AU2011265570A1 - Authentication and payment system and method using mobile communication terminal - Google Patents
Authentication and payment system and method using mobile communication terminal Download PDFInfo
- Publication number
- AU2011265570A1 AU2011265570A1 AU2011265570A AU2011265570A AU2011265570A1 AU 2011265570 A1 AU2011265570 A1 AU 2011265570A1 AU 2011265570 A AU2011265570 A AU 2011265570A AU 2011265570 A AU2011265570 A AU 2011265570A AU 2011265570 A1 AU2011265570 A1 AU 2011265570A1
- Authority
- AU
- Australia
- Prior art keywords
- payment
- server
- information
- purchaser
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
AUTHENTICATION AND PAYMENT SYSTEM AND METHOD USING MOBILE COMMUNICATION TERMINAL Abstract Disclosed is a payment server comprising: a callback URL message transmission unit for generating a callback URL message, including URL information to allow a purchaser's mobile communication terminal to access a payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal, if the payment server 10 receives a mobile communication terminal number of the purchaser from a merchant terminal; a payment information confirmation unit for confirming the purchase details, including a payment amount, and the payment information in cooperation with the purchaser's mobile communication terminal accessing the payment server through a callback function of the callback URL message; and an issuer server access URL 15 transmission unit for transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal having confirmed the payment information, using an issuer server access URL information acquired by an issuer server access URL acquisition unit, thus redirecting the connection of the 20 purchaser's mobile communication terminal to the issuer server; and an authentication result reply unit for transmitting authentication results together with the payment information received from the merchant terminal to the acquirer server and allowing payment approval to be performed by the acquirer server, if the authentication results are received from the issuer server when authentication is processed through the confirmation 25 of the payment authentication information about the corresponding payment means between the purchaser's mobile communication terminal, connected to the issuer server, and the issuer server.
Description
S&F Ref: 798963D1 AUSTRALIA PATENTS ACT 1990 COMPLETE SPECIFICATION FOR A STANDARD PATENT Name and Address SK Telecom Co., Ltd., of 11, Euljiro, 2-ga, Jung-gu, of Applicant: Seoul, 100-999, Republic of Korea Actual Inventor(s): Joo-Mun Lee Jun-Won Choi Whan-Chul Kim Se-Hyun Oh Myung-Sung Lee Address for Service: Spruson & Ferguson St Martins Tower Level 35 31 Market Street Sydney NSW 2000 (CCN 3710000177) Invention Title: Authentication and payment system and method using mobile communication terminal The following statement is a full description of this invention, including the best method of performing it known to me/us: 5845c(5861089_1) AUTHENTICATION AND PAYMENT SYSTEM AND METHOD USING MOBILE COMMUNICATION TERMINAL RELATED APPLICATIONS 5 The specification of Australian Patent Application No. 2005275633 is hereby incorporated by reference in its entirety. BACKGROUND OF THE INVENTION Field of the Invention 10 The present invention relates , in general, to an authentication and payment system and method using a mobile communication terminal and, more particularly, to an authentication and payment system and method using a mobile communication terminal, which separately processes authentication and approval using the terminal or a merchant (a mobile communication terminal, wired terminal or terminal connected via a leased is line) and the mobile communication terminal of a purchaser without leaking payment information about the purchaser, in direct sales transactions between a merchant and a purchaser offline and mail order sales transactions using multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs. 20 Description of the Related Art The development of computers and information and communication technology has been rapidly progressing to an extent that no one could have predicted. Therefore, no one can predict the time and place when and where new technology will emerge. In particular, developments in virtual space have been incredible. Commercial transactions 25 are performed in Internet space as well as education, conferences, exhibitions and medical examinations. Therefore, the most advanced information and communication technology is rapidly influencing the everyday life of human beings to the extent that people now live in an information oriented society, not in an industrial society. Recently, countries and enterprises all over the world have concentrated on 30 electronic AH21(58603761):SXY commercee in Internet and cyber shopping malls providing electronic commerce. Cyber shopping nalls are advantageous in that the provision of commodity information, payment processing and :ven delivery, in the case of digital media products, can be processed together without temporal or patial restrictions or distance limitations. Therefore, cyber shopping malls provide advantages :uch as convenience and time savings to consumers, and provide advantages such as cost reduction attributable to the simplification of distribution stages and the publicity of enterprises at low cost to he enterprises, thus allowing consumers and enterprises to make use of cyber shopping malls. As electronic commerce continuously progresses in this way, payment methods have apidly broadened. Payment on the Intemet has mostly been performed using credit cards and on ine deposits. However, recently, new payment means using mobile phones or a wired/wireless kudio Response System (ARS) have emerged, and have rapidly become popularized. In particular, as a general trend towards paid content emerges, micro payment services greatly increase as a means for making payments for content below 1,000 Won. Among the above nicro payment services, a payment service using wired/wireless telephones is widely used, !specially by the younger generation, due to the advantage that payment is easily made and :onvenient after the purchase of a commodity through a small transaction. Therefore, recently, the ise of payment services using wired/wireless telephones has gradually increased, while the use of payment through on-line deposits has gradually decreased. Currently, various systems and methods are applied to an electronic payment system using he Internet according to various authentication and approval procedures. Among the systems and nethods, a Secure Socket Layer (SSL)-based electronic payment system is a scheme of encrypting payment information and payment authentication information about a user and transferring the ncmrypted information to a shopping mall, an issuer, etc. using the SSL. The SSL-based electronic payment system can be developed and applied relatively easily, but it is problematic in that security is low and a method of authenticating a card holder requires separate payment authentication -2 information. Further, Secure Electronic Transaction (SET), published in 1997 to strengthen low security, performs double encryption on the basis of a certificate of authentication (including a user's personal certificate) so as to prevent the leakage of payment information, thus increasing security and guaranteeing stability. However, SET is problematic in that the system is too complicated to implement so that SET is not widely used. Recently, a method of separating a user authentication process for an issuer and a payment authorization process to allow responsibility for user authentication to be assumed by an issuer and to allow the issuer to directly participate in a payment process has been used. For this method, authentication payment services, such as Verified by VISA of VISA, SecureCode of MasterCard and J/Secure of JCB that make use of a 3-D Secure protocol have recently been provided to credi card member companies. A separate certificate-based electronic payment service is domestically provided along with the authentication payment services to meet the requirements of legal systems. In the meantime, in offline payment a chip-based credit card (a smart card-based credi card employing Europay, MasterCard, Visa (EMV). standard) that has improved security and stability to prevent the forgery and illegal use of typical magnetic credit cards has been introduced Such a technical requirement and variations thereof were the solution of VISA, MasterCard anc member companies to prevent the rapidly increasing illegal use of card payment infornatior through reproduction and forgery. However, the introduction of new user authentication technology on/offline has still no been applied to some service business fields due to the characteristics of typical transactions. Those service business fields include direct sales and door-to-door sales for perfonninj payment for transaction and contracts between a purchaser and a merchant In the process o purchasing door-to-door sales, allowing a purchaser to purchase a commodity from a merchan face-to-face, and the process of purchasing mail order sales using telephone calls, the purchase 3 verbally communicates payment information, such as credit card information, to the merchant, and he merchant requests payment approval using the received payment information of the purchaser without authenticating the purchaser, thus completing a payment process. A transaction method of allowing a service provider to make a special contract with a :redit card company as a member store, to draw up a sales slip using only a credit card number, a :redit card validity period, or part of a resident registration number by hand without a separate mthentication process, and to bill a credit card company for the credit sale price without obtaining he signature of a consumer on the sales slip, according to the method of conducting a transaction in he case of telemarketing, includes mail order sales, direct door-to-door sales, etc. This transaction is designated as a hand-written transaction, and member stores using the hand-written transaction :an be classified as 'hand-written transaction member stores'. A payment process using hand-written sales slips in direct door-to-door sales and mail Drder sales is problematic in that a separate authentication process for payment information about a purchaser is not executed, and, in addition, important payment information about the purchaser is inevitably leaked to the merchant during a payment process. In the meantime, mail order sales or direct sales fields using the hand-written transaction are problematic in that they cannot include a separate authentication process due to the method of the transactions, and always include the risk of leaking payment information, thus causing direct financial loss to purchasers. Further, hand-written transaction member stores are additionally problematic in that they must deposit in a financial institution a certain amount within a credit limit for security proportional to the risk of hand-written transactions, so that the initial investment burden is increased, it is difficult to ensure the stability of business, and a financial institution levies additional separate financial management charges to maintain and manage hand-written transaction member stores the reliability of which are not yet ensured. 4 Accordingly, a need exists to provide an authentication and payment system and method using a mobile communication terminal, which separately processes authentication and approval using the terminal of a merchant (a mobile communication terminal, wired terminal or terminal connected via a leased line) and the mobile 5 communication terminal of a purchaser without leaking payment information about the purchaser, in direct sales transactions between a merchant and a purchaser offline and mail order sales transactions using multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, and which provides a safe and convenient payment process in an offline member store having a disadvantage in that it is impossible 10 to install a payment terminal, or in that the installation of the terminal is expected to be economically inefficient due to local and transactional characteristics, or a small-scale member store such as a vending machine. SUMMARY 15 An aspect of the present invention provides a payment server comprising: a callback URL message transmission unit for generating a callback URL message, including URL information to allow a purchaser's mobile communication terminal to access a payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal, if the payment server receives a mobile communication 20 terminal number of the purchaser from a merchant terminal; a payment information confirmation unit for confirming the purchase details, including a payment amount, and the payment information in cooperation with the purchaser's mobile communication terminal accessing the payment server through a callback function of the callback URL message; and an issuer server access URL transmission unit for transmitting a redirection 25 message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal having confirmed the payment information, using an issuer server access URL information acquired by an issuer server access URL acquisition unit, thus redirecting the connection of the purchaser's mobile communication 30 terminal to the issuer server; and an authentication result reply unit for transmitting authentication results together with the payment information received from the merchant terminal to the acquirer server and allowing payment approval to be performed by the acquirer server, if the authentication results are received from the issuer server when authentication is processed through the confirmation of the payment authentication 35 information about the corresponding payment means between the purchaser's mobile communication terminal, connected to the issuer server, and the issuer server.
