KR20240069419A - Method for verification of safrty electronic payment - Google Patents

Abstract

An object of the present invention is to solve a problem of an existing electronic payment technology which cannot clearly check order details, and to improve the safety of certificate-based electronic commerce by differently using a terminal which performs an order and a terminal which performs electronic payment. An electronic payment security method comprises the steps of: requesting an order (S01, S02); transferring order details to an order execution terminal (200) (S03, S04); checking or inputting linkage information (S05); sending recognition information and the order information to a relay system server (220) (S06); checking identity according to the linkage information (S07); receiving the order information (S08); electrically signing the payment information and the order information and transferring electronic signatures to the relay system server (S09, S10); receiving approval information (S11, S12, S13); transferring the approval information and an electronic signature value to the order execution terminal (S14); transferring the electronic signature value to an electronic commerce server (210) (S15); and checking correlation and validity of a value of the stored order information and a value of the electronic signed order information (S16).

Description

Electronic payment security method {METHOD FOR VERIFICATION OF SAFRTY ELECTRONIC PAYMENT}

The present invention relates to an electronic payment system, and more specifically, in order to perform a safe electronic payment process in the electronic payment process using a credit card in electronic commerce through a communication network, the order performance terminal and the payment performance terminal are separated, and order information It relates to a new secure electronic payment system and method that improves the security of the electronic payment process by performing and processing electronic signatures for and payment information, respectively.

In e-commerce, which involves purchasing goods using the Internet, a user using a PC usually connects to a service server such as a shopping mall that buys and sells goods on the Internet to make the purchase. In these transactions, a card is used as a payment tool. As with the offline card payment structure, the information signed by the card holder is delivered to the card approval company, and then the approval information is received from the shopping mall to complete the payment. At this time, offline, in order to prove the owner of the card in accordance with related laws such as the Credit Finance Business Act, a signature is made to verify the identity of the resident registration card or to confirm that the signature is the same as the signature on the back of the card. On the Internet, etc., an electronic signature based on a public certificate is used. In addition to identity verification, it also provides a non-repudiation function for transactions. Since the public certificate system can reduce security vulnerabilities to face-to-face verification due to the openness of the Internet environment, prevent forgery and falsification of electronic information, and provide a non-repudiation function for electronic transactions, it has already been used in online banking such as Internet banking, It has become established in various areas such as card payments in e-commerce and payments for various documents.

However, this public certificate-based electronic signature has the following problems. First, most users store their certificates and private keys on their hard disks. In addition to hacking, which is evolving day by day, loss due to user carelessness can also be a problem. Fortunately, complementary measures such as CRYPTOKI-based security tokens are being developed, but this also requires the corresponding hardware to be connected to the computer, and since electronic signatures are performed through simple password input (PIN in the case of security tokens), the actual security level is low. This is not very outstanding. This is because a hacker who knows the PIN can use the linked API (Cryptoki) to perform an electronic signature without the user's knowledge.

Second, public certificates are not used not only by individuals but also by corporations. A general-purpose public certificate has the same effect as a seal certificate, and therefore signatures signed through it can be used as legal evidence. If you look at the places where these corporate public certificates are used, they are used in various places such as internet banking, bidding, and purchasing, and the actual users are often practitioners. Therefore, problems may arise if there is a slight problem with the management of public certificates or if they are leaked without anyone's knowledge by hackers, etc.

Thirdly, there is the issue of verification of purchase information. Some small shopping malls conduct e-commerce while being quite vulnerable to hacking. Generally, hacking is thought of as acquiring information from other people or organizations or causing problems in the system, but there are also cases where people hack their own systems for their own gain. If the price is 1,000,000 won at the time of payment at a shopping mall, there is an actual application of the hacking method of hacking the web browser to change it to 10 won and make payment to obtain the difference. This can especially occur in web browsers that are easily hacked, and in situations where the shopping mall only obtains approval information because order information and payment information are separated.

Therefore, in electronic payment transactions, it satisfies the intention of overcoming the security vulnerabilities of the terminal used or limiting the number of electronic signature performers to a certain number of people, increases the security of electronic commerce, and promotes the use of public certificates. There is still a need for technologies that enable this.

