KR101866031B1 - Method for Providing Server type One Time Password by using Secure Operating System - Google Patents

Abstract

According to the method of providing server-type authentication using the security operating system of the present invention, a security OS (Secure Operating System) having a secure kernel and a wireless terminal having a normal operating system (OS) (N) of the generic OS receives from the designated server a communication network to which the program (n) can connect in the general OS through an OTP (One Time Password) dynamically generated in the server through a code generation algorithm of the server, Receives an OTP encrypted so as to be decrypted only through a designated program (s) of the secure OS, the verification value for verifying the OTP with the OTP dynamically generated by the server through the designated program (s) of the OS, Wherein the program (n) allocates a memory area accessible in the designated program (s) of the secure OS, or identifies an allocated memory area, Providing an encrypted OTP received on the generic OS to the memory area, wherein a program (s) of a secure OS verifies an encrypted OTP from the memory area, and the program (s) decrypts the encrypted OTP And a verification value for verifying the restored OTP with the OTP generated by the server is checked. The program (s) reads the verification value and outputs the restored OTP to the server The program (s) accesses the screen output means of the wireless terminal through the secure OS and outputs the restored OTP to the output terminal of the wireless terminal through the secure OS, do.

Description

Technical Field [0001] The present invention relates to a method for providing a server-type authentication using a secure operating system,

The present invention provides a method executed by a wireless terminal equipped with a secure operating system (OS) having a secure kernel and a normal operating system having a kernel structure disclosed therein, (OTP) through the OTP (One Time Password) dynamically generated in the server and the designated program (s) of the secure OS from the designated server through the code generation algorithm of the server from the designated server, (OTP) to be verified with the OTP dynamically generated by the server, encrypted OTP to be decrypted only through the designated program (s) of the secure OS, and the program (n) (N) allocates an encrypted OTP received on the generic OS to the memory < RTI ID = 0.0 > The program (s) of the security OS confirms the encrypted OTP from the memory area, the program (s) decrypts the encrypted OTP to restore the OTP dynamically generated by the server, Verifying a verification value for verifying the OTP with the OTP generated by the server, verifying the verification value as the OTP dynamically generated by the server by reading the verification value from the program (s) To a screen output means of a wireless terminal through a secure OS to output the restored OTP when the program (s) is verified with a server-generated OTP .

Recently, a Trust Zone technology has been proposed in which each physical processor core is divided into two worlds, Secure World and Normal World, and each world is isolated. Trust Zone technology is equipped with a normal operating system in the normal world, and Secure World is equipped with a security-enhanced operating system. By keeping Secure World isolated from the normal world, even if the normal world is hacked or forged, security of the normal world and isolated secure world .

The isolation of Secure World and Normal World in Trust Zone technology is one of the key points to ensure the security of Secure World. An application executed in the secure world can directly access and control various components such as a display device, a communication device, and an input device provided in the terminal without using the operating system of the normal world (Patent Registration No. 10-1259824) . Although Secure World and Normal World physically share a single processor core in a single terminal and Secure World runs through Normal World, Secure and Normal Worlds, in terms of hardware and software, Other systems.

If an OTP (One Time Password) input is required while the user is using the Internet banking through a personal computer, the OTP application is installed in the secure world (= trust zone) of the wireless terminal owned by the user, It is relatively easy for a person skilled in the art to generate an OTP by using another system, such as Secure World, as a separate OTP generation apparatus (Patent Registration No. 10-1502999 (Feb.

However, when OTP is used during the mobile banking or mobile payment through the normal world of the wireless terminal, when the OTP is generated through the OTP application of the secure world (= Trust Zone), the normal world and the secure world are isolated from each other, (E.g., a display device, etc.) are occupied in isolation from each other. Therefore, it is difficult to apply Secure World's OTP to banking and settlement of a normal world in one wireless terminal using the conventional trust zone technology.

In order to solve the above problems, it is an object of the present invention to provide a system and method for a mobile communication system, including a secure OS (Secure Operating System) having a secure kernel and a wireless terminal equipped with a normal operating system Wherein the program of the general OS includes an OTP (One Time Password) dynamically generated in the server from a designated server through a code generation algorithm of the server, A first step of receiving a verification value for verifying the OTP to be an OTP dynamically generated by the server through a designated program (s) in an encrypted OTP so as to be decrypted only through a designated program (s) of the secure OS; (N) allocating a memory area accessible from the designated program (s) of the secure OS or checking a pre-allocated memory area; (N) providing an encrypted OTP received on the general OS to the memory area; and a fourth step of the program (s) of the secure OS verifying the encrypted OTP from the memory area, (s) decrypts the encrypted OTP and restores the OTP dynamically generated by the server, and verifies a verification value for verifying the restored OTP with the OTP generated by the server. Verifying the restored OTP to an OTP dynamically generated by the server by reading the verification value, and verifying the restored OTP with an OTP generated by the server, wherein the program (s) And outputting the restored OTP by accessing the screen output means of the wireless terminal through the step of outputting the restored OTP.

A method of providing a server-type object using a security operating system according to the present invention is a method of providing a server-type object based on a security operating system (Secure Operating System) having a secure kernel and a wireless operating system (N) of the generic OS receives from the designated server a communication network to which the program (n) can connect in the general OS through an OTP (One Time Password) dynamically generated in the server through a code generation algorithm of the server, A first step of receiving an encrypted OTP so that a verification value for verifying the OTP with the OTP dynamically generated by the server through the designated program (s) of the OS is decrypted only through the designated program (s) of the secure OS; A second step of allocating a memory area accessible by the program (n) of the general OS in the designated program (s) of the secure OS or confirming a pre-allocated memory area A third step in which the program (n) provides an encrypted OTP received on the general OS to the memory area, and a fourth step in which a program (s) of the secure OS verifies the encrypted OTP from the memory area; The program (s) decrypts the encrypted OTP and restores the OTP dynamically generated by the server, and confirms a verification value for verifying the restored OTP with the OTP generated by the server. ) Verifying the restored OTP to an OTP dynamically generated by the server by reading the verification value, and verifying the restored OTP with an OTP generated by the server, wherein the program (s) And outputting the restored OTP by accessing the screen output means of the wireless terminal through the step S7.

According to the present invention, the secure OS may include a trust zone installed in the processor.

According to the present invention, a method of providing a server-type object using the security operating system comprises the steps of: identifying the program (s) assigned to the secure OS as the program (n) And storing the identification information in the general OS storage area.

According to another aspect of the present invention, there is provided a method for providing a server-type object using the secure operating system, the method comprising: storing and maintaining status information about the program n immediately before the program n is switched to the secure OS can do.