Another aspect of the present invention provides an authentication and payment system using a mobile communication terminal and including an issuer server for issuing payment means, an issuer information management intermediate server for managing URL information required to access domestic and foreign issuer servers, an acquirer 5 server for performing payment approval and performing acquisition and settlement for member stores, and a payment server for intermediating between the issuer server and the acquirer server to provide an authentication and payment service in response to a request from a terminal of the merchant, wherein: the payment server is operated so that, if it receives payment information including a mobile communication terminal number of the 10 purchaser and transaction purchase information, other than payment authentication information about the purchaser, the payment server transmits a callback URL message, including URL information required to access the payment server, to the purchaser's mobile communication terminal, acquires URL information required to access the issuer server of corresponding payment means from the issuer information management 15 intermediate server, transmits the issuer server access URL information to the purchaser's mobile communication terminal, connected to the payment server, through a callback function of the callback URL message, performs authentication between the purchaser's mobile communication terminal and the issuer server, and transmits authentication results together with the payment information, received from the merchant terminal, to the 20 acquirer server to allow payment approval to be performed by the acquirer server if the authentication results are received from the issuer server, the issuer information management intermediate server transmits URL information required to access the issuer server of the payment means to the payment server if the payment means information is received from the payment server, the issuer server is operated so that, if the purchaser's 25 mobile communication terminal accesses the issuer server using the issuer server access URL, the issuer server requests the purchaser's mobile communication terminal to input and transmit payment authentication information about the payment means, compares the received payment authentication information with payment authentication information that was previously registered and stored at the time of issuing the payment means, and 30 then authenticates a corresponding transaction, and the acquirer server processes approval using authentication results if the authentication results are received from the payment server, wherein the payment server comprises: a callback URL message transmission unit for generating the callback URL message, including URL information to allow the purchaser's mobile communication terminal to access the payment server, and 35 transmitting the callback URL message to the purchaser's mobile communication terminal, if the purchaser's mobile communication terminal number is received from the merchant terminal; a payment information confirmation unit for confirming purchase details, including a payment amount, and the payment information in cooperation with the 5 purchaser's mobile communication terminal if the purchaser's mobile communication terminal accesses the payment server through the callback function of the callback URL message; and an issuer server access URL acquisition unit for transmitting payment means information to the issuer information management intermediate server if the payment means information is received from either the merchant terminal or the 10 purchaser's mobile communication terminal, thus acquiring URL information required to access the issuer server of the corresponding payment means; an issuer server access URL transmission unit for transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal having confirmed the 15 payment information, using the issuer server access URL information acquired by the issuer server access URL acquisition unit, thus redirecting the connection of the purchaser's mobile communication terminal to the issuer server; and an authentication result reply unit for transmitting authentication results together with the payment information received from the merchant terminal to the acquirer server if the 20 authentication results are received from the issuer server when authentication is processed through the conformation of the payment authentication information about the corresponding payment means between the purchaser's mobile communication terminal, connected to the issuer server, and the issuer server. 25 Another aspect of the present invention provides an authentication and payment system including an issuer server that issues payment means in response to a request from a terminal of the merchant, an issuer information management intermediate server that manages URL information required to access domestic and foreign issuer servers, an acquirer server that performs payment approval and performs acquisition and settlement 30 for member stores, and a payment server for intermediating between the issuer server, the issuer information management intermediate server and the acquirer server, thus providing an authentication and payment service, wherein: the payment server comprises, a callback URL message transmission unit for generating a callback URL message, including URL information to allow the purchaser's mobile communication terminal to 35 access the payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal if the payment server receives payment information including the purchaser's mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser, from the merchant terminal; a payment information confirmation unit for confirming 5 purchase details of the purchaser, including a payment amount, and payment information in cooperation with the purchaser's mobile communication terminal if the purchaser's mobile communication terminal accesses the payment server through the callback function of the callback URL message; an issuer server access URL acquisition unit for transmitting payment means information to the issuer information management 10 intermediate server if the payment means information is received from either the merchant terminal or the purchaser's mobile communication terminal, thus acquiring URL information required to access the issuer server of the payment means; an issuer server access URL transmission unit for transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile communication terminal 15 from the payment server to the issuer server, to the purchaser's mobile communication terminal having confirmed the payment information, using the issuer server access URL information acquired by the issuer server access URL acquisition unit, thus redirecting the connection of the purchaser's mobile communication terminal to the issuer server and allowing authentication to be performed by the issuer server; and an authentication result 20 reply unit for transmitting authentication results together with the payment information received from the merchant terminal to the acquirer server and allowing payment approval to be performed by the acquirer server, if the authentication results are received from the issuer server when authentication is processed through the confirmation of the payment authentication information about the corresponding payment means between the 25 purchaser's mobile communication terminal, connected to the issuer server, and the issuer server. Another aspect of the present invention provides an authentication and payment method performed by a payment server, the payment server intermediating between an 30 issuer server that issues payment means and an acquirer server that performs payment approval, the method comprising: a callback URL message transmission step of transmitting a callback URL message to a purchaser's mobile communication terminal, if payment information is received from the merchant terminal and payment is requested, wherein the callback URL message includes URL information required to access the 35 payment server and the payment information includes a mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser; a purchase information confirmation and payment means information transmission step of confirming the payment information that includes the purchase details of the purchaser, including a payment amount, and the payment 5 means information and is received from the merchant terminal, in cooperation with the purchaser's mobile communication terminal connected to the payment server through the callback function of the callback URL message; a redirection request step of the payment server transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer 10 server, to the purchaser's mobile communication terminal using the issuer server access URL information, acquired by the issuer information management intermediate server, if the payment information has been confirmed; and an authentication result return step of the payment server transmitting authentication results, received from the issuer server, and the payment information, received from the merchant terminal, to the acquirer server 15 so as to allow the acquirer server to process payment approval for the payment means using the authentication results from the issuer server, if the issuer server compares the payment authentication information received from the purchaser's mobile communication terminal with previously registered payment authentication information to authenticate a corresponding transaction and transmits results indicating whether authentication 20 succeeded to the payment server. Another aspect of the present invention provides an authentication and payment method performed by an authentication and payment system, the system including an issuer server that issues payment means, an issuer information management intermediate 25 server that manages URL information required to access domestic and foreign issuer servers, an acquirer server that performs payment approval, and a payment server for intermediating between the issuer server, the issuer information management intermediate server and the acquirer server, the method comprising: a callback URL message transmission step of generating a callback URL message, including URL information 30 required to access the payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal, if payment information including a mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser, is received and payment is requested; a purchase information confirmation and payment means information 35 transmission step of confirming purchase details of the purchaser, including a payment amount, and payment information in cooperation witn tne purcnaser s miuore mk)L1IuIur.muso ~ .U I " connected to the payment server through a callback function of the callback URL message; a redirection request step of the payment server transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile 5 communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal using the issuer server access URL information, acquired by the issuer information management intermediate server, if the payment information has been confirmed; and an authentication result return step of the payment server transmitting authentication results, received from the issuer server, and the payment 1o information, received from the merchant terminal, to the acquirer server so as to allow the acquirer server to process payment approval for the payment means using the authentication results from the issuer server, if the issuer server transmits results indicating whether authentication succeeded to the payment server according as authentication process is performed through confirming payment approval information for is the payment means between the issuer server and the purchaser's mobile communication terminal accessing to the issuer server. OVERVIEW OF DISCLOSURE An authentication and payment system is disclosed for performing direct sales 20 transactions offline between a merchant and a purchaser and mail order sales transactions using multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, using a purchaser's mobile communication terminal capable of receiving messages and performing wireless Internet connection, the authentication and payment system including an issuer server for issuing, managing and operating payment means 25 such as a credit card, electronic money, mobile phone micro payment means or a direct debit from a bank account; an acquirer server for performing payment approval and performing acquisition and settlement for member stores; and a payment server for intermediating between the issuer server and the acquirer server to provide an authentication and payment service in response to a request from the 5e :erminal ofthe merchant. The payment server is operated so that, if it receives payment information including a mobile communicationn terminal number of the purchaser and transaction purchase information, other than payment authentication information about the purchaser, the payment server performs a procedure, in cooperation with the issuer server, of confirming whether the purchaser has subscribed to an mthentication service, transmits a callback URL message (Short message Service: SMS or Multimedia Messaging Service: MMS message), including URL information required to access the payment server, to the purchaser's mobile communication terminal. The payment server confirms purchase details, including a payment amount, and the payment information of the purchaser if the purchaser's mobile communication terminal accesses the payment server through a callback function of the callback URL message, receives payment authentication information about the purchaser, such as a password, Personal Identification Number (PIN), or chip authentication cryptogram, and transmits payment information, including the received payment authentication information, purchase information and payment means information, to the issuer server, and requests payment authentication, The payment server transmits authentication results received from the issuer server and the payment information received from the merchant terminal to the acquirer server to allow the acquirer server to approve payment if the issuer server authenticates a corresponding transaction and transmits the authentication results indicating whether authentication succeeded. The issuer server is operated so that it transnits a response when the payment server requests the issuer server to confirm whether the purchaser has subscribed to the authentication service, and the issuer server compares the received payment authentication information with payment authentication information that was previously registered and stored at the time of issuing payment means, to process authentication, and transmits results indicating whether authentication succeeded tc the payment server, if the payment information, including the payment authentication information 6 purchase inrormauon ana payment means unHMILMLIIU, lb I:> WV%,U uImUEI LIL'. server and payment authentication is requested. The acquirer server processes payment approval for a corresponding transaction 5 if a payment approval request containing positive authentication results, obtained by the issuer server, is received from the payment server. Further, an authentication and payment system is disclosed for performing direct sales transactions offline between a merchant and a purchaser and mail order sales io transactions using multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, using a purchaser's mobile communication terminal capable of receiving messages and performing wireless Intemet connection. The authentication and payment system includes an issuer server for issuing, is managing and operating payment means, an issuer information management intermediate server for managing URL information required to access domestic and foreign issuer servers, an acquirer server for performing payment approval and performing acquisition and settlement for member stores, and a payment server for intermediating between the issuer server and the acquirer server to provide an authentication and payment service in .20 response to a request from a terminal of the merchant. The payment server is operated so that, if it receives payment information including a mobile communication terminal number of the purchaser and transaction purchase information, other than payment authentication information about the purchaser, 25 the payment server transmits a callback URL message (SMS or MMS message), including URL information required to access the payment server, to the purchaser's mobile communication terminal. The payment server acquires URL information required to access the issuer 30 server of the corresponding payment means from the issuer information management intermediate server, transmits the issuer server access URL information to the purchaser's mobile communication terminal, connected to the payment server, through a callback function of the callback URL message, 7 so nat tne purcnaser s mnUUII CU umIuIIIuInUIL LII IaLIma Ia y I process with the issuer server. The payment server transmits the authentication results together with the 5 payment information, received from the merchant terminal, to the acquirer server to allow payment approval to be performed by the acquirer server if positive authentication results are received from the issuer server. The issuer information management intermediate server transmits URL 1o information required to access the issuer server of the corresponding payment means to the payment server if the payment means information is received from the payment server. The issuer server is operated so that, if the purchaser's mobile communication terminal accesses the issuer server using the issuer server access URL, the issuer server requests the purchaser's mobile communication terminal to input and transmit payment is authentication information about the payment means, compares the received payment authentication information with payment authentication information that was previously registered and stored at the time of issuing the payment means, and then authenticates a corresponding transaction. 