KR20100105515A - Smart phone - Google Patents

Abstract

PURPOSE: A smart phone is provided to use a predetermined token code when enabling a customer wireless terminal to perform predetermined transaction by being connected to a predetermined financial transactional unit, thereby safely performing financial transaction. CONSTITUTION: A communication processor(575) is connected to a server of a communication network. The communication processor receives an token agent. A connector is connected to a financial company server. The token agent generates token code. A financial transaction unit(585) primarily outputs predetermined password input window for driving the token agent. If the validity of password is authenticated, the financial transaction unit secondly outputs a token code input page.

Description

Smartphone {Smart Phone}

The present invention relates to a communication processing unit for receiving a token agent in connection with a server on a communication network, a connection unit for connecting to a financial institution server, a token agent for generating a token code, and a predetermined password (or code for driving the token agent). ) Output the input window (or area) on the screen first, and when the validity of the password (or code) is authenticated, the token code input (or provide) page is output on the screen secondly, and the token code input (or provided) The present invention relates to a smart phone including a financial transaction unit for providing a token code input through a page to a financial company server connected through the connection unit.

Conventionally, in a predetermined customer wireless terminal, in connection with the connected financial transaction means, validating the financial transaction (payment and / or bill payment, etc.) during a predetermined financial transaction (payment and / or bill payment, etc.). For this purpose, a procedure for inputting a predetermined password for financial transactions was performed.

However, due to the nature of information and communication technology, the financial transaction password transmitted through the network includes a problem of hacking and / or theft and / or loss and / or abuse, thereby making the financial transaction more secure and reliable. There is a need for financial transaction safeguards that are not hacked and / or stolen and / or lost or otherwise hacked and / or stolen and / or lost.

An object of the present invention is to connect to a server on a communication network, a communication processing unit for receiving a token agent, a connection for connecting to a financial institution server, a token agent for generating a token code, and a predetermined password for driving the token agent ( Or a code) input window (or area) is first output on the screen, and upon validation of the password (or code), a token code input (or provided) page is output on the screen secondly, and the token code input ( Or provide) a smart phone having a financial transaction that provides a token code input through the page to the financial company server connected through the connection.

The smartphone according to the present invention is connected to a server on a communication network, a communication processing unit for receiving a token agent, a connection unit for connecting to a financial institution server, a token agent for generating a token code, and predetermined to drive the token agent A password (or code) input window (or area) is first output on the screen, and upon validation of the password (or code), a token code input (or provided) page is output on the screen secondly, and the token code is And a financial transaction unit for providing a token code input through an input (or providing) page to a financial company server connected through the connection unit.

According to the present invention, when a predetermined financial transaction (payment and / or bill payment, etc.) in connection with a predetermined financial transaction means in the customer wireless terminal, the financial transaction (payment and / Or payment of bills, etc.), there is an advantage that can be used safely without worrying about hacking, theft, loss, abuse.

According to the present invention, in a predetermined financial transaction (payment and / or payment of bills, etc.) in connection with a predetermined financial transaction means in the customer wireless terminal, a password for financial transaction is input and / or through a token code having excellent security. This has the advantage of simplifying complex procedures such as entering an account password and / or entering a secure card number.

1 is a view showing a financial transaction processing system according to an embodiment of the present invention.
2 is a diagram illustrating token agent information to be provided to a wireless terminal according to an embodiment of the present invention.
3 is a diagram illustrating an embodiment of mounting a token agent to a customer wireless terminal according to an embodiment of the present invention.
4A, 4B, and 4C are diagrams illustrating an information structure stored in the storage medium according to one embodiment of the present invention.
5 is a diagram illustrating a functional configuration of a wireless terminal equipped with a token agent according to an embodiment of the present invention.
6 is a diagram illustrating a token code structure according to an embodiment of the present invention.
7A and 7B are diagrams illustrating a token code operation process according to an embodiment of the present invention.
8 is a diagram illustrating a financial transaction processing process according to an embodiment of the present invention.
9A and 9B are diagrams illustrating a financial transaction processing process according to an embodiment of the present invention.
10 is a diagram illustrating a financial transaction processing process according to another exemplary embodiment of the present invention.
11 is a diagram illustrating a financial transaction processing process according to another embodiment of the present invention.
12 is a diagram illustrating token agent information to be provided to a wireless terminal according to another embodiment of the present invention.
13A, 13B, and 13C are diagrams illustrating a token code operation process according to an exemplary embodiment of the present invention.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. In addition, terms to be described below are terms defined in consideration of functions in the present invention, which may vary according to a user's or operator's intention or custom. Therefore, the definition should be based on the contents throughout the present title.

It is to be understood that both the foregoing general description and the following detailed description of the present invention are exemplary and explanatory and are intended to provide further explanation of the invention as claimed. The configuration is omitted as much as possible, and a functional configuration that should be additionally provided for the present invention is mainly described. Those skilled in the art will readily understand the functions of components that have been used in the prior art among the functional configurations that are not shown in the following description, The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, according to the preferred embodiment of the present invention to be described below, the financial transaction processing apparatus is called a token agent providing server and a financial transaction server according to the representative functional configuration in order to efficiently explain the technical components of the present invention. Although described as being provided outside the token agent providing server and the financial transaction server, the present invention is not limited thereto.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a view showing a financial transaction processing system according to an embodiment of the present invention.

In more detail, FIG. 1 illustrates a predetermined token code volatilized in time during a predetermined financial transaction (payment and / or payment of bills) in connection with a predetermined financial transaction means in a predetermined customer wireless terminal 500. It relates to a financial transaction processing system that handles financial transactions (such as payment and / or payment of bills).

Referring to FIG. 1 according to a preferred embodiment of the present invention, the financial transaction processing system includes a predetermined token agent for processing a predetermined financial transaction (payment and / or payment of bills, etc.) in connection with a predetermined financial transaction means. By the customer wireless terminal 500 to be mounted, the token agent providing server 100 for providing and mounting a predetermined token agent to the customer wireless terminal 500 and the token agent mounted on the customer wireless terminal 500 The customer wireless terminal 500 information, the customer-owned financial account (or card) information and the customer specific information for processing a financial transaction (payment and / or bill payment, etc.) based on the predetermined token code information generated Store the customer information including at least one or more and the predetermined token agent information for the token agent provided in the wireless terminal in association Financial transaction server 130 for processing a predetermined financial transaction (payment and / or payment of bills, etc.) in conjunction with the customer media terminal 125 and the information stored in the storage medium 125 and the customer wireless terminal 500 It is made, including.

The financial transaction processing system may further include at least one payment request terminal 171 and / or a payment request server that provides predetermined payment information for the customer to the financial transaction server 130. The payment request terminal 171 and / or payment request server provides predetermined payment information to the financial transaction server 130 through a predetermined network 170 and / or communication means 170.

According to the exemplary embodiment of the present invention, the payment request terminal 171 may include a wired terminal including a credit authorization terminal (CAT) provided in an offline store and / or a personal computer used by an administrator of the online store. The payment request server 171 may include an e-commerce web server (eg, an internet shopping mall server) provided with an online store.

In addition, the financial transaction processing system may further include at least one bill issuing server 172 for providing predetermined bill payment information for the customer to the financial transaction server 130, the bill issuing server ( 172 provides predetermined bill payment information to the financial transaction server 130 through a predetermined network 170 and / or communication means 170.

In addition, the financial transaction processing system is preferably linked to a predetermined financial system 175 for processing a financial transaction (payment and / or bill payment, etc.) in conjunction with the financial transaction server 130, the financial system ( 175 is preferably provided in a predetermined financial institution.

According to the method of the present invention, the financial system 175 is a financial system 175 in which the customer-owned financial account (or financial product) is opened and operated, the credit or reception or trust generated from at least one branch or Accounting module 185 for the window service such as foreign exchange, information system module 190 for the processing of headquarters operations, branch office information support and customer relationship management, and the financial system 175 with homes, businesses, stores and other External module 180 for providing a variety of electronic financial services (eg, Internet banking, phone banking, CD (Cash Dispenser) / ATM (Automatic Teller Machine), other line, call center, financial settlement) by connecting to the external computer network, and For each function in the inter-module interface corresponding to the middleware that provides the interface between the components in the financial system 175 and the components in the financial system 175. It includes a DBMS (Database Management System) 195 for storing and managing the predetermined information (for example, customer-owned financial account (or financial products) or customer ledger information or management information, etc.) Depending on the type (for example, commercial banks, savings banks, trust banks, credit card companies) and the purpose and characteristics of the financial system 175, foreign exchange module (not shown), investment banking module (not shown), international module (city) It is possible to further include at least one or more components.

According to the method of the present invention, the token agent providing server 100 is provided in the financial institution corresponding to the customer-owned financial account (or card), and / or is provided on a network interoperating with the financial institution, or It is possible to be provided at a communication company (e.g., a mobile communication company), and / or to an agency on a network, and the present invention is by no means limited thereto.

In addition, the token agent providing server 100 may be included in one server system, two server systems, or two or more server systems in more detail for each functional means as shown in FIG. It may be made of, and the present invention is not limited by this.

The customer wireless terminal 500 may be a Personal Communication System (PCS) and / or a Global System for Mobile communications (GSM) terminal and / or a Personal Digital Cellular (PDC) and / or PHS (Personal). Wireless, including Handyphone System terminals and / or Personal Digital Assistants (PDAs) and / or Smart Phones and / or Telematics and / or Wireless Data Communication Terminals and / or Portable Internet Terminals Characterized in that it comprises a terminal, the customer wireless terminal 500 is provided with a predetermined platform (eg, operating system) for mounting and operating the token agent provided by the token agent providing server 100 It is characterized by.

