WO2017030210A1 - User authentication method using graphic otp - Google Patents

User authentication method using graphic otp Download PDF

Info

Publication number
WO2017030210A1
WO2017030210A1 PCT/KR2015/008573 KR2015008573W WO2017030210A1 WO 2017030210 A1 WO2017030210 A1 WO 2017030210A1 KR 2015008573 W KR2015008573 W KR 2015008573W WO 2017030210 A1 WO2017030210 A1 WO 2017030210A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
user
server
image
input
Prior art date
Application number
PCT/KR2015/008573
Other languages
French (fr)
Korean (ko)
Inventor
김민수
Original Assignee
김민수
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 김민수 filed Critical 김민수
Priority to PCT/KR2015/008573 priority Critical patent/WO2017030210A1/en
Publication of WO2017030210A1 publication Critical patent/WO2017030210A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/36User authentication by graphic or iconic representation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials

Definitions

  • the present invention relates to a user authentication method using a graphic OTP, and more specifically, in the case of user authentication through ID and password authentication, after selecting the user's ID key icon selected from the plurality of images provided from the server
  • the present invention relates to a user authentication method using a graphic OTP which can authenticate a user by matching a password with a password.
  • GOTP Graphic One Time Password
  • OTP Graphical One Time Password
  • OTP Graphical One Time Password
  • the user can obtain a significant improvement in the ease of memory and the validity of the memory and secure the security.
  • input values and passwords are managed separately by simply using the direction keys without recognizing OTP, and are safe from shoulder surfing, phishing and pharming. ) Can be prevented.
  • the GOTP transmits one or more graphic images to the user terminal, and the user inputs coordinate values through the keyboard to virtually move a predetermined matching image by checking the transmitted images.
  • the user selects one or more images corresponding to his key instead of the password and stores them in the authentication server. Then, when performing GOTP for user authentication, the authentication server arranges the images by transmitting the image set in which the additional images and other additional images stored by the user in a predetermined position to the user terminal. The user checks the image set displayed on the terminal and inputs a coordinate shift value for matching the image selected by the user with the image using the keyboard.
  • the matching value input is transmitted from the terminal to the authentication server to check whether the coordinate shift value is correct. If the input coordinate shift value is correct, the corresponding user is allowed to access.
  • the authentication method using GOTP receives a movement route from the user's private key image to the hall key image among the image groups displayed on the user's terminal as a direction key, compares it with the movement route calculated by the authentication server or the terminal, and matches the user. This is how to allow access.
  • the conventional GOTP authentication method has a problem that if the user key image and the hall key image is exposed by various causes, all authentication means are exposed to require a separate authentication method to supplement the security level.
  • an object of the present invention is to provide a user authentication method using a graphic OTP to prevent the password is exposed from network hooking, phishing and pharming and keylog.
  • an object of the present invention is to provide a user authentication method using a graphic OTP to improve the security of the GOTP authentication through the pattern (propensity) of the GOTP authentication input of each user.
  • a user authentication method using a graphic OTP comprising: (A) a server receiving a graphic OTP authentication request signal from a user terminal to generate a synchronization code; (B) generating a rearranged image group of a new arrangement including a user key image and a hall key image by changing the order of images stored by the user using the generated synchronization code by the server; (C) the server transmitting the generated rearranged image group to the user's terminal and outputting the generated rearranged image group on the user terminal; (D) the server randomly selecting one or more of the means set as authentication supplement means; (E) receiving, by the user terminal, an input pattern set as a password input movement path and an authentication supplement means, and comparing the input movement path with the position of the authentication image on the rearranged image group arrangement to determine whether to be authenticated; (F) the user terminal transmitting the authentication status and the input pattern to the server; (G) the server reading the authentication values of the authentication supplement means selected in the step (
  • the authentication value may be a range value including a tolerance range in the cumulative average value of the input pattern input by the user.
  • the authentication supplement means may be configured to include a drag path and a drag speed.
  • the authentication supplement means when the user terminal is provided with a touch panel, it may be configured to include a touch pressure.
  • the user authentication method using the graphic OTP of the present invention transmits the server to the user terminal by using a new sequence of image arrays composed of unique images selected by the user, so that the user can check whether a fake site is safe from phishing, Since the image arrangement is variable every moment, the image corresponding to the password is moved to match the icon, so the movement deviation is also variable, so it is not exposed to hooking or peeping, which can prevent illegal theft of GOTP. Supports a method of moving and matching a password-expression image and an authentication image, which has a remarkable and advantageous effect of preventing errors in user input.
  • the present invention improves the security of the GOTP authentication according to the personal preference of the user since additional authentication supplement is performed according to the input pattern as well as whether the GOTP authentication value is matched through the pattern (propensity) of the GOTP authentication input of each user. It has the advantage of being.
  • FIG. 1 is a flow chart illustrating a user authentication method using a graphic OTP in accordance with the present invention.
  • a user authentication method using a graphic OTP comprising: (A) a server receiving a graphic OTP authentication request signal from a user terminal to generate a synchronization code; (B) generating a rearranged image group of a new arrangement including a user key image and a hall key image by changing the order of images stored by the user using the generated synchronization code by the server; (C) the server transmitting the generated rearranged image group to the user's terminal and outputting the generated rearranged image group on the user terminal; (D) the server randomly selecting one or more of the means set as authentication supplement means; (E) receiving, by the user terminal, an input pattern set as a password input movement path and an authentication supplement means, and comparing the input movement path with the position of the authentication image on the rearranged image group arrangement to determine whether to be authenticated; (F) the user terminal transmitting the authentication status and the input pattern to the server; (G) the server reading the authentication values of the authentication supplement means selected in the step (