20 The acquirer server processes approval using authentication results if the authentication results are received from the payment server. Further, an authentication and payment system is disclosed for performing direct sales transactions offline between a merchant and a purchaser and mail order sales 25 transactions using multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, using a purchaser's mobile communication terminal capable of receiving messages and performing wireless Internet connection. The authentication and payment system includes a payment server for 30 intermediating between an issuer server that issues, manages and operates payment means in response to a request from a terminal of the merchant, and an acquirer server that performs payment approval and performs 8 acquisition ancI settlement tor memoer StUrC, mus) pIuVIUiLL ana - payment service. The payment server comprises a callback URL message transmission unit for s generating a callback URL message (SMS or MMS message), including URL information to allow the purchaser's mobile communication terminal to access the payment server and transmitting the callback URL message to the purchaser's mobile communication terminal, if the payment server receives payment information including the mobile communication terminal number of the purchaser and transaction purchase information, other than 10 payment authentication information about the purchaser, from the merchant terminal; a payment information confirmation unit for confirming purchase details of the purchaser, including a payment amount, and payment information in cooperation with the purchaser's mobile communication terminal if the purchaser's mobile communication terminal accesses the payment server through the callback function of the callback URL is message; and an authentication result reply unit for requesting the purchaser's mobile communication terminal to input payment authentication information if the payment information has been confirmed, transmitting payment information, including corresponding purchase information and payment means information, and payment authentication information to the issuer server and requesting payment authentication 20 from the issuer server if the payment authentication information has been received, and transmitting authentication results together with the payment information, received from the merchant terminal, to the acquirer server to allow payment approval to be performed by the acquirer server if positive authentication results are received from the issuer server. 25 Further, an authentication and payment system is disclosed for performing direct sales transactions offline between a merchant and a purchaser and mail order sales transactions using multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, using a purchaser's mobile communication terminal capable of receiving messages and performing wireless Internet connection. 30 The authentication and payment system includes a payment server for intermediating 9 between an issuer server that issues, manages and operates payment means in response to a request from a terminal of the merchant, an issuer information management intermediate server that manages URL information required to access domestic and foreign issuer servers, and an acquirer server that performs payment approval and performs acquisition and settlement for member stores, thus providing an authentication and payment service. The payment server comprises, a callback URL message transmission unit for generating a callback URL message (SMS or MMS message), including URL information to allow the purchaser's mobile communication terminal to access the payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal if the payment server receives payment information including the purchaser's mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser, from the merchant terminal; a payment information confirmation unit for confirming purchase details of the purchaser, including a payment amount, and payment information in cooperation with the purchaser's mobile communication terminal if the purchaser's mobile communication terminal accesses the payment server through the callback function of the callback URL message; an issuer server access URL acquisition unit for transmitting payment means information to the issuer information management intermediate server if the payment means information is received from :ither the merchant terminal or the purchaser's mobile communication terminal, thus acquiring URL information required to access the issuer server of the payment means; an issuer server access URL tansmission unit for transmitting a redirection message, used to automatically redirect a connection >f the purchaser's mobile communication terminal from the payment server to the issuer server, to he purchaser's mobile communication terminal having confirmed the payment information, using he issuer server access URL information acquired by the issuer server access URL acquisition unit, hus redirecting the connection of the purchaser's mobile communication terminal to the issuer server nd allowing authentication to be performed by the issuer server, and an authentication result reply 10 unit ror transmitting autnentication results togetner win me payment mouLuInfLIU11 received from the merchant terminal to the acquirer server and allowing payment approval to be performed by the acquirer server, if positive authentication results are received from the issuer server. 5 Further, an authentication and payment method performed by an authentication and payment system is disclosed, the system including a payment server for intermediating between an issuer server that issues and operates payment means and an acquirer server that performs payment approval, the authentication and payment method 10 performing direct sales transactions offline between a merchant and a purchaser and mail order sales transactions using multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, using a purchaser's mobile communication terminal capable of receiving messages and performing wireless Internet connection. 15 The authentication and payment method comprises a callback URL message transmission step of generating a callback URL message (SMS or MMS message), including URL information required to access the payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal, if payment 20 information including a mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser, is received from the merchant terminal and payment is requested; a purchase information confirmation and payment means information transmission step of confirming the purchase details of the purchaser, including a payment amount, and payment information 25 in cooperation with the purchaser's mobile communication terminal connected to the payment server through a callback function of the callback URL message; an authentication request step of requesting the purchaser's mobile communication terminal to input payment authentication information about corresponding payment means if the payment information has been confirmed, and transmitting the payment authentication 30 information and payment means information to a corresponding issuer server to request payment authentication from the issuer server if the payment I1 authentication information is received trom tme purenaser s mooiie cUIIrU'IauunI terminal; and an authentication result return step of the payment server transmitting authentication results, received from the issuer server, and the payment information, received from the merchant terminal, to the acquirer server so as to allow the acquirer s server to process payment approval for the payment means using the authentication results from the issuer server, if the issuer server compares the payment authentication information received from the purchaser's mobile communication terminal with previously registered payment authentication information to authenticate a corresponding transaction and transmits results indicating whether authentication succeeded to the to payment server. Further, an authentication and payment method performed by an authentication and payment system is disclosed, the system including a payment server for intermediating between an issuer server that issues and operates payment means, an issuer 15 information management intermediate server that manages URL information required to access domestic and foreign issuer servers and an acquirer server that performs payment approval, the authentication and payment method performing direct sales transactions offline between a merchant and a purchaser and mail order sales transactions using multimedia or printed media, such as terrestrial broadcasting satellite broadcasting or 20 catalogs, using a purchaser's mobile communication terminal capable of receiving messages and performing wireless Internet connection. The authentication and payment method comprises a callback URL message transmission step of generating a callback URL message (SMS or MMS message), 25 including URL information required to access the payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal, if payment information including a mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser, is received and payment is requested; a purchase information confirmation and payment 30 means information transmission step of confirming purchase details of the purchaser, including a payment amount, and payment information in cooperation with the purchaser's mobile 12 communication terminal connected to tne payment server tnrougn a canoacK LUncuon 01 the callback URL message; a redirection request step of the payment server transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's 5 mobile communication terminal using the issuer server access URL information, acquired by the issuer information management intermediate server, if the payment information has been confirmed; and an authentication result return step of the payment server transmitting authentication results, received from the issuer server, and the payment information, received from the merchant terminal, to the acquirer server so as to allow the io acquirer server to process payment approval for the payment means using the authentication results from the issuer server, if the issuer server compares the payment authentication information received from the purchaser's mobile communication terminal with previously registered payment authentication information to authenticate a corresponding transaction and transmits results indicating whether authentication is succeeded to the payment server. In the present disclosure, a mobile communication terminal has functions, such as the reception of messages, for example, Short Message Service (SMS) messages or Multimedia Messaging Service (MMS) messages, and wireless Internet connection, as 20 basic functions. Further, the mobile communication terminal has various wireless Internet connection functions, such as wireless Internet connection through terminal application software, for example, a virtual machine, wireless Internet connection using a specific abbreviated serial number, and wireless Internet connection using connection URL information in a two-dimensional barcode, which is a printed patterned image code, 25 through a mobile communication terminal equipped with a camera. Further, the mobile communication terminal may have a slot in which a smart-card chip can be mounted, or a slot in which a plastic card, including a chip, can be inserted to make payment if necessary. 13 HKILI UtSUKIl' I 1UN Ur I rin- Utjiu(vy 1iNUJ FIG. I is a block diagram showing the construction of an authentication and payment system according to an embodiment of the present invention; 5 FIG. 2 is a block diagram showing the construction of a payment server of FIG. 1; FIG. 3 is a block diagram showing the construction of an authentication and payment system according to another embodiment of the present invention; 10 FIG. 4 is block diagram showing the construction of a payment server of FIG. 3; FIG. 5 is a flowchart of an authentication and payment method according to an embodiment of the present invention; is FIG. 6 is a flowchart of an authentication and payment method according to another embodiment of the present invention; and FIG 7 is a flowchart of an authentication and payment method according to a 20 further embodiment of the present invention. DESCRIPTION OF THE PREFERRED EMBODIMENTS The above and other features and advantages of embodiments of the present 25 invention will be more clearly understood from the following detailed description taken in conjunction with the accompanying drawings. Hereinafter, embodiments of the present invention will be described in detail with reference to the attached drawings. 30 FIG I is a block diagram showing the construction of an authentication and payment system according to an embodiment of the present invention and FIG 2 is a block diagram showing the construction of a payment server of FIG 1. FIGS. I and 2 illustrate an embodiment in 14 which a purchaser's mobile communication terminal is authenticated via the payment server. As shown in FIG. 1, an authentication and payment system 100 according to an -mbodiment of the present invention includes a payment server 110 that is connected to the mobile communicationn terminal 10 of a purchaser through a mobile communication network 11, is :onnected to the terminal 20 of a merchant through a mobile communication network, wired network or leased line network, and can be connected both to the purchaser's mobile communicationn terminal 10 and to the merchant terminal 20 through the wireless Internet an issuer server 120 and an acquirer server 130 for performing authentication and approval through the medium of the payment server 110, and an intermediate server for intermediating between the payment server 110 and the acquirer server 130. In the present invention, the purchaser's mobile communication terminal 10 and the merchant terminal 20 have functions, such as the reception of messages, for example, SMS or AMS messages, and wireless Internet connection, as basic functions. Further, the terminals 10 and 20 have various wireless Internet connection functions, such as wireless Internet connection through terminal application software, for example, a virtual machine, wireless Intemet connection using a specific abbreviated serial number, and wireless Internet connection using connection URL information in a two-dimensional barcode, which is a printed patterned image code, through a mobile communication terminal equipped with a camera. Further, the terminals 10 and 20 may have a slot in which a smart-card chip can be mounted, or a slot in which a plastic card, including a chip, can be inserted in a payment process if necessary. The merchant terminal may be installed in a vending machine and cooperate with the payment server. Further, the caller center or ARS system of home shopping companies or direct door-to-door sales service companies can intermediate a connection procedure between the merchant terminal and the payment server, or relay and transmit the purchaser's mobile communication terminal information, purchase details and payment information, received from the 15 >urchaser, to the payment server, instead of the merchant, during a process of achieving the object f the present invention. Further, the payment server 110 is- a server for allowing the connection of the merchant :erminal 20, capable of establishing