According to an embodiment of the present invention, the customer wireless terminal 500 preferably performs the function of a token terminal generating a predetermined token code by the token agent, and the predetermined token code generated by the token agent. It is preferable to output the on the customer wireless terminal 500 screen.

Hereinafter, for the efficient description of the present invention, the customer wireless terminal 500 on which the token agent is mounted will be described using a wireless terminal connected to a predetermined mobile communication network. The technical scope is not limited. That is, in the present invention, it is apparent that the customer wireless terminal 500 may include all kinds of wireless terminals on which the token agent is mounted in software.

Referring to FIG. 1, the token agent providing server 100 may include a database 110 storing at least one token agent corresponding to at least one customer wireless terminal 500 platform, and a predetermined token agent stored in the database. An agent providing unit 105 for providing and mounting the data to the customer wireless terminal 500 and a storage unit storing the token agent information mounted on the wireless terminal and the wireless terminal information in a predetermined storage medium 125. Characterized in that it comprises a (120).

According to a preferred embodiment of the present invention, the token agent providing server 100 diagnoses the validity of the token agent mounted on the customer wireless terminal 500 by the agent providing unit 105. It is preferred to further comprise a.

The database 110 stores at least one token agent capable of operating in correspondence to a predetermined customer wireless terminal 500 platform, whereby the financial transaction (payment) to the customer wireless terminal 500 is performed. And / or payment of bills).

The agent providing unit 105 checks the wireless terminal platform of the financial transaction customer based on the customer wireless terminal 500 information, and provides and mounts a predetermined token agent program corresponding to the platform to the wireless terminal. It is characterized by.

According to one embodiment of the invention, the agent providing unit 105, the wireless terminal is a wireless terminal connected to a mobile communication network, subscriber D / B (e.g., Home Location Register; It is desirable to identify the wireless terminal platform with reference to HLR) or Visitor Location Register (VLR) (not shown).

According to another exemplary embodiment of the present invention, when the customer wireless terminal 500 is a wired terminal used by a plurality of users, the agent providing unit 105 may provide a disposable token agent.

According to the present invention, the token agent, when the financial transaction customer processes a predetermined financial transaction (payment and / or payment of bills, etc.) in connection with a predetermined financial transaction means, the predetermined financial transaction server 130 Generate a predetermined token code to ensure confidentiality, authentication, integrity and nonrepudiation for processing financial transactions (such as payment and / or payment of bills); Preferably, the token code is continuously changed at regular time intervals.

According to an exemplary embodiment of the present invention, in order to satisfy the token code attribute as described above, the token agent sets a time (or time) at which the token code is generated as first generation information, and the token agent providing server 100 It is preferable to generate a predetermined token code by using the predetermined secret key value assigned by the second generation information, and the wireless terminal information (for example, a mobile identification number (MIN) and / or ESN ( Electronic Serial Number)) may further be included as the third generation information.

According to another exemplary embodiment of the present invention, the token agent generates a predetermined token code using a time (or time) at which the token code is generated as first generation information and the wireless terminal information as second generation information. Preferably, it may further include a predetermined secret key value assigned by the token agent providing server 100 as third generation information according to the implementation method.

By the token code generation attribute of the token agent as described above, token codes generated in a plurality of token agents at a specific time are not duplicated, and the generated token code also includes a feature that is used once and volatilized with respect to time.

According to the present invention, the agent providing unit 105 and the database 110 perform a function of token agent providing means for providing a predetermined token agent to a predetermined financial transaction customer wireless terminal 500.

The storage unit 120 is provided with a predetermined token agent by the agent providing unit 105 to the customer wireless terminal 500, and then mounted on the customer wireless terminal 500 information and the wireless terminal. The token agent information may be stored in a predetermined storage medium 125 in association with the token agent information.

According to an exemplary embodiment of the present invention, the storage unit 120 associates the wireless terminal information with the token agent information and stores the data in a predetermined storage medium 125, wherein the financial transaction customer who owns the wireless terminal is stored. It is preferable to further store customer-owned financial account (or card) information and the customer-specific information.

As described above, the storage unit 120 stores the wireless terminal information and the token agent information mounted on the wireless terminal in the storage medium 125 so that the financial transaction customer makes a predetermined financial transaction (payment and / or payment). The payment transaction, etc.), the financial transaction server 130 generates a predetermined token authentication code for authenticating the token code generated by the token agent by referring to the token agent information associated with the wireless terminal information. This will authenticate the validity of the token code.

According to the present invention, the storage unit 120 and the storage medium 125 include customer information including at least one of the customer wireless terminal 500 information, the customer-owned financial account (or card) information, and the customer unique information. And information storage means for storing the predetermined token agent information for the token agent provided in the wireless terminal in a predetermined storage medium 125.

Referring to FIG. 1, the financial transaction server 130 is connected to a client wireless terminal 500 connected to perform a predetermined financial transaction, and an interface unit 145 for processing predetermined data transmission and reception, and the interface Predetermined financial transaction request information (payment request and / or bill payment request information) including predetermined callback UEL information for accessing the financial transaction server 130 to the customer wireless terminal 500 through the unit 145. Financial transaction request information) and / or predetermined financial transaction request information (payment request and information) including predetermined connection information for accessing the financial transaction server 130 to the customer wireless terminal 500. And / or a financial transaction (payment and / or payment) from the customer wireless terminal 500 through the information transmission unit 140 and the interface unit 145 for transmitting the financial transaction request information including bill payment request information). Extracting unit 150 for receiving a predetermined token code for payment of a document, and extracting predetermined token agent information for generating a predetermined token authentication code corresponding to the token code from the storage medium 125. Upon receiving the predetermined token code generated by the token agent provided in the wireless terminal from the customer wireless terminal 500 through the interface 145 and the interface unit 145, the storage medium 125 ( Or the customer information (customer information including at least one or more of the customer wireless terminal 500 information, the customer-owned financial account (or card) information, and the customer unique information) in association with the storage medium 125 operating means); An authentication unit 160 confirming the associated token agent information and authenticating the validity of the token code provided by the wireless terminal using the checked token agent information; When the validity of the authentication code is greater, including a financial transaction financial transaction 135 for processing (payment and / or bill payments, etc.) characterized by comprising.

The interface unit 145 may include predetermined financial transaction request information (payment) including predetermined callback UEL information for accessing the financial transaction server 130 to the customer wireless terminal 500 through a predetermined wireless network 165. Financial transaction request information including request and / or bill payment request information) a communication channel for transmitting a text message, and / or predetermined access information for accessing the financial transaction server 130 to the customer wireless terminal 500; A communication channel for transmitting predetermined financial transaction request information (including financial request information including payment request and / or bill payment request information), and / or financial transaction (payment and / or payment) from the customer wireless terminal 500. Or a communication channel for receiving a predetermined token code for bill payment, etc.).

According to an exemplary embodiment of the present invention, the interface unit 145 may transmit predetermined financial transaction request information (financial transaction request information including payment request and / or bill payment request information) to the customer wireless terminal 500. Connects a wireless messaging-based communication channel for transmitting the data, and / or predetermined financial transaction request information (payment) including predetermined connection information for accessing the financial transaction server 130 to the customer wireless terminal 500. Financial transaction request information including request and / or bill payment request information) and / or a financial transaction (payment and / or bill payment, etc.) from the customer wireless terminal 500; It is desirable to connect a wireless Internet-based communication channel for receiving a predetermined token code for.

According to an embodiment of the present invention, the interface unit 145 preferably provides predetermined financial transaction information (payment information and / or bill payment information, etc.) corresponding to the financial transaction request information to the wireless terminal. And / or provide a predetermined token code input (or provide) page to the wireless terminal, and / or the token code input (or provide) page is provided on the wireless terminal to generate the token code. It is preferable to further comprise a predetermined password (or code) input window (or area) for driving the agent.

In addition, the interface unit 145 is provided in the wireless terminal to read a predetermined password (or code) input window (or area) or password (or code) input page for driving the token agent generating the token code. It is preferable to provide a wireless terminal, and / or a predetermined account password input (callback UEL) page, a predetermined payment contents confirmation page, and a predetermined security card password input (callback UEL) page corresponding to the customer financial account. And providing at least one page to the wireless terminal that provides the financial transaction processing completion information (or financial transaction processing result detail information).

The information transmitter 140 may request a predetermined financial transaction from the customer wireless terminal 500 (eg, when a financial transaction request signal is received from the customer terminal), and / or the payment request terminal 171 and And / or payment information for the customer from the payment request server 171 (eg, the payment request terminal 171 and / or payment request server 171 to the financial transaction unit 135). Is received), and / or upon receipt of a bill payment request for the customer from the bill issuing server 172 (eg, bill payment for the customer from the bill issuing server 172 to the financial transaction unit 135). Information is received), the predetermined financial transaction request information including the predetermined callback UEL information for accessing the financial transaction server 130 to the customer wireless terminal 500 through the interface unit 145. Transmission information (financial transaction request information including payment request and / or bill payment request information) and / or predetermined access information for accessing the financial transaction server 130 to the customer wireless terminal 500; It is characterized in that for transmitting the predetermined financial transaction request information (financial transaction request information including payment request and / or bill payment request information) included.

According to the method of the present invention, the financial transaction request information (financial transaction request information including payment request and / or bill payment request information) includes predetermined financial transaction information (payment information and / or bill payment information, etc.). It is preferable to make it.

