[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

KR20130056798A - Service providing method for authenticating user by directly calculation of user for financial transactions - Google Patents

Service providing method for authenticating user by directly calculation of user for financial transactions Download PDF

Info

Publication number
KR20130056798A
KR20130056798A KR1020110122575A KR20110122575A KR20130056798A KR 20130056798 A KR20130056798 A KR 20130056798A KR 1020110122575 A KR1020110122575 A KR 1020110122575A KR 20110122575 A KR20110122575 A KR 20110122575A KR 20130056798 A KR20130056798 A KR 20130056798A
Authority
KR
South Korea
Prior art keywords
user
financial transaction
authentication
code
authentication code
Prior art date
Application number
KR1020110122575A
Other languages
Korean (ko)
Inventor
김영우
Original Assignee
김영우
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 김영우 filed Critical 김영우
Priority to KR1020110122575A priority Critical patent/KR20130056798A/en
Publication of KR20130056798A publication Critical patent/KR20130056798A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/02Banking, e.g. interest calculation or account maintenance
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
    • G07F19/20Automatic teller machines [ATMs]
    • G07F19/209Monitoring, auditing or diagnose of functioning of ATMs
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/12Messaging; Mailboxes; Announcements

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Finance (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Technology Law (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention relates to a method for providing a user authentication service for a financial transaction authenticated by a user's direct calculation, and more particularly, to a financial transaction server for providing a financial transaction and a user authentication service for the financial transaction, (1) Setting a method of calculating an authentication code of a user; (2) receiving an authentication request signal for a financial transaction from the financial transaction terminal; (3) transmitting a secret code for user authentication to the mobile terminal of the user; (4) calculating the authentication code by calculating the transmitted secret code by the authentication code calculation method set in step (1); (5) receiving an authentication code calculated by the user from the financial transaction terminal; And (6) comparing the authentication code input in the step (5) with the authentication code calculated in the step (4) to process user authentication for the financial transaction. .
According to the method for providing a user authentication service for a financial transaction authenticated by the user's direct calculation proposed in the present invention, the financial transaction server sets the user's authentication code calculation method in advance, By performing the user authentication by receiving the authentication code calculated by directly calculating the secret code received by the authentication code calculation method, it is possible to prevent user damage by financial transactions of unauthorized users other than the legitimate user who knows the authentication code calculation method. have.
Further, according to the present invention, the financial transaction server receives the method code assigned to the authentication code calculation method and compares the authentication code calculation method, thereby performing additional user authentication and enhancing security, and improving the reliability of the financial transaction. Can be.

Description

SERVICE PROVIDING METHOD FOR AUTHENTICATING USER BY DIRECTLY CALCULATION OF USER FOR FINANCIAL TRANSACTIONS}

The present invention relates to a method for providing a user authentication service for a financial transaction, and more particularly, to a method for providing a user authentication service for a financial transaction that authenticates by a user's direct calculation.

In modern society, most employers use financial institutions on a daily basis, such as getting paid salaries through financial institutions or saving their income to financial institutions, and withdraw necessary amounts from financial institutions whenever necessary. In the case of various financial transactions such as withdrawal or transfer to a financial institution, a user authentication process is necessary to prevent unjust transactions.

For example, withdrawing cash using an automated teller machine (ATM), the user simply inserts a cash card or bankbook at the ATM, selects the type and amount of service, and then enters a four-digit password. The requested amount is withdrawn. In addition, since a bank account or a card-free transaction is possible, a financial transaction using ATM is a simple structure in which a transaction is made only by knowing a password.

In financial institutions, withdrawal is suspended if a wrong number of passwords is input a predetermined number of times in order to prevent unauthorized use due to the loss of a cash card or bankbook. However, users tend to use four-digit passwords for easy-to-remember numbers, and users who have various transactions with various financial institutions tend to unify with the same password to prevent confusion. easy.

Therefore, the anti-theft protection by the limit of the number of password input is limited in its effectiveness. In addition, with the increasing use of leaked account information to illegally copy and use cash cards for criminals, user authentication that prevents financial transactions using the account other than the owner and the person authorized by the account. How is urgently needed.