According to the present invention, the second step may further include the step of the program (n) operating a secure OS through a SMC (Secure Monitor Call) command. Meanwhile, in the second step, the program (n) can allocate the memory area to the general OS or the pre-allocated memory area. Meanwhile, the second step may allocate the memory area to the security monitor that performs the switching procedure between the general OS and the secure OS, or may check the pre-allocated memory area. Meanwhile, in the second step, the program (n) can allocate a memory area accessible from the program (s) of the secure OS to the security server on the network or check the pre-allocated memory area. On the other hand, the second step may further include setting the program (n) as a process of the general OS side in which the program (n) refers to the memory area.

According to another aspect of the present invention, there is provided a method of providing server-type authentication using a secure operating system, the method including storing a decryption key in a storage area of the secure OS by the program (s) Decrypting the encrypted OTP through the key and restoring the decrypted OTP.

According to another aspect of the present invention, there is provided a method of providing server-type authentication using a secure operating system, the method including the step of: exchanging a decryption key with a designated server via a communication network, Step 5 may further include decoding and recovering the encrypted OTP through the exchanged decryption key.

According to another aspect of the present invention, there is provided a method of providing server-type authentication using a secure operating system, the method comprising the steps of: accessing input means of a wireless terminal through a secure OS to input a PIN (Personal Identification Number) And authenticating the validity of the PIN input through the OS.

According to another aspect of the present invention, there is provided a server-type object provision method using the secure operating system, wherein the program (s) provides the restored OTP to the memory area when the program (s) And the program (n) refers to the OTP of the memory area as an OTP of the general OS.

According to the present invention, when a heterogeneous OS including a general OS and a secure OS is mounted on a wireless terminal, if an OTP is required during a transaction through a general OS, the generated OTP And restore it to the original OTP created by the server. Therefore, there is an advantage of providing OTP that can be applied to the transaction through the general operating system safely and securely against hacking or tampering of the general OS.

1 is a diagram illustrating a functional configuration of a wireless terminal according to an embodiment of the present invention.
2 is a diagram showing a functional configuration of a program according to an embodiment of the present invention.
3 is a diagram illustrating a process of preparing a program s in a secure OS according to an embodiment of the present invention.
4 is a diagram illustrating a process of interworking between a general OS and a secure OS according to an embodiment of the present invention.
5 is a diagram illustrating a process of restoring and outputting an encrypted OTP through a secure OS according to an embodiment of the present invention.

The operation principle of the preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. It should be understood, however, that the drawings and the following detailed description are exemplary and explanatory and are intended to provide further explanation of the invention, and are not to be construed as limiting the present invention.

In other words, the following embodiments correspond to the preferred embodiment of the preferred embodiment of the present invention. In the following embodiments, a specific configuration (or step) is omitted, or a specific configuration (or step) (Or steps), or an embodiment that incorporates functions implemented in more than one configuration (or step) into any one configuration (or step), a particular configuration (or step) It will be apparent that the present invention is not limited to the embodiments described below.

In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. The terms used below are defined in consideration of the functions of the present invention, which may vary depending on the user, intention or custom of the operator. Therefore, the definition should be based on the contents throughout the present invention.

As a result, the technical idea of the present invention is determined by the claims, and the following embodiments are merely means for effectively explaining the technical idea of the present invention to a person having ordinary skill in the art to which the present invention belongs Only.

1 is a functional block diagram of a wireless terminal 100 according to an embodiment of the present invention.

In more detail, FIG. 1 is a diagram showing an example of a program executed in a general OS 110 of a wireless terminal 100 having a security OS 120 having a secure kernel 130 and a general OS 110 having a kernel structure disclosed therein n 200 is dynamically generated on the server 170 side and then receives the encrypted OTP so as to be decrypted only through the designated program (s) 240 of the secure OS 120 and delivers the encrypted OTP to the secure OS 120, (S) 240 of the program 120, and output the decrypted OTP. As those skilled in the art, it is to be understood that the present invention may be implemented by referring to and / However, it should be understood that the present invention is not limited to the above-described embodiments, and various modifications may be made without departing from the scope of the present invention. No. The wireless terminal 100 of FIG. 1 may include various terminals such as a smart phone, a tablet PC, and a PDA, which are equipped with the secure OS 120 and the general OS 110.

1, the wireless terminal 100 includes a control unit 105, a memory unit 165, a screen output unit 135, a user input unit 140, a sound processing unit 145, a local area network communication unit 150, A wireless network communication unit 155, a USIM reader 160, and a USIM, and has a battery for power supply.

The control unit 105 is a general term for controlling the operation of the wireless terminal 100. The control unit 105 physically includes a processor and an execution memory, ). Preferably, the processor may comprise an ARM processor.

According to the present invention, the control unit 105 includes a normal world in which a normal OS 110 in which a kernel structure, an API and a driver are displayed, and a secure kernel And a secure world in which a secure operating system 120 (Secure Operating System) having a security function 130 is operated. The normal world and the secure world are constructed in a mutually isolated structure. Preferably, the secure OS 120 includes a Trust Zone of the ARM processor. Hereinafter, a functional configuration for the present invention on the general OS 110 and the secure OS 120 will be described with reference to the control unit 105 for convenience.

The memory unit 165 is a generic name of a nonvolatile memory corresponding to a storage unit included in the wireless terminal 100 and includes at least one program code executed through the control unit 105 and at least one And stores the data set.

The memory unit 165 may include a general OS 110 storage area accessed by the general OS 110 and a secure OS storage area accessed by the secure OS 120, The OS 110 can not access the secure OS 120 storage area. The general OS 110 storage area may store program codes corresponding to applications executed through the general OS 110 and at least one data set used by applications of the general OS 110. [ Meanwhile, the storage area of the secure OS 120 may store a program code corresponding to an application executed through the secure OS 120 and at least one data set used by the application of the secure OS 120. [

The general OS 110 has a kernel (hereinafter, referred to as a "general kernel 115" in contrast to the security kernel 130 of the secure OS 120) The general kernel 115 of the wireless terminal 100 includes various functions of the wireless terminal 100 such as the screen output unit 135, the user input unit 140, the sound processing unit 145, the local area network communication unit 150, Resources, and may be provided with a driver on the general OS 110 for this purpose. The general kernel 115 of the general OS 110 can not access the storage area of the secure OS 120 and the general OS 110 and the secure OS 120 are isolated from each other.

The secure OS 120 includes a secure kernel 130 in which a kernel structure is not disclosed and the secure kernel 130 of the secure OS 120 includes a screen output unit 135, a user input unit 140, The wireless terminal 100 may access various resources of the wireless terminal 100 such as the processor 145, the short distance network communication unit 150 and the wireless network communication unit 155 and may include a driver on the secure OS 120 for this purpose. Preferably, the security kernel 130 of the secure OS 120 can not access the storage area of the general OS 110, and the secure OS 120 and the general OS 110 are isolated from each other.

