정보에 따라 사용자가 결제하고자 하는 결제 카드를 선택할 수 있다. The user identification information may vary depending on the payment source. For example, user identification information may be set differently for each of the user's first card, second card, and third card, so that the user selects a payment card to pay according to the user identification information input to the payment processing device. I can.
예를 들어, 079203에 대해 홍길동의 삼성카드를, 079202에 대해 홍길동 이마트카드를 설정한 경우에, 홍길동이 0792를 자신의 공통 식별 정보로 쓰고, 03, 02를 결제 원천 식별로 사용하여 공통 식별 정보와 결제 원천 식별 정보를 조합한 다수의 식별 정보를 사용하는 경우 각각의 사용자 식별 정보는 자신이 사용하는 결제 원천과 1:1 매칭이 될 수 있다.For example, if you set up Hong Gil-dong's Samsung Card for 079203 and Hong Gil-dong E-Mart Card for 079202, Hong Gil-dong writes 0792 as his common identification information, and uses 03 and 02 as payment source identification to identify common identification information. When using a plurality of identification information that is a combination of and payment source identification information, each user identification information may be 1:1 matched with the payment source used by the user.
따라서, 사용자는 모바일기기를 꺼내지 않고도, 상이한 사용자식별정보를 이용하여 결제카드를 선택할 수 있다.Accordingly, the user can select a payment card using different user identification information without taking out the mobile device.
상기 서비스서버(300)는 상기 데이터송수신부(310)를 통해 모바일기기(200)와 결제진행장치(400)가 감지한 근거리통신부명칭과 거리산출 값을 수신할 수 있다. The service server 300 may receive a short-range communication unit name and a distance calculation value sensed by the mobile device 200 and the payment processing device 400 through the data transmission/reception unit 310.
상기 OTP생성부(331)는 모바일 자동 결제프로그램이 설치된 모바일기기 또는 결제진행장치의 OTP생성부와 동기화 되어 동일한 방식으로 OTP를 생성한다. 상기 OTP판단부(333)는 모바일기기와 결제진행장치로부터 수신된 OTP와 상기 OTP생성부(331)에서 생성된 OTP가 동일한지 판단한다.The OTP generation unit 331 is synchronized with the OTP generation unit of the mobile device or payment processing device on which the mobile automatic payment program is installed to generate the OTP in the same manner. The OTP determination unit 333 determines whether the OTP received from the mobile device and the payment processing device and the OTP generated by the OTP generation unit 331 are the same.
상기 정당성확인부(350)는 결제진행장치의 식별정보로부터 상기 OTP 기반 모바일 자동 결제 DB에서 이에 해당하는 결제진행장치의 OTP생성방식에 따라 생성된 OTP와 상기 결제진행장치에서 생성된 OTP를 비교하여 상기 결제진행장치의 정당성을 확인할 수 있다. 또한 상기 OTP 기반 모바일 자동 결제 DB에서 이에 해당하는 모바일기기의 OTP생성방식에 따라 생성된 OTP와 상기 모바일기기에서 생성된 OTP를 비교하여 상기 결제진행장치의 정당성을 확인할 수 있다.The validity check unit 350 compares the OTP generated in the OTP-based mobile automatic payment DB according to the OTP generation method of the corresponding payment processing device from the identification information of the payment processing device with the OTP generated in the payment processing device. The validity of the payment processing device can be confirmed. In addition, in the OTP-based mobile automatic payment DB, the validity of the payment processing device may be verified by comparing the OTP generated according to the OTP generation method of the corresponding mobile device with the OTP generated by the mobile device.
상기 명령부(370)는 모바일기기에 근거리통신부의 활성화 명령을 내리는 근거리통신장치 활성화 명령부(371), 모바일기기와 결제진행장치에 각각의 근거리통신부의 명칭을 전달하고, 모바일기기와 결제진행장치에 근거리통신장치명칭의 브로드캐스팅 명령을 내리는 브로드캐스팅 명령부(373) 및 모바일기기에 모바일기기에서 결제진행장치까지의 제1 거리와 결제진행장치에서 모바일기기까지의 제2 거리를 산출할 것을 명령하는 거리산출 명령부(375)를 포함할 수 있다.The command unit 370 is a short-range communication device activation command unit 371 that issues an activation command of the short-range communication unit to the mobile device, and transmits the name of each short-range communication unit to the mobile device and the payment processing device, and the mobile device and the payment processing device Instructing the broadcasting command unit 373 and the mobile device to calculate the first distance from the mobile device to the payment processing device and the second distance from the payment processing device to the mobile device. A distance calculation command unit 375 may be included.
상기 거리판단부(390)는 상기 모바일기기와 결제진행장치로부터 수신된 거리로부터 상기 모바일기기와 결제진행장치가 근거리통신이 가능한 거리 내인지 판단할 수 있다.The distance determination unit 390 may determine whether the mobile device and the payment processing device are within a distance in which short-range communication is possible from a distance received from the mobile device and the payment processing device.
또한, 금융사서버를 통해 결제원천의 결제가능 여부를 확인하도록 하는 결제가능여부확인부(399)를 더 포함할 수 있다. In addition, it may further include a payment availability check unit 399 to check whether the payment source can be settled through the financial institution server.
도 4는 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 제공하는 결제진행장치(400)의 구성도이다.4 is a block diagram of a payment processing device 400 that provides an OTP-based mobile automatic payment method according to an embodiment of the present invention.
도 4를 참고하면, 본 발명의 실시예에 따른 결제진행장치(400)는 사용자이 식별정보가 입력되는 입력부(405), 데이터송수신부(410), OPT생성부(430), 거리산출부(450) 및 근거리통신부(470)를 포함할 수 있다. 4, the payment processing device 400 according to the embodiment of the present invention includes an input unit 405, a data transmission/reception unit 410, an OPT generation unit 430, and a distance calculation unit 450 into which identification information is input by a user. ) And a short-range communication unit 470 may be included.
