Nothing Special   »   [go: up one dir, main page]

KR20230171584A - Cloud-based accommodation booking system and method therefor - Google Patents

Cloud-based accommodation booking system and method therefor Download PDF

Info

Publication number
KR20230171584A
KR20230171584A KR1020220071925A KR20220071925A KR20230171584A KR 20230171584 A KR20230171584 A KR 20230171584A KR 1020220071925 A KR1020220071925 A KR 1020220071925A KR 20220071925 A KR20220071925 A KR 20220071925A KR 20230171584 A KR20230171584 A KR 20230171584A
Authority
KR
South Korea
Prior art keywords
card
server
terminal
chip
data
Prior art date
Application number
KR1020220071925A
Other languages
Korean (ko)
Inventor
손기훈
Original Assignee
주식회사 트립일레븐
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 트립일레븐 filed Critical 주식회사 트립일레븐
Priority to KR1020220071925A priority Critical patent/KR20230171584A/en
Publication of KR20230171584A publication Critical patent/KR20230171584A/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/405Establishing or using transaction specific rules
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K7/00Methods or arrangements for sensing record carriers, e.g. for reading patterns
    • G06K7/10Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation
    • G06K7/10009Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation sensing by radiation using wavelengths larger than 0.1 mm, e.g. radio-waves or microwaves
    • G06K7/10297Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation sensing by radiation using wavelengths larger than 0.1 mm, e.g. radio-waves or microwaves arrangements for handling protocols designed for non-contact record carriers such as RFIDs NFCs, e.g. ISO/IEC 14443 and 18092
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3221Access to banking information through M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3278RFID or NFC payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/352Contactless payments by cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0877Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Finance (AREA)
  • Signal Processing (AREA)
  • Health & Medical Sciences (AREA)
  • Toxicology (AREA)
  • Economics (AREA)
  • General Health & Medical Sciences (AREA)
  • Artificial Intelligence (AREA)
  • Computer Vision & Pattern Recognition (AREA)
  • Electromagnetism (AREA)
  • Development Economics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

본 발명은 종단간 인증을 이용한 거래 연동 기반 서버형 인증코드 제공 방법에 관한 것으로, 본 발명에 따른 서버형 인증코드 제공 방법은, NFC(Near Field Communication)를 통해 카드의 칩과 인터페이스된 단말기와 통신하고 사용자 단말로부터 요청된 비대면 금융거래를 처리하는 뱅킹 서버와 연동하는 인증 서버를 통해 실행되는 종단간 인증을 이용한 거래 연동 기반 서버형 인증코드 제공 방법에 있어서, 상기 뱅킹 서버로부터 사용자 단말을 통해 요청된 비대면 금융거래를 위한 거래정보를 수신하는 제1 단계와, 상기 거래정보와 상기 단말기에 대응하는 매체정보를 매핑하여 저장하는 제2 단계와, 상기 매체정보에 대응하는 단말기로부터 상기 카드의 칩에 구비된 암호모듈을 통해 상기 단말기가 카드의 칩으로 제공한 값과 상기 카드의 칩에 구비된 값을 포함하는 데이터(c)를 암호화한 암호데이터(c)를 수신하는 제3 단계와, 지정 복호 방식을 통해 상기 수신된 암호데이터(c)를 복호화하
여 상기 카드를 인증하는 제4 단계와, 상기 카드가 인증되면, 지정된 코드생성규칙에 따라 동적 생성된 서버 측난수코드를 확인하는 제5 단계와, 상기 동적 생성된 서버 측 난수코드와 상기 거래정보를 포함하는 데이터(s)를 상기 카드의 칩에 구비된 복호모듈을 통해 복호화 가능하게 암호화한 암호데이터(s)를 생성하는 제6 단계와, 상기 생성된 암호데이터(s)를 상기 단말기로 전송하는 제7 단계를 포함한다.The present invention relates to a method of providing a server-type authentication code based on transaction linkage using end-to-end authentication. The method of providing a server-type authentication code according to the present invention communicates with a terminal interfaced with the chip of the card through NFC (Near Field Communication). In the method of providing a server-type authentication code based on transaction linkage using end-to-end authentication that is executed through an authentication server linked to a banking server that processes non-face-to-face financial transactions requested from a user terminal, the request is made through the user terminal from the banking server. A first step of receiving transaction information for a non-face-to-face financial transaction, a second step of mapping and storing the transaction information and media information corresponding to the terminal, and receiving the chip of the card from the terminal corresponding to the media information. A third step of receiving encryption data (c) encrypted by encrypting data (c) including the value provided by the terminal to the chip of the card and the value provided to the chip of the card through the encryption module provided in the terminal, and specifying Decrypt the received encryption data (c) through a decryption method.
A fourth step of authenticating the card, and when the card is authenticated, a fifth step of checking a dynamically generated server-side random number code according to a designated code generation rule, and the dynamically generated server-side random number code and the transaction information A sixth step of generating encrypted data (s) in which the data (s) containing the data (s) can be encrypted so as to be decrypted through a decryption module provided in the chip of the card, and transmitting the generated encrypted data (s) to the terminal. It includes the seventh step.

