KR100486081B1 - Cluster-type Relay System for Electronic Financial Service and Electronic Financial Service Providing Method using the same - Google Patents

Abstract

The present invention relates to a relay system for a large scale electronic banking service and a method for providing an electronic banking service using the same. The present invention relates to a cluster relay server system including one or more relay servers, and a terminal system. Fail Over function for session setup, terminal authentication function, data encryption function, and data exchange with the relay server without protocol conversion, receiving XML format data from the server and generating output screen Each relay server of the cluster server system receives a service request from a terminal and manages a key, user authentication / logon function, data encryption function, and data of an external bank system. Service request signal only if the service request requires It transmits to the banking system, receives the service result message, converts it into XML format, and transmits it to the corresponding terminal.

By using the system and method according to the present invention, the terminal manages distributed processing sessions to multiple servers, thereby improving the connection success rate, enabling large-scale efficient session processing, and implementing output screen composition and output at the terminal side. By doing so, it is possible to overcome the limitations caused by the transmission speed and significantly reduce the load on the server.

Description

Cluster-type relay system for electronic financial services and electronic financial service provision method using the same {Cluster-type Relay System for Electronic Financial Service and Electronic Financial Service Providing Method using the same}

The present invention provides a clustered relay system for providing a large-scale electronic banking service, a service providing method using the same, and more particularly, a system for integrating and providing online financial information provided by a plurality of financial institutions. The present invention relates to a system and method for providing a cluster type relay server system including a distributed terminal management function and an output screen configuration and output function using XML.

Recently, due to the development of a multimedia communication environment such as wired and wireless Internet, various information can be obtained by using a computer and a portable communication device.

Electronic banking service is a kind of such service, which allows users to access various financial institution systems (servers) in the Internet environment by using a terminal to inquire various financial information related to themselves or to perform financial processing. It became.

The first type of electronic banking service installs client software independently developed and distributed by each financial institution on the user's computer, and accesses the financial institution's system through the software and a predetermined communication network (Internet, etc.). It was provided. In this way, users using multiple financial institutions have to install and operate all the client software for each financial institution, which is cumbersome, and the data format of each financial institution is confused.

In order to overcome this drawback, the web server method is proposed. In other words, a user accesses a web server of a financial institution using a public web browser such as Internet Explorer or Netscape installed on his computer, logs on, and receives a desired service mainly in HTML format. This web server method has the advantage that no separate software is required for each financial institution, but in order to receive the services of several financial institutions, it is necessary to log on to the financial institution's web server one by one. It was difficult to manage ID and password of institutional web server.

To compensate for this drawback, Korean Patent No. 205954 proposes a method in which a user can receive virtual bank service from all banks through one relay system. The virtual bank relay server system according to the present invention includes a subscriber access means that is connected to a subscriber terminal and performs a protocol conversion function. Data storage means for storing the processing control information, history information, output screen information, subscriber information, etc. required for providing the service; Analyzing the subscriber's request message input from the subscriber access means to generate a process according to the request type to process it Request processing means for outputting the processed result to the subscriber access means using output screen information stored in the data storage means; And receiving a request message from the request processing means, constructing and converting an inquiry message according to the process control information stored in the data storage means, and transmitting the converted message to the bank system, and processing the response data when the response message is received from the bank system. And session management means for extracting and converting the response data in accordance with the process control information and transmitting the result data to the request processing means.

In the service providing method using such a system, if the request type from the terminal is a request for providing an output screen, the requested output screen is configured and transmitted. If the request type is an end time extension request, the session end time timer is initialized, and the request type is a bank. If the system access request, the query message is sent to the banking system to receive the processing result message, and the output screen is constructed and transmitted to the subscriber.

Meanwhile, the Internet service environment is rapidly changing due to the activation of the Internet. Due to the large amount of transactions, a system with a large processing capacity is required for various Internet businesses. If the system expansion rate is less than the transaction growth rate, it may be difficult to maintain the quality of service desired by the customer, and the service may be difficult. In particular, in the case of a transaction service that does not provide simple contents such as financial services, server resources are consumed more and service stability for guaranteeing transaction processing is required.

In order to overcome this problem, in the existing web services where large-scale transactions occur, multiple servers are distributed or clustered together to provide services for stable service. When one server fails, the service is transferred to another server. Is adopted. In order to handle the service of a failed server in another server, user's session information should be shared between servers. Although the technical part is different depending on the implementation method, user session is global so that all servers in the cluster can be shared. Managed. Sessions that are managed globally on the server may have bottlenecks in global session management as transactions increase, and there is a disadvantage in that all services fail if a problem occurs in managing global sessions. .

In this regard, the relay server according to the aforementioned patent is also composed of a single proxy server, which may cause a connection failure when a large transaction occurs.

In addition, in the above-described conventional electronic banking service, the browser on the terminal only outputs the screen received from the server, and the relay server composes the message necessary for service processing, interworking or calling the service processing module, and outputs the screen into HTML. Perform all processing up to the function to be created. The electronic banking service by the web service has the advantage that a client does not have to be distributed to provide a service than the client / server method, but the client / server method which processes the message creation and output screen generation required for the service to the client is web. There is an advantage that the burden on the server less than the service method.

In addition, since the output screen and service processing are handled by the relay server, which is a web server, if the screen type is different for each channel or communication device (cell phone, PDA, IMT2000, etc.), the service processing part is the same, but the output screen generation part is a channel. Whenever this is added, there is a disadvantage in that the corresponding program of the relay server must be newly developed / modified separately.

In the system according to the above patent, the output screen information is stored in the data storage means, and the output screen is configured using the output screen layout information in which the request processing means of the relay server is stored and transmitted to the terminal. The output screen is in HTML format, and since various HTML sources are included, the data size is large and the cost and time required for transmission are increased. In addition, when the user terminal is not a general computer system but a mobile communication device such as a mobile phone or PDA using a wireless Internet service, it is necessary to generate a different output screen for each device.

Therefore, the present invention devised to solve the above problems of the prior art reduces the burden of the web server by adding a function that the existing relay server (web server) to the browser on the terminal side, the web server outputs the screen This paper aims to provide a relay server system that provides processing capacity for large-scale transactions by limiting the file server function to manage only HTML or image files that are needed.