사용자는 상기 입력부(405)를 통해 사용자식별정보를 입력할 수 있다. 상기 입력부(405)는 상기 결제진행장치(400)에 내장되어 있을 수도 있고, 별도로 부착되어 있을 수도 있다.The user may input user identification information through the input unit 405. The input unit 405 may be embedded in the payment processing device 400 or may be attached separately.
상기 결제진행장치(400)는 OTP기반 모바일 결제프로그램에 의해 상기 OTP생성부(430)에서 OTP를 생성할 수 있다. 상기 OTP는 서비스서버의 OTP생성부와 동기화되어 생성되므로 서비스서버는 이를 이용하여 상기 결제진행장치(400)의 정당성을 확인할 수 있다. The payment processing device 400 may generate an OTP in the OTP generation unit 430 by an OTP-based mobile payment program. Since the OTP is generated in synchronization with the OTP generation unit of the service server, the service server can use it to check the validity of the payment processing device 400.
상기 거리산출부(450)는 상기 결제진행장치(400)로부터 근거리통신에 의해 모바일기기(200)까지의 제2 거리를 측정할 수 있다. The distance calculating unit 450 may measure a second distance from the payment processing device 400 to the mobile device 200 by short-range communication.
상기 근거리통신부(470)는 상기 서비스서버로부터 상기 결제진행장치(400)의 근거리통신부명칭을 브로드캐스팅할 수 있으며, 모바일기기의 근거리통신부명칭을 감지할 수 있다.The short-range communication unit 470 may broadcast the name of the short-range communication unit of the payment processing device 400 from the service server, and detect the name of the short-range communication unit of the mobile device.
도 5 및 도 6은 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법을 도시한 흐름도이다.5 and 6 are flowcharts illustrating an OTP-based mobile automatic payment method according to an embodiment of the present invention.
도 5 및 도 6을 참고하면, 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법은 사용자가 사용자 식별정보를 결제진행장치(400)의 입력부(405)에 입력하여 결제요청을 함으로써 시작된다(S100). 5 and 6, the OTP-based mobile automatic payment method according to an embodiment of the present invention begins when a user inputs user identification information into the input unit 405 of the payment processing device 400 and requests a payment ( S100).
사용자 식별정보는 전술한 바와 같이, 사용자를 식별할 수 있는 모든 정보, 예를 들어, 숫자, 문자, 특수 기호 등의 일부 또는 전체를 조합하여 만들어진 문자 또는 사용자의 지문, 음성, 홍채 등 사용자의 생체 정보일 수 있으며, 자동차 등록 번호일 수 있다.As described above, the user identification information is all information that can identify the user, for example, a character created by combining some or all of numbers, characters, special symbols, etc., or a user's biometrics such as a user's fingerprint, voice, iris It may be information, and may be a vehicle registration number.
사용자의 식별정보가 입력되면, 상기 결제진행장치(400)는 OTP를 이용한 모바일 자동 결제프로그램이 설치된 상기 결제진행장치(400)의 OTP생성부(430)에서 OTP를 생성하여(S150), 상기 데이터송신부(410)를 통해 상기 서비스서버(300)로 상기 사용자 식별정보, 상기 결제진행장치 식별정보, 결제정보 및 상기 결제진행장치(400)의 OTP를 전달한다(S200). When the user's identification information is input, the payment processing device 400 generates an OTP in the OTP generation unit 430 of the payment processing device 400 installed with a mobile automatic payment program using OTP (S150), and the data The user identification information, the payment processing device identification information, payment information, and the OTP of the payment processing device 400 are transmitted to the service server 300 through the transmission unit 410 (S200).
상기 서비스서버(300)는 S200단계에서 수신된 상기 결제진행장치(400) 식별정보 및 상기 결제진행장치(400)의 OTP를 이용하여 상기 결제진행장치(400)의 정당성을 확인한다(S300). 상기 결제진행장치(400)의 식별정보에 해당하는 OTP생성부(331)에서 생성된 OTP와 상기 결제진행장치(400)로부터 전달받은 결제진행장치의 OTP를 비교하여 상기 결제진행장치(400)의 정당성을 확인할 수 있다. The service server 300 checks the validity of the payment processing device 400 using the identification information of the payment processing device 400 and the OTP of the payment processing device 400 received in step S200 (S300). By comparing the OTP generated by the OTP generation unit 331 corresponding to the identification information of the payment processing device 400 with the OTP of the payment processing device received from the payment processing device 400, the payment processing device 400 Justification can be checked.
상기 서비스서버(300)의 OTP 기반 모바일 자동 결제 DB(330)에는 결제진행장치 별로 OTP생성부가 있고, 상기 OTP생성부는 해당 결제진행장치(400)와 연동되어 동일한 방식으로 OTP가 생성된다. 따라서, 상기 서비스서버(300)의 OTP 기반 모바일 자동 결제 DB(330)의 OTP생성부(331)에서 생성된 OTP와 해당 결제진행장치(400)에서 생성된 OTP를 비교하여 결제진행장치(400)의 정당성을 확인할 수 있다.The OTP-based mobile automatic payment DB 330 of the service server 300 has an OTP generation unit for each payment processing device, and the OTP generation unit is interlocked with the payment processing device 400 to generate OTP in the same manner. Therefore, the payment processing device 400 compares the OTP generated by the OTP generation unit 331 of the OTP-based mobile automatic payment DB 330 of the service server 300 with the OTP generated by the payment processing device 400 You can check the justification of
이 때, 상기 결제진행장치(400)의 정당성 확인에 신뢰성을 높이기 위해서 상기 서비스서버(300)는 GPS, 통신사 셀 ID 정보 등 상기 결제진행장치(400)의 위치 정보 또는 상기 결제진행장치(400)의 통신사 접속 정보를 더 수신 받을 수 있다. 상기 결제진행장치(400)의 OTP를 이용한 모바일 자동 결제프로그램의 가입 시 정보와 상기 수신받은 위치정보 또는 통신사 접속 정보를 이용하여 상기 결제진행장치의 정당성을 더 확인할 수 있다.At this time, in order to increase the reliability of the validity check of the payment processing device 400, the service server 300 includes location information of the payment processing device 400, such as GPS, cell ID information, or the payment processing device 400. You can receive more information on the connection of the mobile operator. The legitimacy of the payment processing device may be further confirmed by using information when signing up for a mobile automatic payment program using OTP of the payment processing device 400 and the received location information or communication company access information.