The screen output unit 135 may include a display such as a liquid crystal display (LCD) or a touch screen including a touch input unit as a screen output unit provided in the wireless terminal 100 .

The general kernel 115 of the general OS 110 includes a driver for accessing and controlling the display or the touch screen of the screen output unit 135. The general kernel 115 is connected to the screen output unit 135, The security OS 120 can not access the screen output unit 135. In this case,

The secure kernel 130 of the secure OS 120 has a separate security driver for accessing and controlling the display or the touch screen of the screen output unit 135, The general OS 110 can not access the screen output unit 135 when accessing and controlling the display unit 135. [

The user input unit 140 may be a user input unit provided in the wireless terminal 100 and may include a touch input unit of the touch screen when the screen output unit 135 includes a touch screen. A keypad, and a key button.

The general kernel 115 of the general OS 110 includes a driver for accessing and controlling a touch input unit, a keypad or a key button of the user input unit 140. The general kernel 115 is connected to the user input unit 140 The security OS 120 can not access the user input unit 140. In this case,

The secure kernel 130 of the secure OS 120 has a separate security driver for accessing and controlling the touch input unit, keypad or key button of the user input unit 140, When accessing and controlling the input unit 140, the general OS 110 can not access the user input unit 140.

The sound processing unit 145 may include sound output means and sound input means provided in the wireless terminal 100, and may include a speaker for outputting sound and a microphone for receiving sound.

The general kernel 115 of the general OS 110 includes a driver for accessing and controlling the speaker or microphone of the sound processing unit 145. The general kernel 115 accesses the sound processing unit 145 The security OS 120 can not access the sound processing unit 145 controlled by the general OS 110. [

The secure kernel 130 of the secure OS 120 includes a separate security driver for accessing and controlling the speaker or microphone of the sound processing unit 145. The secure kernel 130 may include a sound driver 145, The general OS 110 can not access the sound processing unit 145 controlled by the secure OS 120. In this case,

The wireless network communication unit 155 and the short-range network communication unit 150 are communication means for connecting the wireless terminal 100 to a communication network. The wireless terminal 100 preferably includes a wireless network communication unit 155 as a basic communication unit And may further include one or more short-range network communication units 150.

The wireless network communication unit 155 collectively refers to communication means for connecting the wireless terminal 100 to a wireless communication network via a base station and includes an antenna for transmitting and receiving a radio frequency signal of a specific frequency band, And at least one processing module. The wireless network communication unit 155 may connect the wireless terminal 100 to a call network including a call channel and a data channel via an exchange and may transmit wireless network data based on a packet communication, To a data network providing communication (e.g., the Internet).

According to an embodiment of the present invention, the wireless network communication unit 155 is a mobile communication unit that performs at least one of connection to a mobile communication network, location registration, call processing, call connection, data communication, and handoff according to the CDMA / WCDMA / ≪ / RTI > Meanwhile, according to the intention of a person skilled in the art, the wireless network communication unit 155 may further include a portable Internet communication configuration for performing at least one of connection to the portable Internet, location registration, data communication and handoff according to the IEEE 802.16 standard, It is evident that the present invention is not limited by the wireless communication configuration provided by the wireless network communication unit 155. [ That is, the wireless network communication unit 155 is a general term for a component that connects to a wireless communication network through a cell-based base station irrespective of a frequency band of a wireless section, a type of a communication network, or a protocol.

The general kernel 115 of the general OS 110 includes a driver for accessing and controlling the wireless network communication unit 155. When the general kernel 115 accesses and controls the sound processing unit 145 The secure OS 120 can not access the wireless network communication unit 155 controlled by the general OS 110.

The secure kernel 130 of the secure OS 120 has a separate security driver for accessing and controlling the wireless network communication unit 155. The secure kernel 130 may access the wireless network communication unit 155 The general OS 110 can not access the wireless network communication unit 155 controlled by the secure OS 120. In this case,

The short-range network communication unit 150 is a generic term of communication means for connecting a communication session using a radio frequency signal within a predetermined distance (for example, about 10 m) as a communication medium and connecting the communication terminal to the communication network The wireless terminal 100 can be connected to the communication network through at least one of Wi-Fi communication, Bluetooth communication, public wireless communication, and UWB. According to an embodiment of the present invention, the short-range network communication unit 150 may connect the wireless terminal 100 to a data network providing packet-based short-range wireless data communication through a wireless AP.

The general kernel 115 of the general OS 110 includes a driver for accessing and controlling the local area network communication unit 150. When the general kernel 115 accesses and controls the sound processing unit 145 The secure OS 120 can not access the local area network communication unit 150 controlled by the general OS 110.

The secure kernel 130 of the secure OS 120 has a separate security driver for accessing and controlling the local area network communication unit 150. The secure kernel 130 may access the local area network communication unit 150 The general OS 110 can not access the local area network communication unit 150 controlled by the secure OS 120. In this case,

The USIM reader 160 is a generic term of a configuration for exchanging at least one data set with a universal subscriber identity module that is mounted or detached from the wireless terminal 100 based on the ISO / IEC 7816 standard , And the data set is exchanged in a half duplex communication manner through an APDU (Application Protocol Data Unit).

The USIM is an SIM type card having an IC chip conforming to the ISO / IEC 7816 standard, and includes an input / output interface including at least one contact connected to the USIM reader 160, a program code for at least one IC chip (Or processing) the program code for the IC chip or extracting (or processing) the data set in accordance with at least one command transmitted from the wireless terminal 100 in connection with the input / output interface To the input / output interface.

According to the present invention, the general OS 110 is loaded with various applications operating using the general kernel 115, and the user can control various applications executed in the general OS 110 through the general kernel 115 The normal OS 115 performs a user operation by the user input unit 140 controlled through the general kernel 115 while displaying one or more interface screens through the screen output unit 135. The general OS 115, The application of the present invention performs a designated transaction operation and provides various services to the user. Hereinafter, an application (or a program module embedded in or linked to an application) operating in accordance with the present invention on the general OS 110 is referred to as " program (n) 200 " Preferably, the program (n) 200 may include an application that uses an OTP (One Time Password) such as a banking application or a payment application executed in the general OS 110. However, the program (n) 200 is not limited to a banking app or a payment application, and any application may use the OTP on the general OS 110 and belong to the scope of the present invention.

According to the embodiment of the present invention, the program (n) 200 of the general OS 110 is provided in the upper part of the general kernel 115 on the OS structure and operates using the general kernel 115.