In addition, by separating the service processing and output screen generation, the output screen generation part according to the addition of a channel (mobile phone, PDA, IMT2000, etc.) may be newly implemented only on the terminal side, and the service processing part on the server side may be jointly used. Although it has a structure of distributed cluster for stable service, its purpose is to provide a cluster type relay server system for electronic banking service that eliminates the weakness of global session by performing session management on the terminal side.

In order to achieve the object as described above, the electronic financial service relay system according to the present invention is a predetermined data extracted from one or more financial institution system linked to the outside, and one or more data of the data that is provided on its own. A cluster type relay server system including one or more relay servers for providing a specific user terminal which is converted into a format and connected thereto; Transmit service request message by connecting to one of the relay servers without protocol conversion, and receive service result message in XML format as a result of the processing, and source (HTML form for each channel or communication device) for output screen composition of the corresponding service result message. And image files, etc.) to configure and output an output screen from an external web server, to encrypt / decrypt data transmitted / received to and from the server in a public / secret-based encryption / decryption method, and the one or more relays. A user terminal having browser software installed therein that has a function of checking a currently accessible relay server among the servers and setting and managing a session with the relay server; It consists of one or more communication channels connecting the cluster-type relay server system and the user terminal.

Each relay server includes a connection management device comprising a browser connection management unit, a connection management device control unit, a financial institution connection management unit, a service processing resource management unit, and a component management unit, a server security device including an encryption unit, a decryption unit, and an authentication unit, and a server. Server data storage device that stores and manages the necessary data,

1) If there is a service request from the terminal, the access management device requests a resource allocation confirmation request to check whether a resource for service processing can be allocated to the service processing resource management unit, and provides a service if the resource can be allocated. If the resource cannot be allocated, wait for a predetermined time and request for resource allocation again. If the resource allocation cannot be received for a predetermined number of times, the resource allocation confirmation function transmits an error message to the terminal, and 2) the terminal browser relays the server. When requesting a public key, a server public key and a random browser management number are generated and transmitted, the browser management number is transmitted to a browser access management unit and used as a management ID of the corresponding browser. When a message encrypted with a key is received, the server Key management function that decrypts the secret key and delivers it to the browser access management unit, and 3) parses the XML logon request message sent from the terminal browser and delivers it to the financial institution system to receive the logon result message. Logon management function for rewriting and encrypting in XML format and delivering it to the browser of the terminal together with the browser ID. 4) After receiving and parsing the service request message in XML format from the terminal browser, the server is a component service. Is a component management unit, and in the case of a financial institution-related service, it is delivered to a financial institution system, and a message processing function for receiving a service result message from a financial institution system or a component management unit, rewriting it in XML format, encrypting it, and sending it to a terminal browser. Equipped.

The server security device includes a function of encrypting / decrypting a message transmitted and received between the relay server and the terminal browser, and an authentication-related processing function based on a public / private key (Private Key Infrastructure).

The server data storage device stores and manages management information such as service items (types), components and financial institution information matching service items, and whether logon information is required for each service item.

The user terminal accesses one of the relay servers without changing the protocol, transmits a service request message, receives a service result message, and obtains a source such as an HTML file for configuring an input / output screen from an external web server. A server access device having a coming function, and a browser security device that protects data by encrypting and decrypting messages sent and received between the terminal browser and the relay server, and have a PKI-based authentication-related processing function. The encryption unit constituting the browser security device has a function of encrypting the data based on the secret key, the decryption unit has a function of decrypting the data based on the secret key, and the authentication unit processes PKI encryption or authentication processing.

In addition, the user terminal exchanges a secret key with the relay server before processing the service for the first time, establishes security between the server and the browser, creates a service request message in XML and sends it to the relay server, and the service result XML message received from the relay server. Function to parse and to get the required source from the web server according to the contents of the message to create and output the output screen, and to adjust the browser session device to be described later to set the start and end of the session and to store the data in the session. The ability to transfer the session data required for message creation or output screens from the browser session management device, and if the server is disconnected or unresponsive, retrieves the new server address and the existing server public key from the browser session management device. Process the secret key exchange process and get the logon request message. That on processing the service again after processing and failover comprising a service processor that provides (Fail Over) function.

In addition, the user terminal manages session initiation session timeout and session allocation, and converts session data used in the terminal browser into a data format that can be stored in the browser data storage device and, conversely, converts session data stored in the browser data storage device. It includes a browser session management device that converts the data to be used by the browser.

The service providing method using the above-mentioned relay server system and terminal for an electronic banking service consists of the following steps.

A cluster type relay server system including one or more relay servers connected in parallel, one or more user terminals, one or more financial institution systems, and a communication network connecting the systems with the terminal, wherein a browser installed in the user terminal is provided. A failover and access step (first step) of checking a relay server capable of processing a current service among the relay servers and connecting to a processable relay server; A key and ID exchange step (second step) of exchanging a browser ID, a public key / secret key for data security between the terminal browser and the relay server and a random number generated by the relay server for browser identification; A logon step (step 3) of performing a terminal logon to the relay server; The terminal browser encrypts the service request message in XML format without the protocol conversion with the relay server and transmits the service request message to the relay server, and the relay server transmits the service processing result obtained using its own component or the financial institution system in the encrypted XML format. A service result providing step of transmitting the service result message to the terminal (step 4); And a service result output step (step 5) in which the terminal browser receives and decodes the service result message in the XML format and generates and outputs a service result screen.

The failover and access step (first step) is to extract one of the relay server addresses in which the service processing device of the terminal browser is stored when a user requests, and to provide information about the server requesting the service processing, the browser session of the browser. When the first-first step of storing in the management device and a request for connection to the corresponding relay server, the connection management device of the relay server checks whether the resource allocation is possible to the service processing resource management unit of the relay server, and the resource allocation is possible. In case of step 1-2, a session is established between the terminal browser and the relay server. If resource allocation is not possible, the access management device of the relay server returns to the service processing resource management unit after a predetermined time until resource allocation is possible. If an allocation request is made and resource allocation cannot be received for a predetermined number of times, an error message is generated by the terminal. Steps 1 to 3, and the service processing device of the terminal browser receiving the error message take the address of the other relay server until searching for a relay server capable of resource allocation, and performs steps 1-1 to 1-3. Repeat steps 1-4.

