KR102451863B1 - Method and system for managing visitor using qr code - Google Patents

Abstract

The present invention relates to a method and apparatus for managing a visitor using a QR code generated based on a virtual code for authentication. The present invention is a QR code receiving step in which the QR code verification module receives the QR code generated from the QR code generating module, the QR code verification module extracting a virtual code for authentication from the QR code, the QR code verification module Verification of the QR code based on the virtual code for authentication and the step of the QR code verification module matching the time of receiving the QR code and the virtual code for authentication and storing, wherein the QR code generates the QR code It provides a visitor management method using a QR code, characterized in that it is generated based on the virtual code for authentication generated from the virtual code generation function for authentication included in the module.

Description

Method and system for visitor management using QR code {METHOD AND SYSTEM FOR MANAGING VISITOR USING QR CODE}

The present invention relates to a method and apparatus for managing a visitor using a QR code generated based on a virtual code for authentication.

OTP (One Time Password) is a user authentication method using a one-time password of a randomly generated random number. The OTP authentication method is a system introduced to enhance security. Since user authentication is performed by generating a one-time password each time a user logs in, it is possible to overcome security vulnerabilities caused by the repeated use of the same password.

Due to Corona 19, personal information of visitors (name, contact information, address, etc.) is directly written in order to check visitors to the offline business, but it is inconvenient that it takes a long time to enter and exit because it has to be manually written by the visitor. Reluctance to provide personal information to workplaces, many problems arise in which false personal information is entered. In addition, in the case of existing authentication methods such as tokens, there is a problem that a network cost occurs every time authentication is performed, and it cannot be used in an environment where network use is restricted. Specifically, in the case of mobile phone SMS authentication, a cost is incurred every time a text message for authentication is sent.

Since both Koreans and foreigners who cannot use the mobile network should be able to authenticate visitors, even if the visitor's user terminal cannot use the network, it should be possible to create a visitor record by generating a virtual authentication code and providing it as a QR code. . In addition, if the network of the offline store where visitor records (ie, guestbooks) must be created is limited, the network of the administrator's user terminal may also be limited. It should be possible to prevent attempts to enter using a QR code or a previously generated QR code.

In addition, visitors do not want their personal information to be leaked, so the code provided to the administrator cannot identify the user with the corresponding code alone, and there must be no possibility of being stolen because it is changed every time.

Korean Patent No. 10-1316466 (2013.10.01)

An object of the present invention is to provide a visitor management method and system that enables a visitor who cannot use a network to perform visitor authentication by generating a one-time QR code.

In addition, the problem to be solved by the present invention is to provide a method and system for managing a visitor that can prevent an administrator from performing visitor authentication by stealing a QR code by others.

In addition, an object of the present invention is to provide a visitor management method and system capable of preventing visitor information from being leaked to others.

The problems to be solved by the present invention are not limited to the problems mentioned above, and other problems not mentioned will be clearly understood by those skilled in the art from the following description.

The present invention for solving the above problems is a QR code receiving step in which the QR code verification module receives the QR code generated from the QR code generating module, the QR code verification module extracting a virtual code for authentication from the QR code , the step of the QR code verification module verifying the QR code based on the virtual code for authentication, and the step of the QR code verification module matching the QR code reception time point and the virtual code for authentication and storing the matching, the The QR code provides a visitor management method using a QR code, characterized in that it is generated based on the virtual code for authentication generated from the virtual code generation function for authentication included in the QR code generation module.

In one embodiment, the step of verifying the QR code by the QR code verification module based on the virtual code for authentication, the QR code verification module receiving the QR code is based on the time when the QR code is generated It may be determined that the QR code is normal only within a predetermined time.

In one embodiment, the present invention transmits the QR code verification module to the server a plurality of virtual codes for authentication and a QR code reception time stored by matching the plurality of virtual codes for authentication, the server is the plurality of extracting at least one detailed code from each of the virtual codes for authentication, the server searching for a storage location of user information corresponding to each of the plurality of virtual codes for authentication based on the at least one detailed code; and It may further include the step of matching and storing the location information corresponding to the QR code reception time and the QR code verification module in the storage location.

In one embodiment, the step of verifying the QR code by the QR code verification module is a first virtual security that is generated based on the first seed data in the virtual code for authentication and is changed for every unit count set at a specific time interval. It may include extracting the code and determining that the QR code is a normal code when the generation time of the first virtual security code is included within a predetermined time from the time of receiving the QR code.

In an embodiment, the detailed code is a code included in a part other than the first virtual security code in the virtual code for authentication, is generated based on the second seed data, and is changed for every unit count set at a specific time interval It may include a second virtual security code.

In an embodiment, the seed data of the first virtual security code generated by different QR code generating modules may be the same, and the seed data of the second virtual security code generated by different QR code generating modules may be different from each other. have.

In an embodiment, the detailed code includes first and second codes, and the first code is generated based on a unit count and the second seed data that have elapsed from an initial time when user information registration is started in the server. It is changed for each unit count set at a specific time interval, and the second code is generated based on the unit count and the second seed data elapsed from the time when user information corresponding to any one of the plurality of virtual codes for authentication is registered. and can be changed for each unit count set at a specific time interval.

In an embodiment, the virtual code for authentication may include any one of a unique value of the terminal in which the QR code generation module is installed and a unique value generated through the user's biometric information.

In an embodiment, the QR code generating module may generate a QR code only when the user performs biometric authentication on the terminal in which the QR code generating module is installed.

In addition, the present invention provides a visitor management program using a QR code, which is combined with a computer, which is hardware, and stored in a medium to execute the method described above.

In addition, the present invention is a QR code generating device for visitor authentication, using a detailed code generating unit that generates one or more detailed codes based on user information registered in the QR code generating device, and a virtual code generating function for authentication. A visitor comprising a virtual code generator that generates a virtual code for authentication by combining one or more detailed codes, a QR code generator that generates a QR code based on the virtual code for authentication, and a QR code provider that outputs the QR code A QR code generator for authentication is provided.

In an embodiment, the QR code generating device further includes a sensor configured to sense the user's biometric information, and the QR code generating device can generate a QR code only when the user performs biometric authentication through the sensor. have.

In addition, as a QR code verification device for visitor authentication, a QR code receiving unit for receiving a QR code, a virtual code extraction unit for extracting a virtual code for authentication from the QR code, and verifying the QR code based on the virtual code for authentication There is a request from a QR code verification unit, a virtual code storage unit and server that matches and stores the virtual code for authentication and the time of receiving the QR code, or the stored virtual code for authentication and the time of receiving the QR code at regular time intervals It provides a QR code verification device for visitor authentication including a virtual code providing unit to be transmitted to the server.

In an embodiment, the QR code verification unit may determine that the QR code is normal only when the time of receiving the QR code is within a predetermined time based on the time when the QR code is generated.

In addition, the present invention is a server for visitor authentication, a virtual code receiving unit for receiving a plurality of virtual codes for authentication from a QR code verification module and a QR code reception time stored by matching the plurality of virtual codes for authentication, the plurality of authentication A detailed code extraction unit for extracting at least one detailed code from each of the virtual codes and a storage location search for searching a storage location of user information corresponding to each of the plurality of virtual codes for authentication based on the at least one detailed code The server provides a server for visitor authentication, characterized in that it matches and stores the location information corresponding to the QR code reception time and the QR code verification module in the storage location.

According to the present invention as described above, it has various effects as follows.

First, the visitor can temporarily perform visitor authentication by forming a one-time QR code even in an environment without a network.

Second, since it is impossible to perform visitor authentication using the QR code after a certain period of time from the time the QR code is generated, it is possible to prevent others from stealing the QR code to perform visitor authentication.

Third, since the visitor information is not stored in the manager's terminal, there is no risk of the visitor's personal information being leaked.

Effects of the present invention are not limited to the effects mentioned above, and other effects not mentioned will be clearly understood by those skilled in the art from the following description.

1 is a conceptual diagram illustrating a QR code.
2 is a block diagram of a visitor management system using a QR code according to an embodiment of the present invention.
3 is a block diagram of a QR code generating apparatus according to an embodiment of the present invention.
4 is a block diagram of a QR code verification apparatus according to an embodiment of the present invention.
5 is a configuration diagram of a server according to an embodiment of the present invention.
6 and 7 are flowcharts of a visitor management method using a virtual code for authentication according to an embodiment of the present invention.
8 is an exemplary diagram of a storage location search algorithm for searching a storage location of user information through a k-shaped cloud movement according to an embodiment of the present invention.
9 is an exemplary diagram for explaining verification of a virtual code for authentication according to an embodiment of the present invention.
10 is an exemplary diagram of a storage location search algorithm for searching a storage location of user information by moving on a track based on a detailed code according to an embodiment of the present invention.
11 is an exemplary diagram for explaining a storage space of a server according to an embodiment of the present invention.

Advantages and features of the present invention and methods of achieving them will become apparent with reference to the embodiments described below in detail in conjunction with the accompanying drawings. However, the present invention is not limited to the embodiments disclosed below, but may be implemented in various different forms, and only these embodiments allow the disclosure of the present invention to be complete, and those of ordinary skill in the art to which the present invention pertains. It is provided to fully inform those skilled in the art of the scope of the present invention, and the present invention is only defined by the scope of the claims.