상기 S300단계에서 상기 결제진행장치(400)의 정당성이 확인되면 상기 서비스서버(300)의 근거리통신부 활성화 명령부(371)는 상기 결제진행장치(400)로부터 수신 받은 사용자 식별정보에 매칭되어 있는 모바일기기(200)에 근거리통신부 활성화 명령을 내리며(S400), 상기 결제진행장치(400)의 정당성이 확인되지 않으면 다시 S200단계로 돌아간다. When the validity of the payment processing device 400 is confirmed in step S300, the short-range communication unit activation command unit 371 of the service server 300 is a mobile device matching the user identification information received from the payment processing device 400. The short-range communication unit activation command is given to the device 200 (S400), and if the validity of the payment processing device 400 is not confirmed, the process returns to step S200.
상기 모바일기기(200)의 근거리통신부(270)는 상기 서비스서버의 근거리통신부 활성화 명령부(371)의 근거리통신부 활성화 명령에 따라서 상기 근거리통신부(270)가 온(ON)되므로 상기 모바일기기(200)의 배터리 소모를 방지할 수 있다. 또한 상기 모바일기기(200)는 상기 근거리통신부 활성화 명령에 따라 근거리통신부가 자동으로 온(ON)되므로 사용자는 상기 모바일기기(200)를 꺼내지 않아도 결제를 진행할 수 있다. 상기 모바일기기(200)의 근거리통신부(270)는 서비스서비스부터 결제가 완료되면 근거리통신모드를 오프(OFF)할 수 있다.The short-range communication unit 270 of the mobile device 200 turns on the short-range communication unit 270 according to the short-range communication unit activation command of the short-range communication unit activation command unit 371 of the service server, so that the mobile device 200 Can prevent battery consumption. In addition, since the mobile device 200 is automatically turned on according to the short-range communication unit activation command, the user can proceed with payment without taking out the mobile device 200. The short-range communication unit 270 of the mobile device 200 may turn off the short-range communication mode when payment is completed from the service service.
그 후 S500단계에서, 상기 서비스서버(300)의 브로드캐스팅 명령부(373)는 상기 모바일기기(200)에 상기 결제진행장치(400)의 근거리통신부 명칭을 전달하고, 상기 모바일기기(300)의 근거리통신부 명칭을 브로드캐스팅할 것을 명령한다. 또한, 상기 서비스서버(300)의 브로드캐스팅 명령부(373)는 상기 결제진행장치(400)에 상기 모바일기기(200)의 근거리통신부 명칭을 전달하고, 브로드캐스팅 명령부(375)는 상기 결제진행장치(400)의 근거리통신부 명칭을 브로드캐스팅할 것을 명령한다.After that, in step S500, the broadcasting command unit 373 of the service server 300 transmits the name of the short-range communication unit of the payment processing device 400 to the mobile device 200, and It is ordered to broadcast the name of the local area communication department. In addition, the broadcasting command unit 373 of the service server 300 transmits the name of the short-range communication unit of the mobile device 200 to the payment processing device 400, and the broadcasting command unit 375 performs the payment process. Instructs to broadcast the name of the local area communication unit of the device 400.
이 때, 상기 모바일기기(200)의 근거리통신부 명칭은 모바일기기(200)의 OTP생성부(230)에서 생성된 제1 OTP이며, 상기 결제진행장치(400)의 근거리통신부 명칭은 결제진행장치(400)의 OTP생성부(430)에서 생성된 제2 OTP이다. 따라서, 상기 제1 OTP는 상기 모바일기기(200)의 정당성을 확인하는데 사용되는 OPT와 별도일 수 있으며, 상기 제2 OTP는 상기 결제진행장치(400)의 정당성을 확인하는데 사용되는 OTP와 별도일 수 있다.At this time, the name of the short-range communication unit of the mobile device 200 is the first OTP generated by the OTP generation unit 230 of the mobile device 200, and the name of the short-range communication unit of the payment processing device 400 is a payment processing device ( This is the second OTP generated by the OTP generation unit 430 of 400). Therefore, the first OTP may be separate from the OPT used to check the validity of the mobile device 200, and the second OTP may be separate from the OTP used to check the validity of the payment processing device 400. I can.
상기 서비스서버(300)의 OTP기반 모바일 자동 결제 DB(330)에는 결제진행장치와 모바일기기 별로 OTP생성부가 있고, 상기 OTP생성부는 해당 결제진행장치 또는 모바일기기와 각각 연동되어 동일한 방식으로 OTP가 생성된다. 즉, 서비스서버(300)의 OTP생성부는 상기 모바일기기(200)에서 생성된 제1 OTP 및 결제진행장치(400)에서 생성된 제2 OTP와 동일한 OTP를 각각 생성한다. 따라서, 상기 서비스서버(300)의 브로드캐스팅 명령부(373)는 상기 모바일기기(300)에 상기 결제진행장치(400)의 제2 OTP를 전달하고, 상기 모바일기기(300)의 제1 OTP를 브로드캐스팅할 것을 명령한다. 또한, 상기 결제진행장치(400)에 상기 서비스서버(300)의 제1 OTP를 전달하고, 상기 결제진행장치(400)의 제2 OTP를 브로드캐스팅할 것을 명령한다.The OTP-based mobile automatic payment DB 330 of the service server 300 has an OTP generation unit for each payment processing device and a mobile device, and the OTP generation unit is interlocked with the corresponding payment processing device or mobile device to generate OTP in the same manner. do. That is, the OTP generation unit of the service server 300 generates the same OTP as the first OTP generated by the mobile device 200 and the second OTP generated by the payment processing device 400, respectively. Accordingly, the broadcasting command unit 373 of the service server 300 transmits the second OTP of the payment processing device 400 to the mobile device 300 and transmits the first OTP of the mobile device 300. Command to broadcast. In addition, the first OTP of the service server 300 is transmitted to the payment processing device 400, and a second OTP of the payment processing device 400 is instructed to broadcast.