In view of the above problems, the present invention was devised to solve the problems of electronic payment technology in electronic commerce using previous cards and to provide clarity and safety of transactions. Through the present invention, electronic signatures can be used only for card payments. It solves the problem of existing electronic payment technology where order details cannot be clearly confirmed, and improves the safety of certificate-based electronic commerce by allowing the terminal that performs orders and the terminal that performs electronic payment to be used differently. It is for that purpose.

As an embodiment, the electronic payment security method is a method for making payment for electronic commerce, and includes the steps (S01, S02); The e-commerce server 210 stores the order information and then transmits the order details to the order execution terminal 200 (S03, S04); Confirming or inputting linkage information including payment performance terminal 230 recognition information at the order performance terminal 200 (S05); Sending the recognition information and the order information from the order execution terminal 200 to the relay system server 220 (S06); A step (S07) of the payment performance terminal 230 connecting to the relay system server 220 and then verifying its identity according to the linkage information; The payment performance terminal 230 receiving the order information from the relay system server 220 (S08); Steps (S09, S10) of confirming order information at the payment performance terminal 230, signing electronically for the payment information and order information, and then transmitting the electronic signatures to the relay system server 220; The relay system server 220 transmits the electronic signature value for the payment information received from the payment performance terminal 230 to the card approval company server 240 and then receives approval information (S11, S12, S13); A step (S14) in which the relay system server 220 transmits the electronic signature value for the approval information and the order information received from the card approval company server 240 to the order execution terminal 200 (S14); The order execution terminal 200 transmits the received approval information and the electronic signature value for the order information to the e-commerce server 210 (S15); And the e-commerce server 210 confirms the approval information and includes a step (S16) of confirming the relevance and validity of the value of the order information stored by the user and the electronically signed order information.

The present invention, which has the configuration described above, provides security in e-commerce by electronically signing order details and payment information when performing electronic payment using a credit card in e-commerce and sending them only to the required e-commerce server and card approval server, respectively. Performance can be improved and transaction safety can be ensured.

In addition, by separating the terminal that performs orders and the terminal that performs payment through a relay system, it not only provides safety against hacking, but also provides a way to safely perform electronic signatures where necessary, preventing unnecessary copying and leakage of public certificates, etc. It provides a significant effect on the security of the infrastructure using public certificates.

Figure 1 is a schematic block diagram of information exchange between electronic payment participation terminals and servers according to an embodiment of the present invention.
FIG. 2 is a flowchart schematically showing the information exchange shown in FIG. 1.

The present invention described below can be modified in various ways and can have various embodiments. Specific embodiments will be illustrated in the drawings and described in detail in the detailed description.

However, this is not intended to limit the present invention to specific embodiments, and should be understood to include all transformations, equivalents, and substitutes included in the spirit and technical scope of the present invention. In describing the present invention, if it is determined that a detailed description of related known technologies may obscure the gist of the present invention, the detailed description will be omitted.

The terms used in this application are only used to describe specific embodiments and are not intended to limit the invention. Singular expressions include plural expressions unless the context clearly dictates otherwise. In this application, terms such as “comprise” or “have” are intended to designate the presence of features, numbers, steps, operations, components, parts, or combinations thereof described in the specification, but are not intended to indicate the presence of one or more other features. It should be understood that this does not exclude in advance the possibility of the existence or addition of elements, numbers, steps, operations, components, parts, or combinations thereof.

Additionally, terms such as first and second may be used to separately describe various components, but the components should not be limited by the terms. The above terms are used only for the purpose of distinguishing one component from another.

In addition, when at least two different embodiments are described in the present application, all or part of the components of each embodiment can be merged and used interchangeably without departing from the technical spirit of the present invention. .

The present invention relates to a secure electronic payment system and method. This is for electronic payment of e-commerce. After each information about the order and payment is electronically signed, the e-signature for the order is transmitted to an e-commerce server such as a shopping mall, and the e-signature for the payment is sent to the card approval company server. It is delivered to and has the characteristic of using the terminal that performs the order and the terminal that performs the electronic signature separately.