  • FIG. 1 is a flowchart illustrating a user authentication method using a graphic OTP according to the present invention.
  • a graphic OTP authentication request signal is received from a user's terminal to generate a synchronization code (S100), and the order of images stored by the user is changed by using the generated synchronization code.
  • a rearranged image group is generated (S110).
  • the generated rearranged image group is transmitted to the user's terminal and output on the user terminal (S120).
  • the image group includes a user key image and a hall key image. That is, the user performs authentication by selecting an image set by the user as a password among the user keys and dragging and matching the image set by the user as the hole key.
  • the user touches and drags his user key image to move to the hole key image set by the user.
  • the user key may be set in plural.
  • the server randomly selects one or more of the means set as the authentication supplement means (S130).
  • the authentication supplement means is a complementary means set to increase the security effect of the GOTP authentication, in the present invention will be described with an example that the touch pressure, the drag path and the drag speed is set as the complement means.
  • the user terminal receives a password input movement path (S140).
  • the user terminal receives not only a simple input path of the password but also an input pattern set as the authentication supplement means. That is, in the embodiment of the present invention, the user terminal receives the touch pressure, the drag path, and the drag speed.
  • the user terminal determines whether to authenticate by comparing the movement path and the position of the authentication image on the rearranged image group arrangement (S150).
  • the user terminal transmits the determination result of the step 150 and the input pattern to the server (S160).
  • the server receiving the determination result of the step 150 and the input pattern reads the authentication value of the authentication supplement means selected in step 120 (S170).
  • the authentication value means an average value of the accumulated stored values of the input pattern input by the corresponding user, and more precisely, the authentication value may be a range value including the tolerance range.
  • the server compares the supplementary means authentication value (range) with the authentication supplement means measured value received from the user terminal to determine whether additional authentication (S180).
  • the server transmits the additional authentication to the user terminal, and if the additional authentication is approved, and stores the supplementary measure measurement value (S190).
  • the server calculates the password entered by the user using the moving value and the image array of the server, and then implements an authentication method by checking whether the ID and password match. Prevents passwords from being exposed from phishing, pharming, and keylogs
  • the present invention is configured to perform additional authentication by checking the input pattern of the user as the authentication supplement means, by performing additional authentication by random selection of a plurality of authentication supplement means, any one of the user input pattern Even if the change is made, the authentication can be allowed in accordance with multiple authentication attempts.
  • the authentication may be performed by randomly selecting an authentication supplement means that has not changed according to a plurality of authentication start-ups. As the input values are accumulated and stored, the stored value of the accumulated input pattern is changed and according to the new input pattern. Additional authentication may be performed.
  • the additional authentication by the authentication supplement means is made in the server, and the accumulated input pattern of the user is not stored in the user terminal, not only can the data for additional authentication be prevented from being replaced by the replacement of the terminal, Even when a user terminal relatively vulnerable to security is hacked, security may be stably secured by additional authentication.
  • a value for moving the graphic OTP authentication request signal using an ID or a personal identification code may be both an authentication icon or a password.
  • the present invention may use various types of personal authentication values such as social security number, i-pin, account number, etc., instead of the password to be used, and the user may proceed to mix the image array for each character in the matching process by moving the authentication icon. .
  • personal authentication values such as social security number, i-pin, account number, etc.
  • the shuffler of the present invention can shuffle the values used for the password, and additionally display the numbers so as to confirm the movement deviation in the password.
  • the authentication icon of the present invention can be used for numbers, letters, and the like, and can be expected to have an advertisement effect by attaching an advertisement window to the authentication page, and can also watch a video advertisement after authentication.
  • the present invention can encrypt the movement value, and includes a mouse heel, a keyboard number, a direction key, and the like in the movement method, and transmits the security key to the user terminal for enhanced security and transmits the authentication value together to confirm that the user is a registered user. It may be.
  • the user authentication method using the graphic OTP by transmitting to the user terminal from the server using a new sequence of images consisting of only the unique image selected by the user, the user can check whether or not a fake site from phishing It is safe and the image array is variable every moment, so the image corresponding to the password is moved to match the icon, so the movement deviation is also variable, so it is not exposed to hooking or peeping, which can prevent illegal theft of GOTP. Since a user's terminal supports a method of moving and matching an image in which a password is expressed and an authentication image, an error in user input can be prevented in advance.
  • a user in the case of authenticating a user through ID and password authentication, a user inputs a user's ID, and then a graphic OTIF that can authenticate the user by matching a key icon selected by the user and a password among a plurality of images provided by the server.
  • the present invention relates to a user authentication method using the present invention.
  • the user performs authentication by matching a user key image with a hole key image through a one-time generated rearranged image group, additional authentication security is performed according to a user input pattern.
  • additional authentication security is performed according to a user input pattern.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • User Interface Of Digital Computer (AREA)