According to the present invention, at least one security application operating on the secure kernel 130 is installed in the secure OS 120. [ The security application on the secure OS 120 operates using the secure kernel 130 and may be connected to the screen output unit 135, the user input unit 140, the sound processing unit 145, The wireless network communication unit 155, the local area network communication unit 150, and the like. Hereinafter, a security application (or a program module embedded in or linked to a security application) operating in accordance with the present invention on a general OS 110 is referred to as " program (s) 240 " Preferably, the program (s) 240 may include an OTP app running in the secure OS 120.

According to an embodiment of the present invention, the program (s) 240 of the secure OS 120 is provided in the upper part of the secure kernel 130 on the OS structure and operates using the secure kernel 130.

The OS of the wireless terminal 100 is switched from the general OS 110 to the secure OS 120 in the secure OS 120 (or between the general OS 110 and the secure OS 120) Or a security monitor 125 (Secure Monitor) that performs a series of procedures for switching from the security OS 120 to the general OS 110. [ Since the security monitor 125 uses the command of the secure OS 120, FIG. 1 illustrates the security monitor 125 as being provided in the secure OS 120 for the sake of convenience.

The security monitor 125 monitors whether an SMC (Secure Monitor Call) command is generated through the kernel or an IRQ (Interrupt Request) to FIQ (Fast Interrupt Request) Can be performed.

2 is a diagram showing a functional configuration of a program according to an embodiment of the present invention.

2 shows the functional configuration of the program (n) 200 of the general OS 110 and the program (s) 240 of the secure OS 120. In the technical field of the present invention, It will be understood by those skilled in the art that various changes and modifications of the program may be made without departing from the spirit and scope of the present invention as defined by the following claims. The technical characteristics are not limited only by the method shown in FIG.

Referring to FIG. 2, the program (s) 240 of the secure OS 120 registers PIN information for PIN (Personal Identification Number) authentication for dynamically generating an OTP on the secure OS 120 And a PIN registration unit 245 for registering the PIN.

When the program (s) 240 mounted on the secure OS 120 is executed at least once, the PIN registration unit 245 transmits a PIN (PIN) for creating an OTP to a designated PIN storage area on the secure OS 120 storage area Make sure the information is stored. If the PIN information is not stored in the PIN storage area, the PIN registration unit 245 obtains the access right of the screen output unit 135 and the user input unit 140 according to a designated procedure, And receives the PIN information through the user input unit 140 and stores the received PIN information in the PIN storage area. The PIN registration unit 245 may encrypt the PIN information according to a designated encryption scheme and store the encrypted PIN information in the PIN storage area. The general OS 110 can not access the PIN storage area.

Referring to FIG. 2, the program 200 of the general OS 110 includes an OTP determination unit 205 for determining whether to implement or use an OTP during a designated transaction operation, An OTP request unit 210 for requesting an OTP to a designated server 170 via a communication network connectable to the general OS 110 and an OTP request unit 210 for sending an OTP request to the server 170 via a communication network connectable from the general OS 110. [ And an OTP receiving unit 215 receiving the encrypted OTP so as to be decrypted only through the designated program (s) 240 of the secure OS 120 after being dynamically generated in the secure OS 120.

The program (n) 200 is executed in the general OS 110 and performs at least one designated transaction operation among banking, payment, and authentication. The OTP determination unit 205 determines whether the OTP Is to be performed. For example, when the program (n) 200 is a banking app, the OTP determination unit 205 can confirm a procedure for inputting an OTP during a banking transaction through the program (n) Or if the program (n) 200 is a payment application, the OTP determination unit 205 can confirm that the program (n) 200 has received a push requesting the OTP.

When the OTP request unit 210 confirms the OTP implementation / use through the OTP determination unit 205, the OTP request unit 210 transmits the OTP request to the designated server (not shown) accessible from the general OS 110 via the communication network connectable from the general OS 110 170, and the server 170 dynamically generates an OTP of a designated code system based on the request. Preferably, the server 170 can dynamically generate an OTP of a specified code scheme by assigning a designated seed value to a specified code generation algorithm, or generate random numbers using a random number algorithm, OTP can be dynamically generated.

The server 170 includes an encryption key and / or an encryption algorithm for decrypting only the program (s) 240 provided in the secure OS 120 of the wireless terminal 100 requesting the OTP. The server 170 may be configured such that a designated program (s) 240 having a decryption algorithm matching the encryption algorithm of the server 170 is installed in the security OS 120 of the wireless terminal 100, (S) 240 of the secure OS 120 via the general OS 110 of the wireless terminal 100 or performs the key exchange / distribution procedure with the secure OS 120 using the program s ) 240 is installed in the secure OS 120 and can perform the specified key exchange / distribution procedure with the program (s) 240 of the secure OS 120 via the communication network connectable in the secure OS 120 to store the encryption key , The program (s) 240 of the secure OS 120 may obtain the decryption key corresponding to the encryption key and store the decryption key in the designated storage area of the secure OS 120. [ Meanwhile, the encryption key and the decryption key may be transmitted to the server 170 through the real-time key exchange procedure between the program (s) 240 of the secure OS 120 and the server 170 after each OTP is generated in the server 170 The present invention is not limited thereto.

The server 170 dynamically generates an OTP having a code system based on a request made through the general OS 110 of the wireless terminal 100 and transmits the generated OTP to the secure OS 120 of the wireless terminal 100 requesting the OTP. (Or the encryption key to be exchanged in real time with the program (s) 240) corresponding to the program (s) 240 included in the program (s) 240 and transmits the generated OTP And transmits the encrypted OTP to the program (n) 200 of the general OS 110 of the wireless terminal 100. The OTP receiving unit 215 receives the general OS 110 receives the encrypted OTP from the server 170 via a communication network connected thereto. The encrypted OTP basically includes an OTP dynamically generated by the server 170 and the program (s) 240 of the secure OS 120 generates the OTP on the server 170 side (For example, an integrity verification value generated for verifying the integrity of the OTP, a MAC (Message Authentication Code) value of the OTP, a hash value obtained by hashing the OTP, or a verification value (s) 240 and a hash value hashed by combining OTP and the like).

Referring to FIG. 2, the program 200 of the general OS 110 performs a series of procedures for switching to the secure OS 120 through the normal kernel 115, And a linkage procedure unit 220 for allocating a memory area accessible by the designated program (s) 240 of the memory unit 240 or checking a pre-allocated memory area and providing the confirmed encrypted OTP to the memory area. Meanwhile, according to another embodiment of the present invention, the process of allocating the memory area or checking the pre-allocated memory area may be performed through the program (s) 240 of the secure OS 120, (s) 240 to allocate / verify the memory area may be included as a scope of right.

