KR960030012A - User crowding method using smart card - Google Patents

User crowding method using smart card Download PDF

Info

Publication number
KR960030012A
KR960030012A KR1019950001327A KR19950001327A KR960030012A KR 960030012 A KR960030012 A KR 960030012A KR 1019950001327 A KR1019950001327 A KR 1019950001327A KR 19950001327 A KR19950001327 A KR 19950001327A KR 960030012 A KR960030012 A KR 960030012A
Authority
KR
South Korea
Prior art keywords
smart card
user
card
key
terminal
Prior art date
Application number
KR1019950001327A
Other languages
Korean (ko)
Other versions
KR0137535B1 (en
Inventor
이윤호
장청룡
안금혁
Original Assignee
조백제
한국전기통신공사
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 조백제, 한국전기통신공사 filed Critical 조백제
Priority to KR1019950001327A priority Critical patent/KR0137535B1/en
Publication of KR960030012A publication Critical patent/KR960030012A/en
Application granted granted Critical
Publication of KR0137535B1 publication Critical patent/KR0137535B1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • G06F21/46Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Storage Device Security (AREA)

Abstract

본 발명은 스마트카드와 컴퓨터 단말기를 이용한 사용자 인증시 고속연산 및 구현이 용이한 관용암호계를 이용하여 컴퓨터 단말기의 키관리가 필요없고 카드와 단말기의 상호인증(mutual authentication)을 가능하도록 한 스마트카드를 이용한사용자 인증방법에 관한 것으로, 스마트카드를 이용한 사용자 인증방법에 있어서, 카드발급센터에서 임의의 사용자 i의 인증비밀키 Ksi를 생성하여 스마트카드에 공개된 정보인 IDi와 비밀정보인 패스워드 및 상기 Ksi를 담아 발급하는 제 1 단계와, 상기 스마트카드에 저장된 정보를 이용하여 사용자인증을 수행하는 제 2 단계를 포함하는 것을 특징으로 하여 각 단말기 모든 사용자의 비밀키를 보관할 필요없이 단 하나의 키만을 보관하도록 함으로써 사용자의 증가, 감소 및 변경에 따른 키관리의 어려움을 해결하며, 또한 인증이 성공적으로 수행되었을 경우 양자가 공유한 비밀키 이외에 통신시마다 바뀌는 세션키를 공유하게 되어 키분배의 효과도 있다.The present invention does not require key management of a computer terminal by using a conventional encryption system that is easy to implement and implement high-speed operation when using a smart card and a computer terminal smart card that enables mutual authentication of the card and the terminal (mutual authentication) In the user authentication method using a smart card, in the user authentication method using a smart card, the card issuing center generates an authentication secret key K si of an arbitrary user i and the ID i and the secret information, which are information disclosed on the smart card. And a second step of issuing the K si and issuing a user authentication using the information stored in the smart card, without having to store the private key of every user of each terminal. It can solve the difficulty of key management by increase, decrease and change of user by keeping only key of. In addition, when authentication is successfully performed, in addition to the secret key shared by both parties, the session key that is changed at each communication is shared, which also has the effect of key distribution.

Description

스마트 카드를 이용한 사용자 인증방법User Authentication Using Smart Card

본 내용은 요부공개 건이므로 전문내용을 수록하지 않았음Since this is an open matter, no full text was included.

제3도는 본 발명에 따른 사용자의 스마트카드 발급과정 예시도, 제4도는 사용자 ID의 구성도, 제5도는 사용자 A의 비밀인증키 생성과정 예시도.3 is a diagram illustrating a user's smart card issuing process according to the present invention, FIG. 4 is a block diagram of a user ID, and FIG.