즉, 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법은 모바일기기 및 결제진행장치의 근거리통신부 명칭 대신에, OPT를 이용한 모바일 자동 결제프로그램에 의해 OTP생성부에서 생성된 OTP를 이용하여 모바일기기와 결제진행장치가 서로를 감지한다. 따라서, 모바일기기와 결제진행장치는 결제요청이 있을 때마다 OTP를 새로 생성하여 서로를 감지하게 되므로, 종래의 근거리통신부 명칭을 기반으로 모바일기기와 결제진행장치가 서로를 감지하는 방법에 비해 정확도가 높아져 보안성이 강화된다.That is, the OTP-based mobile automatic payment method according to the embodiment of the present invention uses the OTP generated by the OTP generation unit by the mobile automatic payment program using OPT, instead of the name of the short-range communication unit of the mobile device and the payment processing device. And the payment processing device detect each other. Therefore, since the mobile device and the payment processing device detect each other by generating a new OTP whenever there is a payment request, the accuracy is higher than that of the method in which the mobile device and the payment processing device detect each other based on the conventional short-range communication unit name. It increases, and security is strengthened.
또한, 상기 서비스서버(300)의 거리산출 명령부(375)는 상기 모바일기기(200)와 상기 결제진행장치(400)에 근거리통신을 이용한 거리산출 명령을 내린다(S550).In addition, the distance calculation command unit 375 of the service server 300 issues a distance calculation command using short-range communication to the mobile device 200 and the payment processing device 400 (S550).
이에 따라 상기 모바일기기(200)는 상기 모바일기기(200)에서 생성된 제1 OTP를 브로드캐스팅하며(S600) 근거리통신을 이용하여 상기 결제진행장치(400)에서 생성된 제2 OTP를 감지하며(S650), 상기 결제진행장치(400)는 상기 결제진행장치(400)에서 생성된 제2 OTP를 브로드캐스팅하며(S600) 근거리통신을 이용하여 상기 모바일기기(200)에서 생성된 제1 OTP를 감지한다(S650). 상기 모바일기기(200)가 제2 OTP를 감지하지 못하거나 상기 결제진행장치(400)가 제1 OPT를 감지하지 못한 경우, 모바일기기(200)와 결제진행장치(400)는 OTP를 이용한 모바일 자동 결제 프로그램을 사용할 수 없기 때문에 결제가 진행되지 못한다.Accordingly, the mobile device 200 broadcasts the first OTP generated by the mobile device 200 (S600) and detects the second OTP generated by the payment processing device 400 using short-range communication ( S650), the payment processing device 400 broadcasts the second OTP generated in the payment processing device 400 (S600) and detects the first OTP generated in the mobile device 200 using short-range communication. Do (S650). When the mobile device 200 does not detect the second OTP or the payment processing device 400 does not detect the first OPT, the mobile device 200 and the payment processing device 400 are Payment cannot proceed because the payment program cannot be used.
상기 모바일기기(200)가 상기 제2 OTP를 감지하고 상기 결제진행장치(400)가 상기 제1 OTP를 감지하면(S730), 상기 모바일기기(200)의 거리산출부(250)는 상기 모바일기기(200)에서 상기 결제진행장치(400)까지의 제1 거리를 산출하여 그 값을 상기 서비스서버(300)로 보내며, 상기 결제진행장치(400)의 거리산출부(450)는 상기 결제진행장치(400)에서 상기 모바일기기(200)까지의 제2 거리를 그 값을 상기 서비스서버(300)로 보낸다.When the mobile device 200 detects the second OTP and the payment processing device 400 detects the first OTP (S730), the distance calculation unit 250 of the mobile device 200 The first distance from 200 to the payment processing device 400 is calculated and the value is sent to the service server 300, and the distance calculation unit 450 of the payment processing device 400 is the payment processing device The second distance from 400 to the mobile device 200 is sent to the service server 300.
상기 서비스서버(300)의 거리판단부(390)는 상기 제1 거리와 제2 거리가 설정 거리 이내에 있는지 판단한다(S740). 상기 설정 거리는 근거리통신에 의해 모바일기기(200)와 결제진행장치(400)가 서로를 감지할 수 있는 거리이다.The distance determination unit 390 of the service server 300 determines whether the first distance and the second distance are within a set distance (S740). The set distance is a distance at which the mobile device 200 and the payment processing device 400 can detect each other through short-range communication.
이 때, 결제과정에 있어서 보안성을 향상시키기 위해서 모바일기기(200)의 정당성을 추가적으로 확인할 수 있다. 상기 모바일기기(200)의 OTP생성부(230)에서 OTP가 생성되고(S760) 이를 상기 서비스서버(300)로 전달한다(S770). 상기 서비스서버(300)의 OTP판단부(333)는 상기 모바일기기(200)의 식별정보에 해당하는 OTP생성부(331)에서 생성된 OTP와 상기 모바일기기(200)로부터 전달받은 모바일기기의 OTP를 비교하여 상기 모바일기기(200)의 정당성을 확인할 수 있다(S780). In this case, in order to improve security in the payment process, the validity of the mobile device 200 may be additionally checked. The OTP is generated by the OTP generation unit 230 of the mobile device 200 (S760) and transmits the OTP to the service server 300 (S770). The OTP determination unit 333 of the service server 300 includes the OTP generated by the OTP generation unit 331 corresponding to the identification information of the mobile device 200 and the OTP of the mobile device transmitted from the mobile device 200. It is possible to check the validity of the mobile device 200 by comparing (S780).
상기 서비스서버(300)의 OTP 기반 모바일 자동 결제 DB(330)에는 모바일기기 별로 OTP생성부가 있고, 상기 OTP생성부는 해당 모바일기기(200)와 연동되어 동일한 방식으로 OTP가 생성된다. 따라서, 상기 서비스서버(300)의 OTP 기반 모바일 자동 결제 DB(330)의 OTP생성부(331)에서 생성된 OTP와 해당 모바일기기(200)에서 생성된 OTP를 비교하여 상기 모바일기기(200)의 정당성을 확인할 수 있다.The OTP-based mobile automatic payment DB 330 of the service server 300 has an OTP generation unit for each mobile device, and the OTP generation unit is interlocked with the mobile device 200 to generate OTP in the same manner. Therefore, by comparing the OTP generated by the OTP generation unit 331 of the OTP-based mobile automatic payment DB 330 of the service server 300 and the OTP generated by the mobile device 200, Justification can be checked.