The terminology used herein is for the purpose of describing the embodiments and is not intended to limit the present invention. In this specification, the singular also includes the plural, unless specifically stated otherwise in the phrase. As used herein, “comprises” and/or “comprising” does not exclude the presence or addition of one or more other components in addition to the stated components. Like reference numerals refer to like elements throughout, and "and/or" includes each and every combination of one or more of the recited elements. Although "first", "second", etc. are used to describe various elements, these elements are not limited by these terms, of course. These terms are only used to distinguish one component from another. Therefore, it goes without saying that the first component mentioned below may be the second component within the spirit of the present invention.

Unless otherwise defined, all terms (including technical and scientific terms) used herein will have the meaning commonly understood by those of ordinary skill in the art to which this invention belongs. In addition, terms defined in a commonly used dictionary are not to be interpreted ideally or excessively unless clearly specifically defined.

As used herein, 'visitor authentication' refers to an act of providing a QR code to a QR code verification means as a procedure for verifying the identity of a user when a user visits a specific place or passes through a specific area.

In the present specification, 'character' is a component constituting a code, and includes all or part of uppercase letters, lowercase letters, numbers, and special characters.

In this specification, 'code' means a character string in which characters are listed.

In this specification, the 'virtual code for authentication' is a code generated by the virtual code generating means for authentication, and means a code used to perform user authentication in the virtual code verification means for authentication. That is, the 'virtual code for authentication' means a virtual code temporarily assigned to each unit count to extract and verify user information.

In this specification, 'detail code' means some code included in the virtual code for authentication.

In the present specification, a 'unit count' is a unit that is set at a specific time interval and is changed as the time interval elapses. For example, 1 count may be set to a specific time interval (eg, 1.5 seconds) and used.

In this specification, the 'virtual code generation function for authentication' refers to a function used to generate a virtual code for authentication.

As used herein, the term 'moving the cloud' means performing a translational motion while the object rotates. That is, 'moving the cloud' means moving while performing both a rotational motion and a translational motion, and it means that each point of the rotating object moves while being in contact with the moving axis in turn.

In the present specification, 'user identification (UID)' refers to a value in the form of a unique code that is not duplicated for each user to identify a user.

In the present specification, a 'storage location' means a point (count) on a track corresponding to a time when user information registration is requested by a user.

In this specification, 'user information' means information that can identify a user. For example, 'user information' may include personal information (eg, name, phone number, resident registration number, etc.) of a user who owns a terminal for generating a QR code, which will be described later. Also, for example, 'user information' may include user identification information (eg, UID to be described later) used to generate a virtual code included in the QR code.

Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings.

1 is a conceptual diagram illustrating a QR code.

A QR (Quick Response) code is a two-dimensional grid pattern barcode. A QR code can contain up to 7089 numbers, 4296 characters (ASDII), and up to 1817 Asian characters such as Chinese characters.

The QR code can be freely generated by the QR code generating program. Specifically, the QR code generating program can generate a QR code based on the input of letters and numbers. The generated QR code may be printed through a separate printing means or displayed through a display unit included in a terminal having a built-in QR code generating program. As described above, the QR code can be generated by installing a QR code generating program in an existing terminal without the need for a separate QR code generating device.

The printed QR code or the QR code displayed on the display unit may be transmitted to the QR code verification means by the QR code receiving means. Specifically, the QR code receiving means may be an optical device such as a camera. In one embodiment, the camera included in the terminal in which the QR code verification means is installed may be utilized as the QR code receiving means. When the QR code verification means receives a QR code scan request, it activates the camera included in the terminal to scan the printed QR code or the QR code displayed on the display unit. As described above, the QR code can be received by installing the QR code verification program in the existing terminal without the need to separately provide a QR code receiving device.

2 is a block diagram of a visitor management system using a QR code according to an embodiment of the present invention.

As shown in FIG. 2 , the user authentication system includes a QR code generating unit 10 , a QR code verification unit 20 , and a server 30 .

The QR code generating means 10 means a device in which a dedicated program or dedicated application (hereinafter, dedicated program 11) for generating a QR code is built-in or installed.

In one embodiment, the QR code generating means 10 may be initially registered in the server 30 to be described later. A method of initially registering the QR code generating means 10 will be described later.

Also, in one embodiment, the dedicated program 11 serves to generate a QR code for visitor authentication. Here, the dedicated program 11 generates a QR code based on the separately generated virtual code for authentication.

The virtual code for authentication is a code consisting of a combination of letters and numbers, and can be converted into a QR code based on the QR code generation rule. The virtual code for authentication may be generated by a virtual code generator built into the dedicated program 11 . The virtual code generator may generate a virtual code for authentication based on user information. Here, the user information may be information stored in both the QR code generating means 10 and the server 30 .

In summary, the QR code generating means 10 generates a QR code based on the information stored in both the QR code generating means 10 and the server 30 .

On the other hand, the user information is not necessarily stored in the memory built in the QR code generating means (10). For example, the user information may be stored in a card or a wearable device capable of separate wireless communication, and the user causes the terminal in which the user information is stored to transmit the user information to the QR code generating means 10, thereby generating a QR code. (10) can be made to generate a QR virtual code.

Meanwhile, the dedicated program 11 includes a virtual code generation function for authentication and generates a virtual code for authentication using user information. For example, the dedicated program 11 generates a virtual code for authentication by using user information as seed data of a virtual code generating function for authentication. Here, the user information may be User Identification (UID).

Also, in one embodiment, the dedicated program 11 serves to register the QR code generating means 10 to the server 30 . That is, the user installs the dedicated program 11 in the QR code generating means 10 (ie, the user terminal), and the dedicated program 11 transmits user information to the server 30 and registers it. However, the present invention is not limited thereto, and the dedicated program 11 may be a program embedded in the QR code generating means 10 when shipped from the factory.

As a specific example, the dedicated program 11 receives user information from the user during registration or generates user information based on the user's login information for the dedicated program 11 . After that, the dedicated program 11 transmits user information to the server 30 . As the server 30 registers user information in a specific count, the dedicated program 11 receives setting data for specifying the authentication virtual code generating function or the authentication virtual code generating function from the server 30 . Through this, the dedicated program 11 may include a virtual code generation function for authentication that generates a virtual code for authentication capable of searching for a specific count registered with user information in the server 30 .

The dedicated program 11 generates a virtual code for authentication based on user information whenever there is a user request, and then generates a QR code based on the generated virtual code for authentication. Since the virtual code for authentication is a code generated not to be duplicated every time, the QR code is also generated not to be duplicated every time.

The QR code verification means 20 means a device in which a dedicated program or dedicated application for verifying the QR code (hereinafter, the verification program 12) is built-in or installed.

The verification program 12 activates the camera included in the device in which the verification program 12 is installed so that the QR code can be photographed. An image file corresponding to the QR code output through camera shooting is generated. The verification program 12 verifies whether the image file including the QR code generated through the camera contains the correctly generated QR code.

Specifically, the verification program 12 recognizes the QR code in the QR code image generated through the camera, and converts the recognized QR code into a virtual code for authentication. In this case, the same rule as the rule applied when generating the QR code may be applied. Accordingly, when the QR code is converted into a virtual code for authentication, it is possible to obtain the same code as the virtual code for authentication based on the QR code generation.

Then, the verification program 12 verifies whether the virtual code for authentication converted from the QR code is a normally generated code, and if the virtual code for authentication is a normally generated code, the QR code image includes a normally generated QR code It can be judged that How the QR code verification means 20 verifies the QR code will be described later.

On the other hand, in the present specification, for convenience of explanation, the QR code verification means 20 activates the camera to generate a QR code image, and to recognize the QR code from the QR code image, the QR code verification means 20 uses the QR code express that it receives The time when the QR code verification means 20 receives the QR code may be the time when the QR code image is generated through the camera, or the time when the QR code is recognized from the QR code image. On the other hand, the QR code verification means 20 can receive the QR code in various ways other than the above-described method, the time when the QR code verification means 20 receives the QR code depends on the method of receiving the QR code. may vary.

When the QR code verification means 20 determines that the received QR code is a normally generated QR code, the QR code verification means 20 matches the time of receiving the QR code with the virtual code for authentication converted from the QR code make and save

Thereafter, the QR code verification means 20 transmits to the server 30 a request from the server 30 or a time point at which the virtual code for authentication and the QR code stored at regular time intervals are received.

In a specific embodiment, the QR code verification means 20 verifies that the QR code is only a QR code generated within a predetermined time based on the time when the visitor authentication request is made, and then receives the virtual code for authentication and the QR code extracted from the QR code The time point is transmitted to the server 30 . When the server to be described later is divided into a storage server and a verification server, the QR code verification means 20 transmits the virtual code for authentication and the QR code reception time to the storage server.

The above-described QR code generating means 10 and QR code verification means 20 may be built-in or installed in a mobile terminal having a display, a camera and a wireless communication unit.

In one embodiment, a user who wants to visit or pass through a specific area installs the QR code generating means 10 to register user information in the server 30, and then performs visitor authentication through the QR code generating means 10. You can generate and present a QR code each time.