Figure 1 shows a schematic block diagram of information exchange between electronic payment participation terminals and servers according to an embodiment of the present invention. As shown, the system of the present invention includes an e-commerce server 100 that initiates goods and performs e-commerce, a card approval company server 110 that approves payment, an order execution terminal, a payment performance terminal, and a card approval company server. It is configured to include a relay system server 120, an order performance terminal 130 that connects to an e-commerce server and performs an order, and a payment performance terminal 140 that performs electronic signatures on order details and payment details, respectively.

The e-commerce server 100 may be a web service-type shopping mall that posts product information and sells products on the Internet. The card approval server 110 is a system that processes card payments for products and then transmits the result of approval to the e-commerce server. This structure is already a typical e-commerce system on the Internet.

Most systems so far require users to access a shopping mall using a personal computer terminal such as a PC or laptop, select an item, enter information such as the delivery address, launch a card payment program, and then make various payments such as card payment and bank transfer. Choose one of the payment methods. When selecting dual card payment, the user selects the card to use, decides how to use the card, such as installments, and then makes the actual card payment. The present invention improves the processing method for payment using a card during this process. When choosing to pay using a card in the existing system, the user selects the type of card directly on the terminal where the order was performed, enters the card number and expiration date, and then uses an electronic certificate based on a public certificate for identity verification and prevention of repudiation. After signing, this information is sent to the card approval company for approval, and if normal, the payment is completed. At this time, in order to strengthen security, a client program with various security features is installed to perform card selection and electronic signature, but basically, this series of processes is performed at the terminal where the order was placed. Basically, for security reasons, card information cannot be left on the shopping mall, and order information cannot be confirmed by the card approval company by comparing the details, so this is an example of hacking where a hacker takes advantage of a loophole in this process to change the amount at the time of order and the payment amount. There is also.

Compared to the conventional electronic payment method described above, the payment method according to the present invention allows the shopping mall to compare and confirm order information and take non-repudiation of this information through separate electronic signatures for order details and payment details, The card approval company can perform the approval process after confirming the electronically signed payment information as before. In addition, by separating the terminal that performs the order and the terminal that performs the payment, it is possible to fundamentally prevent various types of hacking that can occur on the computer that performs the order, leakage of card information such as card number and expiration date, and leakage of public certificate information. , it has the advantage of being able to be processed directly by the department in charge of payment processing in corporations such as large corporations. The terminal 130 that performs the order and the terminal 140 that performs the payment may be a computer such as a PC or laptop, or a mobile communication terminal. For example, after shopping on a laptop, you can use the terminal 140 on your smartphone. Payment can be made instead, or after shopping in the web browser of one's smartphone, payment can be made in a dedicated payment application on the same smartphone. Alternatively, a worker who wishes to make a purchase within the company may place an order on his or her computer, and payment for this may be made electronically after a purchasing team representative within the company confirms the order details on his or her computer.

At this time, for the convenience of transactions, it may be convenient to pre-store one or more of the card number, card expiration date, and card-related password on the computer performing the electronic payment and then select one of them to proceed with the electronic payment.

Meanwhile, the relay system server 120 delivers order details through connection with the order performance terminal 130 and the payment performance terminal 140, and electronically signs the electronic payment electronic signature and order details electronically signed by the payment performance terminal 140. After receiving the signature from the payment performance terminal (140), the electronic payment electronic signature is sent to the card approval company server (110) to receive an approval result, and then this approval result and the order details electronic signature are sent to the order performance terminal (130). plays a role At this time, linkage information that allows the order performance terminal 130 and the payment performance terminal 140 to recognize each other is required. This link information is appropriate to include a mobile phone number as recognition information if the payment performance terminal 140 is a mobile communication terminal. Since the mobile phone number is a unique number for each device, it can also be used as a way to remotely run smartphone applications registered to the service. As another example, the recognition information among the linkage information is a random string generated by the order execution terminal 130 when the payment performance terminal 140 is a different computer, or a user of the order performance terminal 130 and the payment performance terminal 140. It may be an input string that can be known to everyone. Among the linkage information, the order execution terminal 130 can use the recognition information registered in the relay system server 120 to determine whether the payment performance terminal 140 can use the relay system server 120 when it connects to the relay system server 120.