상기 서비스서버(300)는 상기 제1 거리와 상기 제2 거리가 설정 거리 이내라고 판단되면(S740), 금융사서버(500)에 결제 가능 여부를 요청한다(S900). When it is determined that the first distance and the second distance are within a set distance (S740), the service server 300 requests whether payment is possible to the financial institution server 500 (S900).
상기 금융사서버(500)는 사용자가 입력한 사용자 식별정보에 따라 결제원천의 잔액 등을 확인하여 결제금액만큼의 결제가 가능한지 여부를 판단한다(S900). 상기 금융사서버(500)가 결제가 가능하다고 판단되면(S930), 결제 가능 여부를 상기 서비스서버(300)에 전송한다(S950).The financial institution server 500 checks the balance of the payment source according to the user identification information input by the user, and determines whether or not the amount of payment is possible (S900). If the financial institution server 500 determines that payment is possible (S930), whether payment is possible is transmitted to the service server 300 (S950).
이에 상기 서비스서버(300)는 상기 결제요청을 승인하면(S970), 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법이 종료된다. 상기 모바일기기(200)의 근거리통신부(270)는 서비스서비스부터 결제가 완료되면 근거리통신모드를 오프(OFF)할 수 있다.Accordingly, when the service server 300 approves the payment request (S970), the OTP-based mobile automatic payment method according to an embodiment of the present invention is terminated. The short-range communication unit 270 of the mobile device 200 may turn off the short-range communication mode when payment is completed from the service service.
즉, 본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법은 OTP를 기반으로 하여 모바일기기(200)와 결제진행장치(400)의 정당성이 확인되고, 모바일기기(200)와 결제진행장치(400)가 근거리통신에 의해 설정 시간 내에 서로를 감지하고, 모바일기기(200)가 검출한 모바일기기(200)에서 결제진행장치(400)까지의 제1 거리와 결제진행장치(400)이 검출한 결제진행장치(400)에서 모바일기기(200)까지의 제2 거리가 설정 거리 이내인 경우, 결제가 진행될 수 있다. 따라서 사용자는 모바일기기를 꺼내지 않더라도 사용자의 식별정보를 결제진행장치(400)에 입력하면, 상기 OTP 기반 모바일 자동 결제방법에 의해 자동으로 결제가 승인되므로 사용자의 결제과정이 편리해진다. 또한 OTP를 이용하여 결제진행장치(400)와 모바일기기(200)의 정당성을 확인하므로 종래의 모바일 자동 결제방법에 비해 보안성이 더욱 향상된다.That is, in the OTP-based mobile automatic payment method according to the embodiment of the present invention, the legitimacy of the mobile device 200 and the payment processing device 400 is confirmed based on the OTP, and the mobile device 200 and the payment processing device 400 ) Detect each other within a set time by short-range communication, the first distance from the mobile device 200 detected by the mobile device 200 to the payment processing device 400 and the payment detected by the payment processing device 400 When the second distance from the processing device 400 to the mobile device 200 is within the set distance, payment may be made. Therefore, even if the user does not take out the mobile device, if the user's identification information is input into the payment processing device 400, payment is automatically approved by the OTP-based mobile automatic payment method, thereby making the user's payment process convenient. In addition, since the validity of the payment processing device 400 and the mobile device 200 is verified using OTP, security is further improved compared to the conventional mobile automatic payment method.
본 발명의 실시예에 따른 OTP 기반 모바일 자동 결제방법은 컴퓨터로 읽을 수 있는 기록매체에 컴퓨터가 읽을 수 있는 코드로서 구현하는 것이 가능하다. 컴퓨터가 읽을 수 있는 기록매체는 컴퓨터 시스템에 의하여 읽혀질 수 있는 데이터가 저장되는 모든 종류의 기록장치를 포함한다. 기록매체의 예로는 ROM, RAM, CD-ROM, 자기 테이프, 플로피 디스크, 광데이터 저장장치 등을 포함한다. 또한 컴퓨터가 읽을 수 있는 기록매체는 네트워크로 연결된 컴퓨터 시스템에 분산되어 분산방식으로 컴퓨터가 읽을 수 있는 코드가 저장되고 실행될 수 있다.The OTP-based mobile automatic payment method according to an embodiment of the present invention can be implemented as a computer-readable code on a computer-readable recording medium. The computer-readable recording medium includes all types of recording devices that store data that can be read by a computer system. Examples of the recording medium include ROM, RAM, CD-ROM, magnetic tape, floppy disk, optical data storage device, and the like. In addition, the computer-readable recording medium can be distributed over a computer system connected through a network to store and execute computer-readable codes in a distributed manner.
이상으로 본 발명에 관한 바람직한 실시예를 설명하였으나, 본 발명은 상기 실시예에 한정되지 아니하며, 본 발명의 실시예로부터 당해 발명이 속하는 기술분야에서 통상의 지식을 가진 자에 의한 용이하게 변경되어 균등하다고 인정되는 범위의 모든 변경을 포함한다.Although the preferred embodiments of the present invention have been described above, the present invention is not limited to the above embodiments, and the embodiments of the present invention are easily changed by those of ordinary skill in the art to which the present invention pertains. It includes all changes to the extent deemed acceptable.
[부호의 설명][Explanation of code]
100: 근거리통신100: near field communication
200: 모바일기기200: mobile device
210, 310, 410 : 데이터송수신부210, 310, 410: data transmission and reception unit
230, 430: OTP 생성부230, 430: OTP generation unit
250, 450 : 거리산출부250, 450: distance calculation unit
270, 470 : 근거리통신부270, 470: Ministry of Local Communication
300: 서비스서버300: service server
330: OTP 기반 모바일 자동 결제 DB330: OTP-based mobile automatic payment DB
350: 정당성확인부350: justification check
370: 명령부370: command
390: 거리판단부390: distance determination unit
395: 결제가능여부확인부395: Payment availability confirmation unit
400: 결제진행장치400: payment processing device
405: 입력부405: input
500; 금융사서버500; Financial company server