In one embodiment, the visitor manager of a specific area installs the QR code verification means 20 to scan the QR code presented by the visitor to check whether the QR code is a normally generated QR code, and to store the visitor's visit record. have.

In another embodiment, when the visitor authentication proceeds non-face-to-face, the QR code verification means 20 may be interlocked with the opening and closing device. The opening/closing device may switch to an open state only when the QR code received by the QR code verification means 20 is a normally generated QR code so that the visitor enters a specific area or passes through a specific area. To this end, the QR code verification means 20 may be built-in or installed in the opening and closing device. In this case, the opening/closing device must be provided with an optical device capable of receiving a QR code, a communication unit, and a storage unit. However, the present invention is not limited thereto, and the QR code verification means 20 can control the opening and closing device, and the QR code verification means 20 is a separate device including an optical device capable of receiving a QR code, a communication unit, and a storage unit. It can be built-in or installed in

On the other hand, the QR code verification means 20 may be registered in the server (30). Specifically, information related to a device (hereinafter, QR code verification device) in which the QR code verification means 20 is built-in or installed in the server 30 may be matched with information related to the location of the device and stored.

For example, when the QR code verification means 20 is initially registered with the server 30, the serial number of the QR code verification device and the location information of the QR code verification device are transmitted to the server 30, and the server 30 is the QR code. The serial number of the code verification device and the location information of the QR code verification device are matched and stored. Here, the location information of the QR code verification device is information received from the user when registering the QR code verification means 20 with the server 30, or GPS information collected from the GPS information collection unit provided in the QR code verification device. can If the location of the QR code verification device is changed even after the QR code verification device is registered with the server, the location information of the QR code verification device can be updated.

After the QR code verification means 20 is registered with the server 30, when the server 30 receives the virtual code for authentication from the QR code verification means 20, the server 30 is the QR code verification means 20 ) and the user information extracted from the received authentication virtual code can be matched and stored. This will be described later.

The QR code verification means 20 receives and verifies the QR code from the plurality of QR code generating means 10, and the QR code verification means 20 corresponds to a plurality of virtual codes for authentication and a plurality of virtual codes for authentication, respectively. The time of receiving the QR code is stored.

On the other hand, when it is determined that the received QR code is a normally generated QR code, the QR code verification means 20 may directly transmit the authentication virtual code and the QR code reception time to the server 30 . That is, the authentication virtual code and the QR code reception time are not stored in the device in which the QR code verification means 20 is installed, but may be directly transmitted to the server 30 . Through this, it is possible to prevent the administrator from arbitrarily deleting the visitor information. In one embodiment, when the server 30 to be described later consists of a storage server and a verification server separated from each other, the QR code verification means 20 The authentication virtual code and QR code reception time can be sent to the storage server. A specific embodiment in which the server 30 includes a storage server and a verification server separated from each other will be described later.

The server 30 receives a plurality of virtual codes for authentication and a QR code reception time corresponding to each of the plurality of virtual codes for authentication from the plurality of QR code verification means 20, and receives user information from each of the virtual codes for authentication After extraction, the user information, the QR code reception time, and the location information corresponding to the QR code verification means 20 are matched and stored. Through this, the server 30 can determine which place the plurality of visitors visited and passed at which point in time.

As described above, since the QR code generated by the QR code generating means 10 cannot be used after a certain period of time, even if the QR code is leaked, there is no risk of performing visitor authentication using the leaked QR code. .

In addition, the QR code verification means 20 only verifies whether the received QR code is a normal QR code, and cannot extract user information from the QR code.

In addition, since the user information is stored only in the server 30, even if the virtual code for authentication stored in the QR code verification means 20 is leaked, the user information is not leaked. Therefore, according to the present invention, there is no fear that user information (eg, user's personal information) is leaked by the QR code verification means 20 .

3 is a block diagram of a QR code generating apparatus according to an embodiment of the present invention.

As shown in FIG. 3 , the QR code generating device 100 includes a detailed code generating unit 110 , a virtual code generating unit 120 , and a QR code generating unit 130 and a QR code providing unit 140 . .

The QR code generating apparatus 100 may be a user terminal in which a program (ie, an application) for generating a QR code is installed, as an embodiment. The QR code generating device 100 is the above-described QR code generating means 10 .

After receiving the QR code generation request from the user, the QR code generating apparatus 100 generates a virtual code for authentication, and generates a QR code based on the generated virtual code for authentication.

In an embodiment, the QR code generating device 100 activates the biometric authentication means provided in the QR code generating device 100 when receiving a QR code generating request from the user so that the user can perform biometric authentication. can do. Here, biometric authentication is to perform user authentication through the user's fingerprint, iris, vein, and face recognition. After registering biometric information in the QR code generating device 100 in advance, the user performs biometric authentication for each QR code generation request. can be done

To this end, the QR code generating apparatus 100 should be provided with means for recognizing biometric information. For example, the QR code generating apparatus 100 may include at least one of a fingerprint recognition sensor, an iris recognition sensor, a vein recognition sensor, and a face recognition sensor. However, in addition to the biometric information recognition means described above, the QR code generating apparatus 100 may include various biometric information recognition means.

Meanwhile, the QR code generating apparatus 100 may generate a QR code only when the user performs biometric authentication. Through this, it is possible to prevent others from performing visitor authentication using the user's QR code generating device 100 or denying that the user has performed visitor authentication through the QR code in the future.

On the other hand, the QR code generating apparatus 100 may not generate a new QR code for a predetermined time after generating the QR code. Through this, it is possible to prevent authentication of a plurality of visitors through one QR code generating device 100 .

The detailed code generator 110 serves to generate one or more detailed codes based on user information.

The virtual code generation function for authentication includes one or more detailed code generation functions. For example, when the virtual code for authentication includes a plurality of detailed codes, the virtual code generating function for authentication generates a plurality of detailed codes by using the plurality of detailed code generating functions and combines the plurality of detailed codes. A virtual code for authentication is generated using the code combination function.

At this time, the virtual code for authentication is generated for each unit count by the QR code generating device 100 , that is, a dedicated program 11 built-in or installed inside the user terminal, and means a mobile OTP (mobile one time password, mOTP). do.

In one embodiment, the QR code generating apparatus 100 may use at least a portion of the user information stored in the QR code generating apparatus 100 as one of the seed data of the virtual code generating function for authentication. As a specific example, the detailed code generating unit 110 generates each detailed code by using a UID as seed data of each detailed code generating function using one detailed code generating function. In this case, the detailed code generation unit 110 may generate each detailed code by using the time when QR code generation is requested from the user or also the count value.

In an embodiment, the detailed code generation unit 110 may generate the first code and the second code, including the first function and the second function as the detailed code generation function. At this time, the QR code generating apparatus 100 only includes a first function for generating a first code and a second function for generating a second code as a detailed code generating function in order to increase security, the first code and the second Data on the correlation of codes may not be included.

The virtual code generator 120 serves to generate a virtual code for authentication by combining one or more detailed codes using the virtual code generating function for authentication. In an embodiment, the virtual code for authentication is generated by combining a plurality of detailed codes according to a specific rule. The virtual code generation function for authentication includes a rule for combining a plurality of detailed codes (that is, a detailed code combining function). That is, the virtual code generator 120 may combine one or more detailed codes using the detailed code combining function included in the virtual code generating function for authentication.

Various methods may be applied as a method of generating one virtual code for authentication by combining a plurality of detailed codes. As an example of the detailed code combination function, the virtual code generation unit 120 for authentication may generate a virtual code for authentication by alternately arranging an N-digit first code and an N-digit second code. Also, as another example, the detailed code combining function may be a function of combining the second code after the first code. As the number of detailed codes included in the virtual code for authentication increases, the detailed code combination function may also be created in various ways.

In addition, as an embodiment, when the virtual code for authentication is generated by a combination according to a specific rule of the first code and the second code, the first code and the second code are stored in the UID in the storage location search algorithm in which the user information is stored. Each can perform a role to search for a location. For example, the first code sets a starting point of searching for a storage location, and the second code sets a search path from the starting point to the storage location of the UID according to a specific search method. That is, when the virtual code for authentication normally generated for each unit count in the QR code generating device 100 is provided, the server 30 moves from the search start point corresponding to the first code along the search path corresponding to the second code. A point is determined as a point where user information is stored (ie, a UID storage location). A detailed method of searching the storage location of the UID based on the first code and the second code constituting the virtual code for authentication will be described later.

On the other hand, the QR code generating device 100 combines the first and second codes and the first virtual security code that is changed for each count from the initial time when the detailed code generation function is driven regardless of the user to generate a virtual code for authentication. can be formed

The first virtual security code is formed by the same seed data (hereinafter, first seed data) regardless of the user, and is changed for each unit count. Since the first virtual security code is identically formed in all QR code generating devices 100 , when different QR code generating devices 100 form the first virtual security code at the same time, the same code is formed.