In addition, the key and ID exchange step (second step) requests that the terminal browser sends the public key and the browser ID to the connected relay server, and the access management device of the relay server randomly generates its public key. Step 2-1 of transmitting the browser ID, which is one number, to the terminal browser, and the terminal browser receives and stores the public key and the browser ID of the connected relay server, and encrypts it with the relay server public key receiving the private key. Step 2-2 of transmitting its own browser ID to the relay server, and Step 2-3 of the relay server decrypts the secret key of the terminal browser, matches with the browser ID, and stores and manages the same.

In addition, in the logon step (step 3), the terminal browser generates a logon request message in XML format using a service processing device and delivers the message to a browser session managing device, and the browser session managing device uses the browser security device. Step 3-1 of encrypting the logon request message with the secret key of the secret key and transmitting the encrypted logon request message to the relay server, and the relay server decrypts and analyzes the received logon request message and determines whether the logon can be logged on using the financial institution system or its own database. After confirming, step 3-2 of generating and storing a logon result message and transmitting it to the terminal browser, and the terminal browser analyzes the received logon result message and stores the logon confirmation information in the browser session management device if the logon is successful. If the logon fails, request the browser session management device. And deleting the previously stored logon request message and outputting an error message indicating that the logon has failed.

Further, in the service result providing step (fourth step), the terminal browser generates a service request message corresponding to the service requested by the user in an XML format, and then encrypts it with its secret key using a browser security device to relay the server. In step 4-1, the relay management server transmits the received service request message to the server security device to decrypt the service request message in the decrypted XML format, and stores the data. Steps 4-2 of checking whether the device connection unit is a service that can be processed by referring to the service item data, and if the service is a service that can be processed, confirms whether the service requires a logon, and if the service requires a logon, the browser access management unit Steps 4-3 to check the logon status by passing the browser ID, and access point of the relay server If the device is a service item capable of processing the service request message, and the logon is normally performed, steps 4-4 of checking whether the corresponding service is a service requiring financial institution interworking or a service requiring processing of its own component in the server, and the financial institution If the service requires interworking with the service provider, steps 4-5 of converting the service request message into a format of the financial institution system and transmitting the service request message to the financial institution system, otherwise transferring the service request message to the component manager; The connection management apparatus of the relay server includes steps 4-6 of receiving processing result data from a financial institution system or a component management unit, generating a service result message in XML format, encrypting it with a secret key, and transmitting the result to a terminal browser.

In addition, the service result output step (step 5), the server connection device of the terminal browser receiving the service result message of the XML format decrypts the service result message using the browser security device to deliver to the service processing device; In step -1, the service processing apparatus analyzes the service result message and transfers it to the browser session managing apparatus when the storage is necessary for the session, and stores it in step 5-2, and the service processing apparatus outputs from an external web server when necessary. And a fifth step of obtaining a source required for screen generation and generating and outputting a service result screen using the result message and browser session information.

In summary, the relay server system for an electronic banking service according to the present invention includes a plurality of relay servers, and the user terminal includes a session management function to search for a relay server capable of processing a current service among a plurality of relay servers. By establishing a session with a relay server, multiple transactions can be processed, and a service request message in XML format can be processed by the browser and sent to a relay server that can handle the current service without protocol conversion. No separate device or process is required for conversion, and there is no information about the output screen from the relay server, and it receives and analyzes the service result message in XML format that contains only the data on the processing result, and then analyzes the source of HTML files necessary to generate the output screen. From the external web server By generating and outputting, the data transmission speed can be improved and the load on the relay server can be reduced.

On the other hand, in order to compensate for the security vulnerabilities due to the management of the subscriber session in the terminal browser, a public key / secret key (PKI) data encryption and decryption is applied, and a security processing means for performing user authentication is further provided.

Each relay server includes a connection management means for managing the connected terminal browser, allocating and retrieving resources necessary for service processing, managing components required for service processing, and interworking management of financial institution systems required for service processing. In the case of the component providing service of the server itself by determining the type of the service, a service result message in the XML format including the corresponding component is prepared and transmitted to the terminal browser. Receives the service result message, converts it to XML format, and transmits it to the terminal browser, thereby significantly reducing the load on the server.

On the other hand, each relay server decrypts the encrypted data transmitted from the terminal browser, encrypts the service processing result message to be sent to the browser, and secures security by allowing the terminal browser to process authentication.

Hereinafter, with reference to the accompanying drawings will be described in detail an embodiment of the present invention.

1 is a block diagram of a virtual bank relay server system having a conventional single relay server structure, in which FIG. 1A is a general system configuration, FIG. 1B is a schematic configuration of a relay server, and FIG. 1C is included in a relay server. The detailed configuration of the request processing apparatus is shown.

As shown in FIG. 1A, a conventional relay server system includes a plurality of subscriber stations 11, one relay server system 12, and a plurality of bank systems 13. Therefore, as described above, when a large transaction occurs, excessive load is generated on the server, so that service processing may not be smooth.

FIG. 1B shows the overall configuration of the relay server system, and includes a subscriber access unit 21, a request processing unit 22, a session managing unit 23, and a data storage unit 24. As shown in FIG. The subscriber access unit 21 performs connection with the terminal and protocol conversion between the terminal and the server, and the request processing apparatus 22 analyzes the service request message from the subscriber and generates and processes the process according to the type of request message. do. In addition, it plays a role of constructing a processing result output screen using the output screen information stored in the data storage means after the processing and transmitting it to the terminal.

Figure 1c shows a detailed configuration of such a request processing device 22, the request analysis unit 31 for analyzing the request message from the subscriber, the subscriber authentication unit 32, responsible for data transmission and reception with other components The data transmission / reception unit 33 includes an output screen configuration unit 34 constituting an output screen including a processing result, and a DB access unit 35 for accessing the data storage device.

The session management device 23 performs data conversion and transfer between the request processing device 22 and the bank system 13.

The data storage device 24 comprises subscriber access history information storage means, data access information storage means, output screen layout information storage means for storing output screen layout information related to the output screen, and processing control information storage means.