Abstract

The present invention relates to a user authentication method using a graphic OTP capable of authenticating a user in a manner whereby when user authentication is performed through ID and password authentication, after inputting the ID of the user, the user can be authenticated by matching a key icon and a password, selected by the user, from among a plurality of images provided by a server. When the user performs authentication by matching a user key image to a hole key image through a group of rearranged images generated one time for each authentication performed, the present invention provides a GOTP authentication method with enhanced security by performing additional authentication security according to an input pattern of the user.

Description

그래픽 오티피를 이용한 사용자 인증 방법User Authentication Using Graphical OTP
본 발명은 그래픽 오티피를 이용한 사용자 인증 방법에 관한 것으로, 보다 자세하게는 아이디와 패스워드 인증을 통해 사용자 인증을 하는 경우에 사용자의 아이디를 입력한 후 서버에서 제공되는 복수의 이미지 중에서 사용자가 선택한 키 아이콘과 패스워드를 일치시킴으로써 사용자를 인증할 수 있는 그래픽 오티피를 이용한 사용자 인증 방법에 관한 것이다.The present invention relates to a user authentication method using a graphic OTP, and more specifically, in the case of user authentication through ID and password authentication, after selecting the user's ID key icon selected from the plurality of images provided from the server The present invention relates to a user authentication method using a graphic OTP which can authenticate a user by matching a password with a password.
그래픽 오티피(Graphic One Time Password, 이하 'GOTP'라 함)는 그래픽으로 구현된 OTP(One Time Password, 이하 'OTP'라 함)의 하나로, 그래픽 인터페이스를 이용해 화면에 배열된 이미지 사이의 거리를 입력하는 것으로 매번 바뀌는 이미지의 배열에 따라 함께 바뀌는 입력 값을 비밀번호로 사용하는 것이다.Graphic One Time Password (GOTP) is one of Graphical One Time Password (OTP), which uses the graphic interface to display the distance between images arranged on the screen. As you type, the password you use is the input value that changes along with the array of images that change each time.
이용자는 그래픽 인터페이스를 통해 기억의 용이성과 기억 유효기간의 획기적 향상을 얻게 되며 보안성을 확보하게 된다. 하지만 실제 사용에 있어서는 OTP라는 것을 인식하지 않고 간단히 방향키를 이용해 입력함으로써 입력 값과 패스워드가 분리되어 관리되고, 숄더서핑(Shoulder surfing: 어깨너머 훔쳐보기)으로부터 안전하며, 피싱(Phishing) 및 파밍(Pharming)을 방지할 수 있다.Through the graphical interface, the user can obtain a significant improvement in the ease of memory and the validity of the memory and secure the security. However, in actual use, input values and passwords are managed separately by simply using the direction keys without recognizing OTP, and are safe from shoulder surfing, phishing and pharming. ) Can be prevented.
흔히 입구에 부착되어 있는 비밀번호 키나 현금인출기를 이용할 때 누군가 뒤에 있으면 불편함을 느낀다. 그 이유는 바로 내 비밀번호가 노출될까 염려스럽기 때문이다. 또한 뒤에 서 있는 사람도 불편함을 느끼게 된다. 이러한 불편을 없앨 수 있는 기술, 즉 누가 뒤에서 보고 있어도 안전하게 패스워드를 입력할 수 있도록 하기 위해서 개발된 기술이 바로 GOTP이다.It is often uncomfortable to be behind someone when using a password key or cash machine attached to the entrance. The reason is that I am concerned about my password being exposed. The person standing behind will also feel uncomfortable. GOTP is a technology that can eliminate these inconveniences, that is, technology developed to securely enter a password no matter who is watching from behind.
일반적인 GOTP는 하나 이상의 그래픽 이미지를 사용자 단말기로 전송하고, 사용자는 전송된 이미지들을 확인하여 이미 정해진 매칭되는 이미지를 가상으로 이동하기 위한 좌표값을 키보드를 통해 입력한다.In general, the GOTP transmits one or more graphic images to the user terminal, and the user inputs coordinate values through the keyboard to virtually move a predetermined matching image by checking the transmitted images.
즉, 사용자는 비밀번호 대신 자신의 키에 해당하는 하나 이상의 이미지를 선택하여 인증서버에 저장한다. 이후, 사용자 인증을 위해 GOTP를 수행하는 경우, 인증서버는 해당 사용자가 저장한 이미지와 다른 추가적인 이미지를 소정의 위치에 배열한 이미지 집합을 사용자의 단말기에 전송하여 이미지를 배열한다. 사용자는 단말기에 표시되는 이미지 집합을 확인하여, 자신이 선택한 이미지와 대응하는 이미지를 서로 매칭하기 위한 좌표 이동 값을 키보드를 이용하여 입력한다.That is, the user selects one or more images corresponding to his key instead of the password and stores them in the authentication server. Then, when performing GOTP for user authentication, the authentication server arranges the images by transmitting the image set in which the additional images and other additional images stored by the user in a predetermined position to the user terminal. The user checks the image set displayed on the terminal and inputs a coordinate shift value for matching the image selected by the user with the image using the keyboard.
이렇게 입력된 매칭값은 단말기에서 인증서버로 전송되어, 좌표 이동 값이 정확한 값인지를 확인하는 과정을 수행하며, 입력된 좌표 이동 값이 정확한 경우, 해당 사용자의 접속을 허가한다.The matching value input is transmitted from the terminal to the authentication server to check whether the coordinate shift value is correct. If the input coordinate shift value is correct, the corresponding user is allowed to access.
GOTP를 이용한 인증 방법은 사용자의 단말기에 표시되는 이미지 그룹 중 사용자의 개인키 이미지에서 홀키 이미지에 이르는 이동경로를 방향키로 입력받아, 인증서버 또는 단말기에서 계산한 이동경로와 비교하고 일치하는 경우 해당 사용자의 접속을 허가하는 방법이다.The authentication method using GOTP receives a movement route from the user's private key image to the hall key image among the image groups displayed on the user's terminal as a direction key, compares it with the movement route calculated by the authentication server or the terminal, and matches the user. This is how to allow access.
그러나 종래의 GOTP 인증 방법은 모두 2차 인증에 사용하고 있으며 실질적으로 1차 인증인 기존 패스워드에 적용하기에는 어려움이 많다.However, all the conventional GOTP authentication methods are used for the second authentication, and it is difficult to apply to the existing password which is substantially the first authentication.
또한, 기존 1차 인증에 사용하는 패스워드부터 불법적인 해킹을 시도하는 해커에게 전송되는 이미지 및 키보드입력을 후킹(Hooking), 피싱 및 파밍 당하는 경우, 사용자의 인증 정보가 노출될 가능성 높다.In addition, when hooking, phishing, and pharming an image and keyboard input transmitted to a hacker attempting illegal hacking from a password used for existing primary authentication, user authentication information is likely to be exposed.