communication through the wired Internet or a leased line, in addition to the wireless Internet connection through the operation of terminal application software, such as a VM application on the merchant terminal. Further, the payment server 110 may allow a :onnection through a voice network in addition to a connection through a data communication network from the merchant terminal 20. Therefore, the payment server 110 may be an ARS ,ystem for processing authentication and payment requests from the merchant through the setup of i voice call with the merchant terminal 20 that is a wired or wireless telephone. Further, the payment means of the present invention is a concept including various payment means, such as a credit card, electronic money, a membership card, micro payment using a mobile phone, or a direct debit from a bank account, and may further include other payment means. Further, the concepts of the type of merchant terminal, a path and method of accessing the payment server and the payment means are equally applied to subsequent embodiments. First, if the payment server 110 receives payment information including the mobile communicationn terminal number of the purchaser, purchase information (a purchase item and a payment amount) and/or payment means information (for example, a credit card number, -lectronic money identification information, a transfer account number, etc.), other than payment authentication information about the payment means of the purchaser, from the merchant terminal 20, the payment server 110 confirms whether the purchaser has subscribed to an authentication service through the issuer server using the payment information of the purchaser, generates a callback URL message (SMS or MMS message) to access the payment server 110, and transmits the callback Uniform Resource Locator (URL) message to the purchaser's mobile communication 16 terminal 10. Further, the payment server 110 confirms purchase details and the payment means information of the purchaser together with the purchaser's mobile communication terminal 10 while transmitting/receiving the purchase details and the payment means information, received from the merchant terminal 20, to/from the purchaser's mobile communication terminal 10 connected to the payment server 110 through the callback function of the callback URL message. Thereafter, the payment server 110 requests the purchaser's mobile communication terminal to input and transmit payment authentication information, such as a password of the payment means of the purchaser, Personal Identification Number (PIN) information or a chip authentication cryptogram, and transmits the payment authentication information and payment information received from the purchaser's mobile communication terminal 10 to the issuer server 120, thus requesting payment authentication from the issuer server 120. In the above description, the payment server 110 can initially receive the payment means information of the purchaser from the merchant terminal 20 having requested payment, or receive the payment means information from the purchaser's mobile communication terminal 10 during the process of confirming the payment information together with the purchaser's mobile communication terminal 10 connected to the payment server 110. Further, if the payment server 110 receives the payment means information from the purchaser's mobile communication terminal 10 or the merchant terminal 20, the payment servei 110 transmits the received payment means information to the issuer server 120, requests the issue server 120 to confirm whether a subscriber to a corresponding payment means, that is, the purchaser, has subscribed to an authentication service provided by the issuer server 120, and car perform subsequent steps if subscription to the authentication service is confirmed by the issues server 120. Further, the payment server 110 receives the results of authentication performed ii 17 cooperation with the mobile communication terminal 10 from the issuer server 120, and transmits the authentication results to the acquirer server 130, thus allowing payment approval to be performed by the acquirer server 130. In this case, a request for payment approval can be performed by allowing the payment server 110 to transmit a payment approval request message containing the authentication results to the acquirer server 130. Further, a request for payment approval can be performed by allowing the payment server 110 to transmit authentication results to the acquirer server 130, the merchant terminal 20 and the purchaser's mobile communication terminal 10 and allowing the merchant terminal 20 to directly request payment approval from the acquirer server 130. The issuer server 120 issues, manages and operates a payment means, compares the payment authentication information and payment information received from the payment server 110, with the purchaser's payment authentication information about payment means, which was stored at the time of issuing the payment means or stored by the purchaser during a previous registration process, and verifies the compared information, thus authenticating a corresponding transaction. In the meantime, the purchaser's mobile communication tenninal 10 encrypts payment authentication infonnation, such as a password, PIN, or chip authentication cryptogram, and transmits the encrypted payment authentication information to the payment server 110. The payment server 110 transmits the encrypted payment authentication information to the issuer server 120. Preferably, the issuer server 120 receives and decrypts the encrypted payment authentication information, acquires payment authentication information, and performs authentication through the comparison and verification of payment authentication information. In the present invention, for an authentication scheme, various authentication schemes including a password-based scheme, a chip scheme, a digital signature scheme using a certificate, a biometric recognition scheme, or a token authentication scheme using a random number generator 18 md a personal encryption table card, may be utilized. The payment authentication information according to the authentication scheme may be personally inputted by the purchaser, may be stored n the form of an electronic wallet implemented in a mobile communication terminal using software, or may be stored in a smart card in a mobile communication terminal having a slot in which a smart card chip and a smart card can be mounted and inserted. The stored payment mthentication information must be interpreted as a comprehensive concept that includes personal payment authentication information that must be transmitted to a server through a process of putting and confirming the password of the electronic wallet or the password of the smart card. Further, in order to provide the service of the present invention only to subscribers to the mthentication service, the issuer server 120 can confirm whether the purchaser has subscribed to he authentication service corresponding to a payment means and transmit the results of onfirmation to the payment server 110 if payment means information has been received from the payment server 110. In this case, the .issuer server 120 must manage information indicating whether subscribers using payment means managed by the issuer server 120 subscribe to the mthentication service. The acquirer server 130 receives authentication results obtained by the issuer server 120 rom the payment server 110, and functions to perform payment approval for a corresponding payment means, acquire payment transactions and perform settlement for member stores. As described above, the acquirer server 130 may receive a payment approval request message :ontaining positive authentication results from the payment server 110, or receive authentication results from the payment server 110 and receive a separate approval request from the merchant terminal 20, thus processing approval. In the meantime, FIG. 1 shows an embodiment in which the payment server 110 is directly connectedd to the acquirer server 130, but the intermediate server 140 for intermediating a payment approval and acquisition process can be alternatively disposed between the payment server 110 and 19 he acquirer server 130. With reference to FIG. 2, respective components of the payment server 110, described with eference to FIG 1, are described in detail. As shown in FIG. 2, the payment server 110 includes a callback URL message transmission unit 111, a payment information confirmation unit 112 and an authentication result 'eply unit 113. When receiving the mobile communication terminal number of the purchaser from the nerchant terminal 20, the callback JRL message transmission unit 111 generates a callback URL nessage (SMS or MMS message) including URL information to allow the purchaser's mobile :ommunication terminal 10 to access the payment server 110 and transmits the callback URL nessage to the purchaser's mobile communication terminal 10. In this case, the callback URL message transmission unit 111 generates the callback URL nessage using an identifier or key value used to index purchase information received from the nerchant terminal 20. Accordingly, when the purchaser's mobile communication terminal 10 eceives the callback URL message and accesses the payment server, the callback URL message ransmission unit 111 preferably allows the purchaser's mobile communication terminal 10 to access the payment server 110 so that the payment server 110 can recognize and manage the :onnection and continuation of transaction information between the purchaser and the merchant brough the use of information included in a URL, such as purchase information, indexes, dentifiers, etc. If the purchaser's mobile communication terminal 10 accesses the payment server 110 brough the use of the callback function of the callback URL message, the payment information onfirmation unit 112 confirms purchase information by transmitting and receiving payment elated purchase information to and from the purchaser's mobile communication terminal 10, requests the purchaser's mobile communication terminal 10 to input payment means information, 20 and receives the payment means information. The process of confining the payment information includes the confirmation of the purchase information, and the acquisition and confirmation of the payment means information. In the embodiment of the present invention, the payment server 110 can acquire the payment means information from the merchant terminal 20, or from the purchaser's mobile communication terminal 10 at the time of processing the confirmation of payment information. In the former case, the payment server 110 receives payment information including a mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser, from the merchant terminal 20 when a payment request is received from the merchant terminal 20. The payment information confirmation unit 112 transmits the payment means information received from the merchant terminal 20 to the purchaser's mobile communication terminal 10 connected to the payment server 110, and receives a confirmation response, thus confirming the payment information. In the latter case, the payment information confirmation unit 112 requests the purchaser's mobile communication terminal 10 connected to the payment server 110 to input payment means information and receives the payment means information from the purchaser's mobile communication terminal 10, thus confirming payment information. Further, the payment information confirmation unit 112 transmits the payment means information received from the merchant terminal 20 or the purchaser's mobile communication terminal 10 to the issuer server 120, and requests the issuer server 120 to confirm whether the purchaser has subscribed to the authentication service. Only when a response to authentication service subscription confirmation has been received from the issuer server 120, the payment information confirmation unit 112 can confirm corresponding payment information, or allow authentication request and processing to be executed through the authentication result reply unit 113. 21 If the confirmation of payment information has been completed, the authentication result reply unit 113 requests the purchaser's mobile communication terminal 10 to input and transmit payment authentication information about a corresponding payment means. If the payment authentication information is received, the authentication result reply unit 113 transmits the payment authentication information and payment information to the issuer server 120, thus :equesting payment authentication. If positive authentication results are received from the issuer ;erver 120, the authentication result reply unit 113 transmits the authentication results to the icquirer server 130. The operation of the authentication result reply unit 113 requesting authentication and eceiving authentication information from the purchaser's mobile communication terminal 10 is >erformed using end-to-end wireless encryption channel and encryption application software on he terminal. The encryption is initiated by the payment server 110. The requested payment authentication information may be inputted payment authentication information such as a password )r PIN, or may be payment authentication information including a chip authentication cryptogram generated in a smart card or an electronic signature cryptogram generated by an electronic signature. After the payment authentication information has been encrypted in the terminal, the :ncrypted information is decrypted by the payment server 110, so that the payment authentication nformation is extracted and used. In the meantime, an approval request can be performed by the payment server 110 or the nerchant terminal 20 in the present invention. Therefore, in the former case, the authentication result reply unit 113 transmits a payment .pproval request message containing positive authentication results to the acquirer server 130. If pproval results are received from the acquirer server 130, the authentication result reply unit 113 ransmits the approval results both to the merchant terminal 20 and to the purchaser's mobile ommunication terminal 10, thus completing payment 22 In the latter case, the authentication result reply unit 113 transmits an authentication result message to the acquirer server 130, the merchant terminal 20 and the purchaser's mobile :ommunication terminal 10 so that payment approval can be directly processed between the merchant terminal 20 and the acquirer server 130. In this case, if positive authentication results are received from the payment server 110 and i separate payment approval request message is received from the merchant terminal 20 with respect to the received authentication results, the acquirer server 130 processes corresponding payment approval and transmits approval results both to the merchant terminal 20 and to the purchaser's mobile communication terminal 10. FIG. 3 is a block diagram showing the construction of an authentication and payment system according to another embodiment of the present invention and FIG. 4 is a block diagram showing the construction of the payment server of FIG. 3. FIGS. 3 and 4 illustrate an embodiment in which a purchaser's mobile communication terminal directly transmits payment authentication information about a transaction to an issuer server without passing through a payment server, authenticates the transaction, and acquires..URL information required to access the issuer server through an issuer information management intermediate server. As shown in FIGS. 3 and 4, an authentication and payment system 200 according to mother embodiment of the present invention includes a payment server 210 that is connected to a ,urchaser's mobile communication terminal 10 through a mobile communication network 11 and an be connected to a merchant terminal 20 through a mobile communication network, wired aetwork or leased line network, an issuer server 220 for performing authentication and approval rough the payment server 210, an issuer information management intermediate server 230, and m acquirer server 240. Unlike the embodiment of FIG. 1, the issuer server 220 is directly connected to the purchaser's mobile communication terminal 10 through the mobile communication network 11. 