Alternatively, the first and second codes are formed by different seed data (hereinafter, second seed data) according to users, and may include a second virtual security code that is changed for each unit count. Although each of the first and second virtual security codes are formed at the same time, they are formed with different values. The second virtual security code may be included in at least one of the first and second codes, and even if different QR code generating apparatuses 100 are formed at the same time, they are formed with different values.

The above-described QR code verification means 20 may include only an algorithm for extracting the first virtual security code from the virtual code for authentication and an algorithm for generating the first virtual security code. When the QR code verification means 20 receives the QR code, it converts the QR code into a virtual code for authentication, and extracts only the first virtual security code from the converted virtual code for authentication. Then, the QR code verification means 20 is the QR code is normally formed when there is a code that matches the extracted first virtual security code among the generated first virtual security codes within a predetermined unit count from the time of receiving the QR code. It can be judged as a QR code. That is, the QR code verification means 20 may be configured such that any information associated with a specific user cannot be extracted from the virtual code for authentication.

The first virtual security code may be used in combination with the above-described method for generating a virtual code for authentication and a method for generating a virtual code for authentication to be described later.

On the other hand, the above-described virtual code for authentication includes any one of a terminal unique value of the terminal (ie, QR code generating device 100) installed with the QR code generating module 10 and a unique value generated through the user's biometric information can do. Through this, the present invention can prevent the visitor from denying that he or she has visited the QR code used for visitor authentication. However, the unique value that can be included in the virtual code for authentication for non-repudiation of visitors is not limited thereto.

On the other hand, the virtual code for authentication may include information about the time when the QR code generation request is authorized. The time information may be used to verify the QR code by a QR code verification device to be described later. This will be described later.

On the other hand, in an embodiment of the method in which the detailed code generation unit 110 generates a detailed code, the detailed code generation unit 110 generates a new detailed code for each unit count, and accordingly, the QR code generation device 100 is A new virtual code for authentication is generated for each unit count. The virtual code for authentication newly generated for each unit count is not duplicated. Specifically, the detailed code generation unit 110, the virtual code for authentication that is newly generated for each unit count is not duplicated for a predetermined period for a specific user or a specific QR code generating device 100, but also belongs to a specific group. It can be set not to be duplicated even between users.

As a specific embodiment of preventing duplicate generation of virtual codes for authentication, when generating N-digit first or second codes with M characters, the detailed code generating function included in the virtual code generating function for authentication is MN Codes can be generated as a first code or a second code, and each code is matched for each count from an initial time point when the detailed code generating function is driven. For example, when the unit count is set to 1 second, different MN codes are matched every second from the time when the detailed code generating function is first driven. Then, the period of using a specific detailed code generating function or the period of use of the QR code generating apparatus 100 (eg, the validity period of the user terminal in which the application for generating the virtual code for authentication is installed) is a time length corresponding to the MN count. (For example, if 1 count is 1 second, MN seconds), the same code is not repeatedly generated during the use period of the first code or the second code if it is set to a shorter time length. That is, when the count increases as time passes, when a user requests to generate a virtual code for authentication to the QR code generating device 100 at a specific time, the QR code generating device 100 counts corresponding to the specific time. A code value matched to may be generated as the first code or the second code.

Specifically, if uppercase letters of the alphabet and numbers 0 to 9 are used as characters that can be included in the code (that is, 36 characters are used), and 6 digits are assigned to the first code and the second code, QR code is generated. The device 100 may provide 366 codes as the first code and the second code. At this time, the QR code generating apparatus 100 may provide the first code and the second code changed for each count by matching each code for each count.

As another specific embodiment for preventing the duplicate generation of the virtual code for authentication, when the use period of the QR code generating device 100 elapses, a function for generating the first code or the second code (that is, the first function or the second 2) or change the matching relationship between the first code and the second code, so that a virtual code for authentication different from the previous use cycle is generated. When the virtual code for authentication is combined with the first code generated by the first function and the second code generated by the second function, when the first code generating function or the second code generating function is changed, the QR code generating device In ( 100 ), a virtual code generation function for authentication that generates a virtual code for authentication different from the previous period as the order in which the first code or the second code appears is different from the previous use period may be applied to the new use period. In addition, the QR code generating device 100 prevents the same code as the virtual code for authentication used in the previous use cycle from appearing as the virtual code for authentication of each count in the new use cycle (that is, the first generated according to the first function). The first function and the second function may be selected so that the matching relationship between the first code and the second code generated according to the second function is not included in the matching relationship included in the previous use period in all counts of the new use period). That is, after the use cycle in which MN codes can be applied once has elapsed, the virtual code for authentication of the new use cycle is not generated by adjusting or updating the virtual code generation function for authentication, which overlaps with the previous use cycle. The creation function can be applied.

In addition, as another specific embodiment for preventing the duplicate generation of the authentication virtual code, the first code is the initial time when the first function is driven so that the duplicate authentication virtual code is not generated regardless of the user in the entire cycle. Set the code value corresponding to the time (or count) at which the QR code generation request is made among the codes matched for each count, and the second code reflects a value (eg, UID) that is always different at the same time to set the generated code value, and use the virtual code for authentication as a code value in which the first code and the second code are combined. The first code has a different code value for each count, and the second code has a different code value for each UID at the same time. will be output

In addition, in another embodiment, the virtual code generation function for authentication (or detailed code generation function), any one of a plurality of listing rules for arranging M characters in ascending order is applied. That is, the QR code generating apparatus 100 can variously apply the rule of listing M characters in ascending order to the detailed code generating function included in the virtual code generating function for authentication. For example, a listing rule that lists uppercase letters of the alphabet in ascending order is A, B, C,… , can be in the order of Z, A, C, B,… , may be in the Z order. As the listing rules are changed in the virtual code generating function for authentication, the order in which codes are matched for each count is changed from the initial time when the virtual code generating function for authentication is driven.

The QR code generation unit 130 converts the authentication virtual code generated in the above manner into a QR code according to the QR code generation rule. The QR code generation device 100 and the QR code verification device 200 used for visitor authentication may include the same QR code generation rule.

The QR code providing unit 140 is a means for outputting the generated QR code, and may be a display provided in the QR code generating apparatus 100 .

4 is a block diagram of a QR code verification apparatus according to an embodiment of the present invention.

The QR code verification apparatus 200 may be a user terminal in which a program (ie, an application) for verifying a QR code is installed, as an embodiment. The QR code verification device 200 is the above-described QR code verification means 20 .

4, the QR code verification device 200 includes a QR code receiving unit 210, a virtual code extraction unit 220, a QR code verification unit 230, a virtual code storage unit 240, and a virtual code system. study 250 .

The QR code receiving unit 210 may be a camera provided in the QR code verification apparatus 200 . However, the present invention is not limited thereto, and the QR code receiving unit 210 is an optical device capable of imaging a printed QR code or a QR code displayed on a display device.

The virtual code extraction unit 220 recognizes the QR code from the QR code image, and converts the recognized QR code into a virtual code for authentication. To this end, the virtual code extraction unit 220 may include the same rules as the QR code generation rules built into the QR code generating apparatus 100 . Through this, the virtual code extraction unit 220 may extract the same virtual code for authentication as the virtual code for authentication formed in the QR code generating apparatus 100 from the received QR code.

The QR code verification unit 230 verifies whether the virtual code for authentication extracted by the virtual code extraction unit 220 is a normally formed code. Specifically, the QR code verification unit 230 extracts a virtual security code (OTP) that is changed for each unit count from the virtual code for authentication, and whether the extracted OTP is a virtual security code formed within a predetermined count from the time the QR code is received judge

In an embodiment, the virtual security code extracted from the virtual code for authentication may be a first virtual security code that is formed by the same first seed data regardless of a user and is changed for each unit count. Since the first virtual security code is identically formed in all QR code generating devices 100 , when different QR code generating devices 100 form the first virtual security code at the same time, the same code is formed.

The QR code verification unit 230 may have the same function as the virtual security code generation function provided in the QR code generating device 100, and after generating a virtual security code within a predetermined count from the time the QR code is received , it is determined whether there is a code identical to the virtual security code extracted from the authentication virtual code among the generated virtual security codes.

If there is a code identical to the virtual security code extracted from the virtual code for authentication among the generated virtual security codes, the QR code verification unit 230 determines that the QR code is normal. In an embodiment, the QR code verification apparatus 200 may output a message guiding the QR code when it is determined that it is normal. The administrator may check the message and allow the visitor to enter.

When the QR code verification device 200 receives the QR code after a predetermined time has elapsed from the time when the QR code is generated, the QR code verification unit 230 determines that the received QR code is not a normally generated QR code and , the QR code verification apparatus 200 may output a warning message. The administrator may check the warning message and deny access to the corresponding visitor.

In another embodiment, when the virtual code for authentication includes QR code generation request time information, the QR code verification unit 230 compares the time information with the current time, and the current time corresponds to the time information. It is determined that the QR code is normal only when it is within a predetermined time from

In another embodiment, the QR code verification unit 230 determines whether the virtual security code is the same as the virtual security code extracted from the authentication virtual code after generating a virtual security code based on the time information. The QR code verification unit 230 determines that the QR code is normal when the generated virtual security code is the same as the virtual security code extracted from the authentication virtual code.