When using such a conventional relay server system, it is difficult to process a single server when a large transaction occurs. In particular, the server load is increased because an output screen configuration that can increase memory capacity and processor load is performed on the server side. Increase more and more. In addition, the generated processing result output screen has a large capacity and thus has a limitation in transmission speed and channel capacity for transmission to a terminal using a communication channel having a relatively low processing capacity such as a wireless communication network.

In addition, since no encryption is performed on financial information, which is important personal information, security cannot be secured when data transmitted and received are leaked by hacking or the like.

2 shows the overall configuration of a system for an electronic banking service according to the present invention.

The system according to the present invention comprises a cluster type relay server system 20 consisting of one or more relay servers 200 and 200 ', at least one user terminal 10 having a specific function browser 100, and a terminal ( 10) and a data communication network 50 connecting the relay server system 20. In addition, by using the Internet, a dedicated communication network (50 ') and the like, at least one financial institution system (30, 30') that is interlocked with the clustered relay server system 20, and various sources linked to the terminal and necessary for the composition of the output screen It further includes one or more web servers 40 including (such as HTML forms and image sources for each channel or communication device).

The terminal 10 stores address lists for all relay servers, and has a failover function according to a connection failure, so that the terminal 10 can search for a relay server currently available for processing and can quickly access the relay server. In addition, the terminal browser 100 receives a service processing result message in a simple text-based XML format from a relay server, and has a function of directly generating and outputting an output screen.

The relay server 200 performs a processing result according to the service request message in XML format transmitted from the terminal, and generates a processing result message in XML format and transmits the result to the terminal. In addition, the relay server has a function to check whether the resource allocation for the current service processing is possible by itself and inform the terminal, and also has a user authentication and data encryption / decryption function.

Detailed configuration and operation of the terminal browser 100 and the relay server 200 will be described in more detail below.

3 is a block diagram illustrating in detail the components of the terminal browser 100 and the clustered relay server system 20. To simplify the network is excluded from the city.

The browser 100 installed in the user terminal includes a server access device 110, a browser security device 120, a service processing device 130, a browser session management device 140, and a browser data storage device 150. .

4A to 4C show more detailed configurations of the browser security device 120, the service processing device 130, and the browser session management device 140.

The server connection device 110 of the terminal connects to one of the relay servers 200 without changing a protocol, transmits a service request message in XML format, and receives a service result message in XML format from the corresponding relay server 200. do. It also has a function of bringing in an external web server 40 a source such as an HTML file necessary for constructing an input / output screen.

As shown in FIG. 4A, the browser security device 120 includes an encryption unit 121, a decryption unit 122, and an authentication unit 123.

The browser security device 120 protects data by encrypting / decrypting data (messages) transmitted and received between the browser and the relay server, and has a public key / secret key (PKI) based authentication processing function. The encryption unit constituting the browser security device encrypts the data based on the secret key, and the decryption unit decrypts the data using the secret key. The authentication unit performs PKI encryption or authentication processing. Such authentication processing and data encryption / decryption are performed in connection with the service processing apparatus 130 described later, which will be described in more detail below.

In the encryption / decryption method based on the public key / secret key, the data is encrypted with the sender's private key, and the sender's private key is encrypted with the receiver's public key and transmitted. The receiver receiving the data decrypts the encryption key sent by the sender with its own secret key to find out the sender's secret key, and uses the same to decrypt / decrypt the data. Any encryption algorithm can be used for encryption / decryption.

4B is a detailed configuration diagram of the service processing apparatus 130, and includes a service processing adjustment unit 131, a request message creation unit 132, and a result message analysis unit 133.

Looking at the specific operation of the service processing device 130, first to set the security between the browser-server by exchanging a secret key with the connected relay server 200 before processing the service for the first time. Thereafter, the request message creation unit 132 is used to create a service request message in XML format corresponding to the service selected by the user and transmit it to the connection management apparatus 210 of the corresponding relay server. In addition, it parses and analyzes the service result message in XML format received from the relay server 200, and functions to generate an output screen by bringing a source (HTML form, etc.) necessary for generating the screen output from the web server.

In addition, the session management and failover function is performed in conjunction with the browser session device 140. Specifically, the browser session management device 140 is adjusted to set the start and end of the session and to store data in the session. It delivers to the management device, and takes the session data required for message creation or output screen generation from the browser session management device 140.

In addition, when the connection with the relay server 200 is lost or there is no response (for example, resource allocation confirmation message) from the relay server, the browser session managing device 140 takes the address of the new relay server and the server public key. After performing the process of exchanging the secret key with the server again, the logon request message is taken and the service processing continues after the logon process. This function is called a "Fail Over" function, and thus, when one relay server cannot process a service, a stable and efficient session management can be achieved by automatically attempting to connect with another relay server.

This failover function is performed by the service processing device of the terminal browser in conjunction with the connection management device of the relay server, and a more detailed process will be described in the connection management device of the relay server.

FIG. 4C illustrates a detailed configuration of the browser session managing apparatus 140 of the terminal browser 100, and includes a session apparatus adjusting unit 141, a data converter 142, a data storage device connecting unit 143, and the like.

Browser session management device 140 is provided to compensate for the shortcomings of the global session in the conventional distributed server system, and to perform a failover function. The session device control unit 141 manages the initial session timeout and session allocation of the session, and the data conversion unit 142 converts the session related data used by the browser into a data format that can be stored in the browser data storage device or vice versa. This function converts session-related data stored in the browser data storage device into data that can be used in the browser. The data storage device connection unit 143 functions to connect to the browser data storage device.

As shown in FIG. 3, in the cluster type relay server system 20, one or more relay servers 200 and 200 ′ are connected in parallel, and each relay server 200 is largely connected to a connection management device 210. It comprises a server security device 220 and a server data storage device (230).

5A and 5B show detailed configurations of the connection management device 210 and the server security device 220 constituting the relay server.

The connection management device 210 of each relay server includes a browser connection management unit 211, a connection management device adjustment unit 212, a financial institution connection management unit 213, a service processing resource management unit 214, a component management unit 215, and the like. It provides a function for managing the connection with the terminal browser 100, a resource management function for service processing, and a function for managing the interworking with financial institution systems such as banks and securities, and components necessary for service processing. Provides the ability to manage

The browser connection management unit 211 is connected to the server connection device 110 of the terminal browser through a communication network (not shown), and interlocked with the connection management device control unit 212 inside the relay server, so as to be in XML format without protocol conversion. It performs a function of transmitting and receiving data with the terminal browser 100. At this time, the data transmitted and received are a resource allocation confirmation message, key management related data, authentication related data, service request message, service result message and the like.

