KR20110001475A - Method and system for the right of using service via network and portable memory unit therefor - Google Patents
Method and system for the right of using service via network and portable memory unit therefor Download PDFInfo
- Publication number
- KR20110001475A KR20110001475A KR1020090059023A KR20090059023A KR20110001475A KR 20110001475 A KR20110001475 A KR 20110001475A KR 1020090059023 A KR1020090059023 A KR 1020090059023A KR 20090059023 A KR20090059023 A KR 20090059023A KR 20110001475 A KR20110001475 A KR 20110001475A
- Authority
- KR
- South Korea
- Prior art keywords
- user
- service
- information
- portable storage
- storage device
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/12—Payment architectures specially adapted for electronic shopping systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
- G06Q20/363—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes with the personal data of a user
Landscapes
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Engineering & Computer Science (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Finance (AREA)
- Computer Networks & Wireless Communication (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The present invention relates to a method and system for managing service rights on a network and a portable storage device therefor.
The present invention provides a service to a user by using a service right management system comprising a portable storage device, a service right management server, a user terminal and a service server, and a payment server, and uses the service to the user by using user information. By empowering users, users can store and carry user information in highly secure portable storage devices, and connect the portable storage devices to various user terminals connected to wired and wireless Internet to perform user authentication anytime, anywhere, and then perform services. It is convenient to use.
Description
The present invention relates to a method and system for managing service rights on a network and a portable storage device therefor. More particularly, the present invention relates to a method and system for performing authentication for an online service using user information, granting and managing a right to use the online service, and a portable storage device therefor.
Recently, as various wired and wireless internets are activated, user terminals supporting them are increasing. In particular, high-quality mass data communication is being activated as navigation, IPTV, and smart phones are activated, as well as existing PCs, mobile phones, and PDAs. Users are using services using various channels and user terminals, and accordingly, service / content management and provision capabilities of wired / wireless telecommunications companies and manufacturers of user terminals that provide services and contents become increasingly important.
In order to use a specific service and content in various channels and user terminals, the user's authority management is particularly important, and the authority management of a service grants the use of the service access itself, and confirms the use right after confirming the payment of a specific paid service. And the like. In more detail, after authenticating a user using an authentication medium and an authentication means, a service access right or a service use right is granted. However, as the use of the Internet online service increases, the problem of using the online service in a malicious way by stealing another user's name and authenticating the user is emerging. In particular, minors who are under 14 years old are illegally joining game sites or other adult sites through poor user authentication procedures, and social problems are caused by joining online portal sites in the names of others. Severe damages are often incurred, such as corrupting or conducting financial settlements in the names of others.
In order to solve this problem, currently provided online services provide services after authenticating users in various ways such as user authentication using a public certificate or user authentication using a mobile phone. However, such a conventional user authentication method requires a variety of authentication information and authentication media to identify a user, and thus has low convenience and portability. Even if a user purchases the same content for a fee on a PC, a mobile phone or IPTV is required. If the user terminal is changed due to such a problem, there is a problem that it is difficult to grant the use authority of the service by checking and authenticating the user's authority.
In order to solve the above-mentioned problems, the present invention has a main object to provide a service for authenticating a user using user information, thereby granting and managing a service access and use authority on a network.
In order to achieve the above object, the present invention provides a portable storage device for storing user information of a user; A service authority management server for storing and managing user authentication information and payment information received from a payment server in association; A user terminal that receives and transmits user information from the portable storage device when the user information is requested; A payment server that processes payment for the cost of using and accessing the service and stores and manages payment information according to the processed result; And requesting user information from the user terminal to receive user information from the user terminal, and transmitting user information to the service rights management server, requesting user authentication information and payment information for the user, and receiving the service information from the service rights management server. And a service server for authenticating a user by using the user information received from the service authority and the user authentication information and payment information received from the service authority management server, and then granting access and use rights to the service. to provide.
In addition, according to another object of the present invention, a communication device for performing communication with an external device; And a flash memory including a program area storing an electronic wallet program for authenticating a user and a data area storing various data including user information of the user, an encryption processor for encrypting user information, and data for managing various data. It provides a portable storage device for a user authentication service comprising a processor, a communication processor for performing communication with an external device using a communication device, and a smart card including a controller for controlling overall operations.
In addition, according to another object of the present invention, the user information receiving step of receiving a user information stored in the portable storage device from the user terminal by requesting the user information from the user terminal to the user terminal connected to the portable storage device for storing the user information ; Receiving, by the service server, requesting and receiving user authentication information and payment information for the user identified by the user information to the service rights management server; And the service server authenticates the user using the user information received from the user terminal and the user authentication information and payment information received from the service authority management server, and provides a service requiring user authentication using the user authentication result and payment information. It provides a service rights management method comprising the step of providing a service to determine whether or not.