Claims (15)

  1. 결제진행장치가, 사용자 식별정보를 서비스서버에게 송신하는 단계;Transmitting, by the payment processing device, user identification information to a service server;
    상기 서비스서버가, 상기 결제진행장치의 근거리통신부명칭을 상기 사용자 식별정보에 대응하는 모바일 기기에게 제공하고, 상기 모바일 기기의 근거리통신부명칭을 상기 결제진행장치에게 제공하는 단계; 및Providing, by the service server, a name of a short-range communication unit of the payment processing device to a mobile device corresponding to the user identification information, and providing a name of a short-range communication unit of the mobile device to the payment processing device; And
    상기 모바일 기기가, 상기 모바일 기기의 근거리통신부명칭을 브로드캐스팅하는 단계;Broadcasting, by the mobile device, the name of the short-range communication unit of the mobile device;
    상기 결제진행장치가, 상기 결제진행장치의 근거리통신부명칭을 브로드캐스팅하는 단계;Broadcasting, by the payment processing device, a name of a short-range communication unit of the payment processing device;
    상기 모바일 기기 또는 상기 결제진행장치가, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한지 여부를 나타내는 정보를 생성하여 상기 서비스서버에게 전송하는 단계; 및Generating, by the mobile device or the payment processing device, information indicating whether short-range communication between the payment processing device and the mobile device is possible, and transmitting the information to the service server; And
    상기 서비스서버가, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한 것으로 판단한 경우, 상기 사용자 식별정보에 따른 결제원천을 이용하여 상기 결제진행장치로부터 요청된 결제요청을 승인하기 위한 후속 단계를 실행하는 단계;When the service server determines that short-range communication between the payment processing device and the mobile device is possible, execute a subsequent step for approving the payment request requested from the payment processing device using a payment source according to the user identification information. Step to do;
    를 포함하는,Containing,
    모바일 자동 결제방법.Mobile automatic payment method.
  2. 서비스서버가, 결제진행장치로부터 사용자 식별정보를 수신하는 단계;Receiving, by the service server, user identification information from the payment processing device;
    상기 서비스서버가, 상기 결제진행장치의 근거리통신부명칭을 상기 사용자 식별정보에 대응하는 모바일 기기에게 제공하고, 상기 모바일 기기의 근거리통신부명칭을 상기 결제진행장치에게 제공하는 단계; 및Providing, by the service server, a name of a short-range communication unit of the payment processing device to a mobile device corresponding to the user identification information, and providing a name of a short-range communication unit of the mobile device to the payment processing device; And
    상기 서비스서버가, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한지 여부를 나타내는 정보를 상기 결제진행장치 또는 상기 모바일 기기로부터 수신하는 단계;Receiving, by the service server, information indicating whether short-range communication between the payment processing device and the mobile device is possible from the payment processing device or the mobile device;
    를 포함하며,Including,
    상기 서비스서버가, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한 것으로 판단한 경우, 상기 사용자 식별정보에 따른 결제원천을 이용하여 상기 결제진행장치로부터 요청된 결제요청을 승인하기 위한 후속 단계를 실행하도록 되어 있고,When the service server determines that short-range communication between the payment processing device and the mobile device is possible, execute a subsequent step for approving the payment request requested from the payment processing device using a payment source according to the user identification information. Is supposed to be,
    상기 모바일 기기는, 상기 모바일 기기의 근거리통신부명칭을 브로드캐스팅하도록 되어 있고, 그리고The mobile device is adapted to broadcast the name of the short-range communication unit of the mobile device, and
    상기 결제진행장치는, 상기 결제진행장치의 근거리통신부명칭을 브로드캐스팅하도록 되어 있는 것을 특징으로 하는,The payment processing device, characterized in that to broadcast the name of the short-range communication unit of the payment processing device,
    모바일 자동 결제방법.Mobile automatic payment method.
  3. 제2항에 있어서, The method of claim 2,
    상기 서비스서버가, 상기 제공하는 단계 이전에, 상기 결제진행장치와 상기 모바일 기기 중 어느 하나의 장치의 근거리통신부명칭을 상기 어느 하나의 장치로부터 수신하는 단계를 더 포함하는, The service server, prior to the providing step, further comprising the step of receiving a short-distance communication unit name of any one of the payment processing device and the mobile device from the one device,
    모바일 자동 결제방법.Mobile automatic payment method.
  4. 제2항에 있어서, 상기 결제진행장치와 상기 모바일 기기 중 어느 하나의 장치의 근거리통신부명칭은 상기 어느 하나의 장치에서 생성한 OTP인, 모바일 자동 결제방법.The method of claim 2, wherein the name of the short-range communication unit of any one of the payment processing device and the mobile device is an OTP generated by the one of the devices.
  5. 제2항에 있어서, 상기 결제진행장치와 상기 모바일 기기 중 어느 하나의 장치는, 상기 결제진행장치와 상기 모바일 기기 중 다른 하나의 장치가 브로드캐스팅한 상기 다른 하나의 장치의 근거리통신부명칭을 인식하여, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한지 여부를 나타내는 정보를 생성하도록 되어 있는, 모바일 자동 결제방법.The method of claim 2, wherein any one of the payment processing device and the mobile device recognizes the name of the short-range communication unit of the other device broadcasted by the other device among the payment processing device and the mobile device. And generating information indicating whether short-range communication is possible between the payment processing device and the mobile device.
  6. 제2항에 있어서, 상기 후속단계는, 상기 서비스서버가, 상기 사용자 식별정보에 따른 결제원천을 이용하여 결제가 가능한지 여부를 금융사서버에게 요청하는 단계를 포함하는, 모바일 자동 결제방법.The method of claim 2, wherein the subsequent step comprises the step of requesting, by the service server, from a financial institution server whether or not payment is possible using a payment source according to the user identification information.
  7. 제6항에 있어서,The method of claim 6,
    상기 후속단계는, The subsequent step,
    상기 서비스서버가 상기 사용자 식별정보에 따른 결제원천을 이용하여 결제가 가능하다는 결과를 상기 금융사서버로부터 수신하면, 상기 서비스서버가 상기 결제진행장치로부터의 결제요청을 승인하는 단계를 더 포함하는,When the service server receives a result that payment is possible using the payment source according to the user identification information from the financial institution server, the service server further comprising the step of approving a payment request from the payment processing device,
    모바일 자동 결제방법.Mobile automatic payment method.
  8. 제2항에 있어서,The method of claim 2,
    상기 사용자 식별정보를 수신하는 단계는,Receiving the user identification information,
    상기 서비스서버가, 상기 결제진행장치로부터 상기 결제진행장치 식별정보를 수신하는 단계;Receiving, by the service server, the payment processing device identification information from the payment processing device;
    상기 서비스서버가, 상기 결제진행장치가 생성한 OTP를 상기 결제진행장치로부터 수신하는 단계;Receiving, by the service server, the OTP generated by the payment processing device from the payment processing device;