In one embodiment, when the QR code verification device 200 is interlocked with the opening and closing device, the QR code verification device 200 opens the opening and closing device only when the received QR code is a normally generated QR code, and the QR code If it is determined that the QR code is abnormally generated, the opening/closing device is not opened.

As described above, in the present invention, even if the QR code generated by the QR code generating device is leaked, it cannot be used after a predetermined time has elapsed, so that others cannot authenticate the visitor using the leaked QR code.

The above-described QR code verification unit 230 may include only a function for extracting the first virtual security code from the virtual code for authentication and a function for generating the first virtual security code. Accordingly, the QR code verification apparatus 200 only determines whether the QR code is a normally generated code, and cannot extract any user information from the QR code. Through this, the present invention can prevent leakage of user information through the QR code verification device 200 .

When it is determined that the received QR code is a normally generated QR code, the virtual code storage unit 240 matches and stores the authentication virtual code extracted from the QR code and the QR code reception time. When the QR code verification apparatus 200 performs a plurality of visitor authentication, the virtual code storage unit 240 stores a plurality of authentication virtual codes and a QR code reception time that matches each of the plurality of authentication virtual codes. .

The virtual code providing unit 260 transmits to the server 30 the time of receiving the stored QR code by matching the stored authentication virtual code and the authentication virtual code whenever the server 30 requests or every predetermined time interval. In addition, the virtual code providing unit 260 may transmit to the server 30 the time of receiving the stored QR code by matching the authentication virtual code and the authentication virtual code immediately upon verifying the QR code.

As shown in FIG. 5 , the server 30 or 300 includes a virtual code receiving unit 310 , a detailed code extracting unit 320 , a virtual code verifying unit 330 , and a storage location searching unit 330 . The server 30 extracts user information based on the virtual code for authentication, searches a storage location corresponding to the extracted user information, and matches the searched user information with the user's visit place and visit time and stores it.

The virtual code receiving unit 310 receives a virtual code for authentication and a QR code reception time from the QR code verification device 200 .

The detailed code extraction unit 320 serves to extract one or more detailed codes included in the virtual code for authentication.

In one embodiment, the detailed code extraction unit 320 includes a detailed code combining function included in the virtual code generation function for authentication. Accordingly, when the virtual code for authentication includes a plurality of detailed codes, the detailed code extraction unit 220 may extract a plurality of detailed codes from the virtual code for authentication by applying the detailed code combining function. For example, when generating a virtual code for authentication in which two detailed codes (ie, a first code and a second code) are combined in the QR code generating device 100, the detailed code extraction unit 320 is a virtual virtual code for authentication The first code and the second code can be separated by applying the detailed code combining function in the character array of the code.

In another embodiment, when generating a virtual code for authentication in which three detailed codes (that is, a first code, a second code, and a first virtual security code) are combined in the QR code generating device 100, the detailed code The extraction unit 320 may separate the first code, the second code, and the first virtual security code by applying the detailed code combination function from the character array of the virtual code for authentication.

The storage location search unit 330 serves to search the storage location of user information in the storage location search algorithm based on one or more extracted detailed codes. Here, the storage location search algorithm matches the virtual code generation function for authentication used when generating the virtual code for authentication in the QR code generating apparatus 100 . Various methods may be applied as a method for the storage location search unit 330 to search the storage location of user information based on each detailed code. In order for the storage location search unit 330 to search for a storage location based on the plurality of detailed codes, a correlation may be included between the detailed codes.

Here, the storage location means a point (count) on the track corresponding to the time when the registration of the virtual code generating means 10 is requested by the user. That is, the track for the corresponding QR code generating means 10 is driven in the server 30, and when the registration of specific user information (eg, UID) is requested by a specific user at a specific time, corresponding to the corresponding time The corresponding UID is registered in the count (that is, the count elapsed from the last driving time of the track to the registration time). In addition, different types of user information are matched and stored in the storage location of the UID. The storage format of user information will be described later.

In the present specification, for convenience of explanation, a case where the user information that the server 30 extracts from the security code for authentication is UID is described as an example, but the present invention is not limited thereto, and the server 30 provides various types of security codes for authentication. User information can be extracted.

When the virtual code for authentication consists of the first code and the second code, in an embodiment having a correlation between the detailed codes, the storage location search unit 330 determines a search start point corresponding to the first code, A point moved along the search path corresponding to the second code from the search start point may be found as a storage location of the UID. That is, the detailed code may include a first code for setting a start point of the storage location search and a second code for setting a search path from the start point to the storage location of the UID according to a specific search method. .

In addition, in another embodiment, as the QR code generating device 100 provides a new virtual code for authentication for each unit count, the QR code verification device 200 generates a first code and a second code that are changed for each count. Based on the search start point and search path, it is possible to search the storage location of the UID.

Also, as another embodiment, the storage location search unit 330 may include a storage location search algorithm to find the storage location of the UID using a plurality of detailed codes having correlations. The storage location search algorithm is an algorithm that makes it possible to search for a storage location when each detailed code included in the virtual code for authentication is applied. It matches the code generation function.

For example, when the virtual code for authentication includes a first code for determining a search start point of a storage location and a second code for suggesting a storage location direction from the search start point, the storage location search algorithm is When the direction corresponding to the second code is indicated at the corresponding point, it is an algorithm that adjusts so that the storage location matching the registration time of the UID is placed at the corresponding location.

By using the storage location search algorithm, the server 30 can search the UID storage location even if the first code and the second code included in the virtual code for authentication are changed. Various methods may be applied to the storage location search algorithm, and specific examples will be described later. However, the storage location search algorithm is not limited to the example described later.

For example, referring to FIG. 8 , the storage location search algorithm is a k-shaped (k is MN) that moves along a track in which MN codes corresponding to the first code are listed, and the vertices of the k-shaped are the first code track. When moving while corresponding to the point where the code is placed on the screen, each vertex of the k-shaped is matched with the storage location of the UID, and the point where the first code track (ie, the first track) and the k-shaped corresponds is the first code It may be a starting point for searching a storage location corresponding to . In this case, the storage location search unit 330 may apply the k-shaped rolling movement so that the vertices of the k-shaped are in contact with the point corresponding to the first code extracted by the detailed code extraction unit 220 . Through this, the storage location search unit 330 determines the angle corresponding to the second code at the position on the first track where the k-gon is in contact (for example, a specific angle obtained by dividing 180 degrees into MN pieces to face the vertex of the k-gon) As indicated by , it is possible to search for the vertex of the k-shaped rectangle, which is a storage location where the UID corresponding to the virtual code for authentication is stored.

Specifically, as shown in FIG. 8 , the server 30 moves the k-shaped to a point corresponding to the first code (that is, moves while each vertex of the k-shaped and each point on the track are in contact with each other in turn). Thereafter, the server 30 searches for a vertex corresponding to the storage location by indicating the angular direction corresponding to the second code.

After the storage location of the UID is searched for by using the first code and the second code in the virtual code for authentication in the storage location search algorithm by the storage location search unit 330, the user's visit place and the visit to the searched storage location Match the time and save it.

A detailed description of the other various storage location search algorithms will be described later.

The virtual code verification unit 340 compares the time when the QR code is received and the time when the virtual code for authentication is generated using the virtual code generation function for authentication in the QR code generating means (ie, the user terminal), and obtains the virtual code for authentication. It plays a role of verification. That is, the virtual code verification unit 340 does not verify the validity of the virtual code for authentication based on the time when the virtual code for authentication is received from the QR code verification unit, but the time of receiving the QR code received together with the virtual code for authentication. Verifies the validity of the virtual code for authentication based on

In one embodiment, referring to FIG. 10 , the virtual code verification unit 340 generates a virtual code for authentication using a virtual code generation function for authentication at the time of receiving the QR code and the dedicated program 11 built-in or installed in the user terminal. By comparing the generated time points, when the generation time point is within a preset error range from the reception time point, it may be determined that the received virtual code for authentication is a normal code.

In addition, as another embodiment of the method of verifying the virtual code for authentication, the first code and the second code are randomly generated from the time when the UID is registered by the virtual code generating means 10 or the time when the QR code is requested. It may be a code for a reference count added as much as an OTP code to be used.

In a specific embodiment, the QR code generating device 100 generates a virtual security code by reflecting the first code and the second code without outputting it to the outside. The authentication virtual code generating means (eg, dedicated program) generates a virtual security code value (eg, OTP code) based on the UID (ie, unique value), and generates a virtual security code value at the time of UID registration. A first code of the added count is generated, and a second code of a count corresponding to the virtual security code value is generated (that is, the virtual security code itself is generated as the second code). That is, the first code and the second code are generated based on the count shifted by the virtual security code value from the point A in which the UID is registered in the server 30 by the QR code generating device 100 . The count shifted from the point A may be a count before or after the count corresponding to the current time according to the generated virtual security code value. The server 30 may search the UID storage location (or registration location) by applying the received first code and the second code to the storage location search algorithm. Through this, a third person cannot check the order in which the first code and the second code constituting the virtual code for authentication are provided, so that security can be improved.