According to the present invention, the interface unit 145 and the information transmitting unit 140 interoperate with each other, and thus, a predetermined financial transaction request including predetermined callback UEL information for accessing the financial transaction means to the customer wireless terminal 500. Information (financial transaction request information including payment request and / or bill payment request information) to perform a function of information transmission means for transmitting a text message, and / or financial transaction means access information to the customer wireless terminal 500 It performs a function of the information transmission means for transmitting the predetermined financial transaction request information included (financial transaction request information including payment request and / or bill payment request information).

The receiving unit 150 receives a predetermined token code generated by the token agent from the customer wireless terminal 500 through the interface unit 145, and in the process of receiving the token code. It is preferable to further receive (eg, receive as caller information) the wireless terminal information of the financial transaction customer equipped with the token agent.

The extractor 155 may be configured to store the customer wireless terminal 500 information (or the customer owned financial account (or card) information, etc.) from the storage medium 125 based on the wireless terminal information received through the receiver 150. Or extract predetermined token agent information associated with the customer specific information) and provide the token agent information to the authentication unit 160, and / or from the storage medium 125 based on wireless terminal information. Extracting predetermined customer-owned financial account (or card) information associated with the terminal 500 information is provided to the financial transaction unit 135.

The authentication unit 160 generates a predetermined token authentication code based on the token agent information extracted by the extraction unit 155, and the generated token authentication code and the customer wireless terminal 500 By comparing the token code received from the mobile terminal, authenticating the financial transaction (payment and / or bill payment, etc.) for the amount of the financial transaction (payment and / or bill payment, etc.) transmitted together with the received token code. do.

According to a preferred embodiment of the present invention, the authenticator 160 includes the same token generation algorithm (eg, a hashing algorithm that generates an unpredictable arbitrary code) as the token agent mounted on the customer wireless terminal 500. And by generating the token authentication code through token generation information that is identical to the token generation information used by the token agent mounted in the customer wireless terminal 500 to generate the token code through the extracted token agent information. It is desirable to authenticate the validity of the received token code. The token generation algorithm is selected from a plurality of algorithms according to the intention of those skilled in the art, by which the technical spirit of the present invention is not limited.

If a valid token agent is mounted in the customer wireless terminal 500 and a valid token code is received by the token agent, and the token code and the token authentication code do not match, the token used to generate the token authentication code is used. This is because the generation information is different, and different token generation information between the token agent mounted on the customer wireless terminal 500 and the authentication unit 160 may be time (or time) information. To solve this problem, the financial transaction server 130 adjusts the token update period of the token agent information stored in the storage medium 125 as appropriate.

The financial transaction unit 135 compares the token authentication code generated by the authentication unit 160 through the reception unit 150 with the token authentication code generated based on the token agent information, thereby providing the financial transaction (payment and When the processing of financial transactions (such as payment and / or payment of bills) for the amount of money is authenticated, the predetermined financial transaction information (the predetermined payment request terminal 171 and / or payment request server 171) is authenticated. Based on the provided payment information and / or the bill payment information provided from the bill issuing server 172) through a customer-owned financial account (or card) information owned by the financial transaction customer extracted by the extraction unit 155 In conjunction with the financial system 175, the financial transaction (payment and / or bill payment, etc.) is characterized in that for processing.

According to an exemplary embodiment of the present invention, when the financial transaction (payment and / or payment of bills, etc.) is processed through the financial system 175, the financial transaction unit 135 performs the financial transaction (payment and / or After generating predetermined financial transaction (payment and / or bill payment, etc.) detail information corresponding to bill payment, etc.), the financial transaction (payment and / or bill payment, etc.) detail information is stored in the customer-owned financial account (or card). Information) and / or the wireless terminal information and / or financial transaction customer information.

According to the method of the present invention, the financial transaction unit 135 is linked to the storage medium 125 (or storage medium 125 operating means), the customer financial account (or card) associated with the token agent information It is preferable to confirm the information, and a predetermined account password input (callback UEL) page, a predetermined payment contents confirmation page, a predetermined security card password input (callback UEL) page corresponding to the customer financial account, and the financial At least one page for providing transaction processing completion information (or financial transaction processing result detail information) may be provided to the wireless terminal.

According to the present invention, the financial transaction unit 135, the receiving unit 150, the extraction unit 155, the authentication unit 160 and the financial system 175 interoperate with each other, thereby the storage medium 125 (or storage medium). A token associated with the customer information (customer information including at least one of the customer wireless terminal 500 information, the customer-owned financial account (or card) information, and the customer specific information) in association with the operation means; Checking agent information, using the identified token agent information to authenticate the validity of the token code provided by the wireless terminal, according to the token code validity authentication result, the financial transaction with the customer wireless terminal 500 It performs the function of financial transaction means of processing.

Hereinafter, an embodiment of the present invention describes the token code generation and authentication method based on a time-synchoronous method in order to effectively explain the technical features of the present invention. The Challenge-Response method is described later.

2 is a diagram illustrating token agent information to be provided to a wireless terminal according to an embodiment of the present invention.

In more detail, FIG. 2 illustrates property information of a predetermined token agent for each platform corresponding to a wireless terminal platform on which the token agent is mounted, and the token agent information includes a token agent corresponding to each platform and the token. It includes a version of the agent and a token generation algorithm and at least one token generation information and a token renewal cycle. At least one information item may be further included according to the intention of the person skilled in the art, and the present invention is not limited thereto. .

The token agent is characterized in that it comprises a program code that can be driven and / or operated in the wireless terminal platform because it operates in a wireless terminal. For example, if the wireless terminal is equipped with a WIPI (Wireless Internet Platform for Interoperability) platform, the token agent includes a program code operating on a WIPI basis, and other platforms (eg, GVM / SK-VM / BREW, etc.). ) Is included, it includes program code that runs on the platform.

The version of the token agent information includes the latest version information of the token agent for each platform to be provided to the wireless terminal, whereby the token agent for each platform is different token code for each version by the same token generation information If it generates, it is possible to cope with this.

The token generation algorithm of the token agent information includes hashing algorithm information applied to the token agent program and / or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating tokens are MD4, MD5, SHA, and the like, and a hashing algorithm (for example, SHA-1 hashing algorithm with SHA) is further modified according to an application. It is used.

According to an embodiment of the present invention, a method of generating a predetermined token code in the token agent, and / or a method of transmitting and authenticating the token code to the financial transaction server 130 may be time-synchoronous. One of a scheme and a challenge-response scheme that provides a predetermined token code generation value in real time is selected, and at least one token generation information is generated to generate a predetermined token code corresponding to the scheme. Required.

The token generation information of the token agent information is a time (or time) at which a token code is generated as first generation information, and a number (eg, an integer) randomly generated by the token agent providing server 100 according to an implementation method. Or a real key value corresponding to a real number) and / or MIN / ESN second generation information and / or third generation information uniquely assigned to the wireless terminal on which the token agent is mounted.

Referring to FIG. 2 according to a preferred embodiment of the present invention, when the token agent uses MIN / ESN of the wireless terminal as token generation information for generating a predetermined token code, the token generation information is used as it is. In order to prevent the token agent from overflowing in the process of generating the token code because the MIN / ESN has an excessively large value, a predetermined hash function is provided in the MIN / ESN. It can be used to convert to a number within a certain size by applying a, which is determined according to the intention of the person skilled in the art and / or the computing power of the wireless platform.

The token update period of the token agent information is a time interval in which a predetermined token code generated by the token agent is volatilized and invalidated in time when the token generation algorithm follows a time synchronization scheme. If it is difficult to transmit the time (or time) information of the token code generated with the token code in the process of transmitting to the financial transaction server 130, the token between the wireless terminal and the financial transaction server 130 It is used to synchronize the generation time (or time) information for the previous time. That is, the token code generated by the token agent is transmitted to the predetermined financial transaction server 130 within the token update period, and the predetermined token authentication code corresponding to the token code is generated by the financial transaction server 130. Should be. That is, after a predetermined token code is generated in the token agent provided in the wireless terminal, when the predetermined token authentication code is generated within the talk update period in the financial transaction server 130, the validity of the token code is invalid. It is certified. Accordingly, the token update period is a time required for transmitting the token code generated in the wireless terminal to the financial transaction server 130 and a time required for generating a predetermined token authentication code in the financial transaction server 130. It is preferable to determine in consideration of the above.

According to another exemplary embodiment of the present invention, the token generation algorithm follows a time synchronization scheme and it is easy to transmit the time (or time) information at which the token code is generated by the token agent to the financial transaction server 130. And / or when the token generation algorithm follows a challenge-response scheme, the token update period may be omitted or may be set at very short time intervals.

3 is a diagram illustrating an embodiment of mounting a token agent to a customer wireless terminal 500 according to an embodiment of the present invention.

More specifically, Figure 3 is a process for mounting a token agent for processing a financial transaction (payment and / or bill payment, etc.) to a predetermined customer wireless terminal 500, which is common in the art Those skilled in the art will be able to easily infer various implementation methods for mounting a predetermined token agent to the customer wireless terminal 500 in addition to the implementation method illustrated below with reference to FIG. 3. It is to be understood that the present invention is by no means limited thereto.

3, predetermined wireless terminal information (the customer wireless terminal 500 information) on which the token agent for processing the financial transaction (payment and / or payment of bills, etc.) will be loaded to the token agent providing server 100. And customer information including at least one customer-owned financial account (or card) information and the customer specific information) (300).

According to an exemplary embodiment of the present invention, the process 300 may include the customer wireless terminal 500 information and the customer accessing the token agent providing server 100 through a customer wireless terminal 500. And providing customer information including at least one possession financial account (or card) information and the customer specific information.

According to another exemplary embodiment of the present invention, the process 300 includes the token agent providing server 100 through the customer through a predetermined wired terminal (eg, a personal computer that can access the token agent providing server 100, etc.). And accessing the customer wireless terminal 500 information, the customer-owned financial account (or card) information, and the customer information including at least one of the customer specific information.