    상기 서비스서버가, 상기 결제진행장치 식별정보에 대응하는 OTP생성방식에 따라 OPT를 생성하는 단계; 및Generating, by the service server, an OPT according to an OTP generation method corresponding to the payment processing device identification information; And
    상기 서비스서버가, 상기 서비스서버가 생성한 상기 OTP와 상기 결제진행장치가 생성한 OTP를 비교하여 상기 결제진행장치의 정당성을 확인하는 단계;Comparing, by the service server, the OTP generated by the service server and the OTP generated by the payment processing device to check the validity of the payment processing device;
    를 포함하며,Including,
    상기 결제진행장치의 정당성을 확인된 경우에만, 상기 결제요청을 승인하기 위한 후속 단계를 실행하는 것을 특징으로 하는,It characterized in that the subsequent step for approving the payment request is executed only when the validity of the payment processing device is confirmed,
    모바일 자동 결제방법. Mobile automatic payment method.
  9. 제2항에 있어서, 상기 결제진행장치가 상기 모바일 기기의 근거리통신부명칭을 감지하고, 상기 모바일 기기가 상기 결제진행장치의 근거리통신부명칭을 감지하면, 상기 모바일 기기와 상기 결제진행장치가 서로 인증되는 것을 특징으로 하는, 모바일 자동 결제방법.The method of claim 2, wherein when the payment processing device detects the name of the short-range communication unit of the mobile device and the mobile device detects the name of the short-range communication unit of the payment processing device, the mobile device and the payment processing device are authenticated with each other. Characterized in that, mobile automatic payment method.
  10. 제2항에 있어서, The method of claim 2,
    상기 결제진행장치와 상기 모바일 기기 중 어느 하나의 장치는, 상기 결제진행장치와 상기 모바일 기기 중 다른 하나의 장치가 브로드캐스팅한 상기 다른 하나의 장치의 근거리통신부명칭을 인식하여, 상기 어느 하나의 장치로부터 상기 다른 하나의 장치까지의 거리를 측정하도록 되어 있고,Any one of the payment processing device and the mobile device recognizes the name of the short-range communication unit of the other device broadcasted by the other device among the payment processing device and the mobile device, and To measure the distance from the other device,
    상기 서비스서버는, 상기 어느 하나의 장치로부터 상기 거리를 수신하여, 상기 거리가 미리 설정된 거리보다 작은 경우에만 상기 결제요청을 승인하기 위한 후속 단계를 실행하는 것을 특징으로 하는,The service server, characterized in that, by receiving the distance from any one device, and executing a subsequent step for approving the payment request only when the distance is less than a preset distance,
    모바일 자동 결제방법.Mobile automatic payment method.
  11. 제2항에 있어서,The method of claim 2,
    상기 결제진행장치로부터 사용자 식별정보를 수신하는 단계 이후에, After the step of receiving user identification information from the payment processing device,
    상기 서비스서버가, 상기 사용자 식별정보에 대응하는 모바일 기기에게 상기 모바일 기기의 근거리통신모드를 온(ON) 상태로 전환할 것을 지시하는 근거리통신 활성화신호를 상기 모바일 기기에게 송신하는 단계를 더 포함하는,The service server further comprising the step of transmitting to the mobile device a short-range communication activation signal instructing the mobile device corresponding to the user identification information to switch the short-range communication mode of the mobile device to an ON state. ,
    모바일 자동 결제방법. Mobile automatic payment method.
  12. 제11항에 있어서,The method of claim 11,
    상기 모바일 기기와 상기 결제진행장치가 서로 인증하는 과정은,The process of authenticating each other between the mobile device and the payment processing device,
    상기 서비스서버가, 상기 모바일 기기가 생성한 OTP를 상기 결제진행장치로부터 수신하는 단계;Receiving, by the service server, the OTP generated by the mobile device from the payment processing device;
    상기 서비스서버가, 상기 모바일기기의 OTP생성방식에 따라 OPT를 생성하는 단계; 및Generating, by the service server, an OPT according to an OTP generation method of the mobile device; And
    상기 서비스서버가, 상기 서비스서버가 생성한 상기 OTP와 상기 모바일 기기가 생성한 OTP를 비교하여 상기 모바일 기기의 정당성을 확인하는 단계;Comparing, by the service server, the OTP generated by the service server and the OTP generated by the mobile device to check the validity of the mobile device;
    를 포함하며,Including,
    상기 모바일 기기의 정당성을 확인된 경우에만, 상기 결제요청을 승인하기 위한 후속 단계를 실행하는 것을 특징으로 하는,Only when the validity of the mobile device is confirmed, performing a subsequent step for approving the payment request,
    모바일 자동 결제방법.Mobile automatic payment method.
  13. 제2항에 있어서, 상기 사용자 식별정보를 수신하는 단계는, 상기 서비스서버가 상기 결제진행장치의 실시간 위치정보 또는 통신접속정보 중 적어도 하나를 수신하는 단계를 포함하는, 모바일 자동 결제방법.The method of claim 2, wherein the receiving of the user identification information comprises receiving, by the service server, at least one of real-time location information or communication access information of the payment processing device.
  14. 서비스서버가, 결제진행장치로부터 사용자 식별정보를 수신하는 단계;Receiving, by the service server, user identification information from the payment processing device;
    상기 서비스서버가, 상기 결제진행장치와 상기 사용자 식별정보에 대응하는 모바일기기 중 어느 하나의 장치의 근거리통신부명칭을 다른 하나의 장치에게 제공하는 단계; 및 Providing, by the service server, a short-range communication unit name of one of the payment processing device and a mobile device corresponding to the user identification information to another device; And
    상기 서비스서버가, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한지 여부를 나타내는 정보를 상기 결제진행장치 또는 상기 모바일 기기로부터 수신하는 단계;Receiving, by the service server, information indicating whether short-range communication between the payment processing device and the mobile device is possible from the payment processing device or the mobile device;
    를 포함하며,Including,
    상기 서비스서버가, 상기 결제진행장치와 상기 모바일 기기 간에 근거리통신이 가능한 것으로 판단한 경우, 상기 사용자 식별정보에 따른 결제원천을 이용하여 상기 결제진행장치로부터 요청된 결제요청을 승인하기 위한 후속 단계를 실행하도록 되어 있고, When the service server determines that short-range communication between the payment processing device and the mobile device is possible, execute a subsequent step for approving the payment request requested from the payment processing device using a payment source according to the user identification information. Is supposed to be,
    상기 어느 하나의 장치는, 상기 어느 하나의 장치의 근거리통신부명칭을 브로드캐스팅하도록 되어 있는,The any one device is adapted to broadcast the name of the near field communication unit of the any one device,
    모바일 자동 결제방법.Mobile automatic payment method.
  15. 제14항에 있어서, 상기 어느 하나의 장치의 근거리통신부명칭은 상기 어느 하나의 장치에서 생성한 OTP인, 모바일 자동 결제방법.15. The method of claim 14, wherein the name of the short-range communication unit of any one device is an OTP generated by the one device.
PCT/KR2019/017736 2019-03-14 2019-12-13 One time password-based mobile automatic payment method and system using same WO2020184815A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR10-2019-0029173 2019-03-14
KR1020190029173A KR102040100B1 (en) 2019-03-14 2019-03-14 Mobile automatic payment method and system based on otp