In addition, according to another object of the present invention, the user information receiving step of receiving a user information stored in the portable storage device from the user terminal by requesting the user information from the user terminal to the user terminal connected to the portable storage device for storing the user information ; A user authentication request step of requesting authentication of the user by the service server transferring user information transmitted from the user terminal to the service rights management server; A service provision determination step of determining, by the service right management server, user authentication and service provision by using user information transmitted from a user terminal, previously stored user authentication information, and payment information, and transmitting a service provision result to a service server; And a service providing step of providing, by the service server, a service requiring user authentication according to a result of whether the service is provided.
As described above, according to the present invention, a user may store and carry user information in a portable security device having excellent security, and provide a service after performing user authentication anytime and anywhere regardless of the type of communication network and user terminal. I can receive it.
Hereinafter, some embodiments of the present invention will be described in detail through exemplary drawings. In adding reference numerals to the components of each drawing, it should be noted that the same reference numerals are assigned to the same components as much as possible even though they are shown in different drawings. In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear.
In addition, in describing the component of this invention, terms, such as 1st, 2nd, A, B, (a), (b), can be used. These terms are only for distinguishing the components from other components, and the nature, order or order of the components are not limited by the terms. If a component is described as being "connected", "coupled" or "connected" to another component, that component may be directly connected or connected to that other component, but between components It will be understood that may be "connected", "coupled" or "connected".
In the embodiment of the present invention, the user information refers to information for identifying a user who uses a portable storage device, a user terminal, or the like for using a service requiring user authentication. For example, a user's name, social security number, and address. , Personal information such as occupation, gender, credit rating, personal information, personal credit information, and the like. A service requiring user authentication refers to a service provided to a user only when authentication or verification of a user who uses the service for the protection of personal information or for the public benefit is performed. For example, a user who registers or logs in at a portal site, etc. It may be a service such as a portal service provided only afterwards or a public service or financial transaction service provided only after a member registration, login, or user verification is completed at a site operated by a public institution or a financial institution. In addition, a service requiring user authentication refers to a service that is authorized to access and use a service depending on whether the service is charged. For example, the service is only available after the payment of the HSDPA service or the payment of the service itself. Paid content available.
1 is a block diagram schematically illustrating a service right management system according to an embodiment of the present invention.
The service right
The
In addition, the
In addition, the
In addition, when the
The
In addition, when the
The
The
In addition, the
In addition, the
The service
The
2 is a block diagram schematically illustrating a portable storage device according to an embodiment of the present invention.
The
Hereinafter, although the flash memory 220 is shown and described as being embedded in the smart card, the flash memory 220 is not necessarily embedded in the smart card. In this case, the
Here, the smart card refers to a device that stores data or information and transmits the stored data or information to an external device through communication, or receives and stores data or information from an external device, and is not necessarily limited to a smart card. It may be implemented as a memory or a storage medium having a function.
In addition, the electronic wallet program 240 recognizes a computing environment of an external device such as the
Here, when the user
In addition, the electronic wallet program 240 is connected to a
In addition, the electronic wallet program 240 may use a control object for moving screens, icons, and menus for the user interface of the
To this end, the electronic wallet program 240 is the electronic
In the data area 260 of the flash memory unit 220, the
Such a
In addition, as described above, the flash memory 220 includes a program area 230 and a data area 260. When the
Here, the electronic wallet identification number is an identification number for authenticating the
The
3 is a flowchart illustrating a service authority management method according to an embodiment of the present invention.
The user visits a public institution, a financial institution, an electronic wallet issuing agency, or the like, requests for issuance of a portable storage device (S302), and after user authentication (S304), a user is issued a portable storage device in which user information is stored (S306). In the above method of user authentication, face-to-face authentication, ID card submission or biometric authentication, and the like, since such a method is widely known, a detailed description thereof will be omitted. The unique number and user information of the issued portable storage device are transmitted to the service right management server, so that the service
Through this process, user information may be stored in the
To this end, when the user connects the
The
Meanwhile, in steps S312 and S314, when the
The
Meanwhile, although the
In addition, when the
In addition, in operation S316, the
The
Thereafter, the
In addition, the
In addition, in operation S318, when the
1 and 3, when the
That is, when the
As described above, according to the service authority management system and method according to an embodiment of the present invention, since the user can easily carry the user information for user authentication to the
While the present invention has been described in connection with what is presently considered to be the most practical and preferred embodiment, it is to be understood that the invention is not limited to the disclosed embodiments. In other words, within the scope of the present invention, all of the components may be selectively operated in combination with one or more. In addition, although all of the components may be implemented in one independent hardware, each or all of the components may be selectively combined to perform some or all functions combined in one or a plurality of hardware. It may be implemented as a computer program having a. Codes and code segments constituting the computer program may be easily inferred by those skilled in the art. Such a computer program may be stored in a computer readable storage medium and read and executed by a computer, thereby implementing embodiments of the present invention. The storage medium of the computer program may include a magnetic recording medium, an optical recording medium, a carrier wave medium, and the like.
In addition, the terms "comprise", "comprise" or "having" described above mean that the corresponding component may be included unless otherwise stated, and thus, excludes other components. It should be construed that it may further include other components. All terms, including technical and scientific terms, have the same meaning as commonly understood by one of ordinary skill in the art unless otherwise defined. Terms used generally, such as terms defined in a dictionary, should be interpreted to coincide with the contextual meaning of the related art, and shall not be interpreted in an ideal or excessively formal sense unless explicitly defined in the present invention.
