TR201808119A2 - METHOD OF IDENTIFICATION OF E-SIGNATURE AND BLOCKCHAIN LAYERS - Google Patents

Abstract

The present invention relates to a method of identifying a person who provides a legal basis for electronic authentication processes using legally binding electronic signature certificates on block chain technology. In this method; first, after the users and companies register in the system 100, an electronic wallet is created for each of said users and firms, which includes a smart contract and a block chain. During the registration process, the identity of the users is verified using an electronic signature or a mobile signature. Then, when a user registered in the system 100 again logs into the website of a company registered in the system 100, the company website information and the server system 300 in the smart contract in the wallet in the database of the server system 300 are then a generated code is shown to the user on the display of the client device 200. The user does not share or share his information with the said company by reading the said square code through the camera of the client device 200 and approving or rejecting the smart contract in the company wallet.

Description

DESCRIPTION ONE OF E-SIGNATURE AND BLOCKCHAIN LAYERS RECOGNITION METHOD Technical Area The invention is legally binding electronic on blockchain technology. electronic authentication processes using signature certificates relates to a method of identifying a person that provides a legal basis. Prior Art that the information sent in electronic transactions does not change on the way, belongs to the sender. It is a method of verification that ensures that it exists and cannot be denied. Promise Legally recognized Electronic Certificate Service Providers for the subject e-signature and/or by the Qualified Certificate Authorities upon the request of the persons, legal digital identities are created by verification. To electronic certificates critical information about hardware that only e-signature holders can access with a password It is delivered to the person. How many people were given e-signatures, 0 individuals there is information that stands in a distributed manner. This information cannot be changed, cannot be played and used by anyone other than the person concerned. Your e-signatures when the time expires, it will be disabled.

Existing solutions used to identify people; people's own identity by their own declaration, unverified and manually registering their information in the system and digital identities they have created, when necessary, with the relevant persons or institutions. has a structure that they share as These methods are not subject to any law and is not regulated. 36378.01 In these applications, the legal identity documents added to the system by the individual as not valid. These identities are created by personal statement.

They are not verified by any authority, so these identities are is insecure. Again, in these applications, a person's different credentials are included. dozens of digital identities can be found.

Blockchain, which came to the fore with Bitcoin, one of the crypto currencies (blockchain), on the other hand, provides encrypted transaction tracking, It is a distributed database that is kept in a distributed manner. With blockchain technology various e-wallets eg desktop wallets, mobile Wallets, online wallets and hardware wallets are created. blockchain technology a technology built with a chained model that can be followed but not broken and allows making transactions without being tied to a center. So sell transactions directly between two parties (i.e. buyer and seller) and in a secure manner. real] can be made. Therefore, middlemen are eliminated for the sale process. is being removed.

Problems Solved with Invention This invention intelligently integrates e-signature or mobile signature and distributed data on the blockchain. By integrating with contracts, the user's own voluntarily, desired identity a digital platform where they can use their information on the blockchain at any time. provides identity. The invention works on the blockchain and as with e-signature Due to the fact that there is a distributed structure in the blockchain, it is the most reliable method is an important advantage.

In this invention, the Electronic Certificate Service that is legally recognized in the relevant countries Providers and/or Qualified Certification Authorities using identities, high level of security and legal binding brings. 36378.01 With this invention, individuals complete the identity declaration procedure only once, then they can use these identities everywhere. Thus, today's declaring identity to too many places, which has become one of the biggest problems obligation has been removed.

Some of the advantages of this invention for individuals can be listed as follows; - Entering separate passwords, ensuring password security, keeping account information, Eliminates the obligatory day to keep up-to-date, - Keeping the identity information of individuals in a secure environment, - Only people can access their information, - Sharing personal data whenever and wherever they want Some of the advantages of this invention for companies can be listed as follows; - Easy customer identification and providing financial security, - Minimizing operational risks, - Providing high standardization, - Improving the customer experience, - Reducing the cost of obtaining data, - Increasing labor and process efficiency, - It provides ease of working with legally recognized data.

Detailed Description of the Invention A user recognition system implemented to achieve the purpose of this invention and method is shown in the attached figures, which are; Figure 1. The flow diagram of the person identification method, which is the subject of the invention.