Publications (1)

Publication Number Publication Date
WO2020184815A1 true WO2020184815A1 (en) 2020-09-17

Family

ID=68576830

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2019/017736 WO2020184815A1 (en) 2019-03-14 2019-12-13 One time password-based mobile automatic payment method and system using same

Country Status (2)

Country Link
KR (1) KR102040100B1 (en)
WO (1) WO2020184815A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102040100B1 (en) * 2019-03-14 2019-11-05 강민 Mobile automatic payment method and system based on otp
KR20220129441A (en) * 2021-03-16 2022-09-23 박희영 Payment method and system through one-time payment exclusive number generation of real-card linked with application

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20100034688A (en) * 2008-09-23 2010-04-01 주식회사 모빌리언스 Small amount payment system for mobile phone using certification function of payment gateway server and method thereof
KR20160085164A (en) * 2015-01-07 2016-07-15 주식회사 씽크풀 Method of paying, a application system, and member apparatus for delivery service
KR20170021813A (en) * 2017-02-16 2017-02-28 주식회사 비즈모델라인 Method for Processing Payment based on Application Program by using One Time Password
KR101843099B1 (en) * 2016-12-05 2018-03-28 주식회사 인비즈소프트 Delivery agency communication system and delivery agency communication operating method using network
KR101890857B1 (en) * 2018-02-01 2018-08-23 임태희 Offline mobile auto payment method based on location
KR102040100B1 (en) * 2019-03-14 2019-11-05 강민 Mobile automatic payment method and system based on otp

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20100034688A (en) * 2008-09-23 2010-04-01 주식회사 모빌리언스 Small amount payment system for mobile phone using certification function of payment gateway server and method thereof
KR20160085164A (en) * 2015-01-07 2016-07-15 주식회사 씽크풀 Method of paying, a application system, and member apparatus for delivery service
KR101843099B1 (en) * 2016-12-05 2018-03-28 주식회사 인비즈소프트 Delivery agency communication system and delivery agency communication operating method using network
KR20170021813A (en) * 2017-02-16 2017-02-28 주식회사 비즈모델라인 Method for Processing Payment based on Application Program by using One Time Password
KR101890857B1 (en) * 2018-02-01 2018-08-23 임태희 Offline mobile auto payment method based on location
KR102040100B1 (en) * 2019-03-14 2019-11-05 강민 Mobile automatic payment method and system based on otp

Also Published As

Publication number Publication date
KR102040100B1 (en) 2019-11-05

Similar Documents

Publication Publication Date Title
WO2017222170A1 (en) Method and card company server for processing payment by verifying verification value, method for supporting payment by using verification value, and smart card
WO2018124857A1 (en) Blockchain database-based method and terminal for authenticating user non-face-to-face by utilizing mobile id, and server utilizing method and terminal
WO2018030707A1 (en) Authentication system and method, and user equipment, authentication server, and service server for performing same method
WO2014030836A1 (en) Method and system for authenticating transaction request from device
WO2014051316A1 (en) Credit card payment system and credit card payment method using iris information
WO2015163558A1 (en) Payment method using biometric information recognition, and device and system for same
EP3724842A1 (en) Electronic device and method for supporting automatic wi-fi connection with enhanced security method when making electronic wallet payment
WO2015008958A1 (en) Nfc service system and service method
WO2019031717A1 (en) Intra-store communication network-based payment system, portable terminal comprising intra-store communication network-based payment function, method for providing intra-store communication network-based payment service, and program for performing same
WO2016085062A1 (en) Authentication method using nfc authentication card
WO2020184815A1 (en) One time password-based mobile automatic payment method and system using same
WO2018169150A1 (en) Locked screen-based user authentication system and method
WO2020032498A1 (en) User authentication method and system using virtual authentication code
AU2021254627B2 (en) Method for unlocking vehicle door using mobile terminal
WO2022005141A1 (en) Method for unlocking vehicle door using mobile terminal
WO2015064799A1 (en) Payment system using near field communication and payment method using same
WO2021206481A1 (en) Financial transaction system and method
WO2023167482A1 (en) Authentication method and system for payments
WO2023167481A1 (en) Authentication method and system
WO2019151806A1 (en) Location-based offline automatic mobile payment method
WO2017018861A1 (en) Financial device using biometric information, and operation method therefor
WO2022139474A1 (en) Electronic device for providing digital id information, and method therefor
WO2019022585A1 (en) Payment system and payment method for directly confirming user after card company receives payment request
WO2020162739A1 (en) Method, program and apparatus for identifying device using virtual code based on unique value of chip
WO2020197160A1 (en) Device and method for accessing service using authentication of electronic device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19919417

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19919417

Country of ref document: EP

Kind code of ref document: A1