The interworking procedure unit 220 checks whether the secure OS 120 is loaded in the wireless terminal 100 when the program (n) 200 is loaded into the general OS 110 at least for the first time, (S) 240 for creating an OTP in the secure OS 120 when the secure OS 120 is installed in the wireless terminal 100. The secure OS 120 may include a program (s) If the program (s) 240 for generating an OTP is installed in the secure OS 120, the interworking procedure unit 220 determines that the program (s) 240 is installed in the secure OS 120 (S) 240 mounted on the secure OS 120 and / or the identification information of the program (s) 240 mounted on the secure OS 120 in the general OS 110 storage area.

When the OTP determination unit 205 confirms to perform the OTP implementation / use procedure, the interworking procedure unit 220 transmits the program (s) 240 to the secure OS 120 based on the identification information, (S) 240 installed in the secure OS 120 and confirms that the program (s) 240 is installed.

(S) 240 of the secure OS 120 through the identification information, the interworking procedure unit 220 determines whether to execute the OTP implementation / use procedure using the general kernel 115 (N) 200 immediately before switching to the secure OS 120 via the network interface (OS). Preferably, the interworking procedure unit 220 transmits a program requiring the OTP through the general kernel 115 at the time of switching the OS of the wireless terminal 100 from the general OS 110 to the secure OS 120 the OS of the wireless terminal 100 is switched from the normal OS 110 to the secure OS 120 and then the secure OS 120 is re- When the state of the program (n) 200 is changed to a state requiring the OTP (for example, an interface screen state of the program (n) 200, a program (n) 200 ) Communication session state, and the like).

According to an embodiment of the present invention, the interworking procedure unit 220 may be configured to execute the security OS 120 immediately before switching to the secure OS 120 through the general kernel 115 (for example, immediately before the security OS 120 is driven through the SMC command) The program (n) 200 may be initialized and / or the general OS 110 (n) may be initialized in the process of switching the general OS 110 to the secure OS 120 by maintaining the state information of the program When the OS of the wireless terminal 100 is switched from the secure OS 120 to the normal OS 110 even if an exceptional situation occurs such as a page fault occurs during the procedure of switching from the secure OS 120 to the secure OS 120, The state of the program (n) 200 can be restored to the state immediately before switching to the secure OS 120 using the state information.

(S) 240 of the secure OS 120 and / or the status information of the program (n) 200 is stored in the secure OS 120, , The interworking procedure unit 220 generates an SMC command for driving the secure OS 120 through the general kernel 115. [ The security monitor 125 verifies the validity of the SMC command and performs a procedure for driving the secure OS 120 according to the SMC command when the verification is successful.

Meanwhile, at a predetermined point in time before, during, or after the start of the operation of the secure OS 120, the linkage procedure unit 220 accesses the secure OS 120 while being accessible from the program (n) (S) 240 of the program (s) 240, or identifies pre-allocated memory areas. For example, the allocated memory area may include a shared memory for inter-process communication between the program (n) 200 of the general OS 110 and the program (s) 240 of the secure OS 120 have. While the normal shared memory is allocated in the OS for inter-process communication within the same OS, the memory region of the present invention is used for inter-process communication of heterogeneous processes executed in heterogeneous OS including general OS 110 and secure OS 120 Which is a shared memory for providing the data.

According to the first memory area allocation method of the present invention, the linking procedure unit 220 allocates the memory area on the general OS 110 or confirms the memory area allocated on the general OS 110 . In this case, the security monitor 125 can access or monitor the memory area of the general OS 110, and the program (s) 240 of the secure OS 120 can be accessed through the security monitor 125 (Or access to) the memory area of the OS 110 indirectly.

According to the second memory area allocation method of the present invention, the linking procedure unit 220 allocates the memory area on the security monitor 125 or the memory area allocated to the security monitor 125 have. In this case, the interworking procedure unit 220 can allocate the memory area to the security monitor 125 or check the memory area allocated to the security monitor 125 through the SMC command.

According to the third memory area allocation method of the present invention, the interworking procedure unit 220 can access (or connect to) the program (n) 200 and can also access the program s (240) of the secure OS 120 (Or connectable) to the security server on the network, or to identify the memory area allocated to the security server. When the memory area is allocated to the security server on the network, the program (n) 200 of the general OS 110 and the program (s) 240 of the secure OS 120 communicate with the security server, You can read or write data to and from the memory area.

The interworking procedure unit 220 can set the program (n) 200 as a process of the general OS 110 that refers to the allocated memory area. Preferably, the interworking procedure unit 220 provides a PID (Process ID) of the program (n) 200 to the memory area so that the program (s) 240 of the secure OS 120 operates The program (s) 240 can set the program (n) 200 as a process of the general OS 110 side to read data recorded in the allocated memory area.

When a memory area accessible by the program (s) 240 of the secure OS 120 is allocated through at least one of the first to third memory area allocation schemes, or when a pre-allocated memory area is identified, The procedure unit 220 can set a program (s) 240 designated as a process accessible to the allocated memory area in the secure OS 120. [ For example, the interworking procedure unit 220 may store the address information of the allocated memory area (e.g., a memory address on a RAM or a memory address of a RAM provided in the processor, (S) 240 used by the secure OS 120 through the security monitor 125 and a network address (and / or identification value) identifying the memory area . ≪ / RTI >

(S) 240 of the secure OS 120 is allocated / verified and / or the memory region is made accessible in the program (s) 240 of the secure OS 120 In this case, the interworking procedure unit 220 interlocks with the security monitor 125 to prevent access to the memory area from other processes except for the program (n) 200 of the processes of the general OS 110 . Preferably, the interworking procedure unit 220 uses the memory access control function of the security monitor 125 to control the process of the general OS 110 in a process other than the program (n) Can not be accessed.

Meanwhile, a memory area accessible by the program (s) 240 of the secure OS 120 may be allocated, or a pre-allocated memory area may be identified through at least one of the first to third memory area allocation methods, and / Or the access control procedure of the memory area is performed, the interworking procedure unit 220 is dynamically generated through the server 170 specified through the OTP receiving unit 215, and the designated program s (S) 240 of the secure OS 120 to reference the encrypted OTP by providing an encrypted OTP to be decrypted only through the secure OS 240 to the memory area.

When the secure OS 120 is activated by the SMC command and the program (s) 240 of the secure OS 120 is executed, the access right of the allocated / confirmed memory area is managed by the security monitor 125 (S) 240 of the secure OS 120. In this case,

Referring to FIG. 2, the program (s) 240 of the secure OS 120 may identify a memory area allocated through at least one of the first to third memory area allocation methods, And an interlock processing unit 250 for performing a procedure for interlocking.