In addition, the linkage information connects the relay system servers on the network, so it may include encryption key information that can be shared with each other for security. On a network applied in this way, the relay system can exchange data between the order execution terminal, the payment execution terminal, and the card approval server, but the plaintext value of this information is unknown. For example, the order performance terminal 130 and the payment performance terminal 140 configure an encryption and decryption method by directly inputting the SEED string to generate a key according to a mutually defined algorithm, and the payment performance terminal 140 is a card approval company. After holding the public certificate of the server 110 in advance, the card payment electronic signature value is encrypted using the certificate of the card approval company server 110, and the approval information is entered into the order information with a random encryption key generated by the shopping mall. After linking, the payment performance terminal 140 transmits the encryption information using the card approval server's certificate, and then the card approval server encrypts the approval information with the random encryption key and finally delivers it to the shopping mall, known PKI Due to the underlying technology, the relay system cannot know the plaintext value of all data, so data security can be further improved.

Now, with reference to FIG. 2, a secure electronic payment method provided according to another aspect of the present invention will be described.

The user performing the order connects to the e-commerce server 210 on the Internet through the order execution terminal 200 and has a transaction step of selecting goods (S01). Afterwards, the user places an order to complete the order through actual electronic payment. The payment process begins (S02). The e-commerce server 210, such as a shopping mall, stores information about this transaction, especially order information (S03), and then delivers the order information to the order execution terminal 200 (S04). This order information is stored for comparison with the order details information electronically signed by the payment performance terminal 230 during the later process. Therefore, if data has been tampered with by hacking or the like at the order execution terminal 200, it is possible to confirm this.

The order performance terminal 200 connects to the relay system server 220 and sends linkage information (S05) including recognition information that can recognize the payment performance terminal 230 and the order information (S06). The linkage information is It may be one or more of the following: recognition information that can be confirmed when the payment terminal 230 connects to the relay system server 220, a network encryption algorithm, and a SEED string for sharing a network encryption key. If the payment performance terminal 230 is a smartphone, the recognition information may be the phone number of the smartphone, a string directly entered by the user, or one or more of the random strings generated by the program of the order performance terminal 200. You can. In addition, it will be necessary to prevent identification numbers that have not completed transactions at the same time from overlapping in the relay system server 220.

The payment terminal 230 uses the identification number to connect to the relay system server 220 and confirms the linkage information (S07).

Link information is determined by the user inputting it into the program before the payment performance terminal 230 connects to the relay system server 220. If the payment performance terminal 230 is a smartphone and has a unique number, you can input it once or use the value retrieved from the system, and make sure that the order performance terminal 200 and the payment performance terminal 230 do not overlap in advance. If you decide to continue using the string with the non-do, you can use that string as is. Alternatively, if safety is more important, the payment performance terminal 230 may input the newly entered string as is from the order performance terminal 200. Among the linkage information, the SEED string for deriving the recognition information, algorithm, and encryption key is not transmitted to any system in system connection for security reasons, and is predetermined by the user of the order performance terminal 200 and the user of the payment performance terminal 230 in advance. Alternatively, it can be decided and notified via phone, etc., and this part is not related to the scope of the present invention. If encryption and decryption are applied, the order performance terminal 200 encrypts so that only the payment performance terminal 230 can decrypt it, so if the SEED string for deriving the algorithm and encryption key does not match, even if the recognition numbers match, the payment performance terminal ( 230) will not be able to receive valid information from the relay system. According to the method described above, the order execution terminal 200 transmits the order information to the relay system server 220 (S08)

The above order information is the entire order content, or among the order information, order number, order amount, representative product name, usable card information, information provided by the card company such as whether installments are possible according to the card information, recent order history information, and a hash of the entire order content. It may include one or more of value information and affiliated store information. Additionally, if you want to receive an encrypted approval result from the card approval company server 240, it may include an encryption key randomly generated by the e-commerce store server 210.

Afterwards, at the payment performance terminal 230, after the user confirms the order information, enters the card information to be used, selects a payment method according to the card, and then performs an electronic signature on the payment information and order information (S09) ) Each electronic signature is delivered to the relay system server 220 (S10). At this time, the card information can be selected from direct input or pre-entered information. Additionally, the certificate for electronic signature must be stored in the payment terminal 230 in advance.