The present invention has been proposed to solve the above problems of the conventionally proposed methods, wherein the financial transaction server presets the authentication code calculation method of the user, and the secret code received by the user to the mobile terminal during the financial transaction. By performing the user authentication by inputting the verification code calculated by the verification code calculation method directly, the user can directly prevent the damage caused by the financial transaction of the fraudulent user other than the legitimate user who knows the verification code calculation method. An object thereof is to provide a method for providing a user authentication service for a financial transaction that authenticates by calculation.

In addition, the present invention, the financial transaction server receives the method code assigned to the authentication code calculation method and compares the authentication code calculation method, it is possible to perform additional user authentication and enhance security, and improve the reliability of financial transactions Another object is to provide a method for providing a user authentication service for a financial transaction which authenticates by direct calculation of a user.

According to an aspect of the present invention, there is provided a method for providing a user authentication service for a financial transaction, wherein the financial transaction server provides a financial transaction and a user authentication service for the financial transaction. ,

(1) setting a method for calculating an authentication code of a user;

(2) receiving an authentication request signal for a financial transaction from the financial transaction terminal;

(3) transmitting a secret code for user authentication to the mobile terminal of the user;

(4) calculating the authentication code by calculating the transmitted secret code by the authentication code calculation method set in step (1);

(5) receiving an authentication code calculated by the user from the financial transaction terminal; And

(6) comparing the authentication code input in the step (5) with the authentication code calculated in the step (4), and processing a user authentication for the financial transaction.

Preferably, the financial transaction,

It may be a transaction using an automated teller machine (ATM), an internet banking using the Internet, a telebanking using a telephone, or a mobile banking using a mobile terminal.

Preferably, in the step (1)

You can set the calculation method and the constant used in the calculation.

More preferably, the authentication code calculation method,

An increment calculation method for adding the constant to each place of the secret code, a decrease calculation method for subtracting the constant from each place of the secret code, an addition calculation method for adding the constant to the secret code, a subtraction calculation method for subtracting the constant from the secret code, Or a multiplication method of multiplying the constant by the secret code.

Preferably, before step (5),

The method may further include receiving, from the user, a method code allocated to the authentication code calculation method of the user.

More preferably, between performing the step of receiving the method code and performing the step (5),

The method may further include comparing the authentication code calculation method of the user set in the step (1) with the authentication code calculation method corresponding to the input method code.

Preferably, prior to step (3)

Receiving a customer number assigned to the user from the financial transaction terminal;

The customer number may be a number assigned to each of the plurality of users when a plurality of users are set for an account that is the target of the financial transaction.

Preferably, in the step (3)

The secret code may be transmitted using a short message service (SMS), a multi message service (MMS) or a voice message.

According to the method for providing a user authentication service for a financial transaction authenticated by the user's direct calculation proposed in the present invention, the financial transaction server sets the user's authentication code calculation method in advance, By performing the user authentication by receiving the authentication code calculated by directly calculating the secret code received by the authentication code calculation method, it is possible to prevent user damage by financial transactions of unauthorized users other than the legitimate user who knows the authentication code calculation method. have.

Further, according to the present invention, the financial transaction server receives the method code assigned to the authentication code calculation method and compares the authentication code calculation method, thereby performing additional user authentication and enhancing security, and improving the reliability of the financial transaction. Can be.

1 is a diagram illustrating a configuration of a system for implementing a method for providing a user authentication service for a financial transaction for authenticating by a user's direct calculation according to an embodiment of the present invention.
2 is a diagram illustrating a detailed configuration of a financial transaction server in a system for implementing a method for providing a user authentication service for a financial transaction authenticated by a user's direct calculation according to an embodiment of the present invention.
3 is a flowchart illustrating a method of providing a user authentication service for a financial transaction that authenticates by direct calculation of a user according to an embodiment of the present invention.
4 is a diagram illustrating an example of an authentication code derived by an authentication code calculation method in step S500 of a method for providing a user authentication service for a financial transaction authenticating by direct calculation of a user according to an embodiment of the present invention. .
FIG. 5 illustrates a detailed flow of a process of comparing an authentication code calculation method using a method code in a method for providing a user authentication service for a financial transaction authenticated by a user's direct calculation according to an embodiment of the present invention. drawing.
FIG. 6 is a view for explaining a process of making a user's withdrawal using an ATM in a method of providing a user authentication service for a financial transaction authenticated by a user's direct calculation according to an embodiment of the present invention.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings, in order that those skilled in the art can easily carry out the present invention. In the following detailed description of the preferred embodiments of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. In the drawings, like reference numerals are used throughout the drawings.