The foregoing description is merely illustrative of the technical idea of the present invention, and various changes and modifications may be made by those skilled in the art without departing from the essential characteristics of the present invention. Therefore, the embodiments disclosed in the present invention are not intended to limit the technical idea of the present invention but to describe the present invention, and the scope of the technical idea of the present invention is not limited by these embodiments. The protection scope of the present invention should be interpreted by the following claims, and all technical ideas within the equivalent scope should be interpreted as being included in the scope of the present invention.
1 is a block diagram schematically illustrating a service right management system according to an embodiment of the present invention;
2 is a block diagram schematically illustrating a portable storage device according to an embodiment of the present invention;
3 is a flowchart illustrating a service authority management method according to an embodiment of the present invention.
<Description of Symbols for Main Parts of Drawings>
110: portable storage device 120: user terminal
130: service server 140: service rights management system
150: payment server
Claims (11)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020090059023A KR20110001475A (en) | 2009-06-30 | 2009-06-30 | Method and system for the right of using service via network and portable memory unit therefor |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020090059023A KR20110001475A (en) | 2009-06-30 | 2009-06-30 | Method and system for the right of using service via network and portable memory unit therefor |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20110001475A true KR20110001475A (en) | 2011-01-06 |
Family
ID=43610037
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020090059023A KR20110001475A (en) | 2009-06-30 | 2009-06-30 | Method and system for the right of using service via network and portable memory unit therefor |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20110001475A (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20160014739A (en) * | 2016-01-19 | 2016-02-11 | 전대연 | Indoor and outdoor positioning-based smartcard Certification App System |
WO2017069413A1 (en) * | 2015-10-19 | 2017-04-27 | ㈜와이스퀘어 | Security key management device and method therefor |
KR102323680B1 (en) * | 2021-05-25 | 2021-11-10 | 주식회사쿠콘 | Platform system and method for collecting information using integrated authentication and computer program for the same |
-
2009
- 2009-06-30 KR KR1020090059023A patent/KR20110001475A/en not_active Application Discontinuation
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2017069413A1 (en) * | 2015-10-19 | 2017-04-27 | ㈜와이스퀘어 | Security key management device and method therefor |
KR20160014739A (en) * | 2016-01-19 | 2016-02-11 | 전대연 | Indoor and outdoor positioning-based smartcard Certification App System |
KR102323680B1 (en) * | 2021-05-25 | 2021-11-10 | 주식회사쿠콘 | Platform system and method for collecting information using integrated authentication and computer program for the same |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10929832B2 (en) | Method and system for electronic wallet access | |
US9495524B2 (en) | Secure user authentication using a master secure element | |
US20110185181A1 (en) | Network authentication method and device for implementing the same | |
KR20140095745A (en) | Supporting Method For Payment and System thereof | |
US9667626B2 (en) | Network authentication method and device for implementing the same | |
CN107005619B (en) | Method, corresponding device and system for registering mobile point of sale (POS) | |
EP2690840B1 (en) | Internet based security information interaction apparatus and method | |
EP2690589A1 (en) | Method and system for security information interaction based on internet | |
KR20110002968A (en) | Method and system for providing financial trading service by using biometrics and portable memory unit therefor | |
KR102071438B1 (en) | Payment authentication method and apparatus of mobile terminal and mobile terminal | |
KR20170133307A (en) | Online financial transactions, identity authentication system and method using real cards | |
KR20060102456A (en) | System and method for authenticating user, server for authenticating user and recording medium | |
KR100869157B1 (en) | Apparatus, Method and Computer Program Recorded Medium for Providing Electronic Wallet Service | |
KR20080112674A (en) | Apparatus, system, method and computer program recorded medium for authenticating internet service server and user by using portable storage with security function | |
KR20070065863A (en) | Apparatus, system, method and computer program recorded medium for providing electronic waller service by using usim (universal subscriber identity module) card | |
KR20110002967A (en) | Method and system for providing authentication service by using biometrics and portable memory unit therefor | |
US20150007300A1 (en) | Method, apparatus, and system for using ic card as authentication medium | |
US20190095912A1 (en) | Pre-approval financial transaction providing system and method therefor | |
KR20110001475A (en) | Method and system for the right of using service via network and portable memory unit therefor | |
KR20110029032A (en) | Method for processing issue public certificate of attestation, terminal and recording medium | |
KR101103189B1 (en) | System and Method for Issueing Public Certificate of Attestation using USIM Information and Recording Medium | |
JP5433430B2 (en) | User registration system in internet banking | |
KR20090104199A (en) | System and Method for Processing Transfer Money using Financial Automatic Teller Machine and Program Recording Medium | |
KR20150114358A (en) | User authentication system by contacting card and operating method thereof | |
KR20110002956A (en) | Method and system for payment of service via network and portable memory unit therefor |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WITN | Withdrawal due to no request for examination |