이를 해결하기 위하여 GOPT를 이용하여 이미지의 좌표값을 이용하지 않고 커서키나 마우스의 클릭만으로 경로를 입력하는 방법이 존재하나 이는 단순한 형태의 패스워드에만 적용 가능하므로 키보드상의 모든 키 값을 이용하는 일반적인 패스워드에는 적용하기 어려우며, 화면상 이미지를 이동시키지 않으므로 사용자가 입력하는 과정에 실수를 하거나 직관적으로 일치 여부를 판단하여 입력하는데 어려움이 많으며 사용자의 불편을 초래하는 문제점이 있었다.To solve this problem, there is a method of inputting the path by using the cursor key or the mouse click without using the coordinate value of the image by using GOPT, but this is applicable only to a simple password, so it is applied to the general password using all the key values on the keyboard. It is difficult to do so, because the image on the screen does not move, it is difficult to make a mistake or intuitively determine whether the user inputs the input process, and there is a problem that causes inconvenience to the user.
한편, 종래 GOTP 인증방법은 다양한 원인에 의해 사용자키 이미지와 홀키 이미지가 노출된 경우, 인증수단이 모두 노출되어 보안레벨의 보완을 위하여 별도의 인증 방식이 요구되는 문제점이 있었다.On the other hand, the conventional GOTP authentication method has a problem that if the user key image and the hall key image is exposed by various causes, all authentication means are exposed to require a separate authentication method to supplement the security level.
상기와 같은 종래 기술의 문제점을 해결하기 위하여 안출된 본 발명은 사용자 인증시 먼저 아이디를 입력받고 서버로부터 사용자가 선택한 GOTP용 이미지를 단말기로 전송할 때, 이미지 배열을 새로 형성하여 전송하고 사용자는 형성된 이미지 중에서 선정한 인증 이미지에 패스워드를 이동시켜 맞추는 형식으로 입력을 하여 서버로 전송하면, 서버에서는 이동값과 서버의 이미지 배열을 이용하여 사용자가 입력한 패스워드를 계산한 후 아이디와 패스워드의 일치 여부를 확인하는 방식으로 인증 방식을 구현함으로써, 네트워크 후킹, 피싱과 파밍 및 키로그로부터 패스워드가 노출되지 않도록 하는 그래픽 오티피를 이용한 사용자 인증 방법을 제공함에 그 목적이 있다.The present invention devised to solve the problems of the prior art as described above, when the user first inputs the ID when the user authentication, and transmits the image selected by the user from the server to the terminal, a new image array is formed and transmitted and the user formed image If the password is input to the authentication image selected from the above, and the password is input to the server, the server calculates the password input by the user using the shift value and the image array of the server and checks whether the ID matches the password. By implementing the authentication method in a manner, an object of the present invention is to provide a user authentication method using a graphic OTP to prevent the password is exposed from network hooking, phishing and pharming and keylog.
또한, 본 발명에서는 각 사용자의 GOTP 인증입력의 패턴(성향)을 통해 GOTP 인증의 보안성을 향상시키는 그래픽 오티피를 이용한 사용자 인증 방법을 제공함에 그 목적이 있다.In addition, an object of the present invention is to provide a user authentication method using a graphic OTP to improve the security of the GOTP authentication through the pattern (propensity) of the GOTP authentication input of each user.
본 발명의 상기 목적은 그래픽 오티피를 이용한 사용자 인증 방법에 있어서, (A) 서버가 사용자의 단말기로부터 그래픽 오티피 인증 요청신호를 수신하여 동기화 코드를 생성하는 단계와; (B) 상기 서버가 생성된 상기 동기화 코드를 이용하여 상기 사용자가 저장한 이미지의 순서를 변경하여 사용자키 이미지와 홀키 이미지를 포함한 새로운 배열의 재배열 이미지 그룹을 생성하는 단계와; (C) 상기 서버가 생성된 상기 재배열 이미지 그룹을 상기 사용자의 단말기로 전송하여 상기 사용자 단말기 상에서 출력하는 단계와; (D) 상기 서버가 인증 보완 수단으로 설정된 수단들 중 하나 이상을 무작위로 선별하는 단계와; (E) 상기 사용자 단말기가 패스워드 입력 이동경로 및 인증보완수단으로 설정된 입력 패턴을 수신받아, 상기 입력 이동경로와 상기 재배열 이미지 그룹 배열상의 인증 이미지 위치를 비교하여 인증여부 판별하는 단계와; (F) 상기 사용자 단말기가 상기 인증여부 및 상기 입력 패턴을 상기 서버로 전송하는 단계와; (G) 상기 서버가 상기(D)단계에서 선별된 인증 보완 수단의 인증값을 독출하는 단계와; (F) 상기 서버가 상기 입력패턴과 상기 인증값을 비교하여 추가인증 여부를 판별하는 단계와; (H) 상기 서버가 상기 추가 인증여부를 사용자 단말기로 전송하고, 추가 인증이 승인된 경우, 상기 입력패턴을 누적하여 저장하는 단계를 포함하여 수행되는 그래픽 오티피를 이용한 사용자 인증 방법에 의해 달성된다.According to an aspect of the present invention, there is provided a user authentication method using a graphic OTP, comprising: (A) a server receiving a graphic OTP authentication request signal from a user terminal to generate a synchronization code; (B) generating a rearranged image group of a new arrangement including a user key image and a hall key image by changing the order of images stored by the user using the generated synchronization code by the server; (C) the server transmitting the generated rearranged image group to the user's terminal and outputting the generated rearranged image group on the user terminal; (D) the server randomly selecting one or more of the means set as authentication supplement means; (E) receiving, by the user terminal, an input pattern set as a password input movement path and an authentication supplement means, and comparing the input movement path with the position of the authentication image on the rearranged image group arrangement to determine whether to be authenticated; (F) the user terminal transmitting the authentication status and the input pattern to the server; (G) the server reading the authentication values of the authentication supplement means selected in the step (D); (F) comparing, by the server, the input pattern with the authentication value to determine whether to perform additional authentication; (H) the server transmits the additional authentication to the user terminal, and if the additional authentication is approved, and is achieved by a user authentication method using a graphic OTP performed by accumulating and storing the input pattern. .
이때, 상기 인증값은, 사용자가 입력한 입력패턴의 누적 평균값에 허용 오차 범위를 포함한 범위값일 수도 있다.In this case, the authentication value may be a range value including a tolerance range in the cumulative average value of the input pattern input by the user.
그리고 상기 인증보완수단은, 드래그 경로 및 드래그 속도를 포함하여 구성될 수도 있다.The authentication supplement means may be configured to include a drag path and a drag speed.
또한, 상기 인증보완수단은, 상기 사용자 단말기가 터치패널이 구비된 경우, 터치압을 포함하여 구성될 수도 있다.In addition, the authentication supplement means, when the user terminal is provided with a touch panel, it may be configured to include a touch pressure.