Figure 2. The subject of the invention is the schematic view of the person recognition system.

The parts in the figures are numbered one by one and the corresponding numbers are given below. 3637801 100. System 200. Client device 300. Server system 301. First server 302. Second server 303. Third server 304. Fourth server 305. Company server 306. SMTP server In a preferred embodiment of the invention, the subject of the invention is the method of identification. A system (100) used for its operation, in its most basic form; users and Client devices for the entry of user information by companies (200); a database for recording user information and A server system that includes one or more servers adapted for authentication (300); and data communication between client devices 200 and server system 300 It includes a wired or wireless communication network for

In one embodiment of the invention, client devices 200; a smartphone, tablet, desktop computer, laptop...etc. an electronic device, an display, a data communication module for wired or wireless data communication (e.g. a WiFi (Wireless Fidelity), Ethernet card, A data entry interface (for example, a touchscreen, keyboard, mouse...). In addition, client devices (200) biometric data entry and an internal or external camera for QR code reading, biometric data entry unit (e.g. fingerprint reader). Users system (100) when using multiple client devices (200), such as a smartphone and desktop computer, can use. 36378.01 In one embodiment of the invention, the server system 300; users and companies pre-register via a user interface via client devices 200 a website containing that user interface in order to a first server (301) adapted for its operation; confirmation of company information adapted to run an administrator (admin) panel so that it can be given a second server (302); User wallet for users and approved companies a third server (303) adapted to generate the firm wallet for user and a database for recording company information and said wallets a fourth server (304) comprising; and for companies to run their website includes an adapted company server 305. However, the server system (300) It may include, but is not limited to, fewer or more servers and The method steps described in paragraphs can be performed.

In one embodiment of the invention, the server system 300 also includes the user's e-mail address. confirmation e-mail to the user's e-mail address to confirm the address includes an SMTP server (306) adapted for sending

The subject of the invention is the user identification method, in its most basic form; users and client devices with a data entry interface and a display for business use (200); adapted to run a website with a user interface a server system (300) which is and includes a database; with client devices (200) a data set for performing data communication between the server system 300 using a system (100) containing a network; To create a user wallet for users, - a link to the website run by the server system (300) by a user by logging in via the data entry interface of the client device (200) and accessing the website. entering user information into the user interface; - the entered user information into the database in the server system (300) recording; - by the user via the data entry interface of the client device (200) signing using an electronic signature or a mobile signature; 36378.01 to said electronic signature or mobile signature by the client device (200). certificate information belonging to the server is transmitted to the server system (300) and stored in the database. recording; a user service contract is created by the server system 300, displaying it to the user on the screen of the client device (200); said user service via the client device (200) by the user. using the electronic signature or mobile signature information of the contract. signing; a user account by the server system 300 and associated with that user account. create an associated, blockchain-containing user wallet; A smart contract is created by the server system 300 and the user the user service contract signed by to be added to the contract and the smart contract with the user wallet in question. registration in the database; To create a company wallet for companies, a web site run by the server system (300) by the firm. by logging in via the client device (200) and entering the company information on the website. a company user according to company information by the server system 300 account, a blockchain containing blockchain associated with this firm's user account. company wallet and a smart contract are created and recorded in the database to be made; To verify the identity of users, by a user registered in the system (100) of a company registered in the system (100) logging into the website and calling a web service; The company in the database of the server system (300) by the web service calling the smart contract inside the wallet; the website information of the company in the smart contract and a QR code displaying on the screen of the client device (200); user account to the mobile application of the client device (200) by the user login with; 36378.01 - reading the QR code via the camera of the client device (200); - with the user wallet in the database by the server system (300) user account used to login to the mobile application matching the user by comparing their information; - Approval or rejection for the smart contract in the company wallet by the user giving; If the smart contract has been approved by 0 users, user information, user certificate and previously signed by the user in question the contract is transferred to the blockchain in the user wallet kept in the database. adding and sharing this information with the said company; If the smart contract is rejected by 0 users, the user's contract the information that he did not approve is in the user wallet kept in the database. adding it to the blockchain and not sharing this information with the company in question contains the steps.

In the person recognition method, firstly, users and companies are registered to the System (100). as an electronic wallet owner. relevant registration procedures and The steps for creating a user/company wallet are given below.