When the security OS 120 is activated and the program (s) 240 of the secure OS 120 is executed, the interworking processor 250 interlocks with the operation procedure performed through the security monitor 125, (S) 240 and accesses the memory area through at least one of the first to third memory area allocation methods. Preferably, the interworking processor 250 may perform a procedure of obtaining an access right to the memory area.

Meanwhile, the interlocking processor 250 may check the memory area at any time before referring to the memory area in the program (s) 240, and the interlocking processor 250 may check the memory area at a specific time The present invention is not limited thereto.

2, when the user's PIN information is stored in the designated PIN storage area of the secure OS 120 through the PIN registration unit 245, the program (s) And a PIN authentication unit 255 for receiving the PIN information through the input unit of the wireless terminal 100 and authenticating the validity.

When the secure OS 120 is activated and the program (s) 240 of the secure OS 120 is executed, the PIN authenticator 255 accesses the screen output unit 135 and the user input unit 140, displays an interface for PIN authentication on the screen output unit 135, inputs PIN information through the user input unit 140, and compares the PIN information with the PIN information stored in the PIN storage area (Or verification operation) to verify the validity of the input PIN information.

Referring to FIG. 2, the program (s) 240 of the secure OS 120 includes an OTP that is dynamically generated and encrypted through a designated server 170 from a memory area shared with the program (n) And an OTP restoring unit (265) for restoring the OTP generated by the server (170) by decrypting the OTP encrypted through the designated decryption key. The OTP restoring unit (265) And an OTP verification unit 270 for verifying whether the OTP is generated through the OTP verification unit 170.

When the secure OS 120 is activated and the program (s) 240 of the secure OS 120 is executed and / or the PIN authentication is successful, the OTP verification unit 260 determines whether the PIN And checks the encrypted OTP corresponding to the transaction operation of the general OS 110 from the memory area shared with the program (n) 200 of the general OS 110 in association with the normal OS 110. [

The OTP restoring unit 265 decrypts the decrypted key previously exchanged with the designated server 170 and decrypts the encrypted OTP through the decryption key so as to decrypt the original OTP . Meanwhile, a verification value for verifying whether the OTP is an OTP generated by the designated server 170 by decoding the encrypted OTP (e.g., an integrity verification value generated to verify the integrity of the OTP, a MAC value of the OTP, or an OTP The hash value obtained by hashing a combination of the OTP and the value pre-shared with the program (s) 240 of the secure OS 120) is confirmed, the OTP verification unit 270 obtains the hash value It is possible to verify whether the decrypted OTP is an OTP dynamically generated by the designated server 170 by reading the verification value.

Referring to FIG. 2, the program (s) 240 of the secure OS 120 accesses the screen output means of the wireless terminal 100 through the secure OS 120 and outputs an OTP output And an OTP providing unit 280 for providing the recovered OTP to the memory region.

The OTP output unit 275 may obtain the access right of the screen output unit 135 and output the restored OTP to the screen output unit 135 according to a designated procedure. Since the OTP is output through the secure OS 120, the OTP output through the secure OS 120 is securely protected even if the normal OS 110 is hacked.

The OTP provider 280 provides the restored OTP to the memory area identified through the interlocking processor 250. The security monitor 125 detects the OS of the wireless terminal 100 according to a designated procedure, And switches from the secure OS 120 to the normal OS 110. [ Preferably, the OTP provider 280 records the restored OTP in the memory area so that the restored OTP can be read or referenced through the program (n) 200 of the general OS 110 .

According to the modified embodiment of the present invention, the OTP provider 280 may encrypt the OTP and provide the OTP to the memory area. When outputting the OTP from the program (n) 200 of the general OS 110, the encrypted OTP can be decrypted only through the program (n) 200 of the general OS 110, It is not decoded through another program of the computer 110. Meanwhile, when transmitting the OTP from the program (n) 200 of the general OS 110 to the designated server 170, the OTP provider 280 can decrypt only OTP In this case, the encrypted OTP can be decrypted only through the designated server 170 (that is, it can not be decrypted through the program (n) 200 of the general OS 110). Meanwhile, according to another modified embodiment of the present invention, the OTP provider 280 can transmit the OTP, which is always restored through the communication means of the wireless terminal 100, to the designated server 170. In this case, It is acceptable if the area does not provide OTP.

When the OS of the wireless terminal 100 is switched to the general OS 110 according to an embodiment of the present invention, the linkage procedure unit 220 of the program (n) 200 acquires the access right of the memory area (Or based on the acquired rights) to access the memory area. Meanwhile, the interworking procedure unit 220 of the program (n) 200 can restore the status of the program (n) 200 immediately before switching to the secure OS 120 using the status information.

Referring to FIG. 2, the program 200 of the general OS 110 includes an OTP 240 for checking an OTP restored through the program (s) 240 of the secure OS 120 by referring to the memory area, And displaying the confirmed OTP through the screen output means of the wireless terminal 100 and / or displaying the confirmed OTP to the designated server 170 through the communication means of the wireless terminal 100. [ And an OTP processing unit 230 for transmitting the OTP signal.

When the OS of the wireless terminal 100 is switched to the general OS 110, the OTP reference unit 225 refers to the memory area in cooperation with the linking procedure unit 220, The program (s) 240 identifies the OTP provided to the memory area.

When the OTP restored through the program (s) 240 of the secure OS 120 is confirmed through the OTP reference unit 225, the OTP processing unit 230 detects the screen output means of the wireless terminal 100 To output the identified OTP. Preferably, the OTP processor 230 may output the OTP on an interface screen for inputting / using the OTP among the designated transaction operation procedures of the program (n) If the OTP is encrypted through the program (s) 240 of the secure OS 120, the OTP processing unit 230 may decrypt and output the encrypted OTP. The OTP output through the OTP processor 230 may be keyed by the user into the program 200 of the general OS 110. In this case, OTP to the designated server 170. The OTP may be transmitted to the designated server 170 via the other program associated with the general OS 110 linked to the program 200 in addition to the program 200, Or it may be transmitted through a separate terminal other than the wireless terminal 100 and transmitted to the designated server 170. [

Alternatively, the OTP processing unit 230 may transmit the confirmed OTP to the designated server 170 through the communication means of the wireless terminal 100. The OTP processing unit 230 may transmit the OTP to the designated server 170 after outputting the screen or to the designated server 170 without outputting the screen. When the OTP is transmitted to the designated server 170 without outputting the OTP, the OTP is transmitted through the program (s) 240 of the secure OS 120 (for example, (S) 240 of the secure OS 120 may be decrypted through the designated server 170 via the secure OS 120 (e.g., via the secure OS 280) Lt; / RTI >

The server 170 receiving the OTP can process various requests (for example, at least one of banking and settlement) using the program (n) 200 by authenticating the validity of the OTP.