Description

클라우드기반의 숙소 부킹 시스템 및 그 방법 {Cloud-based accommodation booking system and method therefor}Cloud-based accommodation booking system and method therefor}

본 발명은 NFC(Near Field Communication)를 통해 단말기와 인터페이스된 카드의 [0001] 칩과 지정된 인증 서버가 상기단말기를 통해 상호 종단간 인증을 처리하되, 사용자 단말에서 비대면 금융거래를 위해 입력(또는 선택)한 지정된 항목 또는 지정된 개수의 거래정보가 상기 인증 서버로 제공되어 상기 종단간 인증 과정 중에 상기 인증 서버에서 동적 생성한 난수코드와 함께 단말기로 제공되도록 하는 것이다.The present invention is a chip of a card interfaced with a terminal through NFC (Near Field Communication) and a designated authentication server that processes mutual end-to-end authentication through the terminal, and inputs (or A designated item or a designated number of transaction information is provided to the authentication server and provided to the terminal along with a random number code dynamically generated by the authentication server during the end-to-end authentication process.

소위 OTP(One Time Password)라고 불리는 일회용 인증코드가 지불결제나 금융거래 등에 이용되기 위해서는 전자금융감독규정 제34조제2항제5호의 “매체 분리”의 조건을 성립해야 한다. 현재 어떠한 방식이 매체 분리의 조건을 만족하는지는 금융감독원에서 정하고 있으며, 현재까지 이와 같은 매체 분리로 인정되는 방식은 봉인된 형태의 OTP생성기 또는 OTP카드 등을 통해 동적 생성된 OTP를 금융거래에 이용되는 단말에 입력하는 방식만 매체 분리로 인정되고 있다.In order for the one-time authentication code, so-called OTP (One Time Password), to be used for payments or financial transactions, the condition of “media separation” under Article 34 (2) 5 of the Electronic Financial Supervision Regulations must be established. Currently, the Financial Supervisory Service determines which method satisfies the conditions for media separation, and the method recognized to date as such is using a sealed OTP generator or an OTP dynamically generated through an OTP card for financial transactions. Only the method of inputting data to a compatible terminal is recognized as media separation.

상기와 같은 문제점을 해소하기 위한 본 발명의 목적은, 근접 무선 통신을 통해 카드와 인터페이스된 단말기를 경유하여 카드와 인증 서버가 상호 인증하는 종단간 인증을 처리하는 과정에서 상기 인증 서버에 의해 동적 생성된 서버 측 난수코드를 암호화하여 단말기로 제공하면 이를 카드의 칩에서 복호화 후 단말기를 통해 출력함으로써, OTP의 생성 및 출력에 대한 매체분리의 원칙을 유지하면서 제3자 개입을 원천적으로 차단하는 안전하고 편리한 종단간 인증을 이용한 거래 연동 기반 서버형 인증코드 제공 방법을 제공함에 있다.The purpose of the present invention to solve the above problems is to dynamically generate data by the authentication server in the process of processing end-to-end authentication where the card and the authentication server mutually authenticate each other via a terminal interfaced with the card through close wireless communication. When the server-side random number code is encrypted and provided to the terminal, it is decrypted on the card's chip and output through the terminal, thereby maintaining the principle of media separation for OTP generation and output while fundamentally blocking third-party intervention. The aim is to provide a server-type authentication code provision method based on transaction linkage using convenient end-to-end authentication.