Claims (3)

스마트카드를 이용한 사용자 인증방법에 있어서, 카드발급센터에서 임의의 사용자 i의 인증비밀키 Ksi를 생성하여 스마트카드에 공개된 정보인 IDi와 비밀정보인 패스워드 및 상기 Ksi를 담아 발급하는 제 1 단계와, 상기 스마트카드에 저장된 정보를 이용하여 사용자인증을 수행하는 제 2 단계를 포함하는 것을 특징으로 하는 스마트카드를 이용한 사용자 인증방법.In the user authentication method using a smart card, a card issuing center generates an authentication secret key K si of an arbitrary user i and issues the ID i , which is information disclosed on the smart card, a password that is a secret information, and the K si . And a second step of performing user authentication using the information stored in the smart card. 제 1 항에 있어서, 상기 제 1 단계는, 상기 사용자 i가 자신이 사용할 IDi를 결정하여 패스워드와 함께 카드발급센터에 등록요청을 하는 제 3 단계와, 상기 카드발급센터는 상기 IDi를 이용하여 인증비밀키 Ksi= CIPHER(IDi, KT)를계산하는 제 4 단계와, 상기 공개된 정보의 IDi와 비밀정보의 패스워드 및 Ksi를 스마트카드에 담아 발급하는 제 5 단계를포함하는 것을 특징으로 하는 스마트카드를 이용한 사용자 인증방법.The method of claim 1, wherein the first step, the user i is a third step of a registration request to the card issuing centers with a password to determine their ID i used, the card issuing centers using the ID i And a fourth step of calculating the authentication secret key K si = CIPHER (ID i , K T ), and a fifth step of issuing the smart card with IDi of the public information and password and Ksi of the secret information. User authentication method using a smart card characterized in that. 제 1 항 또는 제 2 항에 있어서, 상기 제 2 단계는, 스마트카드로부터 IDi를 입력받은 단말기 상기 IDi와 자신이 보유한 비밀키 KT를 이용하여 사용자 i의 인증키 Ksi를 생성하고 난수 R1을 생성하여 스마트카드에 전달하는 제 6단계와, 상기 스마트카드가 α=CIPHER(R1, Ksi)를 계산하고 난수 R2를 생성하여 단말에 전달하면 단말이 CIPHER-1(α, Ksi)를계산하여 R1과 같으면 정당한 카드로 인식하고 상기 스마트로부터 받은 R2를 이용하여 세션키 SS=CIPHER(R1 R2, KSi)를 계산하는 제 7 단계와, 상기 단말기 세션키 SS를 이용하여 β=CIPHER-1(KSi, SS)를 생성하고 이를 카드에 전달하여 키확인을 요청하고 카드도 SS=CIPHER(R1 R2, Ksi)를 계산하여 Ksi= CIPHER(β, SS)이면 정당한 단말로 인식하는 제 8 단계를 포함하는 것을 특징으로 하는 스마트카드를 이용한 사용자 인증방법.The method of claim 1 or claim 2, wherein the second step, the terminal received the ID i from the smart card using the ID i and the secret key K T they have generated the authentication key K si of the user i and the random number The sixth step of generating and passing R 1 to the smart card, when the smart card calculates α = CIPHER (R 1 , K si ) and generates a random number R 2 and delivers to the terminal, the terminal CIPHER -1 (α, K si ) is calculated to be equal to R 1, and is recognized as a legitimate card. Using the R 2 received from the smart session key SS = CIPHER (R 1 R 2, with the seventh stage, and the terminal a session key SS to calculate the K Si) generating the β = -1 CIPHER (K Si, SS) and a key confirmation request to transfer them to the card and the card is also SS = CIPHER (R 1 R 2 , K si ) and if the si si CIPHER (β, SS) user authentication method using a smart card comprising the eighth step of recognizing the legitimate terminal. ※ 참고사항 : 최초출원 내용에 의하여 공개하는 것임.※ Note: The disclosure is based on the initial application.
KR1019950001327A 1995-01-25 1995-01-25 Identifying method using smart card KR0137535B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1019950001327A KR0137535B1 (en) 1995-01-25 1995-01-25 Identifying method using smart card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1019950001327A KR0137535B1 (en) 1995-01-25 1995-01-25 Identifying method using smart card