23 If the payment server 210 receives payment information including the mobile :ommunication terminal number of the purchaser, purchase information (for example, a purchase item and a payment amount) and/or payment means information (for example, a credit card lumber, electronic money identification information, etc.) from the merchant terminal 20, the ,ayment server 210 generates a callback URL message (SMS or MMS message) to connect to the payment server 210 and transmits the callback URL message to the purchaser's mobile communicationn terminal 10. Further, the payment server 210 transmits payment means information, received from the merchant terminal 20, to the purchaser's mobile communication terminal 10 connected to the paymentt server 210 through the callback function of the callback URL message, thus confirming he payment means information. Thereafter, the payment server 210 automatically redirects the :onnection of the purchaser's mobile communication terminal 10 from the payment server 210 to he issuer server 220 using URL information required to access the server of the issuer of the :orresponding payment means. Accordingly, the purchaser is authenticated by the issuer server 220 through the use of the mobile.communication.terminal 10.. In the above procedure, if the payment means information about the purchaser is received, he payment server 210 transmits the received payment means information to the issuer ifornation management intermediate server 230 so as to confirm whether URL information -equired to access the issuer server of the corresponding payment means is acquired and whether he purchaser has subscribed to an authentication service, so that the confirmation of the acquisition )f the URL information and the subscription to the authentication service must be requested. The payment means information may be initially received from the merchant terminal 20 having requested payment or from the purchaser's mobile communication terminal 10 connected to the payment server 210 in a process of confirming payment information together with the purchaser's mobile communication terminal 10. 24 Further, the payment server 210 receives the results of authentication performed together Faith the mobile communication tenninal 10 from the issuer server 220, and transmits the authentication results to the acquirer server 240, thus allowing payment approval to be performed >y the acquirer server 240. In this case, a payment approval request can be performed by allowing the payment server 110 to transmit a payment approval request message containing the authentication results to the tcquirer server 240. Further, the payment approval request can be performed by allowing the >ayment server 210 to transmit the authentication results both to the acquirer server 240 and to the nerchant terminal 20 and allowing the merchant terminal 20 to directly request the approval from he acquirer server 240. The issuer server 220 issues, manages and operates a payment means. If the purchaser's nobile communication terminal 10 accesses the issuer server 220, the issuer server 220 requests he purchaser's mobile communication terminal 10 to input and transmit payment authentication formation about the payment means of the purchaser, and authenticates a corresponding ransaction using the payment authentication information received-from the purchaser's mobile ommunication terminal 10. In this case, the operation of the issuer server 220 requesting authentication and receiving uthentication information from the purchaser's mobile communication terminal 10 is performed sing end-to-end wireless encryption channel and encryption application software on the terminal. 'he initiation of encryption is performed by the issuer server. The requested payment uthentication information may be inputted payment authentication information such as a password ,r PIN, or may be payment authentication information including a chip authentication cryptogram generatedd in a smart card or an electronic signature cryptogram generated by an electronic ignature. The payment authentication information is encrypted and transmitted by the terminal. 'he issuer server 220 receives and decrypts the encrypted payment authentication information to 25 acquire the payment authentication information, and then performs authentication. For an authentication scheme in the present invention, various authentication schemes including a password-based scheme, a chip scheme, a certification scheme, a biometric recognition scheme, etc. may be utilized. The payment authentication information must be interpreted as a :omprehensive concept that includes personal payment authentication information that must be inputted or transmitted by the purchaser with respect to various authentication schemes. The issuer information management intermediate server 230 manages URL information required to access a plurality of domestic and foreign issuer servers so as to allow the purchaser's mobile communication terminal 10 to access the issuer server 220 through the wireless Internet If the payment means information is received from the payment server 210, the issuer information management intermediate server 230 transmits URL information required to access the issuer of a :orresponding payment means to the payment server 210. In this case, the issuer information management intermediate server 230 transmits the payment means information received from the payment server 210 to the corresponding issuer server 220, thus requesting the issuer server 220 to confirm whether a subscriber to the payment means, that is, the purchaser, has subscribed to an authentication service provided by the issuer server 220. If subscription has been confirmed by the issuer server 220, the issuer information management intermediate server 230 transmits both the issuer access URL information and authentication service subscription confirmation information to the payment server 210. In this case, the issuer server 220 manages information indicating whether subscribers to payment means managed by the issuer server 220 subscribe to the authentication service. If the payment means information is received from the issuer information management intermediate erver 230, the issuer server 220 confirms whether a subscriber to a corresponding payment means, hat is, a purchaser, has subscribed to the authentication service, and transmits authentication results o the issuer information management intermediate server 230. 26 The acquirer server 240 receives the results of authentication performed by the issuer ;erver 220 from the payment server 210, performs payment approval for the corresponding >ayment means, and performs acquisition and settlement for member stores. As described above, he acquirer server 240 may process payment approval by receiving a payment approval request nessage containing positive authentication results from the payment server 210 or receiving a ;eparate approval request from the merchant terminal 20. In the meantime, FIG. 3 shows an embodiment in which the payment server 210 is directly :onnected to the acquirer server 240. However, the intermediate server 250 for intermediating a payment approval and acquisition procedure may be alternatively disposed between the payment :erver 210 and the acquirer server 240. Respective components of the payment server 210, described with reference to FIG. 3, are lescribed in detail with reference to FIG. 4. As shown in FIG. 4, the payment server 210 includes a callback URL message ransmission unit 211, a payment information confirmation unit 212, an issuer server access URL acquisition. unit.213, an issuer server access URL transmission unit 214, and an authentication, esult reply unit 215. When receiving the mobile communication terminal number of the purchaser from the merchant terminal 20 that enables the connection through a mobile communication network, wired network or leased line network, the callback URL message transmission unit 211 generates a allback URL message (SMS or MMS message) that includes URL information allowing the iurchaser's mobile communication terminal 10 to access the payment server 210, and transmits the allback URL message to the purchaser's mobile communication terminal 10. In this case, the callback URL message transmission unit 211 generates the callback URL message using an identifier or key value used to index purchase information received from the aerchant terminal 20. Accordingly, when the purchaser's mobile communication terminal 10 27 -eceives the callback URL message and accesses the payment server, the callback URL message ransmission unit 211 preferably allows the purchaser's mobile communication terminal 10 to access the payment server 210 so that the payment server 210 can recognize and manage the :onnection and continuation of transaction information between the purchaser and the merchant, hrough the use of purchase information, indexes, identifiers, etc. included in a URL. If the purchaser's mobile communication terminal 10 accesses the payment server 210 rough the callback function of the callback URL message, the payment information confirmation Lnit 212 confirms purchase information by transmitting and receiving payment related purchase formation to and from the purchaser's mobile communication terminal 10. The process of'confirming the payment information includes the confirmation of the 'urchase information and the acquisition and confirmation of the payment means information. In ae embodiment of the present invention, the payment server 210 can acquire the payment means formation from the merchant terminal 20, or from the purchaser's mobile communication srminal 10 at the time of processing the confirmation of payment information. In the former case, the payment server 210 receives payment information including a iobile communication terminal number and transaction purchase information, other than payment uthentication information about the purchaser, from the merchant terminal 20 when a payment :quest is received from the merchant terminal 20. In this case, the payment information anfurmation unit 212 transmits the payment means information, received from the merchant :rminal 20, to the purchaser's mobile communication terminal 10 connected to the payment server 10, and receives a confirmation response, thus confirming the payment information. In the latter case, the payment information confirmation unit 212 requests the purchaser's mobile communication terminal 10 connected to the payment server 210 to input payment means formation, and receives the payment means information from the purchaser's mobile )mmunication terminal 10, thus confirming payment information. 28 Further, if payment means information is received from either the merchant terminal 20 or he purchaser's mobile communication terminal 10, the issuer server access URL acquisition unit !13 transmits the received payment means information to the issuer information management atermediate server 230, requests and acquires URL information required to access the issuer server >f the corresponding payment means from the issuer information management intermediate server .30, and also requests and acquires confirmation results indicating whether the purchaser has .ubscribed to an authentication service corresponding to the payment means from the intermediate erver 230. The issuer server access URL transmission unit 214 transmits a redirection message, used automatically redirect the connection of the purchaser's mobile communication terminal 10 from be payment server 210 to the issuer server 220, to the purchaser's mobile communication terminal 0 having confirmed payment information through the use of the acquired issuer server access JRL information, thus allowing the Intemet connection of the purchaser's mobile communication :rminal 10 to be automatically redirected to the payment server 220. In this case, the redirection message. denotes a message that cannot be visually confirmed 'y the purchaser, but allows the mobile communication terminal 10 to automatically connect to a direction address without the purchaser's confirmation when the redirection message is received rough the mobile communication terminal 10. If positive authentication results are received from the issuer server 220, the authentication !sult reply unit 215 transmits the authentication results to the acquirer server 240. In the meantime, the approval request of the present invention can be performed by the ayment server 210 or the merchant terminal 20. At this time, the merchant terminal 20 can make n approval request through a member store system, a wired network intermediate system, etc. 'he principal body making an approval request is the merchant terminal 20 regardless of the ystem through which the process passes for the approval request, so that the merchant terminal 20 29 can be integrated to make an approval request, which is applied to the subsequent embodiments. In the former case, the authentication result reply unit 215 transmits a payment approval request message containing the authentication results to the acquirer server 240. If approval results ire received from the acquirer server 240, the authentication result reply unit 215 transmits the ipproval results both to the merchant terminal 20 and to the purchaser's mobile communication enninal 10, thus completing payment In the latter case, the authentication result reply unit 215 transmits an authentication result nessage to the acquirer server 240, the merchant terminal 20 and the purchaser's mobile communicationn terminal 10 so that approval is directly processed between the merchant terminal 10 and the acquirer server 240. At this time, if positive authentication results are received from the )ayment server 210, and a separate payment approval request message is received from the nerchant terminal 20, via a member store system or a wired network intermediate system with espect to the case corresponding to the received authentication results, the acquirer server 240 >rocesses corresponding payment approval, transmits payment approval results to the merchant erminal 20 through the member store system or the wired network intermediate system, or directly ransmits the payment approval results to the merchant terminal 20. Preferably, the payment pproval results are also transmitted to the purchaser's mobile communication terminal 10. Next, an authentication and payment process executed by the system of the present rivention, described with reference to FIGS. 1 and 2, is described in detail with reference to FIG. 5. FIG. 5 is a flowchart of an authentication and payment method according to an mbodiment of the present invention. As shown in FIG. 5, when the decision to purchase a commodity is made between a urchaser and a merchant in a direct sales transaction offline or in a mail order sales transaction sing multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, ie purchaser informs the merchant of his or her mobile communication terminal number information 30 ind payment means information at step SOO1. The merchant accesses the payment server 110 through the merchant terminal 20 and transmits payment information including the mobile :ommunication terminal number and transaction purchase information, other than payment authentication information about the purchaser, to the payment server 110 at step 5002. In this case, step S001 can be performed by the purchaser personally inputting the mobile :ommunication terminal number information and payment means information to the merchant erminal 20, such as a vending machine or an ARS system. In this case, if the information has been :ompletely inputted by the purchaser, the merchant terminal 20 will spontaneously access the >ayment server 110 and transmit the inputted infonnation to the payment server 110 at step S002. The payment server 110 transmits the payment means information to the issuer server 120, md confirms whether the purchaser has subscribed to an authentication service at step S003. If a response to the authentication service subscription confinnation is received from the issuer server 120 it step S004, the payment server 110 generates a callback URL message (SMS or MMS message) including URL information required to access the payment server, and transmits the callback URL 'nessage to the purchaser's mobile communication terminal 10 at stepS005. In this case, the callback URL message may be configured to include purchase information. steps S003 and S004 of confirming whether the purchaser has subscribed to the authentication service and of receiving the response to the confirmation can be omitted. The purchaser confirms the callback URL message received through the mobile :ommunication terminal 10, and allows the mobile communication terminal 10 to access the )ayment server 110 through the callback function of the message when the purchaser has the ntention to pay at step 5006. The payment server 110 transmits a wireless Web page including the payment means nformation received from the merchant terminal 20 at step S002 to the purchaser's mobile communicationn tenninal 10 and requests the purchaser's mobile communication terminal 10 to 31 :onfirm the payment means infonnation at step S007. If the response to the payment means formation confirmation is received from the purchaser's mobile communication terminal 10 at step 3008, the payment server 110 requests the purchaser's mobile