As shown in FIG. 6, the connection management device adjustment unit 212 constituting the connection management device 210 is composed of a service request processing unit 212a, a service result processing unit 212b, a data storage device connection unit 212c, and the like. .

Looking at the overall operation of the access management device 210 as follows.

First, when there is a connection request from the specific terminal browser 100, it is determined whether the service request processing unit 212a of the connection management device adjustment unit 212 can allocate the resources necessary for service processing through the service processing resource management unit 214. If the resource can be allocated, the process proceeds to the corresponding service processing process. If the resource allocation cannot be obtained, wait for a predetermined time and check whether the resource allocation is performed again. If the resource allocation is not received for more than a predetermined number of times, an error message that cannot be accessed is made and transmitted to the terminal browser. The terminal browser, which has received such an unreachable error message, takes the address of another new relay server and retries the connection as described above. This resource allocation checking process is performed whenever the terminal attempts to access the relay server, thereby ensuring a failover function. (Failover function)

The terminal browser 100 receiving the resource allocation confirmation message from the relay server requesting the connection requests the relay server public key to be transmitted to the access management device 210 of the relay server. At this time, the access management device 210 generates a random number for the browser management, in addition to its own public key, and transmits it to the terminal browser with the public key. This random number is used as a connection ID of the browser, hereinafter referred to as "browser ID".

The terminal browser 100 encrypts its secret key with the public key of the received relay server and transmits the secret key to the relay server, and the connection management device 210 of the relay server 200 receives the server from the service request processor 212a. Transfer to security device 220. The server security device 220 decrypts the secret key of the terminal browser using its secret key, and transmits the decrypted terminal browser secret key and browser ID to the browser access management unit 211 to manage the secret key. . (Secret key management function)

Next, when the terminal browser transmits the encrypted logon request message, the service request processing unit 212a transmits the decrypted message to the server security device 220, decrypts the logon request message written in XML, and accesses the financial institution connection management unit 213. To pass. The financial institution access management unit 213 rewrites the logon request message to match the interworking format of the corresponding financial institution and transmits it to the financial institution system 30. When the logon confirmation message is received from the financial institution system 30, the service result processing unit 212c converts it back into a format that can be processed and transfers it to the service result processing unit 212c. The service result processing unit 212c receives the logon confirmation message and passes the information on whether the logon is successful to the browser access management unit 211 together with the browser ID to manage the logon information. After generating the logon confirmation message as XML, the server security Encrypted by the device 220 and sent to the terminal browser (100). Of course, in the case of a sufficient service only by providing components of the relay server itself without going through the financial institution system 30, general user authentication may be performed on the relay server side. (Logon or authentication function)

If the authentication is successfully performed, the terminal browser 100 writes a service request message corresponding to the service requested by the user in XML, encrypts it, and transmits the encrypted message to the relay server. After receiving the encrypted service request message, the service request processing unit 212a of the relay server decrypts the message via the service security device 220, parses and analyzes the service request message decrypted in XML format, and then connects the data storage device connection unit. Check whether the item of the corresponding service exists in the server data storage 230 through 212b. If the service item does not exist, an error message is sent to the terminal browser. If there is a service item, it is checked whether the service requires a logon again. If the service requires a logon, the browser ID is transmitted to the browser access management unit 211 to check the logon state. If not logged on, write an error message and send it to the terminal. If the logon is legitimate, the service type is checked and the service request message is sent to the financial institution access management unit 213 in the case of a service requiring interworking with the financial institution system 30. In the case of a service requiring component processing, the service request message is transmitted to the component manager 215.

Receiving the service processing result message transmitted from the financial institution system 30 or the component manager 215 and delivering it to the service result processing unit 212c, the service result processing unit 212c rewrites the service result message as XML to secure the server. Transfer to device 220. The server security apparatus 220 encrypts the service result message and transmits it to the browser access management unit 211, and the browser access management unit 211 transmits the service result message to the browser 100 of the terminal.

"Component" means the logic or program required for service processing. For example, an interworking component for interworking with a financial institution, an interworking message preparation component, and the like are required. As such, if the resources necessary for service processing are composed of components, they can be reused.

Unlike the prior art, in the present invention, the process data communication between the terminal browser and the relay server is performed based on XML, so that the screen output and the process data are separated and reused without changing the relay server even if the screen configuration is different for each channel or communication device. There is an advantage that it can. In other words, if the output screen is configured using HTML as in the related art, the burden of the server may increase due to the use of resources necessary for screen generation in the relay server, thereby decreasing speed. In addition, if the screen is configured in the relay server, the output screen is changed according to the user's request, so the caching process cannot be used. However, using the same method as the present invention, the HTML form necessary for outputting the screen is stored in the external web server 40 or the terminal, and the terminal generates the HTML form by using the received XML processing data and the HTML form. Does not change, so caching is possible, which reduces the burden on the relay server and shortens the response speed.

The server security device 220 corresponds to the browser security device 120 of the terminal browser, encrypts and decrypts messages and data transmitted and received between the relay server and the terminal browser, and authenticates a public key / private key based (PKI). Perform related processing. Similarly to the browser security device, it comprises an encryption unit 221 in charge of data encryption, a decryption unit 222 in charge of decrypting data, and an authentication unit 223 having an authentication processing function.

The server data storage device 230 has a function of storing and managing various information required for service processing according to the present invention. The information stored in the server data storage device includes information on service items that can be processed, component and financial institution information matching service items, and information on whether to log on by service items.

Hereinafter, a detailed method of the electronic banking service providing method using the system according to the present invention will be described.

7 to 9 are flow charts showing the process of the electronic banking service providing method according to the present invention, FIG. 7 is a session access process by failover, FIG. 8 is a key exchange and logon (authentication) process, and FIG. 9 Illustrates a service process including providing a service result and outputting a screen.