According to another exemplary embodiment of the present invention, the customer wireless terminal 500 information stored in a financial institution (or a card issuing institution) corresponding to the customer-owned financial account (or card) information and the customer-owned financial account (or Card) information and at least one piece of customer-specific information are preferably provided to the token agent providing server 100.

As described above, after the customer information including at least one of the customer wireless terminal 500 information, the customer-owned financial account (or card) information, and the customer unique information is provided, the token agent providing server 100 is provided. Read the customer information including at least one of the customer wireless terminal 500 information, the customer-owned financial account (or card) information and the customer specific information (for example, retrieve the wireless terminal information stored in the storage medium 125). Check whether to provide a predetermined token agent to the customer wireless terminal 500 (305).

According to an exemplary embodiment of the present invention, when a valid token agent is preloaded in the customer wireless terminal 500, the token agent providing server 100 does not need to mount the token agent on the wireless terminal, and the wireless If the terminal is not equipped with a token agent for processing a valid financial transaction (payment and / or payment of bills), it is preferable to provide and mount the token agent.

If a predetermined token agent should be provided to the customer wireless terminal 500 (310), the token agent providing server 100 reads the wireless terminal information of the financial transaction customer and provides it to the customer wireless terminal 500. To confirm the token agent to perform (315).

According to an embodiment of the present invention, the token agent providing server 100, when the wireless terminal information is connected to a mobile communication network, subscriber D / B (eg, home location register or visited location register) provided in the mobile communication network; It is preferable to identify the token agent to be provided to the customer wireless terminal 500 by confirming the wireless terminal platform with reference to. Alternatively, in order to process the token agent providing process irrespective of a mobile communication company according to an exemplary embodiment, the mobile terminal further includes platform information (or model information of the wireless terminal) of the wireless terminal in the process of receiving the wireless terminal information. It is also possible.

When the token agent to be provided to the customer wireless terminal 500 is identified as described above, the token agent providing server 100 extracts the compiled token agent program from the database 110 or compiles (for example, the token code). Generate a randomly generated secret key value, compile the randomly generated secret key value into a token agent source code to compile it dynamically, and / or request the token agent to generate a predetermined token code Extracts predetermined token generation information (e.g., randomly generated secret key values and / or wireless terminal information, etc.) (e.g., extracts wireless terminal information), or dynamically generates (e.g., randomly generates secret key values) Create) (320).

When the token agent program and the token generation information are prepared as described above, the token agent providing server 100 provides and mounts the token agent to the customer wireless terminal 500 (325).

According to one embodiment of the present invention, the token agent providing server 100 transmits a predetermined wireless message including a predetermined callback URL for providing the token agent to the customer wireless terminal 500. When the wireless terminal accesses the token agent providing server 100 through the callback UEL, it is preferable to provide and mount the token agent to the wireless terminal.

According to another exemplary embodiment of the present invention, the token agent providing server 100 may be configured to provide the customer with another wireless software loading method that does not use the callback UEL according to the intention of the person skilled in the art and / or the policy of the wireless network operator. It is possible to provide and mount the token agent to the wireless terminal 500, whereby the present invention is not limited.

After the token agent is mounted as described above, the customer wireless terminal 500 determines to execute the diagnostic mode for the mounted token agent. If the diagnostic mode for the token agent is executed (330), the wireless terminal Generates a predetermined token diagnostic token code through the mounted token agent and transmits the token token to the token agent providing server 100 (335), and the token agent providing server 100 corresponds to the predetermined token token for diagnosis. A token code for token authentication is generated (340), and the token agent mounted on the customer wireless terminal 500 is verified by comparing the token code for token diagnosis and token code (345).

If the token diagnostic token code and the token authentication token code do not match (eg, the token authentication token code is generated after the token renewal cycle) (350), the token agent providing server 100 passes to the wireless terminal. The token diagnostic token code retransmission is requested (355), and the process (335 to 545) is repeated to check the validity of the token agent.

On the other hand, if the token diagnosis token code and token authentication token code match, and the validity of the token agent is authenticated (350), the storage medium 125, the wireless terminal information and token agent information of the financial transaction customer and / or At least one customer-owned financial account (or card) information available to the financial transaction customer using the token agent is stored and linked (360).

4A, 4B, and 4C illustrate an information structure stored in the storage medium 125 according to one embodiment of the present invention.

In more detail, Figure 4a illustrates the wireless terminal information of the financial transaction customer stored in the storage medium 125, Figure 4b illustrates the token agent information stored in the storage medium 125,

Figure 4c illustrates the customer specific information stored in the storage medium 125, each information stored in the storage medium 125 is at least one information item according to the intention of those skilled in the art of practicing the present invention It is possible to add further, by which the present invention is not limited.

Referring to FIG. 4A, the wireless terminal information includes a telephone number (MIN), a serial number (ESN), platform information, a carrier information, a terminal model information, etc. of a financial transaction customer owned wireless terminal equipped with the token agent. It is possible to add at least one or more information items according to the intention of the person skilled in the art. For example, the wireless terminal information includes IC chip unique information (ICCHIP) (not shown) on an IC chip mounted or detached from the wireless terminal and / or a subscriber identity module (SIM) or a universal identification module (UIM) on the wireless terminal. Alternatively, when the Universal Subscriber Identity Module (USIM) is provided, the SIM information, the UIM information, or the USIM information may be further included.

Referring to Figure 4b, the token agent information to determine what kind of token agent is mounted on the customer wireless terminal 500, and generates a token authentication code for authenticating the token code generated by the token agent And information on the platform of the wireless terminal on which the token agent is mounted, a version of the token agent mounted on the platform, a token generation algorithm, at least one token generation information, and a token update period. .

According to one embodiment of the present invention, the token generation algorithm illustrated in FIG. 4B is selected from a time synchronization algorithm or a challenge-response algorithm. When the financial transaction server 130 knows in advance the wireless terminal from which the token code is generated (eg, a payment terminal (or a web server)) before the predetermined token code is generated by the token agent. After transmitting to the financial transaction server 130, when a predetermined token code is generated in the wireless terminal), the token generation algorithm may use both a time synchronization algorithm and a challenge-responder algorithm, or the token agent If the financial transaction server 130 does not know the wireless terminal from which the token code is generated before the predetermined token code is generated, the token generation algorithm may use only a time synchronization algorithm.

Referring to FIG. 4C, the customer specific information includes customer personal information including the financial transaction customer's name, social security number and address, and token agent relationship information for establishing a relationship between the financial transaction customer and the token agent. Preferably, the token agent relationship information includes the financial transaction customer-owned wireless terminal information.

5 is a diagram illustrating a functional configuration of a wireless terminal equipped with a token agent according to an embodiment of the present invention.

In more detail, FIG. 5 illustrates a function of a wireless terminal for generating a token code for processing a financial transaction (such as payment and / or payment of a bill) by a mobile communication terminal accessing a mobile communication network based on code division multiple access (CDMA). In the case of performing the above, the present invention relates to a preferred functional configuration of the mobile communication terminal for generating a token code for processing a financial transaction (payment and / or payment of a bill). Those skilled in the art to which the present invention pertains, with reference to this figure 5, other wireless terminals for generating token codes for processing financial transactions (payment and / or bill payment, etc.) in addition to mobile communication terminals (e.g., wireless It is possible to easily infer the functional configuration of a data communication terminal or a portable internet terminal). As a result, the technical claims of the present invention are not limited to the case of the mobile communication terminal illustrated in FIG.

In terms of hardware, a wireless terminal providing a mobile communication service includes an external body, a speaker, a microphone, a keypad, a liquid crystal display (LCD), an antenna, and a battery 525, and internally, CDMA. (Code Division Multiple Access) A predetermined modem chip (e.g., MSM series modem chip of Qualcomm, Inc.) and various memories incorporating functions such as a modem, CPU / MPU (Central Processing Unit / Micro Processing Unit), vocoder, etc. Device, a duplexer filter that separates the transmission and reception signals from one antenna, a power amplifier that amplifies the transmission signal, a high power amplifier (HPA), an isolator that prevents the high power transmission signal from returning in reverse RF / IF SAW filter to remove out-of-band unwanted signals, frequency up-circuit in transmission path, frequency down-conversion circuit in receive path, and VCTC corresponding to reference clock source It includes a Voltage Controlled Temperature Compensated X-tal Oscillator (XO), a UHF frequency synthesizer used as a local signal of frequency up-down conversion, and a codec chip for converting an analog voice signal into a digital signal. Is gradually integrated in the modem chip, and in addition to the core components for the mobile communication service, various functions for various multimedia services and / or additional services are integrated together.

Referring to FIG. 5, a wireless terminal for generating a token code for processing a financial transaction (payment and / or payment of bills) basically includes a control unit 505, a screen output unit 510, a sound processor 515, and a key input unit ( 520, a wireless processor 530, a short range communication unit 535, a memory unit 570, and a battery 525 for supplying power, and are mounted or detached from the wireless terminal according to an implementation method. And an IC chip reader unit 550 for reading / writing predetermined information or data on the IC chip 555, a camera 565 mounted on or detached from the wireless terminal, and a predetermined image from the camera 565. It further comprises a functional configuration including a camera unit 560 for reading information.