FIG. 3 is a diagram illustrating a process of preparing a program (s) 240 in the secure OS 120 according to an embodiment of the present invention.

More specifically, FIG. 3 illustrates an example of storing a decryption key for restoring an encrypted OTP generated by the server 170 by installing the program (s) 240 in the secure OS 120, Those skilled in the art will appreciate that various implementations of the process of preparing the program (s) 240 (e.g., some steps may be omitted, However, the present invention can be applied to all of the above-mentioned embodiments, and the technical features of the present invention are not limited by the method shown in FIG.

Referring to FIG. 3, a program (n) 200 of a general OS 110 is connected to a security OS 120 (or a wireless terminal 100) based on a model (or a type of a processor) ) (Trust zone) is mounted (300). If the secure OS 120 is installed in the wireless terminal 100, the program 200 performs a procedure for loading the program 240 specified in the secure OS 120 (305).

(S) 240 is loaded (310) in the secure OS 120 according to a designated procedure and the program (s) 240 is loaded into the designated server 170 (315), and stores the obtained decryption key in the designated storage area of the secure OS 120 (320). Meanwhile, the program (s) 240 may perform a procedure of registering PIN information for restoring the OTP according to an embodiment of the present invention. In the PIN storage area of the secure OS 120, (325).

When the program (s) 240 is loaded on the secure OS 120, the program 200 of the general OS 110 transmits the program 240 to the secure OS 120 (S) 240 mounted on the secure OS 120 and / or information identifying the presence of the program (s) 240 mounted on the secure OS 120.

4 is a diagram illustrating an interlock process between the general OS 110 and the secure OS 120 according to an embodiment of the present invention.

In more detail, FIG. 4 illustrates a case where the program (n) 200 of the general OS 110 receives the encrypted OTP generated through the designated server 170 when the OTP is implemented / used while performing the specified transaction operation (S) 240 of the secure OS 120. It is understood that those skilled in the art can refer to and / or modify the FIG. It will be appreciated that various implementations of the interoperation process between the generic OS 110 and the secure OS 120 (e.g., omitting some of the steps or changing the order) may be inferred, And the technical features thereof are not limited only by the method shown in FIG.

Referring to FIG. 4, the program (n) 200 of the general OS 110 performs a designated transaction operation (400) and determines whether to implement / use the OTP during the designated transaction operation (405 ). If it is necessary to implement / use the OTP, the program (n) 200 includes a program (s) 240 for generating an OTP on the secure OS 120 side of the wireless terminal 100 using the identification information, (410). If the program (s) 240 is not loaded in the secure OS 120, the program 200 may execute a procedure for loading the program 240 into the secure OS 120 Can be performed.

When the program (s) 240 is loaded on the secure OS 120, the program 200 is transmitted to the designated server 170 via the communication network connectable from the general OS 110, The server 170 requests OTP to be implemented / used in the transaction operation from the server 200 accessible by the general OS 110. The server 170 requests the program 200 of the general OS 110, (N) 200 of the general OS 110 by encrypting the OTP so as to be decrypted only through the designated program (s) 240 of the secure OS 120 after dynamically generating the OTP based on the request through the secure OS 120 send.

The program (n) 200 of the general OS 110 is dynamically generated by a designated server 170 through a communication network connected to the general OS 110 and transmitted to a program (s) 240 of the secure OS 120 If the encrypted OTP is received to be decrypted only through the program (s) 240 of the secure OS 120, the program (n) 200 determines whether the encrypted OTP is received The state of the program (n) 200 is stored and maintained (425) before switching to the secure OS 120, and the OS of the wireless terminal 100 is switched to the secure OS 120, (S) 240 of the memory 120 or identifies the pre-allocated memory area (430). If the memory area is allocated / confirmed, the program (n) 200 sets the access right of the program (n) 200 to the allocated / confirmed memory area, and at the same time, (440) the encrypted OTP to the memory area while setting the program (s) (240) to access the memory area (435) The OS of the OS 100 is switched to the secure OS 120 (445).

When the OS of the wireless terminal 100 is switched to the secure OS 120 so that the program s 240 is executed 450, the program s 240 performs the process shown in FIG. If the PIN information is registered in the PIN storage area of the secure OS 120 and acquires the access right to the screen output unit 135 and the user input unit 140 of the wireless terminal 100 when the PIN information is registered, And outputs the input interface and confirms the PIN information input through the interface (455). If the PIN information is inputted, the program (s) 240 authenticates the validity of the input PIN information through the PIN information stored in the PIN storage area (460). If the validity of the PIN information is not authenticated The program s 240 processes the OS of the wireless terminal 100 to be switched to the normal OS 110 in step 465. If the OS of the wireless terminal 100 is switched to the normal OS 110, (N) 200 of the general OS 110 restores the state of the program (n) 200 before switching to the secure OS 120 (step 470).

Meanwhile, when the validity of the PIN information is authenticated, the program (s) 240 identifies a memory area that is allocated through the program (n) 200 and can be shared with the program (n) 200 475). The memory area may be allocated through the program (s) 240 according to an implementation method, and the present invention may include an embodiment in which the program (s) 240 allocates the memory area. If the memory area accessible by the program (s) 240 is not confirmed, the program (s) 240 processes the OS of the wireless terminal 100 to switch to the general OS 110 (465) , When the OS of the wireless terminal 100 is switched to the general OS 110, the program n of the general OS 110 transmits the program n (n) before the switch to the secure OS 120 200 are restored (470).

Meanwhile, if a memory area accessible by the program (s) 240 is confirmed, the program (s) 240 confirms the access right to the memory area (480). If the access right to the memory area is not confirmed, the program (s) 240 processes the OS of the wireless terminal 100 to switch to the general OS 110 (465) (N) 200 of the general OS 110 restores the state of the program (n) 200 before switching to the secure OS 120 when the OS of the general OS 110 is switched to the general OS 110 (470).

5 is a diagram illustrating a process of restoring and outputting an encrypted OTP through the secure OS 120 according to an embodiment of the present invention.

In more detail, FIG. 5 shows an OTP encrypted by the server 170 designated by the program (n) 200 of the general OS 110 in the program (s) 240 of the secure OS 120 If the person skilled in the art is familiar with the present invention, referring to and / or modifying FIG. 5, restoring the encrypted OTP through the secure OS 120 and outputting It is to be understood that the invention may be practiced otherwise than as specifically described herein, but it will be appreciated that the invention may be practiced otherwise than as specifically described herein, The technical features are not limited by the method alone.