본 발명에 따른 서버형 인증코드 제공 방법은, NFC(Near Field Communication)를 통해 카드의 칩과 인터페이스된 단말기와 통신하고 사용자 단말로부터 요청된 비대면 금융거래를 처리하는 뱅킹 서버와 연동하는 인증 서버를 통해 실행되는 종단간 인증을 이용한 거래 연동 기반 서버형 인증코드 제공 방법에 있어서, 상기 뱅킹 서버로부터 사용자 단말을 통해 요청된 비대면 금융거래를 위한 거래정보를 수신하는 제1 단계와, 상기 거래정보와 상기 단말기에 대응하는 매체정보를 매핑하여 저장하는 제2 단계와, 상기 매체정보에 대응하는 단말기로부터 상기 카드의 칩에 구비된 암호모듈을 통해 상기 단말기가 카드의 칩으로 제공한 값과 상기 카드의 칩에 구비된 값을 포함하는 데이터(c)를 암호화한 암호데이터(c)를 수신하는 제3 단계와, 지정 복호 방식을 통해 상기 수신된 암호데이터(c)를 복호화하여 상기 카드를 인증하는 제4 단계와, 상기 카드가 인증되면, 지정된 코드생성규칙에 따라 동적 생성된 서버 측 난수코드를 확인하는 제5 단계와, 상기 동적 생성된 서버 측 난수코드와 상기 거래정보를 포함하는 데이터(s)를 상기 카드의 칩에 구비된 복호모듈을 통해 복호화 가능하게 암호화한 암호데이터(s)를 생성하는 제6 단계와, 상기 생성된 암호데이터(s)를 상기 단말기로 전송하는 제7 단계를 포함한다.The method of providing a server-type authentication code according to the present invention includes an authentication server that communicates with a terminal interfaced with a card chip through NFC (Near Field Communication) and links with a banking server that processes non-face-to-face financial transactions requested from the user terminal. A method of providing a server-type authentication code based on transaction linkage using end-to-end authentication, comprising: a first step of receiving transaction information for a non-face-to-face financial transaction requested from the banking server through a user terminal; A second step of mapping and storing media information corresponding to the terminal, and converting the value provided by the terminal to the chip of the card through an encryption module provided in the chip of the card from the terminal corresponding to the media information and the value of the card. A third step of receiving encryption data (c) encrypted by data (c) containing the value provided in the chip, and a third step of decrypting the received encryption data (c) through a designated decryption method to authenticate the card. Step 4, when the card is authenticated, a fifth step of checking the dynamically generated server-side random number code according to specified code generation rules, and data (s) including the dynamically generated server-side random number code and the transaction information A sixth step of generating decryptable encrypted data (s) through a decryption module provided in the chip of the card, and a seventh step of transmitting the generated encrypted data (s) to the terminal. .

본 발명에 따르면, 근접 무선 통신을 통해 카드와 인터페이스된 단말기를 경유하여 [0031] 카드와 인증 서버가 상호 인증하는 종단간 인증을 처리하는 과정에서 상기 인증 서버에 의해 동적 생성된 서버 측 난수코드를 암호화하여 단말기로 제공하면 이를 카드의 칩에서 복호화 후 단말기를 통해 출력함으로써, OTP의 생성 및 출력에 대한 매체분리의 원칙을 유지하면서 제3자 개입을 원천적으로 차단하는 이점이 있다.According to the present invention, in the process of end-to-end authentication where the card and the authentication server mutually authenticate each other via a terminal interfaced with the card through close wireless communication, a server-side random number code dynamically generated by the authentication server is used. If it is encrypted and provided to the terminal, it is decrypted on the chip of the card and output through the terminal, which has the advantage of fundamentally blocking third party intervention while maintaining the principle of media separation for the generation and output of OTP.

도 1은 본 발명의 실시 방법에 따라 종단과 인증과 거래연동을 이용하여 서버형 인증코드를 제공하는 시스템의구성을 도시한 도면이다.Figure 1 is a diagram showing the configuration of a system that provides a server-type authentication code using endpoints, authentication, and transaction linkage according to the implementation method of the present invention.

이하 첨부된 도면과 설명을 참조하여 본 발명의 바람직한 실시예에 대한 동작 원리를 상세히 설명한다. 다만, 하기에 도시되는 도면과 후술되는 설명은 본 발명의 특징을 효과적으로 설명하기 위한 여러 가지 방법 중에서 바람직한 실시 방법에 대한 것이며, 본 발명이 하기의 도면과 설명만으로 한정되는 것은 아니다. 예를들어, 서버 측에 구비된 구성부가 단말 측에 구현되거나, 반대로 단말 측에 구비된 구성부가 서버 측에 구현되는 형태로 실시되는 것이 가능하다.Hereinafter, the operating principle of a preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. However, the drawings shown below and the description below are for preferred implementation methods among various methods for effectively explaining the characteristics of the present invention, and the present invention is not limited to the drawings and description below. For example, it is possible for components provided on the server side to be implemented on the terminal side, or conversely, components provided on the terminal side may be implemented in the server side.

300 : 프로그램 400 : 카드
500 : 단말기 600 : 인증 서버300: Program 400: Card
500: terminal 600: authentication server

Claims (1)