The controller 505 includes a processor and execution memory including a CPU / MPU provided in the modem chip in hardware, and includes a predetermined program routine for providing a function specific to a wireless terminal from a predetermined memory device. And / or a bus for inputting and outputting program data and a predetermined electronic circuit (or integrated circuit) provided therefor, wherein the execution memory is selected from a predetermined memory device and / or a chipset in software. A generic term for program routines and / or program data loaded into a computer and executed by the processor to perform a specific function (hence, in the present invention, for generating a token code for processing a financial transaction (such as payment and / or payment of a bill). For convenience, a predetermined token agent program routine recorded on the recording medium of the wireless terminal is provided. It will be described as being provided in the fisherman 505.), by the control unit 505 to realize various functions to be implemented in the wireless terminal, and to realize the functions as described above, It is characterized by controlling and managing the operation. In particular, when power is input to the wireless terminal to perform a function of the controller 505 that controls and manages overall operations of the wireless terminal, an operating system routine, a system management routine, and / or stored in a predetermined memory element System variables are loaded into the execution memory and computed by the processor to serve as variables for providing an operating system, system management program, and / or mobile communication service.

The screen output unit 510 is a liquid crystal display (LCD) driver for screen output, and is a key input unit 520 by the control unit 505 (eg, a program routine for outputting predetermined information or data to the LCD). Key data generated through the < RTI ID = 0.0 >), various information, signals, and / or content (e. G., Text content, image content, and / or multimedia content) extracted and / or generated in the course of performing certain functions of the wireless terminal. ) Is output to a predetermined screen output device (for example, an LCD panel), and the screen output unit 510 is connected to a screen output device (LCD) in a financial transaction (payment and / or bill). It is preferable to perform the function of the information output unit 590a for outputting predetermined information required in the process of generating the token code for processing.

The sound processor 515 encodes a predetermined sound signal input from a microphone provided in the wireless terminal and provides the sound signal to the controller 505, or a predetermined sound extracted and / or generated by the controller 505. A signal is decoded and output through a speaker. To this end, the sound processor 515 is provided with a predetermined vocoder and a codec. The sound processing unit 515 performs a function of a sound input unit provided in the wireless terminal through a microphone, or performs a function of a sound output unit provided in the wireless terminal through the sound processing unit 515 and a speaker. .

The key input unit 520 is provided with at least one key button including a predetermined number key and / or a character key and / or a function key. Detects information (or signal) input from the keypad, and selects a predetermined key button provided in the keypad in a specific input mode and / or operation mode of the wireless terminal controlled by the controller 505. When information (or a signal) is input, generating a key event (eg, MH_KEY_PRESSEVENT, MH_KEY_REPEATEVENT, MH_KEY_RELEASEEVENT) corresponding to the input information (or signal), and providing the generated key event to the controller 505. The controller 505 reads predetermined key data corresponding to the key event in a current input mode and / or an operation mode of the wireless terminal (eg, each wireless terminal input). Read key data from the key table from a key table that stores (manages) at least one key data corresponding to a specific key event in a mode and / or operation mode, and / or is defined in accordance with the key event. It is characterized by reading a command to execute a function. The keypad including the key input unit 520 and at least one key button performs a function of key input means provided in the wireless terminal in cooperation with each other.

The wireless processing unit 530 may be associated with the control unit 505 (eg, a program routine for providing a mobile communication service) for location registration and / or slot mode and / or power control. Or providing a mobile communication service including a hand-off and / or call processing procedure, the base station corresponding to an end of the mobile communication network in the process of providing the mobile communication service. And an RF processing function (eg, performing antenna control, modulating, synthesizing, amplifying and / or filtering the radio frequency signal) for performing transmission and reception of the radio frequency signal. In particular, the wireless processing unit 530 processes the information or signal transmitted from the wireless terminal to the base station into a CDMA stack to provide the mobile communication service, or receives predetermined information or signals from the CDMA stack received from the base station. It is characterized by providing a function for reading.

According to an embodiment of the present invention, the wireless terminal connects a base station on a predetermined mobile communication network with a predetermined wireless section through the wireless processing unit 530, and the mobile communication network through a predetermined wired section including the base station. And / or it is preferable to connect a predetermined communication channel with the financial transaction server 130 provided on a predetermined communication network interworking with the mobile communication network.

According to another embodiment of the present invention, if the wireless terminal of FIG. 5 is a portable Internet terminal, the wireless processing unit 530 accesses the portable Internet network and generates a token code for processing a financial transaction (payment and / or payment of bills). And a functional configuration for providing a predetermined portable Internet service (eg, wireless data communication or voice over IP (VoIP) based voice call).

The short range communication unit 535 may be an infrared ray communication and / or a radio frequency (RF) communication and / or a Bluetooth and / or a wireless LAN and / or a Wi-Fi or an ultra-wideband. A terminal (or device) and a short range wireless communication session are connected through at least one short range wireless communication means including an ultra wide band (UWB). The infrared communication, the RF communication, It includes a predetermined short range wireless communication module for short range wireless communication including Bluetooth, WLAN, Wi-Fi, and ultra-wideband communication, and includes a communication protocol and / or driver for the short range wireless communication in software.

According to an embodiment of the present invention, the wireless terminal connects a wireless section connecting a predetermined short range device 540 and a predetermined short range wireless communication session through the short range communication unit 535, and the short range device 540. It is preferable to connect a predetermined communication channel with a financial transaction server 130 provided on a predetermined communication network through a wired section including the connected predetermined network.

The memory unit 570 is input / output information when an operation by a predetermined program routine (or code) and / or program data (eg, a program routine (or code)) for controlling the overall operation of the wireless terminal is performed. And / or a general term for a memory device for storing data; read only memory (ROM) corresponding to read-only memory, flash memory (FM), and electrically erasable and programmable read only (EEPROM). Memory) and the like. In general, the ROM stores system information that should not be deleted, and the flash memory stores operating system routines, call processing program routines, and / or application program routines provided through the wireless terminal and information or data therefor. The EEPROM stores terminal registration related parameters and a phone number (eg, an address book) or at least one or more information and / or data extracted and / or generated while performing an application provided in the wireless terminal.

According to an embodiment of the present invention, the memory unit 570 stores at least one or more token generation information, and a part of the token generation information is read from the internal function configuration of the wireless terminal or is stored in the memory unit 570. It is preferably stored, and the other part is preferably included in the token agent or provided from the token agent providing server 100. For example, time (or time) information of the token generation information is read from the internal timer of the wireless terminal, and MIN / ESN is previously stored in a NAM (Number Assignment Module) area of the memory unit 570. In addition, the secret key value among the token generation information is generated by the token agent providing server 100 and included in the token agent or stored in the memory unit 570.

The IC chip reader unit 550 may be configured with IC chip related functions (eg, IC chip agent provided in the wireless terminal) provided through the IC chip standard including ISO / IEC 7816 and / or ISO / IEC 14443. Program) and the IC chip 555 mounted or detached from the wireless terminal to provide information and / or data exchange. For example, the IC chip reader unit 550 provides information and / or data exchange between the IC chip agent program and the IC chip 555 through an application protocol data unit (APDU).

Referring to standards including ISO / IEC 7816 and / or ISO / IEC 14443, the IC chip 555 mounted or detached from the customer wireless terminal 500 may include a power supply (VCC), a reset signal (RST), Communicating with the IC chip reader 550 (e.g. command or data exchange, etc.) via contact points such as clock signal CLK, ground GND, programming power supply (VPP), and / or input / output (I / O), etc. A processor unit comprising an input / output interface, a CPU (Central Process Unit), an MPU (Micro Process Unit), and / or a coprocessor (Coprocessor), and the like, and a ROM (Read Only Memory) and RAM. (Random Access Memory), EEPROM (Electrically Erasable and Programmable Read Only Memory), a memory unit including at least one or more memory elements including Flash Memory (FM), and the like, in particular at least one or more of the memory elements (e.g., , ROM) in the IC card A chip operating system (COS) for managing and operating resources is stored. When a predetermined power is supplied from the IC chip reader unit 550 through a power supply (VCC) contact point of the input / output interface, the memory unit The COS stored in is loaded into a predetermined execution memory to control the overall operation of the IC chip 555, and based on the clock frequency (eg, 3.57 MHz or 4.9 MHz) of the contact point of the clock signal CLK (APDU) Data unit) controls the exchange of information or data between the IC chip 555 and the IC chip reader 550.

According to another exemplary embodiment of the present invention, the token agent may be recorded on the IC chip 555. In this case, the IC chip related information may be used for the token generation information. The present invention includes that the token agent is recorded on the IC chip 555, whereby the present invention is not limited.

The camera unit 560 reads raster-based CCD image information from a camera 565 including a predetermined optical unit and a charge coupled device (CCD) device in a bitmap manner, and controls the image information to the controller 505. It is characterized by inputting).

Referring to FIG. 5, a communication processing unit 575 for receiving a predetermined token agent in connection with a token agent providing server 100 on the wireless network 165, and for accessing a financial transaction means from a predetermined information transmitting means. Access information included in the financial transaction request information message by transmitting the predetermined financial transaction request information (financial transaction request information including payment request and / or bill payment request information) message including predetermined access information, and when received. Using a connection unit 580 for connecting to the financial transaction means, a token agent for generating a predetermined token code, and a token code generated by the token agent to the financial transaction means connected through the connection unit 580. It is characterized by comprising a financial transaction unit 585 to.

The communication processing unit 575 includes a function configuration for receiving (or installing) a predetermined token agent in the customer wireless terminal 500 in association with the token agent providing server 100 on the wireless network 165. According to the implementation method of the present invention, the token agent is a browser program provided in the customer wireless terminal 500 for processing a predetermined token code-based financial transaction (payment and / or payment of bills, etc.) It is preferable to be mounted (or installed) in the form of a plug-in, and / or the financial transaction server 130 for processing a predetermined token code-based financial transaction (payment and / or payment of bills, etc.) in the customer wireless terminal 500. It is desirable to be mounted (or installed) in the form of a predetermined token code based financial transaction program.