In addition, in the entire specification, when a part is referred to as being 'connected' to another part, it may be referred to as 'indirectly connected' not only with 'directly connected' . In addition, the term 'comprising' of an element means that the element may further include other elements, not to exclude other elements unless specifically stated otherwise.

1 is a diagram illustrating a configuration of a system for implementing a method for providing a user authentication service for a financial transaction that authenticates by direct calculation of a user according to an embodiment of the present invention. As shown in FIG. 1, a system for implementing a user authentication service providing method for a financial transaction authenticating by a user's direct calculation according to an embodiment of the present invention includes a financial transaction server 100 and a financial transaction terminal. 200 and the portable terminal 300 may be configured.

That is, when a user makes a financial transaction using the financial transaction terminal 200, when an event requiring user authentication, such as withdrawal or transfer, occurs from the user's account, the financial transaction terminal 200 is connected to the financial transaction server 100. User authentication can be requested. The financial transaction server 100 receiving the user authentication request transmits a secret code to the mobile terminal 300 of the user, and the user according to a preset authentication code calculation method from the secret code received from the mobile terminal 300. The authentication code may be calculated and input to the financial transaction terminal 200. The financial transaction terminal 200 transmits an authentication code to the financial transaction server 100 to perform user authentication. When the financial transaction server 100 processes the user authentication, the financial transaction is completed and the financial transaction is performed by the financial transaction terminal 200. The normal processing signal according to the kind may be output.

In this way, while performing the user authentication using the secret code transmitted to the user's portable terminal 300 during a financial transaction, the secret code is not input as an authentication code, but in a preset authentication code calculation method of the user. By converting the secret code into the authentication code to be input, the reliability of the user authentication can be improved. Meanwhile, in the present invention, the financial transaction may include a transaction using an automated teller machine (ATM), an internet banking using the Internet, a telebanking using a telephone, or a mobile banking using a mobile terminal 300. . Hereinafter, each component constituting a system for implementing a method for providing a user authentication service for a financial transaction authenticated by a user's direct calculation according to an embodiment of the present invention will be described in detail.

The financial transaction server 100 is a server that provides a user authentication service for financial transactions and financial transactions. The financial transaction server 100 may communicate with the financial transaction terminal 200 and the mobile terminal 300 through a network, may set and store a user's authentication code calculation method, and automatically generate a random secret code. You can also create The financial transaction server 100 may be a server of a financial institution that performs a financial transaction requested by a user, or may be a server that performs user authentication in financial transactions of a plurality of financial institutions. Detailed configuration of the financial transaction server 100 will be described in detail later with reference to FIG. 2.

The financial transaction terminal 200 is a terminal for performing a financial transaction requested by the user. Financial transactions can be made by users visiting the branches of financial institutions in person, but they can be made through ATM, Internet banking, telebanking, etc. Recently, with the rapid proliferation of smart devices, new banking services including smart banking, etc. Financial transactions can be made in a variety of ways using the media. Accordingly, the financial transaction terminal 200 of the present invention may be an ATM provided at a branch of a financial institution, but may be a computer, a laptop, a netbook, etc. capable of internet banking, a general telephone or a mobile communication terminal, a mobile terminal capable of telebanking, and the like. It may be a variety of mobile communication terminals such as smartphones, tablet PCs that can be banked.