communication terminal 10 to input ?ayment authentication information (personal payment authentication information) about a :orresponding payment means at step S009. If purchase information is not included in the callback URL message transmitted by the >ayment server 110 at step S005, purchase information can be transmitted together with the information request when the confirmation of the payment means information is requested at step s007, or purchase information can be confirmed before the confirmation of the payment means ofonnation is requested. If payment authentication information is received from the purchaser's mobile communication terminal 10, the payment server 110 transmits the received payment authentication formation to the issuer server 120, thus requesting payment authentication from the issuer server 20 at step S0l 1. The issuer server 120 compares the received payment authentication information vith payment authentication information that was previously registered and stored at the time of suing the payment means to process authentication at step S012, and transmits authentication results the payment server 110 at step S013. Next, the payment server 110 transmits a payment approval request message containing the uthentication results, received from the issuer server 120, to the acquirer server 130 at step 5014. he acquirer server 130 processes payment approval for the coresponding payment means at step 015, and transmits the approval results to the payment server 110 at step S016. The payment server 110 returns the approval results received from the acquirer server 130 oth to the merchant terminal 20 and to the purchaser's mobile communication terminal 10 at steps 017 and S018. The retum of the approval results can be implemented in the form of a message, ich as an SMS or MMS message, or in the form of a wireless Web page. 32 The payment server 110 can transmit only authentication results to the acquirer server 130 at ;tep S013. In this case, the acquirer server 130 approves according to a separate approval request .eceived from the merchant terminal 20 or through a member store system or a wired network ntermediate system (not shown). In the meantime, FIG. 5 illustrates the case in which the payment server 110 receives paymentt means information from the merchant tenninal 20. However, at step S002, the payment ;erver 110 may receive a mobile communication terminal number, payment authentication information about the purchaser and transaction purchase information, other than payment means information, and may later request payment means information from the purchaser's mobile communicationn terminal 10 connected to the payment server 110 and directly receive the payment neans information from the purchaser. In this case, in the embodiment, steps S007 and S008 may be replaced by the steps of equesting the input of payment means information and receiving the payment means information. steps S003 and S004 must be performed before step S009 of requesting the input of payment tuthentication information after the payment means information has been received. Next, the authentication and payment process executed by the system of the present nvention, described with reference to FIGS. 3 and 4, is described in detail by classifying :mbodiments according to a principal body of transmitting payment means information, with eference to FIGS. 6 and 7. FIG. 6 is a flowchart of an authentication and payment method according to another -mbodiment of the present invention, which shows an embodiment in which the payment server !10 receives payment means information from the merchant terminal 20. As shown in FIG. 6, when the decision to purchase a commodity is made between a >urchaser and a merchant in a direct sales transaction ofihine or in a mail order sales transaction sing multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, 33 he purchaser informs the merchant of his or her mobile communication terminal number information md payment means information at step S101. The merchant accesses the payment server 210 hrough the merchant terminal 20 and transmits payment information including the purchaser's nobile communication terminal number and transaction purchase information, other than payment authentication infonnation about the purchaser, to the payment server 210 at step S 102. In this case, step S101 can be perfonned by the purchaser personally inputting the mobile :ommunication terminal number information and payment means information to the merchant erminal 20, such as a vending machine or an ARS system. In this case, if the information has been completelyy inputted by the purchaser, the merchant terminal 20 will spontaneously access the >ayment server 210 and transmit the inputted information to the payment server 210 at step S102. urther, the merchant can transmit the inputted information to the payment server 210 through a nember store system such as a call center. The payment server 210 transmits the payment means information to the issuer information nanagement intermediate server 230, and requests URL information required to access the issuer Ierver-from the issuer information management intermediate server 230 at step S103. The issuer information management intermediate server 230 transmits the payment means information to the ssuer server 220, and confirms whether the purchaser has subscribed to an authentication service at ;tep S104. If a response to the authentication service subscription confirmation is received from the ssuer server 220 at step S105, the issuer information management intennediate server 230 transmits LJRL information required to access a corresponding issuer to the payment server 210 at step S106. [n this case, steps S104 and S105 of confirming whether the purchaser has subscribed to the authentication service and receiving the response to the confirmation can be omitted. Next, the payment server 210 generates a callback URL message including URL information required to access the payment server, and transmits the callback URL message to the purchaser's mobile communication terminal 10 at step S107. In this case, the callback URL message 34 nay be configured to include purchase information. The purchaser confirms the callback URL message received through the mobile :omrmunication terminal 10, and allows the mobile communication terminal 10 to access the >ayment server 210 using the callback function of the message when the purchaser has the intention o pay at step S 108. The payment server 210 transmits a wireless Web page including the payment means information received from the merchant terminal 20 at step S102 to the purchaser's mobile communicationn terminal 10, thus requesting the purchaser's mobile communication terminal 10 to :onfirm the payment means information at step S109. If the response to the payment means nfonnation confirmation is received from the purchaser's mobile communication terminal 10 at step 1110, the payment server 210 transmits a redirection message, used to automatically redirect the :onnection of the purchaser's mobile communication terminal from the payment server to the issuer erver, to the purchaser's mobile communication tenninal 10 using the issuer server access URL information, obtained at steps S103 to S106, at step S11. At this time, if purchase information is not included in the callback URL message transmitted >y the payment server 210 at step S107, purchase information can be transmitted together with the :onfirmation request when the confirmation of the payment means information is requested at step )109, or purchase information can be confined before the confirmation of the payment means formation is requested. If the redirection message is received from the payment server 210 at step S111 as the .onfirmation of the payment means information by the purchaser is completed at step SI 10, the connectionn of the purchaser's mobile communication terminal 10 to the payment server 210 is automatically redirected to the issuer server 220 at step S 112. The issuer server 220 requests the purchaser's mobile communication terminal 10 connected bereto to input payment authentication information (personal payment authentication information) 35 ibout a corresponding payment means at step S1 13. If the payment authentication information is tceived from the purchaser's mobile communication terminal 10 at step Si 14, the issuer server 220 comparess the received payment authentication information with payment authentication information that was previously registered and stored at the time of issuing the corresponding )ayment means to process authentication at step Si 15, and transmits authentication results to the paymentt server 210 at step S116. Next, the payment server 210 transmits a payment approval request message containing he authentication results, received from the issuer server 220, to the acquirer server 230 at step S117. The acquirer server 230 processes payment approval for the corresponding payment means It step S118, and transmits approval results to the payment server 210 at step S 119. The payment server 210 returns the approval results from the acquirer server 230 to the merchant terminal 20 and the purchaser's mobile communication terminal 10 at steps S120 and ;121. The retum of the approval results can be implemented in the form of a message such as an ,MS or MMS message, or in the form of a wireless Web page. In the meantime, the payment server -210 :can- transmit only authentication results to the cquirer server 230 at step S117. In this case, the acquirer server 230 approves according to a eparate approval request received from the merchant terminal 20 or through a member store system r a wired network intermediate system (not shown). FIG. 7 is a flowchart of an authentication and payment method according to a further embodiment of the present invention, in which the payment server 210 receives payment means iformation from the purchaser's mobile communication terminal 10. As shown in FIG. 7, when the decision to purchase a commodity is made between a urchaser and a merchant in a direct sales transaction offline or in a mail order sales transaction sing multimedia or printed media, such as terrestrial broadcasting, satellite broadcasting or catalogs, ie purchaser informs the merchant of his or her mobile communication terminal number at step 36 3201. The merchant accesses the payment server 210 through the merchant terminal 20, transmits Payment information including the purchaser's mobile communication terminal number and ransaction purchase information, other than payment authentication information about the purchaser, D the payment server 210, and requests payment from the payment server 210 at step S202. The payment server 210 generates a callback URL message (SMS or MMS message) including URL information required to access the payment server, and transmits the callback URL nessage to the purchaser's mobile communication terminal 10 at step S203. The purchaser confirms he callback URL message received through the mobile communication terminal 10, and allows the nobile communication tenninal 10 to access the payment server 210 through the callback function of he message when the purchaser has the intention to pay at step S204. If the purchaser's mobile communication terminal 10 accesses the payment server 210, the payment server 210 requests the purchaser's mobile communication terminal 10 to input payment aeans information at step S205. If the payment means information is received from the purchaser's mobile communication terminal 10 at step S206, the payment server 210 transmits corresponding payment means information to the issuer information management intermediate server 230, and quests URL information required to access the issuer server from the issuer information management intennediate server 230 at step S207. The issuer information management intermediate server 230 transmits the payment means iformation to the issuer server 220, and confirms whether the purchaser has subscribed to an authentication service at step S208. If a response to the authentication service subscription information is received from the issuer server 220 at step S209, the issuer information management itenmediate server 230 transmits URL information required to access a corresponding issuer to the payment server 210 at step S210. In this case, steps S208 and S209 of confinming whether the purchaser has subscribed to the authentication service and receiving the confirmation response can be mitted. 37 Next, subsequent steps S211 to 8221 of the payment server 210 transmitting a redirection nessage, used to automatically redirect the connection of the purchaser's mobile communication erminal from the payment server to the issuer server, to the purchaser's mobile communication terminal 10 using the acquired issuer server access URL information, and of performing iuthentication and approval are the same as those of the embodiment of FIG. 6, so that a detailed description is omitted. As described above, the present invention provides an authentication and approval system nd method using a mobile communication terminal, which performs authentication and payment vithout leaking the payment information of a purchaser using the terminal of a merchant and the mobile communication terminal of the purchaser and separately processes authentication and pproval in direct sales transactions between the merchant and the purchaser ofiline and mail order ales transactions using multimedia or printed media, such as terrestrial broadcasting, satellite roadcasting or catalogs. Therefore, the present invention is advantageous in that it provides a new ayment interface for extending authentication and payment services performed on/of[line to direct ales fields such as door-to-door sales, thus solving the problem ofhand-written transactions, which is onsidered to be a cause of forgery and illegal use of payment information. Further, the present ivention is advantageous in that it provides a new payment and authentication scheme using a mobile communication tenninal in direct sales transactions on/offline, thus activating direct sales ansactions based on the stability and reliability of transactions. Further, the present invention is advantageous in that it can perform transactions through a ife and convenient payment process in an offline member store having a disadvantage in that it is possible to install a payment terminal or the installation of the terminal is expected to be :onomically inefficient due to local and transactional characteristics, or a small-scale member store ich as a vending machine. Although the preferred embodiments of the present invention have been disclosed for 38 illustrative purposes, those skilled in the art will appreciate that various modifications, additions and substitutions are possible, without departing from the scope and spirit of the invention as disclosed in the accompanying claims. The scope of the present invention is defined by the following claims -ather than the detailed description. Accordingly, it is apparent that all changes or modified :mbodiments derived from the meaning and scope of the claims and their equivalent concepts )elong to the scope of the present invention. 39
Claims (34)
1. A payment server comprising: a callback URL message transmission unit for generating a callback URL 5 message, including URL information to allow a purchaser's mobile communication terminal to access a payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal, if the payment server receives a mobile communication terminal number of the purchaser from a merchant terminal; a payment information confirmation unit for confirming the purchase details, 10 including a payment amount, and the payment information in cooperation with the purchaser's mobile communication terminal accessing the payment server through a callback function of the callback URL message; and an issuer server access URL transmission unit for transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile 15 communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal having confirmed the payment information, using an issuer server access URL information acquired by an issuer server access URL acquisition unit, thus redirecting the connection of the purchaser's mobile communication terminal to the issuer server; and 20 an authentication result reply unit for transmitting authentication results together with the payment information received from the merchant terminal to the acquirer server and allowing payment approval to be performed by the acquirer server, if the authentication results are received from the issuer server when authentication is processed through the confirmation of the payment authentication information about the 25 corresponding payment means between the purchaser's mobile communication terminal, connected to the issuer server, and the issuer server.