As shown in FIG. 7, when the user requests, the terminal browser, specifically, one of the relay server addresses in which the service processing apparatus is stored is extracted, and the information about the server requesting the service processing is stored in the browser session management apparatus. (S701).

Then, when a request is made to access the corresponding relay server (S702), the connection management apparatus of the relay server checks whether resource allocation is possible (S703). If the resource allocation is possible as a result of the check, a session is established between the terminal browser and the relay server, and the authentication and service processing processes shown in FIGS. 8 and 9 are performed.

If resource allocation is impossible, the connection management apparatus of the relay server requests resource allocation to the service processing resource management unit again after a predetermined time (S705). If the resource allocation cannot be received for a predetermined number of times, an error message is generated and transmitted to the terminal (S706 and S707).

After receiving the error message, the service processing apparatus of the terminal browser obtains the address of another relay server, updates the server address, and attempts to connect to the relay server (S708).

Of course, such a failover function may be applied even when the connection is lost while receiving a service. That is, when the connection with the relay server is lost or there is no response during the service processing, it is possible to extract the address of another relay server and retry the connection. Of course, in this case, a public key / private key exchange and a browser ID exchange process to be described later will have to be performed separately.

8 illustrates an authentication and logon process of the terminal browser.

When one of the relay servers and the terminal browser are connected through the process as shown in FIG. 7, the relay server performs key exchange and browser ID exchange for data security and partner identification. That is, the terminal browser requests to send the public key and the browser ID to the connected relay server, and the connection management apparatus of the relay server transmits its public key and the browser ID which is a randomly generated number to the terminal browser (S801). ).

The terminal browser receives and stores the public key and the browser ID of the connected relay server, encrypts the secret key with the received relay server public key, and transmits its browser ID to the relay server together (S802). The relay server decrypts the secret key of the terminal browser and matches it with the browser ID to store and manage it.

Next, the service processing apparatus of the terminal browser allocates and initializes a subscriber session from the session managing apparatus (S803).

Next, it is determined whether the service requested by the user is a service requiring logon (S804), and if the service requires logon, a logon request message in XML format is generated by using the service processing apparatus and transferred to the browser session managing apparatus. The browser session managing apparatus encrypts the logon request message with its secret key using the browser security apparatus and transmits the encrypted message to the relay server (S805).

The relay server decrypts and analyzes the received logon request message, checks whether the logon is available using the financial institution system and its own database, generates and stores a logon result message, and transmits it to the terminal browser (S806 to S810). .

The terminal browser analyzes the received logon result message and stores the logon confirmation information in the browser session management apparatus if the logon is successful (S808). If the logon fails, the terminal browser requests the browser session management apparatus and deletes the already stored logon request message ( S809). Of course, an error message indicating that the logon failed (S810).

After a successful logon or in the case of a service requiring no logon, the flow proceeds to FIG.

In FIG. 9, the terminal browser generates a service request message corresponding to the service requested by the user in an XML format, and then encrypts it with its secret key using a browser security device and transmits the encrypted message to the relay server (S901). That is, when the encrypted service request message is transmitted to the server connection device of the terminal browser, the server connection device transmits it to the connection management device of the relay server.

The access management device of the relay server transmits the service request message to the server security device to decrypt the service request message, and then parses and analyzes the decrypted XML service request message, and processes the service by referring to the service item data at the data storage device connection unit. Check whether it is (S902, S903). If it is a service that can be processed, it is checked whether the corresponding service is a service requiring logon (S904). If the service requires a logon, the browser ID is transmitted to the browser access management unit to check the logon state (S905).

The access management device of the relay server checks whether the service request message is a service item that can be processed and if the logon is normally performed (S906), whether the corresponding service is a service requiring financial institution interworking or a service requiring its own component processing in the server ( S907).

In the case of a service that requires interworking with a financial institution (S911), the service request message is converted into a format of the financial institution system and transmitted to the financial institution system (S912). Otherwise, the service request message is transmitted to the component manager. (S922).

Next, the connection management device of the relay server receives the processing result data from the financial institution system or component management unit (S913, S923), generates a service result message in XML format and delivers it to the server security device. The server security apparatus encrypts the service result message with the secret key and transmits the result message to the terminal browser via the browser access management unit (S908).

The server access device of the terminal browser receiving the service result message decrypts the service result message using the browser security device and delivers the service result message to the service processing device. The service processing device analyzes the service result message and delivers it to the browser session management device when it needs to be stored in the session, saves it, and imports the source (HTML file, etc.) necessary for generating the output screen from the external web server, and the result message And generating and outputting a service result screen using the browser session information (S909 and S910).

10 and 11 illustrate an example of an XML document and a user interface screen during an electronic banking service process according to the present invention. FIG. 10 corresponds to a service request message and FIG. 11 corresponds to a service processing result message.

Fig. 10A is an example of a "card lookup" service request XML message sent by the terminal to a relay server, and includes various elements defined by the user and their attribute values. For example, the process includes a name, a tag such as a bank code, a browser ID, a credit card number to be queried, and the like.

FIG. 10B is an example of a screen that is output on the terminal browser when the XML service request message is sent. When the terminal browser outputs the screen as shown in FIG. 10B and input from the user is completed, the XML service request message as shown in FIG. 10A is shown. After creating, encrypt and send to the relay server.

11 is an example of an XML service result message corresponding to the service request message of FIG. 10. As shown, the service result message is pure text based.

Upon receiving the service result message in the XML format, the terminal browser obtains a source (HTML form, etc.) necessary for screen generation from an external web server, and generates and outputs an output screen as shown in FIG. 11B. At this time, the terminal browser receives an HTML file including layout information for configuring the output screen as shown in FIG. 11C from the web server, and adds the XML document content of FIG. 11A thereto to form an output screen as shown in FIG. 11B. will be.

The above description is merely illustrative of the technical spirit of the present invention, and those skilled in the art to which the present invention pertains may make various modifications and changes without departing from the essential characteristics of the present invention. Therefore, the embodiments disclosed in the present invention are not intended to limit the technical spirit of the present invention but to explain, and the scope of the technical spirit of the present invention is not limited by these embodiments. The scope of protection of the present invention should be interpreted by the following claims, and all technical ideas falling within the scope of the present invention should be construed as being included in the scope of the present invention.