The mobile terminal 300 is a terminal of a user who wants to make a financial transaction using the financial transaction terminal 200. The user may have a mobile terminal 300 including various mobile communication terminals such as a mobile phone, a smart phone, a PDA, and receive the secret code transmitted by the financial transaction server 100 through the mobile terminal 300. Can be. The number of the mobile terminal 300 for receiving the secret code may be stored in advance in the financial transaction server 100, or may be input by the user directly using the financial transaction terminal 200 when a payment request is made. In addition, when the financial transaction server 100 and the financial institution server are different from each other, the mobile terminal 300 number stored in the financial institution server may be transmitted from the financial institution to the financial transaction server 100.

2 is a diagram illustrating a detailed configuration of a financial transaction server 100 in a system for implementing a method for providing a user authentication service for a financial transaction authenticated by a user's direct calculation according to an embodiment of the present invention. . As shown in FIG. 2, the financial transaction server 100 of the system for implementing a method for providing a user authentication service for a financial transaction authenticated by a user's direct calculation according to an embodiment of the present invention may include a transceiver ( 110, a database 120, a secret code generator 130, an authentication code calculator 140, and an authentication processor 150.

The transceiver 110 communicates with the financial transaction terminal 200 and the mobile terminal 300 through a network including the Internet, an intranet, a wired / wireless communication network, a mobile communication network, and transmits or receives various information and data. Can be. In particular, the financial transaction terminal 200 may communicate with the Internet or a wired or wireless communication network, and the mobile terminal 300 may communicate with a mobile communication network. The transceiver 110 may encrypt and transmit or receive a secret code or an authentication code, and may communicate with the plurality of financial transaction terminals 200 and the plurality of portable terminals 300.

The database 120 may set and store a user authentication code calculation method. The authentication code calculation method may be set for each user, for each account, for each bank account, for each cash card and stored in the database 120. In addition, a plurality of users may be set for the same account, each user is assigned a customer number, and the authentication code calculation method may be set differently for each customer number.

The secret code generator 130 is a component for generating a secret code to be transmitted to a user, and may be configured as a disposable secret code generator or the like. The secret code may be arbitrarily generated regardless of the user, and may be generated in various configurations such as numbers, letters, and combinations of numbers and letters. The secret code generated by the secret code generator 130 may be transmitted to the transceiver 110 and transmitted to the mobile terminal 300 of the user through a mobile communication network.

The authentication code calculation unit 140 is configured to calculate the secret code generated by the secret code generation unit 130 as an authentication code according to the authentication code calculation method of the user. The authentication code calculation unit 140 calculates the authentication code by searching for the authentication code calculation method corresponding to the user in the database 120. When the calculated value is out of the recognizable range, the authentication code is calculated by cutting the front or back. It may be.

The authentication processor 150 is configured to perform user authentication by comparing the authentication code calculated by the authentication code calculator 140 with the authentication code received from the user in the transceiver 110. If the comparison result is that the authentication code is matched with each other and is determined to be a legitimate user, the authentication transaction is processed and the authentication transaction is transmitted from the financial transaction server to the configuration or financial institution server that is responsible for the actual financial transaction. Can be.

3 is a flow diagram illustrating a method of providing a user authentication service for a financial transaction that authenticates by direct calculation of a user according to an embodiment of the present invention. As shown in FIG. 3, in the method of providing a user authentication service for a financial transaction authenticating by a user's direct calculation according to an embodiment of the present invention, setting a method of calculating a user's authentication code (S100) Receiving an authentication request signal for a transaction (S200), transmitting a secret code to the user's mobile terminal (300) (S400), calculating a secret code by the authentication code calculation method to calculate the authentication code (S500) ), Receiving the authentication code calculated by the user from the financial transaction terminal 200 (S600) and comparing the received authentication code with the calculated authentication code to process the user authentication for the financial transaction (S700) It may be implemented to include, and may further comprise the step (S300) for receiving a customer number from the financial transaction terminal (200).

In operation S100, the financial transaction server 100 may set a method for calculating an authentication code of the user. The authentication code calculation method of the user set in step S100 may be set in the financial transaction server 100 by applying for a setting when the user visits a financial institution to create an account or applies for internet banking, telebanking, or the like. In addition, according to the exemplary embodiment, the financial transaction server 100 may allocate and set an authentication code calculation method according to a user.