2. The payment server according to claim 1, wherein: the payment server receives the payment means information from either the 30 merchant terminal or the purchaser's mobile communication terminal, transmits the received payment means information to the issuer server, requests the issuer server to confirm whether the purchaser has subscribed to the authentication service corresponding to a transaction, and requests the purchaser's mobile communication terminal to input and transmit payment authentication information about the corresponding payment means if a 35 response to subscription confirmation is received from the issuer server.
3. An authentication and payment system using a mobile communication terminal and including an issuer server for issuing payment means, an issuer information management intermediate server for managing URL information required to access 5 domestic and foreign issuer servers, an acquirer server for performing payment approval and performing acquisition and settlement for member stores, and a payment server for intermediating between the issuer server and the acquirer server to provide an authentication and payment service in response to a request from a terminal of the merchant, wherein: 10 the payment server is operated so that, if it receives payment information including a mobile communication terminal number of the purchaser and transaction purchase information, other than payment authentication information about the purchaser, the payment server transmits a callback URL message, including URL information required to access the payment server, to the purchaser's mobile communication terminal, 15 acquires URL information required to access the issuer server of corresponding payment means from the issuer information management intermediate server, transmits the issuer server access URL information to the purchaser's mobile communication terminal, connected to the payment server, through a callback function of the callback URL message, performs authentication between the purchaser's mobile communication 20 terminal and the issuer server, and transmits authentication results together with the payment information, received from the merchant terminal, to the acquirer server to allow payment approval to be performed by the acquirer server if the authentication results are received from the issuer server, the issuer information management intermediate server transmits URL 25 information required to access the issuer server of the payment means to the payment server if the payment means information is received from the payment server, the issuer server is operated so that, if the purchaser's mobile communication terminal accesses the issuer server using the issuer server access URL, the issuer server requests the purchaser's mobile communication terminal to input and transmit payment 30 authentication information about the payment means, compares the received payment authentication information with payment authentication information that was previously registered and stored at the time of issuing the payment means, and then authenticates a corresponding transaction, and the acquirer server processes approval using authentication results if the 35 authentication results are received from the payment server, wherein the payment server comprises: en)lAI-. I a callback URL message transmission unit for generating the callback URL message, including URL information to allow the purchaser's mobile communication terminal to access the payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal, if the purchaser's mobile communication 5 terminal number is received from the merchant terminal; a payment information confirmation unit for confirming purchase details, including a payment amount, and the payment information in cooperation with the purchaser's mobile communication terminal if the purchaser's mobile communication terminal accesses the payment server through the callback function of the callback URL 10 message; and an issuer server access URL acquisition unit for transmitting payment means information to the issuer information management intermediate server if the payment means information is received from either the merchant terminal or the purchaser's mobile communication terminal, thus acquiring URL information required to access the 15 issuer server of the corresponding payment means; an issuer server access URL transmission unit for transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal having confirmed the payment information, using the 20 issuer server access URL information acquired by the issuer server access URL acquisition unit, thus redirecting the connection of the purchaser's mobile communication terminal to the issuer server; and an authentication result reply unit for transmitting authentication results together with the payment information received from the merchant terminal to the acquirer 25 server if the authentication results are received from the issuer server when authentication is processed through the conformation of the payment authentication information about the corresponding payment means between the purchaser's mobile communication terminal, connected to the issuer server, and the issuer server. 30
4. The authentication and payment system according to claim 3, wherein the callback URL message transmission unit generates the callback URL message using an identifier or key value used to index purchase information received from the merchant terminal, so that, when the purchaser's mobile communication terminal receives the callback URL message and accesses the payment server, the payment server can 35 recognize and manage the connection and continuation of transaction information between the purchaser and merchant through the use of information included in a URL, m m',', 1 such as the purchase information, indexes and identifiers.
5. The authentication and payment system according to claim 3, wherein: the payment server receives payment information, including the mobile 5 communication terminal number, transaction purchase information and payment means information, from the merchant terminal when a payment request is received from the merchant terminal, and the payment information confirmation unit transmits the payment means information received from the merchant terminal to the purchaser's mobile 10 communication terminal connected to the payment server, and receives a confirmation response from the purchaser's mobile communication terminal, thus confirming payment information.
6. The authentication and payment system according to claim 3, wherein: 15 the payment information confirmation unit confirms the purchase details of the purchaser, including a payment amount, and payment information, in cooperation with the purchaser's mobile communication terminal connected to the payment server, requests the purchaser's mobile communication terminal to input and transmit payment means information, and receives the payment means information from the purchaser's mobile 20 communication terminal, thus confirming the payment information.
7. The authentication and payment system according to claim 3, wherein: the authentication result reply unit transmits a payment approval request message containing the authentication results to the acquirer server, and transmits approval results 25 both to the merchant terminal and to the purchaser's mobile communication terminal if the approval results are received from the acquirer server, and the acquirer server processes corresponding payment approval and returns approval results, if a payment approval request message containing the authentication results is received from the payment server or either a member store system or a wired 30 network intermediate system.
8. The authentication and payment system according to claim 3, wherein: the authentication result reply unit transmits an authentication result message to the acquirer server, the merchant terminal and the purchaser's mobile communication 35 terminal so that approval processing is directly executed between the merchant terminal and the acquirer server through transmission/reception of the authentication results, and the acquirer server is operated so that, if the authentication results are received from the payment server and a separate payment approval request message is received from the merchant terminal directly or through a member store system or wired network intermediate system, the acquirer server processes corresponding payment approval, 5 transmits approval results to the merchant terminal directly or through the member store system or wired network intermediate system, and transmits the approval results to the purchaser's mobile communication terminal.
9. The authentication and payment system according to claim 3, wherein the issuer 10 information management intermediate server transmits URL information required to access a corresponding issuer server, which issues, manages and operates corresponding payment means, to the payment server if the payment means information is received from the payment server. 15
10. The authentication and payment system according to claim 9, wherein the issuer information management intermediate server transmits the payment means information received from the payment server to the corresponding issuer server, requests the issuer server to confirm whether the purchaser has subscribed to an authentication service corresponding to a transaction, and transmits URL information 20 required to access the issuer server to the payment server if the response to the subscription confirmation is received from the issuer server, and the issuer server confirms whether the purchaser has subscribed to the authentication service corresponding to the payment means if the payment means information is received from the issuer information management intermediate server, and 25 transmits the response to the subscription confirmation to the issuer information management intermediate server if the purchaser is confirmed to be an authentication service subscriber.
11. The authentication and payment system according to claim 3, further comprising 30 an intermediate server for intermediating payment approval and acquisition process between the payment server and the acquirer server, the acquirer server receiving an approval request from the intermediate server.
12. An authentication and payment system including an issuer server that issues 35 payment means in response to a request from a terminal of the merchant, an issuer information management intermediate server that manages URL information required to access domestic and foreign issuer servers, an acquirer server that performs payment approval and performs acquisition and settlement for member stores, and a payment server for intermediating between the issuer server, the issuer information management intermediate server and the acquirer server, thus providing an authentication and 5 payment service, wherein: the payment server comprises, a callback URL message transmission unit for generating a callback URL message, including URL information to allow the purchaser's mobile communication terminal to access the payment server, and transmitting the callback URL message to the 10 purchaser's mobile communication terminal if the payment server receives payment information including the purchaser's mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser, from the merchant terminal; a payment information confirmation unit for confirming purchase details of the 15 purchaser, including a payment amount, and payment information in cooperation with the purchaser's mobile communication terminal if the purchaser's mobile communication terminal accesses the payment server through the callback function of the callback URL message; an issuer server access URL acquisition unit for transmitting payment means 20 information to the issuer information management intermediate server if the payment means information is received from either the merchant terminal or the purchaser's mobile communication terminal, thus acquiring URL information required to access the issuer server of the payment means; an issuer server access URL transmission unit for transmitting a redirection 25 message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal having confirmed the payment information, using the issuer server access URL information acquired by the issuer server access URL acquisition unit, thus redirecting the connection of the purchaser's mobile 30 communication terminal to the issuer server and allowing authentication to be performed by the issuer server; and an authentication result reply unit for transmitting authentication results together with the payment information received from the merchant terminal to the acquirer server and allowing payment approval to be performed by the acquirer server, if the 35 authentication results are received from the issuer server when authentication is processed through the confirmation of the payment authentication information about the e~n- 1 corresponding payment means between the purchaser's mobile communication terminal, connected to the issuer server, and the issuer server.
13. The authentication and payment system according to claim 12, further 5 comprising the issuer information management intermediate server for transmitting to the payment server URL information required to access a corresponding issuer server that issues, manages and operates the payment means if the payment means information is received from the payment server. 10
14. The authentication and payment system according to claim 13, wherein: the issuer server confirms whether the purchaser has subscribed to the authentication service corresponding to the payment means if the payment means information is received from the issuer information management intermediate server, and transmits a response to the subscription confirmation to the issuer information 15 management intermediate server if the purchaser is confirmed to be an authentication service subscriber, and the issuer information management intermediate server transmits the payment means information received from the payment server to the corresponding issuer server, requests the issuer server to confirm whether the purchaser has subscribed to the 20 authentication service corresponding to the payment means, and transmits URL information required to access the issuer server to the payment server if the response to the subscription confirmation is received from the issuer server.
15. The authentication and payment system according to claim 12 wherein: 25 the callback URL message transmission unit generates the callback URL message using an identifier or key value used to index purchase information received from the merchant terminal, so that, when the purchaser's mobile communication terminal receives the callback URL message and accesses the payment server, the payment server can recognize and manage connection and continuation of transaction 30 information between the purchaser and merchant through the use of information included in a URL, such as the purchase information, indexes and identifiers.
16. The authentication and payment system according to claim 12 wherein: the payment server receives payment information including the mobile 35 communication terminal number of the purchaser, payment means information and transaction purchase information, other than payment authentication information about the purchaser, from the merchant terminal when a payment request is received from the merchant terminal, and the payment information confirmation unit confirms the payment information that includes purchase details of the purchaser, including a payment amount, and 5 payment means information in cooperation with the purchaser's mobile communication terminal connected to the payment server.
17. The authentication and payment system according to claim 12, wherein: the payment information confirmation unit requests the purchaser's mobile 10 communication terminal, connected to the payment server, to input and transmit payment means information, and receives the payment means information from the purchaser's mobile communication terminal, thus confirming the payment information.