Referring to FIG. 5, a memory area shared by the program (s) 240 of the secure OS 120 and the program (n) 200 of the general OS 110 is checked through the process shown in FIG. 4 When the access right is confirmed, the program (s) 240 confirms (500) the encrypted OTP provided by the program (n) 200 of the general OS 110 from the memory area. If the encrypted OTP is not confirmed from the memory area, the program (s) 240 processes the OS of the wireless terminal 100 to switch to the general OS 110 (530) (N) 200 of the general OS 110 switches the state of the program (n) 200 before switching to the secure OS 120 when the OS of the general OS 110 is switched to the general OS 110 (535).

Meanwhile, if the encrypted OTP is confirmed from the memory area, the program (s) 240 confirms the decryption key stored in the designated storage area of the secure OS 120 (505) Decrypts the identified encrypted OTP and restores the dynamically generated OTP on the designated server 170 side and transmits the recovered OTP through the access right to the screen output unit 135 of the wireless terminal 100 (520). On the other hand, if the data set decrypting the encrypted OTP includes a verification value for verifying whether the OTP generated by the OTP server 170 is the OTP, the program (s) 240 reads the verification value, It is possible to verify whether the restored OTP is an OTP generated through the designated server 170 in step 515. If the restored OTP is verified to be the OTP generated in the designated server 170, The restored OTP can be displayed on the screen through the access right to the unit 135 (520). The program (s) 240 may process the OS of the wireless terminal 100 to switch to the general OS 110 after outputting the restored OTP (step 530) s 240 provides the restored OTP to a memory area shared with the program 200 of the general OS 110 and then transmits the OS of the wireless terminal 100 to the general OS 100 0.0 > 110). ≪ / RTI > In step 525, the program (s) 240 encrypts the restored OTP using a designated encryption method and provides the encrypted OTP to the memory area (step 525). Then, the program (s) (530). ≪ / RTI >

When the OS of the wireless terminal 100 is switched to the general OS 110, the program 200 of the general OS 110 transmits the program 200 (n) before switching to the secure OS 120, (Step 535). When the restored OTP is displayed through the program (s) 240 of the secure OS 120, the program (n) 200 of the general OS 110 may not perform a separate procedure.

Meanwhile, the program (n) 200 of the general OS 110 checks and accesses a memory area shared with the program (s) 240 of the secure OS 120 (540) The restored OTP can be confirmed through the program (s) 240 of the OS 120 (545). When the restored OTP is confirmed through the program (s) 240 of the secure OS 120, the program (n) 200 is restored through the program (s) 240 of the secure OS 120 (550) the OTP, and / or send the restored OTP to the designated server (170) via the program (s) (240) of the secure OS (120).

100: wireless terminal 110: general OS
115: Generic kernel 120: Security OS
125: Security Monitor 130: Security Kernel
200: program (n) 205: OTP judgment unit
210: OTP requesting unit 215: OTP receiving unit
220: connection procedure unit 225: OTP reference unit
230: OTP processor 240: Program (s)
245: PIN registration unit 250:
255: PIN authentication unit 260: OTP verification unit
265: OTP restoring unit 270: OTP verifying unit
275: OTP output unit 280: OTP provider

Claims (15)

1. A method for executing a secure operating system (OS) having a secure kernel (Kernel) and a wireless terminal equipped with a normal operating system (OS)
The program (n) of the general OS sends an OTP (One Time Password) dynamically generated in the server and a designated program (s) of the secure OS from a designated server via a code generation algorithm of the server, A first step of receiving a verification value for verifying the OTP with an OTP dynamically generated by the server, the encrypted OTP being decrypted only through a designated program (s) of the secure OS;
A second step in which the program (n) of the general OS allocates a memory area accessible by the designated program (s) of the secure OS or identifies an allocated memory area;
The program (n) providing an encrypted OTP received on the general OS to the memory area;
A fourth step of the program (s) of the secure OS verifying the encrypted OTP from the memory area;
A fifth step of decrypting the encrypted OTP by the program (s), restoring the OTP dynamically generated by the server, and verifying a verification value for verifying the restored OTP with the OTP generated by the server;
A sixth step of the program (s) reading the verification value and verifying the restored OTP as an OTP dynamically generated by the server; And
And a seventh step of the program (s) accessing the screen output means of the wireless terminal through the secure OS and outputting the restored OTP when the restored OTP is verified by the OTP generated by the server. A method of providing a server-type object.
The method of claim 1,
And a trust zone installed in the processor. The method of claim 1, wherein the trust zone is installed in the processor.
The method according to claim 1,
Further comprising the step of identifying that the program (n) has the program (s) assigned to the secure OS installed or the identification information identifying the program (s) mounted on the secure OS in the general OS storage area A method for providing server-type authentication using a secure operating system.
The method according to claim 1,
Further comprising storing and maintaining state information on the program (n) immediately before the program (n) is switched to the secure OS.
2. The method according to claim 1,
Further comprising the step of the program (n) operating a secure OS through an SMC (Secure Monitor Call) command.
2. The method according to claim 1,
Wherein the program (n) allocates the memory area to a general OS or identifies a pre-allocated memory area.
2. The method according to claim 1,
Wherein the program (n) allocates the memory area to the security monitor performing the switching procedure between the general OS and the security OS, or verifies the pre-allocated memory area.
2. The method according to claim 1,
Wherein the program (n) allocates a memory area accessible from a program (s) of a secure OS to a security server on the network or identifies a pre-allocated memory area.
2. The method according to claim 1,
Further comprising setting the program (n) as a process of a general OS side in which the program (n) refers to the memory area.
The method according to claim 1,
Further comprising the step of the program (s) storing a decryption key in a storage area of the secure OS,
Wherein the fifth step further comprises decrypting and restoring the encrypted OTP through the stored decryption key. ≪ Desc / Clms Page number 19 >
The method according to claim 1,
Further comprising the step of the program (s) exchanging a decryption key with a designated server via a communication network connectable in the secure OS,
Wherein the fifth step further comprises decrypting the encrypted OTP through the exchanged decryption key and restoring the decrypted OTP.
The method according to claim 1,
Receiving the PIN (Personal Identification Number) by accessing the input means of the wireless terminal through the security OS; And
And authenticating the validity of the PIN input through the secure OS. The method of claim 1, wherein the validity of the PIN is verified.
The method according to claim 1,
When the program (s) restores the OTP,
The program (s) providing the restored OTP to the memory area; And
And the program (n) refers to the OTP of the memory area as an OTP of the general OS.
14. The method of claim 13,
The program (n) verifying the OTP of the memory area; And
And displaying the confirmed OTP by the program (n) through a screen output unit of the wireless terminal.
14. The method of claim 13,
The program (n) verifying the OTP of the memory area; And
And transmitting the confirmed OTP to the designated server through the communication unit of the wireless terminal by the program (n).

Images