Meanwhile, in step S100, an authentication code calculation method may be set by setting a calculation method for calculating an authentication code and a constant used at the time of calculation. For example, authentication code calculation methods include incremental calculations that add a constant to each place of a secret code, a reduction calculation that subtracts a constant into each place of a secret code, an addition calculation that adds a constant to a secret code, and a subtraction that subtracts a constant from a secret code. It can be a calculation method, or a multiplication method that multiplies a secret code by a constant. However, the authentication code calculation method of the present invention is not limited to the calculation method as listed, and if the user and the financial transaction server 100 is set and acknowledged the same, and the calculation result is constantly derived and can be used for user authentication, Regardless of the calculation method, the authentication code calculation method of the present invention may be any number.

In operation S200, the financial transaction server 100 may receive an authentication request signal for a financial transaction from the financial transaction terminal 200. That is, when a user intends to perform a financial transaction using the financial transaction terminal 200, the user authentication is required for withdrawal or transfer of the deposit. The financial transaction terminal 200 may transmit an authentication request signal for a financial transaction to the financial transaction server 100 when user authentication is required. In operation S200, the financial transaction terminal 200 may be provided with the user's portable terminal 300 number. However, when the mobile terminal 300 number of the user is stored in the financial transaction server 100 or the financial institution server connected to the financial transaction server 100, the user's mobile information is used by using the user's information input for the financial transaction. The terminal 300 may be searched for and used.

In operation S300, the financial transaction server 100 may receive a customer number assigned to the user from the financial transaction terminal 200. In this case, the customer number may be a number assigned to the plurality of users, respectively, when a plurality of users are set for one account that is the target of the financial transaction. For example, if the legitimate user of a particular account is one account holder, there may be no customer number or the assigned customer number is zero. In the case of an account under the name of a corporation or an account jointly managed by a family member, multiple users can be set, and the account number of the account or the account holder is set to 0, and the customer number can be assigned to another user by 1, 2, 3, etc. have. On the other hand, for the same account, the authentication code calculation method set in step S100 may be different depending on the customer number.

In operation S400, the financial transaction server 100 may transmit a secret code for user authentication to the user's portable terminal 300. The secret code may be generated and transmitted by the secret code generator 130, may be similar to a method of using a one time password (OTP), and the generated secret code may be arbitrarily determined and thus different. On the other hand, the secret code is not always composed of a number, it may be composed of a letter, a combination of letters and characters, in addition to the number as long as it can be calculated by the authentication code calculation method and calculated as an authentication code.

Meanwhile, in step S400, the secret code generated by the secret code generator 130 may be transmitted using a short message service (SMS) or a multi message service (MMS), or may be transmitted by a voice call. That is, the financial transaction server 100 may transmit a text message including SMS or MMS including a secret code through the user's mobile terminal 300 number, and the financial transaction server 100 may transmit the user's mobile terminal 300 number. You can also try to speak with a voice message to guide the secret code.

In step S500, the financial transaction server 100 may calculate the authentication code by calculating the secret code sent in step S400 by the authentication code calculation method set in step S100. Step S500 may be performed by the authentication code calculation unit 140 of the financial transaction server 100. Even if the secret code transmitted in step S400 is the same, different authentication codes may be calculated according to the authentication code calculation method of the user. .

4 is a diagram illustrating an example of an authentication code derived by an authentication code calculation method in step S500 of a method for providing a user authentication service for a financial transaction authenticating by direct calculation of a user according to an embodiment of the present invention. to be. As shown in Fig. 4, the same six-digit secret code '123456' is increased according to the increment calculation method, and '456789' is calculated by adding 3, the constant set in step S100, to each digit. Subtracting '890123' may be calculated. In the decrement method, 3 cannot be subtracted from 1, the first digit of the secret code, but each digit is determined from 0 to 9, and 3 is subtracted from 2 digits of 1 In consideration of this, the first digit of the authentication code may be eight. On the other hand, since the constants may be different for each user even if the same calculation method is used, and the secret code transmitted to the user's portable terminal 300 is changed every payment, the number of authentication codes that can be calculated may be numerous. have. Meanwhile, in addition to the authentication code calculation method shown in FIG. 4, there may be various calculation methods according to a user's request or setting of the financial transaction server 100. For example, there may be a method of reversing the number of digits constituting the secret code and calculating the authentication code by '654321' or the like.