In addition, in another embodiment, the server 30 extracts the virtual security code from the second code generated based on the virtual security code, and then receives the virtual code for authentication through the virtual security code generation function (ie, OTP function). It is checked whether there is a value that matches the virtual security code among the calculated OTP numbers by inputting a count within a specific range from one count. The server 30 applies the inverse function of the second function to the second code to obtain a virtual security code value (ie, OTP function value) used to generate the second code, and a count for calculating the same value as the virtual security code value find out As there is a difference between the time when the virtual security code is generated in the virtual code generating means for authentication and the time when the QR code verification means receives the QR code due to the transmission time or delay of the virtual code for authentication, the QR code verification means Since the count of receiving and generating the OTP number corresponding to the virtual security code may not match, the server 30 allows an error range from the count of receiving the QR code. Through this, the server 30 can select the virtual code for authentication formed in a normal way, so that security can be improved.

In addition, as another embodiment, referring to FIG. 9 , the server 30 generates a first code corresponding to the count by adding the UID to the time when visitor authentication is requested (or when the QR code is received) (time B) and , a second code corresponding to the count by adding the virtual security code value and the count difference between the UID registration time (time A) and the user authentication request time (time B) is generated. That is, the formula for generating the first code and the second code by the dedicated program for generating the virtual code for authentication is as follows.

1st code = f1 (B point count + virtual security code)

Second code = f2 (Point B count - Point A count + Virtual security code)

(Point A: UID registration time, B point: count at the time of user authentication request, virtual security code: OTP number)

The server 30 searches the location where the UID is stored based on the first code and the second code in the received virtual code for authentication, and based on this, a virtual security code within a specific count range from the time of receiving the visitor authentication request (ie, OTP) number) is created.

Thereafter, the server 30 detects the UID registration time (point A) by searching for a point where user information is stored based on the first code and the second code. The server 30 calculates the calculated value corresponding to the sum of the number of counts and the virtual security code (ie, OTP number) from the UID registration time (point A) to each count within a specific count range based on the user authentication request reception time. Each is calculated, and it is checked whether a count equal to the number of counts corresponding to the second code (ie, a value obtained by applying the inverse function of the second function to the second code) exists among the respective calculated values. Through this, the server 30 may check whether the virtual code for authentication is normally provided.

When it is confirmed that the virtual code for authentication is normally provided, the server 30 receives the QR code received from the QR code verification device 200 in the storage location extracted from the virtual code for authentication (visit time) and the QR code verification device The location information (visited place) corresponding to 200 is matched and stored. Accordingly, when a specific user performs visitor authentication through the QR code verification device 200 located in a specific place, the specific user information, location information, and visit time are stored in the server.

Meanwhile, the server 30 may include a plurality of servers. The specific user information, location information, and visit time may be stored in a block chain in a plurality of servers. In this way, it is possible to prevent others from tampering with visitor records.

Meanwhile, the server 30 may physically separate the hardware including the storage location search unit 330 and the user information storage location. Through this, the present invention reduces the possibility of personal information being leaked.

In a specific embodiment, the server 30 may be composed of a storage server and a verification server separated from each other. In this case, the virtual code receiving unit 310 may be included in the storage server, and the detailed code extraction unit 320 , the virtual code verification unit 330 , and the storage location search unit 330 may be included in the verification server.

The storage server only stores the authentication virtual code and QR code reception time, does not store user information, and cannot extract user information from the authentication virtual code. The storage server and the verification server are configured to be able to communicate with each other, and the storage server transmits the authentication virtual code and QR code reception time collected at a specific time and/or a specific place according to a user request to the verification server. At this time, if necessary, location information corresponding to the virtual code for authentication, a serial number of the QR code verification apparatus 200, or a unique value corresponding to the QR code verification module may be transmitted to the verification server together.

The verification server stores user information and includes a virtual code verification algorithm for authentication. The verification server receives the authentication virtual code and QR code reception time from the storage server, verifies the authentication virtual code, extracts user information from the authentication virtual code, and stores it.

As described above, the virtual code for authentication presented when a visitor visits a specific place is stored only in the storage server, and user information of the visitor is stored only in the verification server. Through this, the present invention prevents personal information leakage.

On the other hand, the location information corresponding to the QR code verification apparatus 200 may be stored in at least one of the storage server and the verification server.

In an embodiment, the location information corresponding to the QR code verification device 200 is stored only in the verification server, and when the storage server receives the virtual code for authentication from the QR code verification device 200, the QR code verification device ( 200) receives the serial number or a unique value corresponding to the QR code verification module, matches it with the virtual code for authentication and stores it.

On the other hand, the QR code verification module is registered in the verification server, and when the QR code verification module is initially registered in the verification server, the serial number of the QR code verification device 200 or the unique value of the QR code verification module and the QR code verification device 200 is transmitted to the verification server, and the verification server matches and stores the serial number of the QR code verification device 200 or the unique value of the QR code verification module and the location information of the QR code verification device 200 .

When the user requests the virtual code for authentication collected at a specific place, the verification server searches for the serial number of the QR code verification device 200 or the unique value of the QR code verification module corresponding to the specific place, and the searched QR code The serial number of the verification device 200 or the unique value of the QR code verification module is transmitted to the storage server. The storage server transmits a virtual code for authentication corresponding to the received serial number of the QR code verification device 200 or a unique value of the QR code verification module and a QR code reception time to the verification server.

On the other hand, when the user requests the virtual code for authentication collected in a specific time range, the storage server searches for the QR code reception time corresponding to the specific time range, and the searched QR code reception time point and the corresponding virtual code for authentication is sent to the verification server.

On the other hand, when the user requests the virtual code for authentication collected in a specific time range and at a specific place, the verification server searches the serial number of the QR code verification device 200 corresponding to the specific place or the unique value of the QR code verification module and transmits the serial number of the searched QR code verification device 200 or the unique value of the QR code verification module to the storage server. After that, the storage server searches for a virtual code for authentication corresponding to the serial number of the received QR code verification device 200 or a unique value of the QR code verification module, and then corresponds to a specific time range among the searched virtual codes for authentication Extracts a virtual code for authentication that matches the time of receiving the QR code. Thereafter, the storage server transmits the extracted virtual code for authentication and the corresponding QR code reception time to the verification server.

In another embodiment, the location information corresponding to the QR code verification device 200 is stored only in the storage server, when the storage server receives the virtual code for authentication from the QR code verification device 200, the QR code verification device The location information corresponding to (200) is matched with the virtual code for authentication and stored.

In this case, the QR code verification module is registered in the storage server, and when the QR code verification module is initially registered in the storage server, the serial number of the QR code verification device 200 or the unique value of the QR code verification module and the QR code verification device 200 ) is transmitted to the storage server, and the storage server matches the serial number of the QR code verification device 200 or the unique value of the QR code verification module with the location information of the QR code verification device 200 and stores it.

When the user requests the authentication virtual code collected at a specific place, the storage server searches for the authentication virtual code corresponding to the specific place, and the time of receiving the searched authentication virtual code and the QR code corresponding to the authentication virtual code and transmits the location information corresponding to the virtual code for authentication to the verification server.

On the other hand, when the user requests the virtual code for authentication collected in a specific time range, the storage server searches for the QR code reception time corresponding to the specific time range, and the searched QR code reception time point and the corresponding virtual code for authentication and location information to the verification server.

On the other hand, when a user requests a virtual code for authentication collected in a specific time range and a specific place, the storage server stores the QR code reception time corresponding to the specific time range and location information corresponding to the specific place to match the stored authentication The virtual code is searched, and the searched virtual code for authentication, location information corresponding thereto, and the time of receiving the QR code are transmitted to the verification server.

Here, the location information may be information received from a user when registering the QR code verification module with the storage server or verification server, or GPS information collected from a GPS information collecting unit provided in the QR code verification device 200 . When the location of the QR code verification device 200 is changed even after the QR code verification device 200 is registered in the storage server or the verification server, the location information of the QR code verification device 200 may be updated.

6 is a flowchart of a QR code verification method according to an embodiment of the present invention.

Referring to FIG. 6 , in the visitor management method according to an embodiment of the present invention, a QR code verification module (QR code verification means 20) generates a QR code generated by a QR code generation module (QR code generation means 10). A QR code receiving step of receiving a code (S110), a QR code verification module extracting a virtual code for authentication from the QR code (S120), a QR code verification module when the QR code is received, and the authentication virtual code It includes the step of verifying the QR code based on the code (S130), the QR code verification module matching the time when the QR code is received and the virtual code for authentication and storing (S140). Hereinafter, a detailed description of each step is described. However, in the QR code generating device 100 (that is, the user terminal including the QR code generating means 10) and the QR code verifying device 200 (ie, the QR code verification means 20 is included in the user terminal) Specific disclosure of the above-described content in the process of description will be omitted.

In one embodiment, the administrator executes the verification program 12 to execute the QR code receiving function. Accordingly, the camera included in the device in which the verification program 12 is installed is activated so that the QR code can be photographed.

In another embodiment, when visitor authentication is performed non-face-to-face, the verification program 12 may be executed by the visitor. When a visitor makes a visitor authentication request to the QR code verification device 200, the verification program 120 activates the camera so that the QR code can be photographed.