Users indicate that the first server (301) is running on client devices (200), logging in to a website that contains a user interface and user information (for example, name, surname, e-mail address, mobile phone number and preferably biometric information such as fingerprint...) performs the recording. Information about memberships during this pre-registration process secure to users' client devices (200) by the first server (301). methods, preferably bidirectional AES encryption techniques (Advanced Encryption Standard - Advanced Encryption Standard).

The user information entered into the user interface by the user, first passed through the proxy and web service layer of the server (301) to the fourth server. (304) is transmitted and recorded in the database located on the fourth server (304). 36378.01 In the next step, preferably the e-mail address is entered into the database for verification. by the SMTP server (306) to the registered user's e-mail address. a verification e-mail is forwarded and verification of the e-mail by the user (for example, entering a sent link) then on the first server (301) the recording flow continues from where it left off.

In the next step, users can perform the registration process in the system (100) with different methods. (e.g. using electronic signature, using mobile signature, authentication using information from different contracted systems or Union Electronic Signature Regulation eIDAS (Electronic Identification and using cloud signature issued by the Trust Services Regulation) can complete.

In a preferred embodiment of the invention, users can opt out of this registration process. e-signature from the user interface of the website in question or some of the user information related to the mobile signature (for example, TR. number and/or mobile phone number) and according to the selected signature, the client Verification is made via the device (200) using traditional methods. For example e-signature During the verification with the website, user information (for example, TC. ID number) is entered, a code is created on the website and this code to the user interface of an official application installed on the client device 200 and a predefined pin code for e-signature is entered to the user. then signing is done. During verification with mobile signature, user information (for example, TR. ID number) on the user interface of the website. and/or mobile phone number) is entered in advance for mobile signature. by entering a defined pin code on the mobile client device (200), validation is done.

In this step, users must e-signature to complete the registration process. If registration is selected, e-signature is entered into the relevant user interface. 36378.01 After entering some of the information (for example, TR. ID number), the first pre-registered phone information for e-signature via server (301). validation can also be provided. For example, for mobile phone number verification an SMS OTP service (Short Message Service Single) operated by the first server (301). Preferably a random four-digit number (any other In other words, a one-time password) is generated and sent by the SMS OTP service. transmitted to the user's mobile client device (200). This number of users when entered into the user interface of the website in question by the user. mobile phone number by comparison with the transmitted number (one-time password) verification is provided. As a result of verification, e-signature user information (name, surname, phone number, e-mail address...) and certificate information (301) passes through the proxy and web service layer to the fourth server (304) transmitted and stored in the database.

If e-signature is replaced by users to complete the registration process. If registration with mobile signature is selected, the user mobile signature some of the information (for example, TR ID number and mobile phone number) enters. Since the mobile phone number has already been verified, an additional no verification method is required, user information (name, surname, phone number, e-mail address...) and certificate information of the first server (301) proxy and It is passed through the web service layer and transmitted to the fourth server (304). recorded on the base.

In the two alternative applications mentioned above, the database will be registered. user information (name, surname, e-mail address, phone number...) e-signature or It is taken from the certificate in the mobile signature. Information in the certificate in question Electronic Certificate Service Providers and/or Qualified It is pre-formed information by Certification Authorities. Because All information in the certificate is accepted as correct and the system (100) users saved as information. This user information is provided by the user or by a different It cannot be changed later by the person/institution. 36378.01 In the next step, a user service agreement is made by the first server (301). is created and displayed to the user on the screen of the client device (200). Aforementioned The user service contract is signed using e-signature or mobile signature (a i.e. contracting using services related to signing libraries signed). The signed user service agreement is the first server (301). It is passed through the proxy and web service layer and forwarded to the third server (303). User account (eg username and password) by third server (303) concurrently with this user, a user account and blockchain a user wallet (i.e. an electronic wallet) is created. Simultaneously with the creation of the user wallet, the third A smart contract is also created by the server (303) in the user wallet and user service agreement smart contract signed by the user is added in. This contract cannot be rearranged or changed later.

The created user wallet and smart contract are forwarded to the fourth server (304), is saved in the database. User created with this user information another person / institution cannot technically interfere with his wallet.