In operation S600, the financial transaction server 100 may receive an authentication code calculated by the user from the financial transaction terminal 200. That is, the user who directly checks the secret code transmitted to the user's portable terminal 300 in step S400 may directly receive the authentication code input to the financial transaction terminal 200. In step S400, the user may receive a secret code in a text message or voice message, etc., the user calculates the authentication code directly by calculating the received secret code according to the authentication code calculation method set by the financial transaction terminal 200 In this case, even if the received secret code is the same, different authentication codes are input for different users.

On the other hand, in step S500, it is possible to receive the authentication code within a predetermined time from the secret code transmission in step S400. In addition, if the authentication code transmission from the financial transaction terminal 200 to the financial transaction server 100 is not made within a predetermined time, it may be regarded as an authentication failure. In other words, if the time required for input of the authentication code is too long, there is a possibility of unauthorized use by a person who does not know the authentication code calculation method. Therefore, damage to the user due to unauthorized use can be prevented by not processing the user authentication.

In step S700, the financial transaction server 100 may compare the authentication code input in step S600 with the authentication code calculated in step S500 to process user authentication for the financial transaction. Step S700 may be performed by the authentication processing unit 150 of the financial transaction server 100, and compares the authentication code calculated by the authentication code calculation unit 140 with the authentication code input by the user's direct calculation and is identical to each other. It can be determined that the user is a legitimate user and can process user authentication. When the user authentication is processed, the financial transaction server 100 or the financial institution server connected to the financial transaction server 100 may perform the financial transaction requested by the user.

Meanwhile, the calculation result of step S500 may be compared with a number corresponding to a preset number of authentication codes input in step S600. That is, when the number of input or recognition digits of the secret code or the authentication code is limited, the first or the last digit of the result calculated by the authentication code calculation method may be dropped and compared with each other. For example, when the authentication code calculation method is to multiply the constant 9, if the secret code is '123456', the calculated value is '1111104'. If the authentication code can recognize only 6 digits, the authentication code may be '111110' or '111104' according to an appointment with the financial transaction server 100.

FIG. 5 illustrates a detailed flow of a process of comparing an authentication code calculation method using a method code in a method for providing a user authentication service for a financial transaction authenticated by a user's direct calculation according to an embodiment of the present invention. Drawing. As shown in FIG. 5, the method for providing a user authentication service for a financial transaction authenticating by a user's direct calculation according to an embodiment of the present invention includes receiving a method code from a user (S800) and authenticating a user. Comparing the code calculation method and the authentication code calculation method corresponding to the input method code (S900) may be implemented.

That is, in the present invention, the user authentication can be performed by comparing the authentication code calculated by the user's direct calculation, but the user authentication is more reliably compared through the comparison of the authentication code calculation method itself set in step S100. Can be done. Steps S800 and S900 may be performed at any time before receiving the authentication code from the user in step S600. After successful authentication by comparing the authentication code calculation method, the secret code is transmitted to the mobile terminal 300 of the user. Step S400 may be performed, and after successful authentication by comparing the authentication code calculation method, step S600 may be performed by comparing the authentication codes. That is, as shown in FIG. 5, after performing step S800 and step S900, step S400 or less may be performed, or step S600 or less may be performed. Hereinafter, in the method of providing a user authentication service for a financial transaction authenticating by direct calculation of a user according to an embodiment of the present invention, each step of the process of comparing the authentication code calculation method using the method code will be described in detail. Do it.

In operation S800, the financial transaction server 100 may receive a method code assigned to the authentication code calculation method of the user from the user. The method code may be a number assigned to each authentication code calculation method, and the method code and the authentication code calculation method may be stored in the database 120 in correspondence with each other. For example, the method code may be assigned to the increase calculation method described in step S100 as 1, the decrease calculation method as 2, the addition calculation method as 3, the subtraction calculation method as 4, the multiplication calculation method as 5, and the like. In operation S800, the user may input the method code to the financial transaction terminal 200, and the financial transaction terminal 200 may be performed by transmitting the method code to the financial transaction server 100.