Publications (2)

Publication Number Publication Date
KR960030012A true KR960030012A (en) 1996-08-17
KR0137535B1 KR0137535B1 (en) 1998-07-01

Family

ID=19407252

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1019950001327A KR0137535B1 (en) 1995-01-25 1995-01-25 Identifying method using smart card

Country Status (1)

Country Link
KR (1) KR0137535B1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20020096170A (en) * 2001-06-18 2002-12-31 (주)인컴스 Medical insurance card, method and system for providing service using thereof
KR100388624B1 (en) * 2000-04-29 2003-06-25 삼성카드 주식회사 IC card for registered business card
KR100720328B1 (en) * 2004-10-08 2007-05-22 후지쯔 가부시끼가이샤 Biometric authentication device and terminal

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20030010241A (en) * 2001-07-26 2003-02-05 주식회사 텔사인 Hyper-Internet Networking Access Protection System
JP4804042B2 (en) * 2005-06-03 2011-10-26 フェリカネットワークス株式会社 Data transmission / reception system, non-contact IC chip, non-contact communication device, portable terminal, information processing method, and program

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100388624B1 (en) * 2000-04-29 2003-06-25 삼성카드 주식회사 IC card for registered business card
KR20020096170A (en) * 2001-06-18 2002-12-31 (주)인컴스 Medical insurance card, method and system for providing service using thereof
KR100720328B1 (en) * 2004-10-08 2007-05-22 후지쯔 가부시끼가이샤 Biometric authentication device and terminal

Also Published As

Publication number Publication date
KR0137535B1 (en) 1998-07-01

Similar Documents

Publication Publication Date Title
US6925182B1 (en) Administration and utilization of private keys in a networked environment
Juels Targeted advertising... and privacy too
US6061799A (en) Removable media for password based authentication in a distributed system
Shamir Identity-based cryptosystems and signature schemes
Hwang Cryptanalysis of a remote login authentication scheme
US7278017B2 (en) Method and device for secure wireless transmission of information
Chen et al. Mobile device integration of a fingerprint biometric remote authentication scheme
JP4620248B2 (en) Method for authenticating a smart card in a message exchange network
CN1413320B (en) Method of authenticating anonymous users while reducing potential for 'middle man' fraud
CN109377360A (en) Block chain transaction in assets transfer account method based on Weighted Threshold signature algorithm
CA2235359A1 (en) Implicit certificate scheme with ca chaining
Chien et al. A modified remote login authentication scheme based on geometric approach
US20120278628A1 (en) Digital Signature Method and System
US6529886B1 (en) Authenticating method for an access and/or payment control system
EP0393806A3 (en) Cryptographic method and apparatus for public key exchange with authentication
CN107395358A (en) Information request and offer method and apparatus, storage medium and equipment
JP2001512589A (en) Secure proxy signature device and method of use
WO1999034554A3 (en) Administration and utilization of secret fresh random numbers in a networked environment
EP1293061A1 (en) Method and device for secure wireless transmission of information
EP0792043A3 (en) Method of sharing cryptokey
JP2000502553A (en) Key agreement and transport protocol using intrinsic signature
CN109284627A (en) A kind of reference prestige method and device based on block chain intelligence contract
WO2022242572A1 (en) Personal digital identity management system and method
Domingo-Ferrer Anonymous fingerprinting of electronic information with automatic identification of redistributors
CN109495244A (en) Anti- quantum calculation cryptographic key negotiation method based on pool of symmetric keys

Legal Events

Date Code Title Description
A201 Request for examination
E701 Decision to grant or registration of patent right
GRNT Written decision to grant
FPAY Annual fee payment

Payment date: 20110207

Year of fee payment: 14

LAPS Lapse due to unpaid annual fee