Using the present invention as described above, the process is simplified because the data communication between the terminal browser and the relay server is performed in XML format without protocol conversion.

In addition, the server system is composed of a plurality of relay servers, and has a failover function for establishing a session with a relay server that can be handled by the terminal browser to secure the connection and communication stability, stable processing even if a large service transaction occurs It is possible.

In addition, the relay server side transmits the service processing result to the terminal in text-based XML format, and the terminal side generates the output screen that loads the storage space and the processor, thereby improving the service processing speed and dramatically reducing the load on the server. Not only can it be reduced, but also when changing or adding a terminal model or communication channel, only the terminal side browser needs to be changed, and there is no need to change the server side design.

In addition, by introducing the concept of a secret key (PKI) based data encryption / decryption method and the browser ID by random number generation, there is an advantage that can secure the security and user authentication of financial information, which is important personal information.

1 illustrates a configuration of a virtual bank relay server system of a conventional single relay server structure.

2 shows the overall configuration of a system for an electronic banking service according to the present invention.

3 is a block diagram showing in detail the components of the terminal browser and the clustered relay server system.

4A to 4C show more detailed configurations of a browser security device, a service processing device, and a browser session managing device constituting a terminal browser.

5A and 5B show detailed configurations of a connection management device and a server security device constituting a relay server.

6 shows a detailed configuration of a connection management device adjustment unit constituting the connection management device.

7 to 9 are flow charts showing the process of the electronic banking service providing method according to the present invention, FIG. 7 is a session access process by failover, FIG. 8 is a key exchange and logon (authentication) process, and FIG. 9 Illustrates a service process including providing a service result and outputting a screen.

10 and 11 illustrate an example of an XML document and a user interface screen during an electronic banking service process according to the present invention. FIG. 10 corresponds to a service request message and FIG. 11 corresponds to a service processing result message.

Claims (12)