Client devices to users accounts, in other words, to user wallets. (200) user account information (username and passwords) or with biometric data (e.g. face, iris, retina, voice, fingerprint, palm print, ...) and thus they can use the system (100). In an application of the invention to users accounts from client devices (200), for example a desktop computer, tablet or mobile device installed from an internet browser opened through the website or an official application/program installed on these devices username and passwords or biometric data (for example, phone face recognition with camera, voice recognition with microphone, finger with fingerprint reader track recognition...) Also, users have promise installed on client device (200). the subject of the official application with the camera and barcode, other than this 36378.01 system (100) with push notification from applications. can use.

Companies that want to use the system (100) that are the subject of the invention are also members of the system (100). it has to be. For this, an authorized operator in the companies a web page run by the first server 301 using the client device 200. performs pre-registration to the system (100) through the user interface of the site.

As an alternative to the website in question for registration in the system (100), mobile pre-registration via applications or traditional methods realizable. Information about memberships to companies' client devices (200) transmitted via secure methods (for example, bidirectional AES encryption techniques).

Company information entered during the above-mentioned registration process (for example, the company's title, address, phone number, e-mail address...) proxy of the first server (301) and by passing through the web service layers to the fourth server (304), the data recorded in the base. After this registration process, an authorized person in the system (100) via an administrator (admin) panel on the second server (302). Approval is given for the company that wants to register to the system (100). The company in question When the registration is approved, this confirmation information is transmitted to the third server (303) and a company user account for the company in question (for example, company username and password) and blockchain technology associated with this firm user account A company wallet is created using This company promises in addition to the wallet A smart contract containing the website information of the company in question is created and the company user account, company wallet and smart contract to the fourth server (304) transmitted and recorded in the database.

User interface of the website run by the companies first server (301) By logging in with the company user account, you can enter the company information and logos. can update. This updated information is also the proxy of the first server (301). It is transmitted to the web service by passing through the web service and the fourth layer over the web service. 36378.01 It is transmitted to the server (304) and recorded in the database. Companies in this invention They integrate into the system (100) with web services.

Companies can use ApiKey (Application Programming) on the first server (301). Thanks to this, you can use the APIKeys and the necessary restrictions on accessing these APIs. they define. This information, again through proxy and web services, is the fourth saved in the database on the server (304).

All web services mentioned in this system (100) are preferably HTTPS protocol. (Secure Hypertext Transfer Protocol It is positioned to serve over the Rule. Login process (login) Except for the other functions, username and password information (authorization data - transfers authorization data) to web services. without user login The services that can be called are isolated from other services.

After the users and companies registration process is completed, users website, mobile app etc. When they want to authenticate for the user interface of the firm's web page via the client device (200) a web service via a call link on the calls. The web service in question is registered in the database of the fourth server (304). The relevant company calls the smart contract from within the wallet. The wise in question The contract is approved and rejected by showing the site information on the user application screen. displays the buttons. Then, for that user by the company, A special QR code is generated and published on the website's verification screen.

The aforementioned QR code generation process takes place as follows; company own website Using ApiKeyî in iframe on the page, frame over first server (301) code information (company and time encrypted with AES encryption technique) information) on their website, preferably for a certain time (for example, 30 seconds) broadcasts throughout. In other words, the related website on the first server (301) services are called and said web services are sent to the fourth server (304). 36378.01 It pulls the company information in its base and processes this information into the QR code. So identity For a user who logs in to the relevant company's website for verification, it is specific to that moment. a QR code is generated.

The user submits user account information to the mobile application of a client device 200 Login with (for example, username and password) or biometric information, and QR code reading in the application using the camera of the client device (200) It reads the QR code in question through its feature and speaks at its request. Approving or rejecting the smart contract in question and submitting its information (signed contract, certificate information etc.) or not.

When the smart contract is approved or rejected by the user, the first server The web services on (301) can be accessed by the user wallet on the fourth server (304). The user account that the user logs into the mobile application with the identity (walletid) by comparing user information (for example, username and password) it matches. Third server in case of consent by the user (303) user information (for example, user name, surname), user certificate and the agreement signed by the user beforehand, the block in the user wallet kept in the database of the fourth server (304) is added to the chain. If the smart contract is not approved by the user information that the user did not approve the contract, again the third server (303) is processed to the blockchain in the user wallet in question. Next These transactions are recorded in the database of the fourth server (304).