본 발명의 그래픽 오티피를 이용한 사용자 인증 방법은 사용자가 선택한 고유한 이미지만으로 구성된 새로운 순서의 이미지 배열을 이용하여 서버에서 사용자 단말기에 전송함으로써, 사용자는 가짜 사이트 여부를 확인할 수 있어 피싱으로부터 안전하고, 이미지 배열이 매순간마다 가변적이므로 패스워드에 해당하는 이미지를 이동시켜 아이콘과 일치시키기 때문에 이동 편차 또한 가변적이므로 후킹, 훔쳐보기 등에도 노출되지 않아 GOTP의 불법 도용을 방지할 수 있는 장점이 있으며, 사용자의 단말기에서 패스워드가 표현된 이미지와 인증 이미지를 이동시켜 일치시키는 방법을 지원하므로 사용자의 입력시 오류를 미연에 방지하는 현저하고도 유리한 효과가 있다.The user authentication method using the graphic OTP of the present invention transmits the server to the user terminal by using a new sequence of image arrays composed of unique images selected by the user, so that the user can check whether a fake site is safe from phishing, Since the image arrangement is variable every moment, the image corresponding to the password is moved to match the icon, so the movement deviation is also variable, so it is not exposed to hooking or peeping, which can prevent illegal theft of GOTP. Supports a method of moving and matching a password-expression image and an authentication image, which has a remarkable and advantageous effect of preventing errors in user input.
또한, 본 발명에서는 각 사용자의 GOTP 인증입력의 패턴(성향)을 통해 GOTP 인증값의 일치여부 뿐만아니라 입력 패턴에 따라 추가적인 인증 보완을 수행하므로 사용자의 개인적인 사용 성향에 따라 GOTP 인증의 보안성이 향상되는 장점이 있다.In addition, the present invention improves the security of the GOTP authentication according to the personal preference of the user since additional authentication supplement is performed according to the input pattern as well as whether the GOTP authentication value is matched through the pattern (propensity) of the GOTP authentication input of each user. It has the advantage of being.
도 1은 본 발명에 따른 그래픽 오티피를 이용한 사용자 인증 방법을 나타내는 순서도.1 is a flow chart illustrating a user authentication method using a graphic OTP in accordance with the present invention.
도 2 내지 도 7은 본 발명에 따른 실시예를 나타내는 도면.2 to 7 show an embodiment according to the invention.
본 발명은 그래픽 오티피를 이용한 사용자 인증 방법에 있어서, (A) 서버가 사용자의 단말기로부터 그래픽 오티피 인증 요청신호를 수신하여 동기화 코드를 생성하는 단계와; (B) 상기 서버가 생성된 상기 동기화 코드를 이용하여 상기 사용자가 저장한 이미지의 순서를 변경하여 사용자키 이미지와 홀키 이미지를 포함한 새로운 배열의 재배열 이미지 그룹을 생성하는 단계와; (C) 상기 서버가 생성된 상기 재배열 이미지 그룹을 상기 사용자의 단말기로 전송하여 상기 사용자 단말기 상에서 출력하는 단계와; (D) 상기 서버가 인증 보완 수단으로 설정된 수단들 중 하나 이상을 무작위로 선별하는 단계와; (E) 상기 사용자 단말기가 패스워드 입력 이동경로 및 인증보완수단으로 설정된 입력 패턴을 수신받아, 상기 입력 이동경로와 상기 재배열 이미지 그룹 배열상의 인증 이미지 위치를 비교하여 인증여부 판별하는 단계와; (F) 상기 사용자 단말기가 상기 인증여부 및 상기 입력 패턴을 상기 서버로 전송하는 단계와; (G) 상기 서버가 상기(D)단계에서 선별된 인증 보완 수단의 인증값을 독출하는 단계와; (F) 상기 서버가 상기 입력패턴과 상기 인증값을 비교하여 추가인증 여부를 판별하는 단계와; (H) 상기 서버가 상기 추가 인증여부를 사용자 단말기로 전송하고, 추가 인증이 승인된 경우, 상기 입력패턴을 누적하여 저장하는 단계를 포함하여 수행될 수 있다.According to an aspect of the present invention, there is provided a user authentication method using a graphic OTP, comprising: (A) a server receiving a graphic OTP authentication request signal from a user terminal to generate a synchronization code; (B) generating a rearranged image group of a new arrangement including a user key image and a hall key image by changing the order of images stored by the user using the generated synchronization code by the server; (C) the server transmitting the generated rearranged image group to the user's terminal and outputting the generated rearranged image group on the user terminal; (D) the server randomly selecting one or more of the means set as authentication supplement means; (E) receiving, by the user terminal, an input pattern set as a password input movement path and an authentication supplement means, and comparing the input movement path with the position of the authentication image on the rearranged image group arrangement to determine whether to be authenticated; (F) the user terminal transmitting the authentication status and the input pattern to the server; (G) the server reading the authentication values of the authentication supplement means selected in the step (D); (F) comparing, by the server, the input pattern with the authentication value to determine whether to perform additional authentication; (H) the server may transmit the additional authentication to the user terminal, and if the additional authentication is approved, accumulating and storing the input pattern may be performed.
본 명세서 및 청구범위에 사용된 용어나 단어는 통상적이거나 사전적인 의미로 한정해서 해석되어서는 아니되며, 발명자는 그 자신의 발명을 가장 최선의 방법으로 설명하기 위해 용어의 개념을 적절하게 정의할 수 있다는 원칙에 입각하여 본 발명의 기술적 사상에 부합하는 의미와 개념으로 해석되어야만 한다.The terms or words used in this specification and claims are not to be construed as being limited to their ordinary or dictionary meanings, and the inventors may appropriately define the concept of terms in order to best describe their invention. It should be interpreted as meaning and concept corresponding to the technical idea of the present invention based on the principle that the present invention.
따라서, 본 명세서에 기재된 실시예와 도면에 도시된 구성은 본 발명의 가장 바람직한 일 실시예에 불과할 뿐이고 본 발명의 기술적 사상을 모두 대변하는 것은 아니므로, 본 출원시점에 있어서 이들을 대체할 수 있는 다양한 균등물과 변형예들이 있을 수 있음을 이해하여야 한다.Therefore, the embodiments described in the specification and the drawings shown in the drawings are only the most preferred embodiment of the present invention and do not represent all of the technical idea of the present invention, various modifications that can be replaced at the time of the present application It should be understood that there may be equivalents and variations.
이하 첨부된 도면을 참조하여 본 발명의 바람직한 실시예를 상세히 설명하기로 한다.Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.
도 1은 본 발명에 따른 그래픽 오티피를 이용한 사용자 인증 방법을 나타내는 순서도이다. 도 1을 참조하면, 사용자의 단말기로부터 그래픽 오티피 인증 요청신호를 수신하여 동기화 코드를 생성하고(S100), 생성된 상기 동기화 코드를 이용하여 상기 사용자가 저장한 이미지의 순서를 변경하여 새로운 배열의 재배열 이미지 그룹을 생성한다(S110).1 is a flowchart illustrating a user authentication method using a graphic OTP according to the present invention. Referring to FIG. 1, a graphic OTP authentication request signal is received from a user's terminal to generate a synchronization code (S100), and the order of images stored by the user is changed by using the generated synchronization code. A rearranged image group is generated (S110).
이후, 생성된 상기 재배열 이미지 그룹을 상기 사용자의 단말기로 전송하여 상기 사용자 단말기 상에서 출력한다(S120).Thereafter, the generated rearranged image group is transmitted to the user's terminal and output on the user terminal (S120).