18. The authentication and payment system according to claim 12, wherein the 15 authentication result reply unit transmits a payment approval request message containing positive authentication results to the acquirer server, and transmits approval results both to the merchant terminal and to the purchaser's mobile communication terminal if the approval results are received from the acquirer server. 20
19. The authentication and payment system according to claim 12, wherein: the acquirer server processes corresponding payment approval and returns approval results if positive authentication results are received from the payment server, and a separate payment approval request message is received from the merchant terminal directly or through a member store system or wired network intermediate system, and 25 the authentication result reply unit transmits an authentication result message to the acquirer server, the merchant terminal and the purchaser's mobile communication terminal so that approval processing is directly executed between the merchant terminal and the acquirer server through transmission/reception of the authentication results. 30
20. The authentication and payment system according to claim 12, further comprising an intermediate server for intermediating a payment approval process and acquisition process between the payment server and the acquirer server, the acquirer server receiving an approval request from the intermediate server. 35
21. An authentication and payment method performed by a payment server, the payment server intermediating between an issuer server that issues payment means and an acquirer server that performs payment approval, the method comprising: a callback URL message transmission step of transmitting a callback URL message to a purchaser's mobile communication terminal, if payment information is received from the merchant terminal and payment is requested, wherein the callback 5 URL message includes URL information required to access the payment server and the payment information includes a mobile communication terminal number and transaction purchase information, other than payment authentication information about the purchaser; a purchase information confirmation and payment means information 10 transmission step of confirming the payment information that includes the purchase details of the purchaser, including a payment amount, and the payment means information and is received from the merchant terminal, in cooperation with the purchaser's mobile communication terminal connected to the payment server through the callback function of the callback URL message; 15 a redirection request step of the payment server transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal using the issuer server access URL information, acquired by the issuer information management intermediate server, if the payment information 20 has been confirmed; and an authentication result return step of the payment server transmitting authentication results, received from the issuer server, and the payment information, received from the merchant terminal, to the acquirer server so as to allow the acquirer server to process payment approval for the payment means using the authentication 25 results from the issuer server, if the issuer server compares the payment authentication information received from the purchaser's mobile communication terminal with previously registered payment authentication information to authenticate a corresponding transaction and transmits results indicating whether authentication succeeded to the payment server. 30
22. The authentication and payment method according to claim 21, further comprising the step of the payment server transmitting the payment means information received from the merchant terminal to the corresponding issuer server and requesting the issuer server to confirm whether the purchaser has subscribed to the authentication 35 service corresponding to the payment means, before the callback URL message transmission step, wherein the callback URL message transmission step is performed if response to authentication service subscription confirmation is received from the issuer server when the purchaser is confirmed to be an authentication service subscriber by the issuer server. 5
23. The authentication and payment method according to claim 21, wherein the purchase information confirmation and payment means information transmission step is performed to request the purchaser's mobile communication terminal, connected to the payment server through the callback function of the callback URL message, to input and transmit payment means information, and receive the payment means information from 10 the purchaser's mobile communication terminal.
24. The authentication and payment method according to claim 23, further comprising the step of the payment server transmitting the payment means information, received from the purchaser's mobile communication terminal, to the issuer server and 15 requesting the issuer server to confirm whether the purchaser has subscribed to the authentication service corresponding to the payment means, before the authentication request step is performed, after the purchase information confirmation and payment means information transmission step has been performed, wherein the authentication request step is performed if a response to the 20 authentication service subscription confirmation is received from the issuer server when the purchaser is confirmed to be an authentication service subscriber.
25. An authentication and payment method performed by an authentication and payment system, the system including an issuer server that issues payment means, an 25 issuer information management intermediate server that manages URL information required to access domestic and foreign issuer servers, an acquirer server that performs payment approval, and a payment server for intermediating between the issuer server, the issuer information management intermediate server and the acquirer server, the method comprising: 30 a callback URL message transmission step of generating a callback URL message, including URL information required to access the payment server, and transmitting the callback URL message to the purchaser's mobile communication terminal, if payment information including a mobile communication terminal number and transaction purchase information, other than payment authentication information 35 about the purchaser, is received and payment is requested; a purchase information confirmation and payment means information transmission step of confirming purchase details of the purchaser, including a payment amount, and payment information in cooperation with the purchaser's mobile communication terminal connected to the payment server through a callback function of the callback URL message; 5 a redirection request step of the payment server transmitting a redirection message, used to automatically redirect a connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal using the issuer server access URL information, acquired by the issuer information management intermediate server, if the payment 10 information has been confirmed; and an authentication result return step of the payment server transmitting authentication results, received from the issuer server, and the payment information, received from the merchant terminal, to the acquirer server so as to allow the acquirer server to process payment approval for the payment means using the authentication 15 results from the issuer server, if the issuer server transmits results indicating whether authentication succeeded to the payment server according as authentication process is performed through confirming payment approval information for the payment means between the issuer server and the purchaser's mobile communication terminal accessing to the issuer server. 20
26. The authentication and payment method according to claim 25, wherein: the method further comprises, before the callback URL message transmission step, the steps of, the payment server transmitting the payment means information to the issuer 25 information management intermediate server if the payment means information is received from the merchant terminal; and the issuer information management intermediate server transmitting the URL information required to access the corresponding issuer server to the payment server. 30
27. The authentication and payment method according to claim 25, wherein the purchase information confirmation and payment means information transmission step comprises the steps of: requesting the purchaser's mobile communication terminal, connected to the payment server through the callback function of the callback URL message, to input 35 payment means information; transmitting the payment means information to the issuer information management intermediate server if the payment means information has been received from the purchaser's mobile communication terminal; the issuer information management intermediate server transmitting the corresponding issuer server access URL information to the payment server; and 5 transmitting the redirection message, used to automatically redirect the connection of the purchaser's mobile communication terminal from the payment server to the issuer server, to the purchaser's mobile communication terminal using the issuer server access URL information. 10
28. The authentication and payment method according to claims 26 or 27, wherein the issuer server access URL information transmission step comprises the steps of: transmitting the payment means information to the issuer server of the corresponding payment means and confirming whether the purchaser has subscribed to 15 the authentication service corresponding to the payment means; and transmitting the issuer server access URL information to the payment server if a response to the authentication service subscription confirmation is received from the issuer server when the purchaser is confirmed to be an authentication service subscriber. 20
29. The authentication and payment method according to claim 25, wherein the callback URL message transmission step is performed so that, if the purchaser information is received from the merchant terminal, the payment server generates the callback URL message including the received purchase information and transmits the callback URL message to the purchaser's mobile communication terminal. 25
30. The authentication and payment method according to claim 25, wherein the authentication result return step comprises the steps of: transmitting a payment approval request message including authentication results received from the issuer server and payment information received from the 30 merchant terminal to the acquirer server; and transmitting approval results both to the merchant terminal and to the purchaser's mobile communication terminal if the approval results processed with reference to the authentication results are received from the acquirer server. 35
31. The authentication and payment method according to claim 25, wherein: the acquirer server processes approval according to an approval request received from the merchant terminal directly or through either a member store system or a wired network intermediate system, and transmits approval results both to the merchant terminal and to the purchaser's mobile communication terminal, and the authentication result return step is performed to transmit the authentication 5 results received from the issuer server to the acquirer server, the merchant terminal and the purchaser's mobile communication terminal.
32. A payment server substantially as herein described with reference to an embodiment as shown in one or more of the accompanying drawings. 10
33. An authentication and payment system substantially as herein described with reference to an embodiment as shown in one or more of the accompanying drawings. 15
34. An authentication and payment method substantially as herein described with reference to an embodiment as shown in one or more of the accompanying drawings. Dated 22 December, 2011 20 SK Telecom Co., Ltd. Patent Attorneys for the Applicant/Nominated Person SPRUSON & FERGUSON
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| AU2011265570A AU2011265570A1 (en) | 2004-08-25 | 2011-12-23 | Authentication and payment system and method using mobile communication terminal |
Applications Claiming Priority (4)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| KR10-2004-0067261 | 2004-08-25 | ||
| KR10-2004-0102456 | 2004-12-07 | ||
| AU2005275633A AU2005275633A1 (en) | 2004-08-25 | 2005-08-24 | Authentication and payment system and method using mobile communication terminal |
| AU2011265570A AU2011265570A1 (en) | 2004-08-25 | 2011-12-23 | Authentication and payment system and method using mobile communication terminal |
Related Parent Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| AU2005275633A Division AU2005275633A1 (en) | 2004-08-25 | 2005-08-24 | Authentication and payment system and method using mobile communication terminal |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| AU2011265570A1 true AU2011265570A1 (en) | 2012-02-02 |
Family
ID=46603369
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| AU2011265570A Abandoned AU2011265570A1 (en) | 2004-08-25 | 2011-12-23 | Authentication and payment system and method using mobile communication terminal |
Country Status (1)
| Country | Link |
|---|---|
| AU (1) | AU2011265570A1 (en) |
-
2011
- 2011-12-23 AU AU2011265570A patent/AU2011265570A1/en not_active Abandoned
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11645640B2 (en) | Authentication and payment system and method using mobile communication terminal | |
| US7685020B2 (en) | Mobile commerce receipt system | |
| US7801829B2 (en) | Smartcard internet authorization system | |
| CA2958140C (en) | Multi-commerce channel wallet for authenticated transactions | |
| US20080257952A1 (en) | System and Method for Conducting Commercial Transactions | |
| CZ20002888A3 (en) | System and method for treating payments and transactions | |
| US20020164031A1 (en) | Devices | |
| KR20110107311A (en) | Payment service system and method using mobile network, and computer program therefor | |
| KR100592156B1 (en) | Debit transaction service method using mobile communication network | |
| KR20140046831A (en) | Agent system and method for payment | |
| KR20020010160A (en) | System & Method for Wireless Electronic Commerce Payment service | |
| AU2011265570A1 (en) | Authentication and payment system and method using mobile communication terminal | |
| EP1862960A1 (en) | Method for paying via a computer network | |
| KR20020083195A (en) | System and Method for the electronic billing process and authentication using the synchronized wire-wireless complex system | |
| KR101065424B1 (en) | Method and system for providing payment using VIP terminal | |
| AU2010202066B2 (en) | Serial number and payment data based payment card processing | |
| KR20110124929A (en) | Mobile secure payment method and system | |
| KR20020089010A (en) | A service system for cash | |
| Italtel | Technology as the catalyst of users' acceptance in | |
| Fleisch | Critical Success Factors of Mobile Payment | |
| KR20100013373A (en) | System and method for account linkage settlement by using voip devices and recording medium | |
| KR20060026155A (en) | Payment system and method using speed dial number of mobile communication terminal | |
| KR20100013367A (en) | System and method for goods settlement by using voip devices and recording medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PC1 | Assignment before grant (sect. 113) |
Owner name: SK PLANET CO., LTD Free format text: FORMER APPLICANT(S): SK TELECOM CO., LTD. |
|
| MK5 | Application lapsed section 142(2)(e) - patent request and compl. specification not accepted |