In step S900, the financial transaction server 100 may compare the authentication code calculation method of the user set in step S100 with the authentication code calculation method corresponding to the method code input in step S800. That is, by comparing whether authentication code calculation methods are the same, user authentication may be performed once more using the authentication code calculation method instead of the authentication code. In step S900, if a method code is incorrectly input more than a predetermined number of times, it may be determined that the user is not a legitimate user and the user authentication may not be processed.

FIG. 6 is a view illustrating an example of a process in which a user makes a withdrawal using an ATM in a method of providing a user authentication service for a financial transaction authenticated by a user's direct calculation according to an embodiment of the present invention. As shown in FIG. 6, a user inserts a cash card or bank account into an ATM, selects a cash withdrawal service, and selects an account password and a withdrawal amount according to the guidance of the ATM. This process can be reversed depending on the ATM, financial institution, and user. The user can then enter a customer number at the ATM but can enter 0 if he is the user. When the secret code is transmitted from the financial transaction server 100 to the mobile terminal 300 of the user, the user may convert the received secret code into an authentication code and input the same into the ATM according to the authentication code calculation method. If the user is successfully authenticated, the financial transaction is processed and the amount requested by the user can be withdrawn through the ATM.

The present invention may be embodied in many other specific forms without departing from the spirit or essential characteristics of the invention.

100: financial transaction server 110: transceiver
120: database 130: secret code generation unit
140: authentication code calculation unit 150: authentication processing unit
200: financial transaction terminal 300: mobile terminal
S100: step of setting a method of calculating a user's authentication code
S200: Receiving an authentication request signal for a financial transaction
S300: step of receiving a customer number from the financial transaction terminal
S400: step of transmitting a secret code to the user's mobile terminal
S500: calculating the authentication code by calculating the secret code by the authentication code calculation method
S600: receiving an authentication code calculated by the user from the financial transaction terminal
S700: comparing the input verification code with the calculated verification code to process user authentication for a financial transaction
S800: step of receiving a method code from a user
S900: comparing the authentication code calculation method of the user with the authentication code calculation method corresponding to the input method code

Claims (8)

A financial transaction server providing a financial transaction and a user authentication service for the financial transaction,
(1) setting a method for calculating an authentication code of a user;
(2) receiving an authentication request signal for a financial transaction from the financial transaction terminal;
(3) transmitting a secret code for user authentication to the mobile terminal of the user;
(4) calculating the authentication code by calculating the transmitted secret code by the authentication code calculation method set in step (1);
(5) receiving an authentication code calculated by the user from the financial transaction terminal; And
(6) comparing the authentication code input in the step (5) with the authentication code calculated in the step (4), and processing a user authentication for the financial transaction. A method of providing a user authentication service for a financial transaction that authenticates by calculation.
The method of claim 1, wherein the financial transaction,
For financial transactions authenticating by direct calculation of a user, characterized in that the transaction using an automated teller machine (ATM), Internet banking using the Internet, telebanking using a telephone or mobile banking using a mobile terminal. How to provide a user authentication service.
2. The method according to claim 1, wherein in the step (1)
A method for providing a user authentication service for a financial transaction authenticating by direct calculation by a user, characterized by setting a calculation method and a constant used in the calculation.
The method of claim 3, wherein the authentication code calculation method,
An increment calculation method for adding the constant to each place of the secret code, a decrease calculation method for subtracting the constant from each place of the secret code, an addition calculation method for adding the constant to the secret code, a subtraction calculation method for subtracting the constant from the secret code, Or a multiplication method of multiplying the constant by the secret code.
The method of claim 1, wherein before step (5),
And receiving a method code assigned to the user's authentication code calculation method from the user, wherein the user authentication service is authenticated by the user's direct calculation.
The method according to claim 5, wherein between performing the step of receiving the method code and performing the step (5),
Comprising a step of comparing the authentication code calculation method of the user set in the step (1) and the authentication code calculation method corresponding to the received method code, characterized in that the financial authentication by direct calculation of the user How to provide a user authentication service for a transaction.
The method of claim 1, wherein before step (3),
Receiving a customer number assigned to the user from the financial transaction terminal;
The customer number is a number that is assigned to each of the plurality of users when a plurality of users are set for the account that is the target of the financial transaction, user authentication for financial transactions to authenticate by direct calculation of the user How we deliver the service.
2. The method according to claim 1, wherein in the step (3)
A method of providing a user authentication service for a financial transaction authenticating by direct calculation of a user, characterized in that the secret code is transmitted using a short message service (SMS), a multi message service (MMS) or a voice message.
KR1020110122575A 2011-11-22 2011-11-22 Service providing method for authenticating user by directly calculation of user for financial transactions KR20130056798A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020110122575A KR20130056798A (en) 2011-11-22 2011-11-22 Service providing method for authenticating user by directly calculation of user for financial transactions