이때, 이미지 그룹에는 사용자키 이미지와 홀키 이미지를 포함하여 구성된다. 즉, 사용자는 사용자키 중 자신이 비밀번호로 설정한 이미지를 선택하여, 자신이 홀키로 설정한 이미지에 드래그하여 일치시킴으로 인증을 수행한다.In this case, the image group includes a user key image and a hall key image. That is, the user performs authentication by selecting an image set by the user as a password among the user keys and dragging and matching the image set by the user as the hole key.
따라서, 사용자는 자신의 사용자 키 이미지를 터치 및 드래그하여 자신이 설정한 홀키 이미지로 이동시킨다. 물론, 상기 사용자 키는 복수 개로 설정될 수 있다.Therefore, the user touches and drags his user key image to move to the hole key image set by the user. Of course, the user key may be set in plural.
한편, 상기 서버는 상기 제120단계 수행 이후에, 인증 보완 수단으로 설정된 수단들 중에 하나 이상을 무작위로 선별한다(S130).On the other hand, after performing the step 120, the server randomly selects one or more of the means set as the authentication supplement means (S130).
이때, 상기 인증보완수단은 GOTP 인증의 보안 효력을 증가시키기 위해 설정된 보완 수단으로, 본 발명에서는 터치압, 드래그 경로 및 드래그 속도가 보완 수단으로 설정된 것을 예로 들어 설명한다.At this time, the authentication supplement means is a complementary means set to increase the security effect of the GOTP authentication, in the present invention will be described with an example that the touch pressure, the drag path and the drag speed is set as the complement means.
즉, 사용자가 본 발명에 의한 GOTP 인증시 마다 입력패턴을 사용자 별로 누적 저장하고, 저장된 터치압, 드래그 경로 또는 드래그 속도 중 랜덤 선택된 인증보안 수단과 입력 형태가 소정의 편차 이상의 차이값을 갖는 경우, 인증을 불허한다.That is, when the user accumulates and stores the input pattern for each user during the GOTP authentication according to the present invention, and the randomly selected authentication security means among the stored touch pressure, the drag path or the drag speed has a difference value of more than a predetermined deviation, No authentication is allowed.
전술한 바와 같이, 사용자가 상기 사사용자 단말기 상에 사용자키 이미지를 선택하여, 홀키 이미지에 드래그하여 이동시키는 입력을 수행하면, 상기 사용자 단말기는 패스워드 입력 이동경로를 수신받는다(S140). 이때, 상기 사용자 단말기는 패스워드의 단순 입력 경로 뿐만 아니라 인증보완수단으로 설정된 입력 패턴 역시 수신한다. 즉 본 발명의 실시예에서는 상기 사용자 단말기는 터치압, 드래그 경로 및 드래그 속도를 수신한다.As described above, when the user selects a user key image on the user user terminal and performs an input of dragging and moving the hole key image, the user terminal receives a password input movement path (S140). In this case, the user terminal receives not only a simple input path of the password but also an input pattern set as the authentication supplement means. That is, in the embodiment of the present invention, the user terminal receives the touch pressure, the drag path, and the drag speed.
이후, 상기 사용자 단말기가 이동경로와 재배열 이미지 그룹 배열상의 인증 이미지 위치를 비교하여 인증여부 판별한다(S150).Thereafter, the user terminal determines whether to authenticate by comparing the movement path and the position of the authentication image on the rearranged image group arrangement (S150).
그리고 상기 사용자 단말기는 상기 제150단계의 판별 결과와, 상기 입력 패턴을 서버로 전송한다(S160).The user terminal transmits the determination result of the step 150 and the input pattern to the server (S160).
다음으로, 상기 제150단계의 판별 결과와, 상기 입력 패턴을 수신받은 상기 서버는 제120단계에서 선별된 인증 보완 수단의 인증값을 독출한다(S170). 이때 상기 인증값은 해당 사용자가 입력한 입력패턴의 누적된 저장값의 평균값을 의미하는 것으로, 더욱 정확하게는 상기 평균값에 허용 오차 범위를 포함한 범위값일 수 있다.Next, the server receiving the determination result of the step 150 and the input pattern reads the authentication value of the authentication supplement means selected in step 120 (S170). In this case, the authentication value means an average value of the accumulated stored values of the input pattern input by the corresponding user, and more precisely, the authentication value may be a range value including the tolerance range.
그리고 상기 서버는 보완수단 인증값(범위)과 사용자 단말기로부터 수신된 인증보완수단 측정값을 비교하여 추가 인증 여부를 판별한다(S180).In addition, the server compares the supplementary means authentication value (range) with the authentication supplement means measured value received from the user terminal to determine whether additional authentication (S180).
다음으로, 상기 서버는 추가 인증여부를 사용자 단말기로 전송하고, 추가 인증이 승인된 경우, 보완 수단 측정값 누적하여 저장한다(S190).Next, the server transmits the additional authentication to the user terminal, and if the additional authentication is approved, and stores the supplementary measure measurement value (S190).
즉, 본 발명은 사용자 인증시 먼저 아이디를 입력받고 서버로부터 사용자가 선택한 GOTP용 이미지를 단말기로 전송할 때, 이미지 배열을 새로 형성하여 전송하고 사용자는 형성된 이미지 중에서 선정한 인증 이미지에 패스워드를 이동시켜 맞추는 형식으로 입력을 하여 서버로 전송하면, 서버에서는 이동값과 서버의 이미지 배열을 이용하여 사용자가 입력한 패스워드를 계산한 후 아이디와 패스워드의 일치 여부를 확인하는 방식으로 인증 방식을 구현함으로써, 네트워크 후킹, 피싱과 파밍 및 키로그로부터 패스워드가 노출되지 않도록 한다.That is, in the present invention, when the user first receives an ID and transmits the GOTP image selected by the user from the server to the terminal, a new image array is formed and transmitted and the user moves the password to the selected authentication image among the formed images. After inputting to the server and sending it to the server, the server calculates the password entered by the user using the moving value and the image array of the server, and then implements an authentication method by checking whether the ID and password match. Prevents passwords from being exposed from phishing, pharming, and keylogs
또한, 본 발명은 인증보완수단으로 사용자의 입력패턴을 검사하여 추가인증이 이루어지도록 구성하되, 다수의 인증보완수단들 중에 랜덤 선별에 의해 추가인증을 수행함으로 인하여, 사용자의 입력패턴중 어느 하나가 변화되는 경우에도, 다수회에 걸친 인증 시도에 따라 인증이 허용될 수 있도록 한다.In addition, the present invention is configured to perform additional authentication by checking the input pattern of the user as the authentication supplement means, by performing additional authentication by random selection of a plurality of authentication supplement means, any one of the user input pattern Even if the change is made, the authentication can be allowed in accordance with multiple authentication attempts.
즉, 사용자 사용 단말기가 변경된 경우(특히 모바일 단말기의 경우 단말기 크기가 변경된 경우), 기존 입력패턴 중 일부가 변경될 가능성이 있다. 이때에 다수회의 인증시동에 따라 변경되지 않은 인증 보완수단이 랜덤 선택됨에 따라 인증이 수행될 수 있고, 이에 따른 입력값이 누적 저장됨에 따라 누적된 입력 패턴의 저장값이 변경되어 새로운 입력패턴에 따라 추가 인증이 수행될 수 있다.That is, when the user use terminal is changed (particularly, when the size of the terminal is changed in the case of a mobile terminal), some of the existing input patterns may be changed. At this time, the authentication may be performed by randomly selecting an authentication supplement means that has not changed according to a plurality of authentication start-ups. As the input values are accumulated and stored, the stored value of the accumulated input pattern is changed and according to the new input pattern. Additional authentication may be performed.