The connection unit 580 includes predetermined financial transaction request information (financial transaction request information including payment request and / or bill payment request information) including predetermined access information for accessing the financial transaction means in a predetermined information transmission means. And, if received, characterized in that connected to the financial transaction means using the access information included in the financial transaction request information message, according to the embodiment of the present invention, the connection unit 580 is a predetermined token It is preferable to include a predetermined browser program connected to the financial transaction means and a predetermined wireless Internet for processing a code-based financial transaction (payment and / or payment of bills), and / or the customer wireless terminal 500 ) To communicate with the financial transaction means for processing a predetermined token code-based financial transaction (such as payment and / or payment of bills). Definition It is desirable to include a predetermined token code based financial transaction program.

The financial transaction unit 585 provides the token code generated by the token agent to the financial transaction means connected through the connection unit 580. According to the method of the present invention, the financial transaction unit 585 includes a predetermined browser program for providing a predetermined token code to the financial transaction means through a predetermined wireless Internet for processing a predetermined token code-based financial transaction (such as payment and / or payment of a bill). Preferably, and / or a token code based financial transaction that provides a predetermined token code to the financial transaction means for processing a predetermined token code based financial transaction (such as payment and / or bill payment) in the customer wireless terminal 500. It is preferable to include a program.

Referring to FIG. 5 according to a preferred embodiment of the present invention, the token agent mounted on the wireless terminal is required to generate an input unit 590b for receiving a token code from the financial transaction customer and to generate a predetermined token code. A reader 590d for reading at least one token generation information, a generator 590c for generating a predetermined token code by applying the token generation information to a predetermined token generation algorithm, and the generated token code. And an output unit 590a output to the screen of the wireless terminal.

The input unit 590b may be configured to receive predetermined information including a token code generation command from the financial transaction customer in conjunction with the key input unit, thereby generating a predetermined token code by the token agent. Will be performed.

In addition, the input unit 590b is characterized in that the token agent receives a predetermined PIN (Personal Identification Number) for generating a predetermined token code from the financial transaction customer in conjunction with the key input means. The token agent generates a predetermined token code through the wireless terminal internal authentication procedure (for example, an authentication procedure defined in the IC chip 555 when the token agent is provided in the IC chip 555). Or the PIN may be included in a token code generated by the token agent.

The reader 590d may include at least one token defined to be used by the token agent to generate a predetermined token code from the wireless terminal internal resource and / or the token agent internal code and / or the memory unit 570. The code generation information is read.

According to an embodiment of the present invention, the reader 590d may read time (or time) information required for generating the token code from the internal resource of the wireless terminal (eg, a timer resource in the wireless terminal). And / or read the token agent internal code and / or a predetermined secret key value set for token code generation from the memory unit 570, and / or MIN / from the memory unit 570. It is preferable to read ESN. If a predetermined hash function is applied to the predetermined generation information among the read token generation information, the reading unit 590d applies a predetermined hash function to the corresponding token generation information and converts it into a number within a predetermined size. It is preferable to further include a function.

The generation unit 590c generates a predetermined token code that is unpredictable according to a predetermined token generation algorithm based on the token generation information read by the reading unit 590d. A predetermined token is included in a defined data block of a predetermined length.

The token code generated by the generation unit 590c is output to the wireless terminal screen by the output unit 590a, and / or is provided to a predetermined local area device 540 through the local area communication unit 535. It is characterized by.

6 illustrates a token code structure according to an embodiment of the present invention.

In more detail, Figure 6 shows a preferred embodiment of the token code generated by the token agent shown in Figure 5, the information location of the token code can be changed by those skilled in the art. Those skilled in the art to which the present invention pertains can easily infer a token code structure including more information with reference to FIG. 6, and thus the present invention is not limited thereto.

Referring to Figure 6, the token code comprises a predetermined token generated by the token agent, at least to the token according to the intention of the skilled person and / or information subject to intuitively authenticate through the token code. One or more information may be further included.

According to one embodiment of the invention, the token code preferably comprises at least one token generation information and a predetermined token generated by a token generation algorithm.

In addition, the token code preferably further comprises a predetermined PIN input by the financial transaction customer in the token generated by the token agent.

According to another embodiment of the present invention, when the financial transaction information (payment information and / or bill payment information, etc.) is received from the financial transaction server 130 to the customer wireless terminal 500, the token code is the It further comprises a data code generated by applying a predetermined hash function to the financial transaction information, or further comprises a data code generated by applying a predetermined hash function to the payment information, or the bill payment information It is preferable to further comprise a data code generated by applying a predetermined hash function to the payment information, wherein the hashed data code is the financial transaction server (payment information and / or bill payment payment) Information, etc.) by applying the same hash function as the hash function used in the customer wireless terminal 500, thereby providing the financial transaction information. It is possible to ensure the integrity and non-repudiation of payment information (such as payment information and / or bill payment information).

7A and 7B illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 7A and 7B show a 10-digit token code generated by the token agent to the financial transaction server 130 through the wireless terminal, and authenticates the token code by the financial transaction server 130. It is about the implementation method. 15A and 7B illustrate only the token code being transmitted from the wireless terminal to the financial transaction server 130 in order to effectively explain the token code operation process, the present invention is common in the art. If the person having knowledge, the token code is a predetermined value including the wireless terminal information and / or financial transaction (payment and / or bill payment, etc.) of the financial transaction customer and / or gift certificate authority information (eg, terminal information) It will be clearly understood that the transmission is included in the full text of the.

Referring to FIG. 7A, the reader 590d reads at least one token generation information 700 by a predetermined token code generation command input by the input unit 590b of the token agent, and at least the read at least one token. One or more token generation information is provided to the generation unit 590c (705).

The generation unit 590c generates an unpredictable predetermined token code by applying a predetermined token generation algorithm based on the provided at least one token generation information (710), and the output unit generates the generated token code in the The screen is output to the wireless terminal screen (715).

According to an exemplary embodiment of the present invention, the predetermined information (eg, PIN) input through the input unit 590b is provided to the generation unit 590c while the generation unit 590c generates the token code. It may be fine.

When the token code for the financial transaction (payment and / or bill payment, etc.) is generated as described above, the token code is transmitted to the financial transaction server 130 via the wireless network (165) (720).

According to an exemplary embodiment of the present invention, FIG. 7a illustrates a process 845 of generating a predetermined token code from the customer wireless terminal 500 and transmitting the predetermined token code to the financial transaction server 130 during the financial transaction processing of FIG. 8. One implementation method is shown.

Referring to FIG. 7B, the receiver 150 of the financial transaction server 130 receives a predetermined token code transmitted from a wireless terminal through the wireless network 165 (730), and the extractor 155 The predetermined token agent information corresponding to the token code is extracted from the storage medium 125 (735), and the extracted token agent information is provided to the authentication unit 160 (740).

According to an embodiment of the present invention, the token code is transmitted including wireless terminal information of the financial transaction customer, and the extractor 155 preferably extracts the token agent information based on the wireless terminal information. .

When the token agent information is provided as described above, the authentication unit 160 performs a predetermined procedure through the same procedure as that of generating the token code in the token agent provided in the customer wireless terminal 500 based on the token agent information. Generate a token authentication code of (745), and checks the validity of the token code by comparing the token authentication code and the token code received through the receiving unit 150 (750). If the validity of the token code is verified (760), the financial transaction unit 135 of the financial transaction server 130 performs a predetermined financial transaction (payment and / or bill payment, etc.).

According to an exemplary embodiment of the present invention, FIG. 7B illustrates a process 850 of validating a token code received from the customer wireless terminal 500 at the financial transaction server 130 in the financial transaction processing process of FIG. 8. It shows an implementation method for.

8 is a diagram illustrating a financial transaction processing process according to an embodiment of the present invention.

In more detail, FIG. 8 includes predetermined financial transaction request information (payment request and / or bill payment request information) including predetermined callback UEL information from the financial transaction server 130 in the customer wireless terminal 500. Financial transaction request information) receives a text message, and accesses the financial transaction server 130 through the wireless Internet based on the callback UEL information in the customer wireless terminal 500 and the financial transaction request through a predetermined token code. Information (Financial Transaction Request Information Including Payment Request and / or Bill Payment Request Information) A process for processing a predetermined financial transaction (such as payment and / or bill payment) corresponding to a text message. Those skilled in the art may communicate with the financial transaction server 130 without using the wireless Internet with reference to FIG. 8. Through the predetermined token code-based financial transaction program mounted on the customer wireless terminal 500, the process of processing the token code-based financial transaction (payment and / or payment of bills, etc.) may be easily inferred. The present invention is by no means limited.

Referring to FIG. 8, when a predetermined financial transaction (payment and / or bill payment, etc.) is initiated, the financial transaction server 130 may access the financial transaction server 130 from the customer wireless terminal 500. Generate a financial message request information (financial transaction request information including payment request and / or bill payment request information) including predetermined callback UEL information (800), and generate the financial transaction request information (payment) Financial transaction request information including request and / or bill payment request information) is transmitted to the customer wireless terminal 500 (step 805).

The customer terminal that has received the financial transaction request information (financial transaction request information including payment request and / or bill payment request information) text message from the financial transaction server 130 may be referred to as (a) of FIG. 9a or 9b. As shown in (a), the text message is output and a request is made to approve the processing of a financial transaction (payment and / or payment of bills, etc.) included in the problem message (810).