Thereafter, the QR code verification module extracts the virtual code for authentication from the QR code, and verifies the QR code based on the time when the QR code is received and the virtual code for authentication. Specifically, the QR code verification module determines that the QR code is normal only when the time of receiving the QR code is within a predetermined time from the time of generating the QR code.

In one embodiment, the QR code verification module may have the same function as the virtual security code generation function provided in the QR code generation module, and after generating a virtual security code within a predetermined count from the time the QR code is received , it is determined whether there is a code identical to the virtual security code extracted from the authentication virtual code among the generated virtual security codes.

If there is a code identical to the virtual security code extracted from the virtual code for authentication among the generated virtual security codes, the QR code verification module determines that the received QR code is a normally generated QR code.

Thereafter, the QR code verification module matches the time of receiving the QR code and the virtual code for authentication and stores it. The stored QR code reception point and the virtual code for authentication are sent to the server at regular time intervals or upon request from the server.

7 is a flowchart illustrating a visitor management method according to an embodiment of the present invention.

Referring to Figure 7, in the visitor management method according to an embodiment of the present invention, the QR code verification module is a server for a plurality of authentication virtual codes and the plurality of authentication virtual codes matched to each of the stored QR code reception time transmitting (S210); extracting, by the server, at least one detailed code from each of the plurality of authentication virtual codes (S220); searching, by the server, a storage location of user information corresponding to each of the plurality of authentication virtual codes based on the at least one detailed code (S230); and storing the location information by matching it with the user information (S240). However, in the process of explaining the QR code verification apparatus 200 (that is, the user terminal including the QR code verification means 20) and the server 30, a detailed disclosure of the above-described contents will be omitted.

In step S210, the server 30 receives a plurality of virtual codes for authentication from a plurality of QR code verification modules and a QR code reception time that is stored by matching each of the plurality of virtual codes for authentication.

In one embodiment, the server 30 may receive together the location information corresponding to the QR code verification module from each of the plurality of QR code verification module. The server 30 may store the received location information by matching it with a user information storage location to be described later. The QR code verification module may transmit the location information received from the manager to the server 30 or transmit the GPS information collected from the GPS information collection unit provided in the QR code verification apparatus 200 to the server 30 .

In another embodiment, the server 30 may receive the serial number of the QR code verification apparatus 200 or a unique value corresponding to the QR code verification module from each of the plurality of QR code verification modules together. The server 30 may search the location information of each QR code verification module through the serial number or unique value.

Specifically, when the QR code verification module is initially registered with the server 30, the serial number of the QR code verification device 200 or the unique value of the QR code verification module and the location information of the QR code verification device 200 are stored in the server 30 and the server 30 matches and stores the serial number of the QR code verification device 200 or the unique value of the QR code verification module and the location information of the QR code verification device 200 . The server 30 may search for location information using a serial number of the QR code verification device 200 or a unique value of the QR code verification module.

Here, the location information may be information received from a user when registering the QR code verification module with the server 30 or GPS information collected from a GPS information collecting unit provided in the QR code verification device 200 . When the location of the QR code verification device 200 is changed even after the QR code verification device 200 is registered with the server 30 , the location information of the QR code verification device 200 may be updated.

Then, in S220, the server 30 extracts at least one detailed code from the authentication virtual code, and in S230, based on the at least one detailed code, user information corresponding to each of the plurality of authentication virtual codes Search the storage location of

According to an embodiment, when the authentication virtual code is generated by combining the first code and the second code, the server 30 determines the UID storage location in the storage location search algorithm using the first code and the second code. will explore For example, the first code is a code that sets the start point of the UID storage location search in the storage location search algorithm, and the second code sets the search path from the start point to the UID storage location according to a specific search method. It can be code.

As shown in FIG. 8 , the server 30 sets the position corresponding to the first code as a starting point, and based on the second code according to the search method applied to the second code, the UID in the k-shaped arrangement state. A point matching the storage location (that is, a specific vertex of the k-gon) is searched for. The storage location is matched to each vertex of the k polygon. A point at which the first code track (ie, the first track) and the k-shaped corresponds becomes a storage location search start point corresponding to the first code. The server 30 searches the matching point of the UID storage location based on the second code from the search start point.

Various methods may be applied as a method of searching for a storage location in the k-gon based on the second code. As an example, the server 30 indicates an angle corresponding to the second code at the position on the first track where the k-gon is in contact (for example, a specific angle obtained by dividing 180 degrees into MN pieces to face the vertex of the k-gon) Accordingly, based on the virtual code for authentication, it is possible to search for the vertex of the k-shaped, which is the storage location where the UID is stored.

Also, as another example, in a state in which the k-corner is in contact with the point corresponding to the first code on the first track, the server 30 sets the total central angle (that is, 360 degrees) based on the center of the k-gon and the contact point on the first track. ) is divided into MN pieces, and each angle is matched to MN second codes. At this time, the direction of the line moving a specific number of unit angles (ie, 360 degrees/MN) from the line connecting the center of the k-gon and the contact point on the first track becomes a specific vertex of the k-gon. Accordingly, when the second code corresponding to a specific angle is received, the server 30 may search for a vertex located in the corresponding angle direction.

Also, as another example, a specific digit of the second code may be used to determine the angle calculation direction. That is, when the second code is generated using N characters (N is a natural number), the angle measurement direction can be determined with one digit. For example, the server 30 divides the entire central angle (that is, 360 degrees) based on the center of the k-shaped and the contact point on the first track and matches the second code to each angle, the center of the k-shaped It is possible to determine whether the angle is measured in the left direction or the right angle from the line connecting the contact point on the first track with the value of one digit.

For example, in the storage location search algorithm, two different second codes may be assigned to one vertex according to the angle measurement direction at each vertex on the k-shaped shape. That is, when reaching one vertex by an inner angle and by reaching an outer angle, another second code is matched, and a storage location of a different UID may be connected. As another example, the storage location search algorithm, when generating the second code using N (N is a natural number) characters, has N-1 total angles (for example, 360 degrees when dividing based on the central angle) ) and using 1 digit to determine the angle application direction to reach each vertex.

The method of searching for the storage location in the k-gon based on the second code is not limited thereto, and a point dividing the point on the k-shaped corresponding to the second code and the contact point on the first track by a specific ratio is searched as the storage location. Various methods such as a method may be applied.

According to another embodiment, when the virtual code for authentication includes the first code and the second code that are changed for each unit count, the first code is the unit count that has elapsed from the initial time when the UID registration in the server 30 is started. The second code is generated based on the unit count that has elapsed from the time when each user registered the UID through the dedicated program 11 installed in the QR code generating device 100 . In this case, the unit count is set at a specific time interval and is changed as the time interval elapses.

As shown in FIG. 9, the storage location search algorithm moves on the track based on a plurality of detailed codes constituting the virtual code for authentication and moves to a point matching the storage location of the UID.

Specifically, based on the first code based on the unit count elapsed from the initial time when the storage location search algorithm started as the virtual code for authentication runs the service, and the unit count elapsed from the time when each user's UID is registered. When the generated second code is included, as shown in FIG. 9 , the server 30 sets the count on the track in which the code value corresponding to the first code is matched as the search start point, and the count corresponding to the second code. It returns along the track from the search start point by the value, and searches for a point on the track at the time of registering the UID in the server 30 (that is, the UID storage location). For example, the server 30 sets the search start point by searching for the point (or count) to which the first code is given in the virtual code for authentication in the track for the first code, and the second code in the reverse direction from the search start point A point (or count) at which the UID is registered on the track for the first code is extracted by arranging a track for authentication and searching for a point (or count) to which the second code is assigned in the virtual code for authentication. Also, for example, the count calculated as the server 30 sets a search start point based on the first code in the virtual code for authentication, and applies the inverse function of the second function to the second code in the virtual code for authentication The point corresponding to the UID registration time is searched for by regressing as much as the value.

Meanwhile, the server 30 may additionally verify the validity of the virtual code for authentication. Specifically, the server 30 compares the time of receiving the received QR code with the generation time of the virtual code for authentication generated by using the virtual code generation function for authentication in the program for generating the virtual code for authentication, in FIG. As shown, when the generation time is within an error range from the time of receiving the QR code, it may be determined that the received virtual code for authentication is a normal code.

In a specific embodiment, when a user requests to generate a QR code using the QR code generating device 100, the dedicated program 11 uses the virtual code generation function for authentication to correspond to the request time (ie, generation time). A virtual code for authentication (specifically, a second code) is generated based on the count value. As an embodiment, one detailed code (eg, the second code) among the plurality of detailed codes may be generated using an OTP function using a generation time as seed data. That is, the OTP code may be included in the second code to be generated.

After that, the virtual code for authentication is provided to the server 30, and the server 30 extracts a plurality of detailed codes using a storage location search algorithm matching the virtual code generating function for authentication or the virtual code generating function for authentication. do. Then, the OTP code is extracted through one detailed code (eg, the second code) among the plurality of detailed codes, and the time when the virtual authentication code is generated is extracted through the OTP code.