그리고 상기 인증보완수단에 의한 추가 인증이 서버에서 이루어지고, 사용자의 누적된 입력패턴이 사용자 단말기에 저장되지 않으므로, 단말기의 교체에 의해 추가 인증을 위한 데이터가 유실되는 것으로 방지할 수 있을 뿐만 아니라, 보안에 비교적 취약한 사용자 단말기가 해킹당하는 경우에도, 추가 인증에 의해 보안이 안정적으로 확보되는 효과를 나타낼 수도 있다.And since the additional authentication by the authentication supplement means is made in the server, and the accumulated input pattern of the user is not stored in the user terminal, not only can the data for additional authentication be prevented from being replaced by the replacement of the terminal, Even when a user terminal relatively vulnerable to security is hacked, security may be stably secured by additional authentication.
도 2 내지 도 7은 본 발명에 따른 실시예를 나타내는 도면이다. 도 2 내지 도 7을 참조하면, 본 발명의 그래픽 오티피를 이용한 사용자 인증 방법은 그래픽 오티피 인증 요청신호를 아이디 또는 개인 식별 코드를 이용하고, 이동시키는 값이 인증 아이콘 또는 패스워드 둘 다 가능하다.2 to 7 show an embodiment according to the present invention. 2 to 7, in the user authentication method using the graphic OTP of the present invention, a value for moving the graphic OTP authentication request signal using an ID or a personal identification code may be both an authentication icon or a password.
또한, 본 발명은 사용하는 패스워드 대신, 주민번호, 아이핀, 계좌번호 등 다양한 형태의 개인 인증 값을 사용할 수 있고, 사용자가 인증 아이콘을 이동시켜 일치하는 과정에서 한 글자마다 이미지 배열 섞기를 진행할 수 있다.In addition, the present invention may use various types of personal authentication values such as social security number, i-pin, account number, etc., instead of the password to be used, and the user may proceed to mix the image array for each character in the matching process by moving the authentication icon. .
본 발명의 배열 섞기는 패스워드에 사용하는 값을 섞을 수 있고, 패스워드에 이동 편차를 확인 가능하게 숫자를 부가적으로 표시할 수 있다.The shuffler of the present invention can shuffle the values used for the password, and additionally display the numbers so as to confirm the movement deviation in the password.
본 발명의 인증 아이콘은 숫자나 문자 등의 이용이 가능하고, 인증 페이지에 광고창을 붙여 광고 효과를 기대할 수 있으며, 인증 후 동영상 광고 등을 시청할 수도 있다.The authentication icon of the present invention can be used for numbers, letters, and the like, and can be expected to have an advertisement effect by attaching an advertisement window to the authentication page, and can also watch a video advertisement after authentication.
본 발명은 이동값을 암호화할 수 있고, 이동방법에 마우스 힐, 키보드 숫자, 방향키 등을 포함하며, 보안강화를 위해 보안키를 사용자 단말기에 전송하고 인증값 전송시 함께 전송하여 등록된 사용자임을 확인할 수도 있다.The present invention can encrypt the movement value, and includes a mouse heel, a keyboard number, a direction key, and the like in the movement method, and transmits the security key to the user terminal for enhanced security and transmits the authentication value together to confirm that the user is a registered user. It may be.
따라서, 본 발명에 따른 그래픽 오티피를 이용한 사용자 인증 방법은 사용자가 선택한 고유한 이미지만으로 구성된 새로운 순서의 이미지 배열을 이용하여 서버에서 사용자 단말기에 전송함으로써, 사용자는 가짜 사이트 여부를 확인할 수 있어 피싱으로부터 안전하고, 이미지 배열이 매순간마다 가변적이므로 패스워드에 해당하는 이미지를 이동시켜 아이콘과 일치시키기 때문에 이동 편차 또한 가변적이므로 후킹, 훔쳐보기 등에도 노출되지 않아 GOTP의 불법 도용을 방지할 수 있는 장점이 있으며, 사용자의 단말기에서 패스워드가 표현된 이미지와 인증 이미지를 이동시켜 일치시키는 방법을 지원하므로 사용자의 입력시 오류를 미연에 방지할 수 있다.Therefore, in the user authentication method using the graphic OTP according to the present invention, by transmitting to the user terminal from the server using a new sequence of images consisting of only the unique image selected by the user, the user can check whether or not a fake site from phishing It is safe and the image array is variable every moment, so the image corresponding to the password is moved to match the icon, so the movement deviation is also variable, so it is not exposed to hooking or peeping, which can prevent illegal theft of GOTP. Since a user's terminal supports a method of moving and matching an image in which a password is expressed and an authentication image, an error in user input can be prevented in advance.
본 발명은 이상에서 살펴본 바와 같이 바람직한 실시예를 들어 도시하고 설명하였으나, 상기한 실시예에 한정되지 아니하며 본 발명의 정신을 벗어나지 않는 범위 내에서 당해 발명이 속하는 기술분야에서 통상의 지식을 가진 자에 의해 다양한 변경과 수정이 가능할 것이다.Although the present invention has been shown and described with reference to the preferred embodiments as described above, it is not limited to the above embodiments and those skilled in the art without departing from the spirit of the present invention. Various changes and modifications will be possible.
본 발명은 아이디와 패스워드 인증을 통해 사용자 인증을 하는 경우에 사용자의 아이디를 입력한 후 서버에서 제공되는 복수의 이미지 중에서 사용자가 선택한 키 아이콘과 패스워드를 일치시킴으로써 사용자를 인증할 수 있는 그래픽 오티피를 이용한 사용자 인증 방법에 관한 것으로, 본 발명은 인증시마다 원타임 생성된 재배열 이미지 그룹을 통해 사용자가 사용자 키 이미지를 홀키 이미지에 매칭시켜 인증을 수행함에 있어, 사용자의 입력패턴에 따라 추가적인 인증보안을 실시하여 보안이 강화된 GOTP 인증방법을 제공하여 각 사용자의 GOTP 인증입력의 패턴(성향)을 통해 GOTP 인증값의 일치여부 뿐만아니라 입력 패턴에 따라 추가적인 인증 보완을 수행하므로 사용자의 개인적인 사용 성향에 따라 GOTP 인증의 보안성이 향상되는 장점이 있다.According to the present invention, in the case of authenticating a user through ID and password authentication, a user inputs a user's ID, and then a graphic OTIF that can authenticate the user by matching a key icon selected by the user and a password among a plurality of images provided by the server. The present invention relates to a user authentication method using the present invention. When the user performs authentication by matching a user key image with a hole key image through a one-time generated rearranged image group, additional authentication security is performed according to a user input pattern. By providing security enhanced GOTP authentication method, GOTP authentication value of each user is not only matched through the pattern (propensity) of GOTP authentication, but additional authentication supplement is performed according to the input pattern. There is an advantage that the security of authentication is improved.