If processing of the financial transaction (payment and / or payment of bills, etc.) is not approved in the customer wireless terminal 500 (for example, do not click the "call" button in (a) of FIG. 9a or (a) of FIG. 9b). 815, the customer wireless terminal 500 stores the received financial transaction request information (financial transaction request information including payment request and / or bill payment request information) text message (820), and the present invention. End processing of token code-based financial transactions (such as payment and / or payment of bills) that comply with

On the other hand, if the processing of the financial transaction (payment and / or payment of bills, etc.) is approved in the customer wireless terminal 500 (for example, when clicking the "call" button in (a) of FIG. 9a or (a) of FIG. 9b) In operation 815, the customer wireless terminal 500 accesses the financial transaction server 130 through the wireless Internet based on the callback UEL included in the text message and pays a token code based financial transaction (payment and / or bill payment). Etc.) connect the communication channel for processing (825), and the predetermined financial transaction information (payment information and / or bill payment, such as (b) of Figure 9a or (b) of Figure 9a) from the financial transaction server 130 In operation 830, a financial transaction information (payment information and / or bill payment information) page including information, etc.) is received.

The client wireless terminal 500 requests the financial transaction server 130 to process a financial transaction (payment and / or bill payment, etc.) based on the financial transaction information (payment information and / or bill payment information) page ( For example, in Figure 9a (b) or Figure 9b (b), select "1. Make a payment" (835), the financial transaction server 130 from (a) and (d) or (b) of Figure 9a. Receive a page for generating (providing) a predetermined token code such as (c) and (d) of 840.

The customer wireless terminal 500 through the process shown in Figure 7a through the token code generation (providing) page, such as (c) and (d) of Figure 9a or (c) and (d) of Figure 9a. A predetermined token code for processing a transaction (payment and / or payment of bills) is generated and provided to the financial transaction server 130 (845).

The financial transaction server 130 receiving the token code as described above from the customer wireless terminal 500 generates a predetermined token authentication code through the process as shown in FIG. 7B, and converts the token authentication code into the received token code. The validity of the token code is verified by comparing with 850.

If the validity of the token code is not authenticated (855), the financial transaction server 130 requests the token code retransmission to the customer wireless terminal 500 (860), the customer wireless terminal 500 is Through the process (840 ~ 855) generates a predetermined token code for processing a financial transaction (payment and / or payment of bills) and transmits to the financial transaction server 130.

On the other hand, if the validity of the token code is authenticated (855), the financial transaction server 130 and the customer wireless terminal 500 is (e) and (bar) of Figure 9a or (e) and (bar) of Figure 9b Process the financial transaction (payment and / or payment of bills, etc.) to a predetermined financial system 175 (e.g., the financial system 175 provided in the payment bank) that is linked with the financial transaction server 130 in association with each other. (865).

9A and 9B illustrate a financial transaction processing process according to an exemplary embodiment of the present invention.

9A and 9B illustrate the financial transaction processing process of FIG. 8 based on the screen of the customer wireless terminal 500. More specifically, FIG. 9A includes a page for generating the token code, and A page for providing a token code to the financial transaction server 130 is implemented as a single page, and FIG. 9B illustrates a page for generating the token code and the token code to the financial transaction server 130. The page you provide is about a two-page implementation.

In FIG. 9A and FIG. 9B, the generated token code is output on the screen of the customer wireless terminal 500 and then input by the customer into the token code information area of the page for providing a token code, or the generated token. It is possible for a code to be automatically entered in the token code information area of the page for providing a token code.

9A and 9B, the financial transaction (payment and / or bill payment, etc.) process is for the financial transaction (payment and / or bill payment, etc.) due to the excellent security of the token code. While confidentiality, authentication, integrity and nonrepudiation are illustrated as being batched through the token code, the financial transaction server 130 and the customer wireless terminal 500 are shown in FIG. In the process of processing the financial transactions (payment and / or payment of bills, etc.) in connection with (e) and (f) or (e) and (f) of FIG. It is possible to add additional security elements, but the present invention is not limited thereto.

10 is a diagram illustrating a financial transaction processing process according to another exemplary embodiment of the present invention.

In more detail, FIG. 10 illustrates a text message including predetermined callback UL information and predetermined financial transaction information (payment information and / or bill payment information) from the financial transaction server 130 in the customer wireless terminal 500. Receiving, and the process of accessing and processing the financial transaction server 130 through the wireless Internet based on the callback UEL information in the customer wireless terminal 500, the general knowledge in the technical field to which the present invention belongs If the person has, the token code through a predetermined token code-based financial transaction program mounted on the customer wireless terminal 500 to communicate with the financial transaction server 130 without using the wireless Internet with reference to FIG. It may be easy to infer the process of processing the underlying financial transactions (such as payment and / or payment of bills), whereby the present invention is limited It is not never.

Referring to FIG. 10, when a predetermined financial transaction (payment and / or bill payment, etc.) is started, the financial transaction server 130 performs the financial transaction on the customer wireless terminal 500 as shown in FIG. Generate a text message including predetermined callback information and financial transaction information (payment information and / or bill payment information) for accessing the server 130 (1000), and generate the generated financial transaction information (payment information and / Or bill payment information) text message is transmitted to the customer wireless terminal 500 (1005).

The customer terminal receiving the financial transaction information (payment information and / or bill payment information) text message from the financial transaction server 130 outputs the text message and includes it in the problem message as shown in FIG. A request is made to approve the processing of any financial transaction (such as payment and / or payment of bills) (1010).

If processing of the financial transaction (payment and / or payment of bills, etc.) is not approved in the customer wireless terminal 500 (for example, if the user does not click the "Call" button in (a) of FIG. 11), The customer wireless terminal 500 stores the received financial transaction information (payment information and / or bill payment information) text message (1020), and token code based financial transaction (payment and / or bill payment, etc.) according to the present invention. The process ends.

On the other hand, if the customer's wireless terminal 500 is authorized to process the financial transaction (payment and / or payment of bills, etc.) (for example, by clicking the "Call" button in FIG. 11A) (1015), the customer wireless terminal 500 The terminal 500 accesses the financial transaction server 130 through the wireless Internet based on the callback UEL included in the text message to communicate with the token code based financial transaction (payment and / or payment of bills). (825), and through the process (840 ~ 865) of Figure 8 to process the token code-based financial transactions (payment and / or bill payment, etc.).

11 is a diagram illustrating a financial transaction processing process according to another embodiment of the present invention.

In more detail, FIG. 11 illustrates a financial transaction processing process as shown in FIG. 10 centering on a screen of a customer wireless terminal 500, and includes a predetermined callback UEL information from the financial transaction server 130. The present invention relates to an implementation method including predetermined financial transaction information (payment information and / or bill payment information) in a text message received by the terminal 500.

In FIG. 11, the generated token code is output on the screen of the customer wireless terminal 500, and then is input by the customer into the token code information area of the page for providing a token code, or the generated token code is It is possible to automatically enter the token code information area of the token code providing page.

Hereinafter, a method of applying a characteristic challenge-response method different from the time synchronization method to the financial transaction processing system of the present invention will be described, and a portion overlapping with the time synchronization method will be omitted for convenience.

12 illustrates token agent information to be provided to the wireless terminal 500 according to another exemplary embodiment of the present invention.

In more detail, FIG. 12 illustrates a predetermined token agent for generating a challenge-response type token code, and the predetermined token agent for each platform corresponding to the wireless terminal platform on which the token agent is to be mounted. As an example of attribute information, the token agent information includes a token agent program (or source code to be compiled into a token agent program) corresponding to each platform, a version of the token agent, a token generation algorithm, It comprises at least one token generation information, at least one or more information items may be further included according to the intention of those skilled in the art, the invention is not limited by the information items.

According to the present invention, the token agent program is mounted on the wireless terminal 500 owned by the customer to generate a predetermined token code, whereby the token agent program is driven on the customer wireless terminal platform and And / or program code that can be operated. For example, if the wireless terminal 500 is equipped with a WIPI (Wireless Internet Platform for Interoperability) platform, the token agent includes a program code that operates on a WIPI basis, and the other platform (eg, GVM / SK-VM). / BREW, etc.) is included, the program code running on the platform is included.

In FIG. 12, the token agent program is provided in the database 110 in the form of a precompiled program, and / or is stored in the database 110 in the form of source code to be compiled. .

According to an embodiment of the present invention, the token agent program is provided in the database 110 in the form of a precompiled program, and the token agent program is a token for generating the token code from a predetermined financial transaction server 130. Characterized in that it receives a predetermined challenge value as the generation information, the token agent providing server 100 is preferably provided by providing the token agent program to the customer wireless terminal 500 via a predetermined wireless network and mounted thereon When the token agent program mounted on the wireless terminal 500 generates a predetermined token code, the token agent program generates a predetermined token based on a predetermined challenge value received from the financial transaction server 130. It is desirable to generate code.

According to another exemplary embodiment of the present invention, when the token agent program is provided in the database 110 in the form of a precompiled program, the token agent providing server 100 may transmit the wireless terminal 500 through a predetermined wireless network. At the time of providing and mounting the token agent program, at least one token generation information corresponding to the token agent program (eg, a secret key value corresponding to a number randomly generated by the token agent providing server 100). ) Is provided together with the wireless terminal 500 and stored in a predetermined storage device, and at the time when the token agent program mounted on the wireless terminal 500 generates a predetermined token code, the token agent The program is a predetermined challenge value received from the financial transaction server 130 and the At least one token generation information may be obtained from a large agent external storage device (eg, a memory unit 570 of the wireless terminal 500 and / or a memory unit included in an IC chip mounted or detached from the wireless terminal 500). It is preferable to extract and generate a predetermined token code based on the token generation information.