When users approve the smart contract, the fourth server (304) the user information (name and surname...), signed contract, certificate information etc. It is transmitted to the company server (305) and shared with the company.

If the smart contract is not approved by the users, it is stored in the database. the said information kept is not transmitted to the company server (305), therefore this The information is not shared with the company. Thus, completely under user control, Identity sharing process with smart contracts without second intervention it will be completed. 36378.01 In the preferred embodiment of the invention, the information mentioned in the above paragraph (user information (name, surname...), signed contract, certificate information, etc.) all is kept in the database of the fourth server 304, but the invention not angry. In one embodiment of the invention, the above-mentioned information is one part is in the database of the fourth server (304), the other part is in another server, preferably the third server (303). find another In practice, all of the above-mentioned information is used both in the fourth in the database of server 304 as well as on another server, preferably third is kept on the server (303).

E-SIGNATURE PLATFORM Beginning Unsuccessful Verification ID & Mobile Failed Successful Signature Data + phone + User data (Hash) Agreement MOBILE APP/ WALLET ETHEREUM & HYPERLEDGER BLOCK CHAIN PLATFORM Unsuccessful Successful Successful THIRD PARTY (FIRM) Application

Claims (2)

REQUESTS . Client devices 200 including a data entry interface and a display for use by users and businesses; a server system (300) including a database and adapted to run a website containing a user interface; using a system (100) including a data communication network to perform data communication between the client devices (200) and the server system (300); In order to create a user wallet for users, a user logs into the website run by the server system (30) via the data entry interface of a client device (200) and enters user information into the user interface of the website; storing the entered user information in the database in the server system (300); signing the said website by the user using an electronic signature or a mobile signature information over the data entry interface of the client device (200); transmitting the certificate information of said electronic signature or mobile signature to the server system (300) by the client device (200) and saving it in the database; creating a user service contract by the server system (300) and displaying it to the user on the screen of the client device (200); signing the said user service contract by the user on the client device (200) using electronic signature or mobile signature; creating a user account by the server system (300) and a user wallet with the blockchain associated with that user account; creating a smart contract by the server system (300), adding the user service contract signed by the user into said smart contract, and registering the smart contract with the said user wallet to the database; In order to create a company wallet for companies, a company user account, according to the company information, is entered into a web site run by the server system (300) by the company via a client device (200), and the company information is displayed by the server system (300) of the website. creating a blockchain-containing firm wallet and a smart contract associated with the account and registering them in the database; In order to verify the identities of the users, a user registered in the system (100) logs into the website of a company registered in the system (100) and calls a web service; calling the smart contract in the company wallet in the database of the server system (300) by the web service; displaying the website information of the company in the smart contract and a QR code on the screen of the client device (200); logging into the mobile application of the client device (200) by the user with the user account; reading the QR code through the camera of the client device (200); matching the user by comparing the user wallet in the database with the user account information used for logging into the mobile application by the server system (300); Approval or rejection for the smart contract in the company wallet by the user; If the smart contract has been approved by 0 users, adding the user information, user certificate and the said contract previously signed by the user to the blockchain in the user wallet kept in the database and sharing this information with the said company; A user identification method that includes the steps of adding the information that the user did not approve the contract, if the smart contract has been rejected by 0 users, to the blockchain in the user wallet kept in the database and not sharing this information with the said company. 2. After the step of logging in to a website run by the server system (30) by a user via a client device (200) and entering the user information into the user interface of the website, the SMTP server (306) is sent to the user's e-mail address in order to verify the e-mail address. contact identification method as in the prompt, which includes the step of forwarding a verification e-mail and verifying the user's e-mail. . If the electronic signature information is entered by the user at the step of logging in to the said website by using an electronic signature or a mobile signature, the person identification method as in the request, which includes the step of sending a one-time verification password to the phone number of the user in order to verify the phone information. . In the step of displaying the website information of the company in the smart contract and a QR code on the screen of the client device (200), the server system (300) pulls company and time information from the database and creates a QR code valid for a certain period of time. person identification method.