Thereafter, by comparing the time when the QR code verification apparatus 200 receives the QR code on the track and the time when the virtual code for authentication is generated in the QR code generating apparatus 100, the virtual code for authentication is generated at the current time. cognition can be tested. That is, when the generation time of the virtual code for authentication is included within the range including the preset count value from the time when the QR code verification device 200 receives the QR code, the corresponding virtual code for authentication is verified as a normally generated code. will become

Meanwhile, referring to FIG. 11 , various user information may be stored in the server 30 . In an embodiment, the UID, name, terminal serial number, and phone number may be stored after receiving from the QR code generating apparatus 100 when registering the QR code generating apparatus 100 with the server 30 .

In another embodiment, the server 30 may store the user's diagnosis result and information related to whether the user has contacted the confirmed patient by matching the UID. The diagnosis result and whether the confirmed person has been contacted may be updated by a user of the corresponding QR code generating device 100 or an administrator who is given a separate authority.

When the diagnosis result is changed from negative to positive, the server 30 searches for a visit place within a predetermined time from the changed time point, and provides a request to another user who has performed visitor authentication at the same place as the corresponding user within a predetermined time from the changed time point. Send a guide message. Furthermore, the server 30 may change whether to contact a confirmed person in user information of another user who has performed visitor authentication at the same place as the corresponding user from non-contact to contact. When contact with a confirmed person is changed from non-contact to contact, the server 30 may transmit a guide message recommending self-isolation to the user.

In another embodiment, the server 30 corresponds to the QR code verification device 200 whenever a storage location of specific user information is searched based on the virtual code for authentication received from the QR code verification device 200 . Location information and QR code reception time can be matched to the storage location of user information and stored. Through this, the present invention makes it possible to manage the visit place and time of a specific user.

The user authentication method using the virtual code for authentication according to an embodiment of the present invention described above may be implemented as a program (or application) and stored in a medium in order to be executed in combination with a computer, which is hardware.

The above-mentioned program, in order for the computer to read the program and execute the methods implemented as a program, C, C++, JAVA, Ruby, which the processor (CPU) of the computer can read through the device interface of the computer; It may include code coded in a computer language such as machine language. Such code may include functional code related to a function defining functions necessary for executing the methods, etc. can do. In addition, the code may further include additional information necessary for the processor of the computer to execute the functions or code related to memory reference for which location (address address) in the internal or external memory of the computer should be referenced. have. In addition, when the processor of the computer needs to communicate with any other computer or server located remotely in order to execute the functions, the code uses the communication module of the computer to determine how to communicate with any other computer or server remotely. It may further include a communication-related code for whether to communicate and what information or media to transmit and receive during communication.

The storage medium is not a medium that stores data for a short moment, such as a register, a cache, a memory, etc., but a medium that stores data semi-permanently and can be read by a device. Specifically, examples of the storage medium include, but are not limited to, ROM, RAM, CD-ROM, magnetic tape, floppy disk, and optical data storage device. That is, the program may be stored in various recording media on various servers accessible by the computer or in various recording media on the computer of the user. In addition, the medium may be distributed in a computer system connected by a network, and computer-readable codes may be stored in a distributed manner.

As mentioned above, although embodiments of the present invention have been described with reference to the accompanying drawings, those skilled in the art to which the present invention pertains can realize that the present invention can be embodied in other specific forms without changing its technical spirit or essential features. you will be able to understand Therefore, it should be understood that the embodiments described above are illustrative in all respects and not restrictive.

10: QR code generating means
20: QR code receiving means
30: server
110: detailed code generation unit
120: virtual code generator
130: QR code providing unit
210: QR code receiving unit
220: virtual code extraction unit
230: QR code verification unit
240: virtual code storage unit
250: virtual code providing unit
310: virtual code receiving unit
320: detailed code extraction unit
330: storage location search unit
340: virtual code verification unit

Claims (15)

A QR code receiving step of receiving the QR code generated by the QR code verification module from the QR code generating module;
extracting, by the QR code verification module, a virtual code for authentication from the QR code;
verifying, by the QR code verification module, a QR code based on the virtual code for authentication; and
Comprising the step of the QR code verification module matching the time of receiving the QR code and the virtual code for authentication and storing,
The QR code is generated based on the virtual code for authentication generated from the virtual code generation function for authentication included in the QR code generation module,
transmitting, by the QR code verification module, a plurality of virtual codes for authentication and a time of receiving the stored QR codes by matching the plurality of virtual codes for authentication to a server;
extracting, by the server, at least one detailed code from each of the plurality of authentication virtual codes; and
Further comprising the step of searching, by the server, a storage location of user information corresponding to each of the plurality of authentication virtual codes, based on the at least one detailed code,
The server, characterized in that by matching the location information corresponding to the QR code reception time and the QR code verification module to the storage location to store,
How to manage visitors using QR codes. delete delete According to claim 1,
The step of the QR code verification module verifying the QR code,
extracting a first virtual security code that is generated based on the first seed data from the virtual code for authentication and is changed for each unit count set at a specific time interval; and
When the generation time of the first virtual security code is included within a predetermined time from the time of receiving the QR code, determining that the QR code is a normal code,
How to manage visitors using QR codes. 5. The method of claim 4,
The detailed code is a code included in a portion other than the first virtual security code in the virtual code for authentication, a second virtual security code that is generated based on the second seed data and is changed for each unit count set at a specific time interval containing,
How to manage visitors using QR codes. 6. The method of claim 5,
The seed data of the first virtual security code generated by different QR code generation modules are the same as each other,
The seed data of the second virtual security code generated by different QR code generation modules are different from each other,
How to manage visitors using QR codes. 7. The method of claim 6,
The detailed code includes a first and a second code,
The first code is generated based on the second seed data and the unit count that has elapsed from the initial point in time when user information registration is started in the server, and is changed for each unit count set at a specific time interval,
The second code is generated based on a unit count elapsed from the time when user information corresponding to any one of the plurality of virtual codes for authentication is registered and the second seed data, and is changed for every unit count set at a specific time interval. characterized in that
How to manage visitors using QR codes. According to claim 1,
The virtual code for authentication is,
Characterized in that it includes any one of the unique value of the terminal in which the QR code generation module is installed and the unique value generated through the user's biometric information,
How to manage visitors using QR codes. According to claim 1,
The QR code generation module is characterized in that the user generates a QR code only when biometric authentication is performed on the terminal in which the QR code generation module is installed,
How to manage visitors using QR codes. A visitor management program using a QR code, which is combined with a computer that is hardware, and stored in a medium to execute the method of any one of claims 1 to 9. As a QR code generating device for visitor authentication,
a detailed code generation unit for generating one or more detailed codes based on user information registered in the QR code generation device;
a virtual code generator for generating a virtual code for authentication by combining the one or more detailed codes using a virtual code generating function for authentication; and
a QR code generator for generating a QR code based on the virtual code for authentication; and
Includes a QR code providing unit for outputting the QR code,
A plurality of virtual codes for authentication and a time of receiving the stored QR code by matching the plurality of virtual codes for authentication by the QR code verification device is transmitted to the server,
At least one detailed code is extracted from each of the plurality of authentication virtual codes by the server, and a storage location of user information corresponding to each of the plurality of authentication virtual codes is searched based on the at least one detailed code and the location information corresponding to the time of receiving the QR code and the QR code verification device is matched and stored in the storage location,
QR code generator for visitor authentication. 12. The method of claim 11,
Further comprising a sensor configured to sense the user's biometric information,
The QR code generating device is characterized in that it generates a QR code only when the user performs biometric authentication through the sensor,
QR code generator for visitor authentication. As a QR code verification device for visitor authentication,
QR code receiving unit for receiving the QR code;
a virtual code extraction unit for extracting a virtual code for authentication from the QR code;
a QR code verification unit that verifies the QR code based on the virtual code for authentication;
a virtual code storage unit for matching and storing the authentication virtual code and the QR code reception time; and
When there is a request from a server, or a virtual code providing unit for transmitting the stored virtual code for authentication and the QR code reception time to the server at regular time intervals,
The virtual code providing unit,
Transmitting a plurality of virtual codes for authentication and a time of receiving QR codes stored by matching the plurality of virtual codes for authentication to the server,
At least one detailed code is extracted from each of the plurality of authentication virtual codes by the server, and a storage location of user information corresponding to each of the plurality of authentication virtual codes is searched based on the at least one detailed code and the location information corresponding to the time of receiving the QR code and the QR code verification device is matched and stored in the storage location,
QR code verification device for visitor authentication. 14. The method of claim 13,
The QR code verification unit,
It is determined that the QR code is normal only when the time of receiving the QR code is within a predetermined time based on the time when the QR code is generated,
QR code verification device for visitor authentication. As a server for visitor authentication,
a virtual code receiving unit for receiving a plurality of virtual codes for authentication from the QR code verification module and receiving the stored QR codes matching the plurality of virtual codes for authentication;
a detailed code extraction unit for extracting at least one detailed code from each of the plurality of authentication virtual codes; and
and a storage location search unit for searching a storage location of user information corresponding to each of the plurality of authentication virtual codes, based on the at least one detailed code,
the server is
Characterized in that the location information corresponding to the QR code reception time and the QR code verification module is matched and stored in the storage location,
Server for visitor authentication.

Images