NFC(Near Field Communication)를 통해 카드의 칩과 인터페이스된 단말기와 통신하고 사용자 단말로부터 요청된 비대면 금융거래를 처리하는 뱅킹 서버와 연동하는 인증 서버를 통해 실행되는 종단간 인증을 이용한 거래 연동 기반 서버형 인증코드 제공 방법에 있어서, 상기 뱅킹 서버로부터 사용자 단말을 통해 요청된 비대면 금융거래를 위한 거래정보를 수신하는 제1 단계; 상기 거래정보와 상기 단말기에 대응하는 매체정보를 매핑하여 저장하는 제2 단계; 상기 매체정보에 대응하는 단말기로부터 상기 카드의 칩에 구비된 암호모듈을 통해 상기 단말기가 카드의 칩으로 제공한 값과 상기 카드의 칩에 구비된 값을 포함하는 데이터(c)를 암호화한 암호데이터(c)를 수신하는 제3단계;지정 복호 방식을 통해 상기 수신된 암호데이터(c)를 복호화하여 상기 카드를 인증하는 제4 단계;상기 카드가 인증되면, 지정된 코드생성규칙에 따라 동적 생성된 서버 측 난수코드를 확인하는 제5 단계;상기 동적 생성된 서버 측 난수코드와 상기 거래정보를 포함하는 데이터(s)를 상기 카드의 칩에 구비된 복호모듈을 통해 복호화 가능하게 암호화한 암호데이터(s)를 생성하는 제6단계; 및 상기 생성된 암호데이터(s)를 상기 단말기로 전송하는 제7 단계;를 포함하는 종단간 인증을 이용한 거래 연동기반 서버형 인증코드 제공 방법.A server based on transaction linkage using end-to-end authentication that communicates with a terminal interfaced with the card's chip through NFC (Near Field Communication) and runs through an authentication server that links with a banking server that processes non-face-to-face financial transactions requested from the user terminal. A method for providing a type authentication code, comprising: receiving transaction information for a non-face-to-face financial transaction requested from the banking server through a user terminal; A second step of mapping and storing the transaction information and media information corresponding to the terminal; Cryptographic data that encrypts the data (c) including the value provided by the terminal to the chip of the card and the value provided to the chip of the card from the terminal corresponding to the medium information through the encryption module provided in the chip of the card. A third step of receiving (c); A fourth step of authenticating the card by decrypting the received encryption data (c) through a designated decryption method; When the card is authenticated, a dynamically generated code is generated according to designated code generation rules. Fifth step of checking the server-side random number code; Encrypted data (s) containing the dynamically generated server-side random number code and the transaction information to be decryptable through a decryption module provided in the chip of the card ( 6th step of generating s); And a seventh step of transmitting the generated password data (s) to the terminal. A server-type authentication code providing method based on transaction linkage using end-to-end authentication, including a.
KR1020220071925A 2022-06-14 2022-06-14 Cloud-based accommodation booking system and method therefor KR20230171584A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020220071925A KR20230171584A (en) 2022-06-14 2022-06-14 Cloud-based accommodation booking system and method therefor

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020220071925A KR20230171584A (en) 2022-06-14 2022-06-14 Cloud-based accommodation booking system and method therefor

Publications (1)

Publication Number Publication Date
KR20230171584A true KR20230171584A (en) 2023-12-21

Family

ID=89320874

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020220071925A KR20230171584A (en) 2022-06-14 2022-06-14 Cloud-based accommodation booking system and method therefor

Country Status (1)

Country Link
KR (1) KR20230171584A (en)

Similar Documents

Publication Publication Date Title
US11895239B1 (en) Biometric electronic signature tokens
US10595201B2 (en) Secure short message service (SMS) communications
US12051064B2 (en) Transaction messaging
US11652644B1 (en) Quantum-resistant double signature system
US11544367B2 (en) Systems, apparatus and methods for secure electrical communication of biometric personal identification information to validate the identity of an individual
US20190173873A1 (en) Identity verification document request handling utilizing a user certificate system and user identity document repository
US20190364032A1 (en) Method for carrying out a two-factor authentication
CN107784499B (en) Secure payment system and method of near field communication mobile terminal
JPH113033A (en) Method for identifying client for client-server electronic transaction, smart card and server relating to the same, and method and system for deciding approval for co-operation by user and verifier
US20230368194A1 (en) Encryption method and decryption method for payment key, payment authentication method, and terminal device
US11070378B1 (en) Signcrypted biometric electronic signature tokens
CN103546289A (en) USB (universal serial bus) Key based secure data transmission method and system
CN112567682A (en) Token key for generating passwords for token interactions
TW202422436A (en) Digital payment processing method, device, equipment, system and medium
WO2021216765A1 (en) Online secret encryption
CN110798322B (en) Operation request method, device, storage medium and processor
CN112788001A (en) Data encryption-based data processing service processing method, device and equipment
CN117081736A (en) Key distribution method, key distribution device, communication method, and communication device
CN116707778A (en) Data hybrid encryption transmission method and device and electronic equipment
CN112311534A (en) Method for generating asymmetric algorithm key pair
KR20230171584A (en) Cloud-based accommodation booking system and method therefor
KR101868564B1 (en) Apparatus for authenticating user in association with user-identification-registration and local-authentication and method for using the same
CN114584355A (en) Security authentication method, device and system for digital currency transaction
KR20210063177A (en) Apparatus and method for mobile authentication, and recording medium applied to the same
CN117914628B (en) PIN code equipment authentication management method and device