In the cluster type relay system for relaying financial services provided by a financial institution system through a communication network, The session is established by checking whether or not resource allocation is possible according to the access request signal input through the communication network, and the service request message of the XML format input through the communication network in the state of setting the session is set to the financial institution system or itself. After receiving the response data for the service request message from the financial institution system or the component management unit after transmitting to the component management unit provided, and generates a service result message of the XML format using the response data and the generated service result message A cluster type relay server system in which a plurality of relay servers sharing one domain name transmitted to the outside through a communication network and having respective IP addresses are connected in parallel; And Randomly select one IP address from among the plurality of relay server IP addresses registered with the one domain name, and transmit the access request signal through the communication network to the relay server corresponding to the selected IP address, and the access request signal. Set a session with the relay server connected to the communication according to the communication, transmit the service request message to the session set relay server, and after receiving the service result message which is response data to the service request message, A user terminal having a browser installed to receive a source file for configuring an output screen from an external web server and output the service result message; Each of the relay server establishes a session with the user terminal that has transmitted the access request signal, receives the service request message from the user terminal, and transmits the service request message to the financial institution system or a component management unit provided therein through the communication network. A connection management device for transmitting the service result message transmitted from the financial institution system or the component manager to the user terminal; A server security device that performs encryption / decryption on the basis of a public / private key message transmitted / received between the session set relay server and the user terminal and authenticates ID information transmitted from the user terminal; And a server data storage device for storing and managing a predetermined financial service item, a component matching the financial service item, financial institution information, and management information including information on whether to log on for each service item. Relay system for electronic banking services, comprising a. The method of claim 1, wherein the connection management device, The resource allocation confirmation message, key management related data, authentication related data, service request message, service result message, etc. having an XML format are communicated with the browser of the user terminal through the communication network and the browser of the user terminal is not changed. Browser connection management unit for performing data transmission and reception; A component manager that manages a component that processes a service other than a financial service serviced through a financial institution connection unit; A financial institution connection unit configured to rewrite the login request message in a format that can be linked to the financial institution system as a logon request message for a predetermined financial institution system is input, and to transfer the login request message from the financial institution system; A service processing resource manager for performing resource allocation of the component manager and a financial institution access unit for processing a service requested by the user terminal; And As the encrypted login request message is input through the browser of the user terminal, the server security device is controlled to decrypt the encrypted login request message to log in to the corresponding user terminal, and to process the financial service. After the resource allocation request signal for allocating the necessary resources is transmitted to the service processing resource management unit, if resources necessary for processing the financial service are not allocated from the service processing resource management unit, the resource allocation request is re-requested and resource allocation for a predetermined number of times is received. If not, generate an error message and transmit it to the user terminal, and if a resource for processing the financial service is allocated from the service processing resource management unit, the service request message in XML format is transmitted to the financial institution system through the financial institution connection unit; or After transmitting the component manager, the access management device control unit for transmitting a service result message of the XML format delivered from the financial institution system and the component manager to the browser of the user terminal through the browser connection manager. Electronic financial service relay system, characterized in that configured to include. delete The method of claim 1, The user terminal accesses one of the relay servers without changing the protocol, transmits a service request message, receives a service result message, and obtains a source such as an HTML file for configuring an input / output screen from an external web server. A server connection device for coming function; A browser security device that protects data by encrypting and decrypting messages sent and received between the terminal browser and the relay server, and performs a PKI-based authentication-related processing function; Service processing apparatus; Browser session management device; And browser data storage, The service processing apparatus exchanges a secret key with a relay server before processing the service for the first time, sets security between the server and the browser, creates a service request message in XML and transmits it to the relay server, and the service result XML message received from the relay server. Function to parse and to get the necessary source from the web server according to the contents of the message, to generate and output the output screen, and to control the browser session device to set the start and end of the session and to transfer the data to be stored in the session to the browser session management device. Function to import session data from the browser session management device required for message creation or output screen, and if the server is disconnected or there is no response, the browser session management device imports the new server address and the existing server public key. Process the key exchange process and get the logon request message to On that handles the service after a failover process (Fail Over) electronic banking services for the transit system, wherein providing the functionality. The method of claim 4, wherein The browser session management apparatus manages session initialization session timeout and session allocation, converts session data used in the terminal browser into a data format that can be stored in the browser data storage device, and conversely, session data stored in the browser data storage device. E-banking relay system for converting the data into a data that can be used in the browser. In a method for relaying a financial service provided by a financial institution system to a user terminal connected to a cluster relay system having a structure in which a plurality of relay servers are connected in parallel through a communication network, Failover for establishing a session by communicating with another relay server when the user terminal is disconnected from the corresponding relay server or if there is no response when the user terminal performs a communication connection with any one of the parallel relay servers; Connection step; A key and ID exchange step of exchanging a browser ID which is a random number generated by the relay server to identify a public key / secret key and a browser for data security between the user terminal and the session-configured relay server; A logon step in which the user terminal logs on to the relay server through a communication network; After the user terminal encrypts the service request message in XML format and transmits it to the relay server, the service result message in encrypted XML format generated through the component of the relay server or the financial institution system in association with the service request message. Receiving; And Outputting the service result message by generating a predetermined output screen after decrypting the service result message in the encrypted XML format by the user terminal; Electronic financial service providing method comprising a. The method of claim 6, The failover and access step Step 1-1 of extracting one of the relay server addresses in which the service processing device of the terminal browser is stored, and storing information on the server requesting service processing in the browser session management device of the browser when a user request is made; When requesting connection to the relay server, the connection management device of the relay server checks whether the resource allocation is possible to the service processing resource management unit of the relay server, and if the resource allocation is possible, establishes a session between the terminal browser and the relay server. The first step and the second step, If resource allocation is not possible, the resource management device of the relay server requests resource allocation to the service processing resource management unit again after a predetermined time until resource allocation is possible, and if a resource allocation cannot be received for a predetermined number of times, an error message is displayed. Generating the first step and transmitting the same to the terminal; and After receiving the error message, the service processing device of the terminal browser obtains the address of another relay server and repeats steps 1-1 to 1-3 until it searches for a relay server that can allocate resources. Electronic financial service providing method, characterized in that made. The method of claim 6, The key and ID exchange step, Requesting to transmit the public key and the browser ID to the relay server to which the terminal browser is connected, and the connection management apparatus of the relay server transmits the public ID and the browser ID which is a randomly generated number to the terminal browser; Step one, The terminal browser receives and stores the public key and the browser ID of the connected relay server, encrypts the private key with the received relay server public key, and transmits its browser ID to the relay server together; And The relay server provides a method for providing an electronic banking service comprising the steps 2-3 of decrypting the secret key of the terminal browser, matching the browser ID, and storing and managing the same. The method of claim 6, The logon step, The terminal browser generates a logon request message in XML format using a service processing device and delivers the message to a browser session management device. The browser session management device encrypts the logon request message with its own secret key using a browser security device and relays the message. Step 3-1 to send to the server, Step 3-2, the relay server decrypts and analyzes the received logon request message, checks whether the logon is possible using the financial institution system or its own database, generates and stores a logon result message, and transmits it to the terminal browser. , And The terminal browser analyzes the received logon result message, and if the logon is successful, stores the logon confirmation information in the browser session management device. If the logon fails, the terminal browser requests the browser session management device to delete the already stored logon request message and the logon fails. E-financial service providing method comprising the step of outputting an error message. The method of claim 6, The service result providing step, The terminal browser generates a service request message corresponding to the service requested by the user in an XML format, and then encrypts it with its secret key using a browser security device and transmits the same to a relay server; The connection management device of the relay server transmits the received service request message to the server security device to decrypt the service request message, and then parses and analyzes the decrypted XML service request message, and processes the service item data by referring to the service item data at the data storage device connection unit. Steps 4-2 to determine if the service is possible, Steps 4-3 to check whether the service is a service that requires a logon if the service can be processed, and checks the logon state by passing a browser ID to the browser access management unit if the service requires a logon; The access management device of the relay server is a service item capable of processing a service request message, and in the case where the logon is normally performed, the fourth server checks whether the corresponding service is a service requiring financial institution interworking or a service requiring its own component processing in the server. Steps, If the service requires interworking with the financial institution, steps 4-5 of converting the service request message into the format of the financial institution system and transmitting the service request message to the financial institution system, otherwise transferring the service request message to the component manager. , And The apparatus for managing a connection of a relay server includes steps 4-6 of receiving processing result data from a financial institution system or a component management unit, generating a service result message in XML format, encrypting it with a secret key, and transmitting the result to a terminal browser. Electronic banking service providing method. The method of claim 6 or 10, The service result output step, Step 5-1, wherein the server access device of the terminal browser receiving the service result message in XML format decrypts the service result message using the browser security device and delivers the service result message to the service processing device. The service processing apparatus analyzes a service result message and transmits and stores the service result message to a browser session managing apparatus when it is necessary to store the session; and The service processing apparatus includes a fifth step of obtaining a source required for generating an output screen from an external web server if necessary, and generating and outputting a service result screen using the result message and browser session information. To provide electronic banking services. One or more relay servers for converting predetermined data extracted from one or more financial institution systems linked to the outside and one or more of the component data provided in its own form into XML format and providing them to a browser of a specific user terminal connected thereto. As a cluster type relay server system, Each relay server includes a connection management device, a server security device, and a server data storage device. 1) If there is a service request from the terminal, the access management apparatus checks whether a resource required for service processing can be allocated, and provides a service if the resource can be allocated, and waits for a predetermined time if the resource cannot be allocated. The resource allocation confirmation function, and the resource allocation confirmation function that transmits an error message to the terminal if the resource allocation cannot be received for a predetermined number of times, and 2) If the terminal browser requests the relay server public key, the server public key and any A key management function that generates and sends a browser ID, stores and manages the generated browser ID, and stores and manages the decrypted browser secret key after receiving and decrypting a message encrypted from the terminal browser with the server public key. And 3) Parse an XML logon request message sent from the terminal browser. A logon management function that extracts and stores the logon result message using a loan system or its own data storage, rewrites and encrypts the logon result message in XML format, and forwards it to the terminal's browser along with the browser ID; and 4) the terminal. After receiving and parsing the service request message in the XML format from the browser, the server delivers the service request message to its own component management unit for the component service owned by the server and to an external financial institution system for the financial institution related service. And a service request message processing function for receiving a service result message from the management unit, rewriting the data in an XML format, encrypting the data, and transmitting the same to a terminal browser.