According to another embodiment of the present invention, when the token agent program is stored in the database 110 in the form of source code to be compiled, the token agent providing server 100 to the wireless terminal 500 the token. At the time of providing an agent program, at least one token generation information corresponding to the token agent program (eg, a secret key value corresponding to a number randomly generated by the token agent providing server 100) is provided in the token agent source. Assigning the token generation information variable included in the code, and compiling the token agent source code into which at least one token generation information is assigned to the predetermined token generation information variable to generate a predetermined token agent program; Some dynamically generated token agent programs Preferably, the token agent program is provided to the wireless terminal 500 through a wireless network and mounted on the wireless terminal 500. It is preferable to generate a predetermined token code based on a predetermined challenge value received from the transaction server 130 and token generation information substituted in the token agent program internal variable.

According to another exemplary embodiment of the present invention, even when at least one token generation information is substituted into the token agent program as described above, the dynamically generated token agent program is provided to the wireless terminal 500 according to the intention of a person skilled in the art. At the time of mounting, at least one or more other token generation information is provided together with the wireless terminal 500 and stored in a predetermined storage device, and the token agent program mounted on the wireless terminal 500 has a predetermined token code. At the time of generating the token agent, the token agent program includes a predetermined challenge value received from the financial transaction server 130, the token generation information provided in the corresponding token agent program, the token generation information provided in the external storage device, and the like. It is possible to generate a predetermined token code using, thereby Person is not limited.

The version of the token agent information includes version information of the token agent program for each platform to be provided to the wireless terminal 500.

According to an embodiment of the present invention, even if the same type of token agent program (for example, a token agent program running on the same platform), the type and / or version of the token generation algorithm applied according to the version of the token agent program is different. As a result, since the token code generated by the token agent program will also vary, the version information provides information for accurately determining the token agent mounted on the wireless terminal 500. It is possible to minimize the token code authentication error that may occur in the process of authenticating the predetermined token code generated in the wireless terminal 500 by the version information of the token code agent program.

The token generation algorithm of the token agent information includes hashing algorithm information applied to the token agent program and / or detailed attribute information of the hashing algorithm. Currently, the most commonly used hashing algorithms for generating tokens are MD4, MD5, SHA, and the like, and a hashing algorithm (for example, SHA-1 hashing algorithm with SHA) is further modified according to an application. It is used.

The token generation information of the token agent information is information for generating a token code of a time synchronous method. Referring to FIG. 12, the token code generation information is determined by the token agent program provided in the wireless terminal 500. At the time of generating a token code, a predetermined challenge value provided to the wireless terminal 500 through the financial transaction server 130 is used as first generation information, and the token agent providing server 100 according to an implementation method is used. Using a secret key value corresponding to a randomly generated value and / or MIN / ESN uniquely assigned to the wireless terminal 500 on which the token agent is mounted, as the second generation information and / or the third generation information. desirable.

According to the exemplary embodiment of the present invention, the challenge value is randomly generated by the financial transaction server 130 at the time when the token agent program included in the wireless terminal 500 generates a predetermined token code. As a value, the financial transaction server 130 transmits to the wireless terminal 500 until a token code (eg, a response corresponding to the challenge) generated based on the challenge value is received from the wireless terminal 500. It is preferable to maintain one challenge value, and when the token code is received, it is preferable to generate a predetermined token authentication code based on the challenge value to authenticate the received token code.

Referring to an embodiment of the present invention, when the token agent uses MIN / ESN of the wireless terminal 500 as token generation information for generating a predetermined token code, the MIN / ESN is used as token generation information as it is. It is possible to use a predetermined hash function in the MIN / ESN in order to prevent the token agent from overflowing in the process of generating the token code by having the MIN / ESN value too large. It is possible to apply and convert to a value within a certain size, which is determined according to the intention of the person skilled in the art and / or the computing power of the wireless platform.

13A, 13B, and 13C illustrate a token code operation process according to an exemplary embodiment of the present invention.

In more detail, FIGS. 13A, 13B, and 13C generate a 10-digit token code by receiving a predetermined challenge value from the financial transaction server 130 at the token agent provided in the wireless terminal, and generating the 10-digit token code. A 10-digit token code is transmitted from the wireless terminal through a predetermined wireless network 165 to the financial transaction server 130, and the financial transaction server 130 is a preferred implementation method for authenticating the token code, for convenience The process of inputting predetermined PIN information in order to drive the token agent program and / or perform an internal authentication procedure in the token agent is omitted.

13A and 13B illustrate only the token code being transmitted from the wireless terminal to the financial transaction server 130 in order to efficiently explain the token code operation process, the present invention is conventional in the art. If the person having knowledge, the token code can be transmitted to the financial transaction server 130 in association with predetermined financial transaction information (payment information and / or bill payment information, etc.) for the token code-based financial transaction. It will be clearly understood that the present invention is not limited thereto.

Referring to FIG. 13A, the authentication unit included in the financial transaction server 130 extracts predetermined wireless terminal information to transmit a predetermined challenge value from the storage medium (1300), and sends the token agent program provided to the wireless terminal. Dynamically generating a predetermined challenge value to be transmitted (1305) and providing the wireless terminal information and the challenge value to the information transmitter, the information transmitter based on the wireless terminal information through the predetermined wireless network 165 The generated challenge value is transmitted to the wireless terminal (1310).

When the generated challenge value is transmitted to the wireless terminal equipped with the token agent program as described above, the authentication unit stores the challenge value transmitted to the wireless terminal in the storage medium (1315).

Referring to FIG. 13B, the input unit 590d of the token agent program receives a predetermined challenge value received from the financial transaction server 130 through the communication processor 1320, and includes the received challenge value. At least one token code defined to be used by the token agent to generate a predetermined token code from the token agent internal code and / or a memory unit included in the memory unit 570 and / or the IC chip 555 The generation information is read (1325) and the read at least one token generation information is provided to the generation unit (590c) (1330).

The generation unit 590c generates an unpredictable predetermined token code by applying a hash algorithm for generating a token based on at least one token generation information provided from the input unit 590d (1335), and outputting the token unit. 590a outputs the generated token code to the screen of the wireless terminal (1340), and generates the generated token code to the financial transaction server 130 through a predetermined wireless network 165 in cooperation with the communication processing unit 575. The token code is transmitted (1345).

According to another exemplary embodiment of the present invention, when the wireless terminal equipped with the token agent program performs a function of a predetermined [payment terminal / financial terminal] for the token code based financial transaction, the output unit 590a ) And the communication processing unit 575 transmits to the financial transaction server 130 via the wireless network 165 in association with the generated token code and the financial transaction information (payment information and / or bill payment information, etc.). It is preferable.

According to the exemplary embodiment of the present invention, FIGS. 13A and 13B illustrate a process of generating a predetermined token code from the customer wireless terminal 500 and transmitting the predetermined token code to the financial transaction server 130 during the financial transaction processing of FIG. 845 is shown.

Referring to FIG. 13C, the information receiver of the financial transaction server 130 receives a predetermined token code transmitted from a wireless terminal through the wireless network 165 (1355), and the information receiver receives the token code. Extracting and providing the wireless terminal information transmitting the token code in the form of the sender information to the extracting unit (1365), wherein the extracting unit is associated with the wireless terminal information from the storage medium (or the received token code); And extracts predetermined token agent information (corresponding to 1370) and provides the extracted token agent information to the authenticator (1375).

When the token agent information is provided as described above, the authentication unit generates token information and / or the same token as the token generation information used to generate the token code in the token agent provided in the customer wireless terminal based on the token agent information. An agent generates a predetermined token authentication code through the same procedure as that of generating the token code in the agent (1380), and compares the token code received through the information receiver with the generated token authentication code for the token code. Validate (1385). If the validity of the token code is authenticated (1390), the financial transaction unit 135 of the financial transaction server 130 performs a predetermined financial transaction (payment and / or payment of bills, etc.).

According to an exemplary embodiment of the present invention, FIG. 13C illustrates a process of authenticating validity of a token code received from the customer wireless terminal 500 in the financial transaction server 130 in the financial transaction processing process of FIG. 8. It shows an embodiment method for.

According to another exemplary embodiment of the present invention, in addition to the token code generation and authentication method of the time synchronization method and / or the challenge-response method, when the predetermined token agent program is not installed in the customer wireless terminal 500, the financial When the transaction server 130 generates a predetermined token code (for example, a password that is used once and expires) and transmits the token code to the customer wireless terminal 500 through the wireless network 165, the customer wireless The terminal 500 transmits the received token code to the financial transaction server 130 in association with predetermined financial transaction information (payment information and / or bill payment information, etc.) for the token code-based financial transaction. Compare the token code received from the financial transaction server 130 with the token code transmitted from the financial transaction server 130 to the customer wireless terminal, In response to the teaching result, the financial transaction unit 135 of the financial transaction server 130 may perform a predetermined financial transaction (payment and / or payment of bills).

100: token agent providing server 105: agent provider
120: storage unit 125: storage medium
130: financial transaction server 135: financial trading unit
140: information transmission unit 145: interface unit
150: receiver 155: extractor
160: authentication unit 500: customer wireless terminal
575: communication processing unit 580: connection unit
585: financial transaction 190a: output unit
590b: input unit 590c: generation unit
590d: reading part

Claims (1)

In a smartphone,
A communication processor for receiving a token agent in association with a server on a communication network;
Connection unit for connecting to the financial institution server;
A token agent generating a token code;
First output a predetermined password (or code) input window (or area) for operating the token agent on the screen, and upon validation of the password (or code), a token code input (or provided) page is displayed on the screen. And a second financial output unit for providing a token code input through the token code input (or providing) page to a financial company server connected through the connection unit.

Images