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020110122575A KR20130056798A (en) 2011-11-22 2011-11-22 Service providing method for authenticating user by directly calculation of user for financial transactions

Publications (1)

Publication Number Publication Date
KR20130056798A true KR20130056798A (en) 2013-05-30

Family

ID=48664740

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020110122575A KR20130056798A (en) 2011-11-22 2011-11-22 Service providing method for authenticating user by directly calculation of user for financial transactions

Country Status (1)

Country Link
KR (1) KR20130056798A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20190009462A (en) * 2017-07-18 2019-01-29 갤럭시아커뮤니케이션즈 주식회사 Method and system for withdrawal transaction based on bitcoin using atm

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20190009462A (en) * 2017-07-18 2019-01-29 갤럭시아커뮤니케이션즈 주식회사 Method and system for withdrawal transaction based on bitcoin using atm

Similar Documents

Publication Publication Date Title
US11829988B2 (en) Systems and methods for transacting at an ATM using a mobile device
US11227275B2 (en) Person-to-person electronic payment processing
US9864987B2 (en) Account provisioning authentication
US8843757B2 (en) One time PIN generation
US8930273B2 (en) System and method for generating a dynamic card value
US10671988B2 (en) Methods and systems for processing an electronic payment
US20110238573A1 (en) Cardless atm transaction method and system
US20100051686A1 (en) System and method for authenticating a transaction using a one-time pass code (OTPK)
US20210272097A1 (en) Systems and methods for contactless card-based credentials
KR20210039920A (en) Mobile communication terminal for personal authentification, personal authentification system and personal authentification method using the mobile communication terminal
US20180204214A1 (en) Systems and methods for transaction authentication using dynamic wireless beacon devices
Mtaho Improving mobile money security with two-factor authentication
US11604870B2 (en) Systems and methods for authentication code entry using mobile electronic devices
WO2015029064A2 (en) A computer implemented system and method for facilitating cardless transactions
US20160021102A1 (en) Method and device for authenticating persons
KR20130056798A (en) Service providing method for authenticating user by directly calculation of user for financial transactions
KR20150084648A (en) Financial transactions with a varying pin
EP3332370A1 (en) Systems and methods for interaction authentication using dynamic wireless beacon devices
KR101158895B1 (en) Service providing method for authenticating user by directly calculation of user for credit card transaction
KR102165299B1 (en) With the use of the certificatory's handphone, The smart certification system for financial transaction check
US20240370840A1 (en) Method and system for enabling bank accounts owners to allocate money to recipients for making cardless withdrawals from automated teller machines ATM
WO2008084435A1 (en) Security arrangement
TW202121302A (en) Cross country cash withdraw system
GB2463299A (en) Authenticating a transaction using a one-time pass code generated on a mobile device
KR20100008055A (en) Method of secure finance transaction based on automatic teller machine using mobile device

Legal Events

Date Code Title Description
A201 Request for examination
A302 Request for accelerated examination
E902 Notification of reason for refusal
E601 Decision to refuse application
J201 Request for trial against refusal decision
J301 Trial decision

Free format text: TRIAL DECISION FOR APPEAL AGAINST DECISION TO DECLINE REFUSAL REQUESTED 20120802

Effective date: 20130823