The relay system server 220 transmits the electronic signature value for the payment information received from the payment performance terminal 230 to the card approval company server 240 (S11), and the card approval company server 240 performs the approval procedure. After doing so (S12), the approval information is returned to the relay system server 220 (S13).

The payment information consists of one or more of the card number, expiration date, card password, payment amount, merchant information, and payment performance time, and an electronic signature is performed on this payment information.

Thereafter, the relay system server 220 transmits the electronic signature value for the order information received from the approval information payment performance terminal 230 received from the card approval company server 240 to the order performance terminal 200 (S14)

The order execution terminal 200 transmits the received approval information and the electronic signature value for the order information to the e-commerce server 210 (S15), and the e-commerce server 210 confirms the approval information, and then The transaction is completed by confirming the relevance and validity of the stored order information and the value of the electronically signed order information received from the order execution terminal 200 (S16).

As described above, the feature of the present invention is that it maximizes the safety of public certificates, which are the basis of Internet-based e-commerce, and fundamentally prevents hacking by adding and verifying electronic signatures for order information in addition to electronic signatures for payment information in shopping malls, etc. It has the characteristic of being able to solve the threat of indiscriminate copying and leakage of public certificates by separating the buyer and the signer.

As explained in detail above, the present invention, which has the above-described configuration, electronically signs order details and payment information when performing electronic payment using a credit card in electronic commerce, and serves as a necessary object for each, such as an e-commerce server and a card approval agent. By sending it only to the server, security in e-commerce can be improved and transaction safety can be ensured.

In addition, by separating the terminal that performs orders and the terminal that performs payment through a relay system, it not only provides safety against hacking, but also provides a way to safely perform electronic signatures where necessary, preventing unnecessary copying and leakage of public certificates, etc. It provides a significant effect on the security of the infrastructure using public certificates.

Meanwhile, the embodiments disclosed in these drawings are merely provided as specific examples to aid understanding, and are not intended to limit the scope of the present invention. It is obvious to those skilled in the art that in addition to the embodiments disclosed herein, other modifications based on the technical idea of the present invention can be implemented.

100...e-commerce store (e.g. shopping mall) server
110...Card acceptor server
120...relay system server
130...Order execution terminal (computer, mobile communication terminal)
140...Payment performance terminal (computer, mobile communication terminal)
200...Order execution terminal (computer, mobile communication terminal)
210...e-commerce store (e.g. shopping mall) server
220...relay system server
230...Payment performance terminal (computer, mobile communication terminal)
240...Card acceptor server

Claims (1)

As a method for making payments for e-commerce,
The user's order execution terminal 200 accesses the e-commerce server 210 to select a product and request an order (S01, S02);
The e-commerce server 210 stores the order information and then transmits the order details to the order execution terminal 200 (S03, S04); Confirming or inputting linkage information including payment performance terminal 230 recognition information at the order performance terminal 200 (S05);
Sending the recognition information and the order information from the order execution terminal 200 to the relay system server 220 (S06);
A step (S07) of the payment performance terminal 230 connecting to the relay system server 220 and then verifying its identity according to the linkage information;
The payment performance terminal 230 receiving the order information from the relay system server 220 (S08);
Steps (S09, S10) of confirming order information at the payment performance terminal 230, signing electronically for the payment information and order information, and then transmitting the electronic signatures to the relay system server 220;
The relay system server 220 transmits the electronic signature value for the payment information received from the payment performance terminal 230 to the card approval company server 240 and then receives approval information (S11, S12, S13);
A step (S14) in which the relay system server 220 transmits the electronic signature value for the approval information and the order information received from the card approval company server 240 to the order execution terminal 200 (S14);
The order execution terminal 200 transmits the received approval information and the electronic signature value for the order information to the e-commerce server 210 (S15); and
An electronic payment security method including a step (S16) where the e-commerce server 210 verifies approval information and verifies the relevance and validity of the value of the order information stored by the e-commerce server and the electronically signed order information.