Claims (4)

  1. 그래픽 오티피를 이용한 사용자 인증 방법에 있어서,In the user authentication method using a graphic OTP,
    (A) 서버가 사용자의 단말기로부터 그래픽 오티피 인증 요청신호를 수신하여 동기화 코드를 생성하는 단계와;(A) the server receiving the graphic OTP authentication request signal from the user terminal to generate a synchronization code;
    (B) 상기 서버가 생성된 상기 동기화 코드를 이용하여 상기 사용자가 저장한 이미지의 순서를 변경하여 사용자키 이미지와 홀키 이미지를 포함한 새로운 배열의 재배열 이미지 그룹을 생성하는 단계와;(B) generating a rearranged image group of a new arrangement including a user key image and a hall key image by changing the order of images stored by the user using the generated synchronization code by the server;
    (C) 상기 서버가 생성된 상기 재배열 이미지 그룹을 상기 사용자의 단말기로 전송하여 상기 사용자 단말기 상에서 출력하는 단계와;(C) the server transmitting the generated rearranged image group to the user's terminal and outputting the generated rearranged image group on the user terminal;
    (D) 상기 서버가 인증 보완 수단으로 설정된 수단들 중 하나 이상을 무작위로 선별하는 단계와;(D) the server randomly selecting one or more of the means set as authentication supplement means;
    (E) 상기 사용자 단말기가 패스워드 입력 이동경로 및 인증보완수단으로 설정된 입력 패턴을 수신받아, 상기 입력 이동경로와 상기 재배열 이미지 그룹 배열상의 인증 이미지 위치를 비교하여 인증여부 판별하는 단계와;(E) receiving, by the user terminal, an input pattern set as a password input movement path and an authentication supplement means, and comparing the input movement path with the position of the authentication image on the rearranged image group arrangement to determine whether to be authenticated;
    (F) 상기 사용자 단말기가 상기 인증여부 및 상기 입력 패턴을 상기 서버로 전송하는 단계와;(F) the user terminal transmitting the authentication status and the input pattern to the server;
    (G) 상기 서버가 상기(D)단계에서 선별된 인증 보완 수단의 인증값을 독출하는 단계와;(G) the server reading the authentication values of the authentication supplement means selected in the step (D);
    (F) 상기 서버가 상기 입력패턴과 상기 인증값을 비교하여 추가인증 여부를 판별하는 단계와;(F) comparing, by the server, the input pattern with the authentication value to determine whether to perform additional authentication;
    (H) 상기 서버가 상기 추가 인증여부를 사용자 단말기로 전송하고, 추가 인증이 승인된 경우, 상기 입력패턴을 누적하여 저장하는 단계를 포함하여 수행됨을 특징으로 하는 그래픽 오티피를 이용한 사용자 인증 방법.And (H) the server transmitting the additional authentication to the user terminal, and if the additional authentication is approved, accumulating and storing the input pattern.
  2. 제 1 항에 있어서,The method of claim 1,
    상기 인증값은,The authentication value is,
    사용자가 입력한 입력패턴의 누적 평균값에 허용 오차 범위를 포함한 범위값임을 특징으로 하는 그래픽 오티피를 이용한 사용자 인증 방법.A user authentication method using a graphic OTP, characterized in that the range value including the tolerance range in the cumulative average value of the input pattern input by the user.
  3. 제 1 항 또는 제 2 항에 있어서,The method according to claim 1 or 2,
    상기 인증보완수단은, The authentication supplement means,
    드래그 경로 및 드래그 속도를 포함하여 구성됨을 특징으로 하는 그래픽 오티피를 이용한 사용자 인증 방법.A user authentication method using a graphic OTP comprising a drag path and a drag speed.
  4. 제 3 항에 있어서,The method of claim 3, wherein
    상기 인증보완수단은,The authentication supplement means,
    상기 사용자 단말기가 터치패널이 구비된 경우, 터치압을 포함하여 구성됨을 특징으로 하는 그래픽 오티피를 이용한 사용자 인증 방법.If the user terminal is provided with a touch panel, the user authentication method using a graphic TP, characterized in that it comprises a touch pressure.
PCT/KR2015/008573 2015-08-18 2015-08-18 User authentication method using graphic otp WO2017030210A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/KR2015/008573 WO2017030210A1 (en) 2015-08-18 2015-08-18 User authentication method using graphic otp

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/KR2015/008573 WO2017030210A1 (en) 2015-08-18 2015-08-18 User authentication method using graphic otp

Publications (1)

Publication Number Publication Date
WO2017030210A1 true WO2017030210A1 (en) 2017-02-23

Family

ID=58052073

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2015/008573 WO2017030210A1 (en) 2015-08-18 2015-08-18 User authentication method using graphic otp

Country Status (1)

Country Link
WO (1) WO2017030210A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112738561A (en) * 2020-12-03 2021-04-30 西安慧博文定信息技术有限公司 OTP (one time programmable) image encryption and verification based method and equipment
WO2022087432A1 (en) * 2020-10-23 2022-04-28 Capital One Services, Llc Multi-factor authentication using symbols

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20080011362A (en) * 2007-09-28 2008-02-04 (주)민인포 Method for hacking protection of gotp
US20100180336A1 (en) * 2009-01-13 2010-07-15 Nolan Jones System and Method for Authenticating a User Using a Graphical Password
US20120159616A1 (en) * 2010-12-16 2012-06-21 Research In Motion Limited Pressure sensitive multi-layer passwords
US20120223890A1 (en) * 2010-09-01 2012-09-06 Nokia Corporation Mode Switching
US20130123007A1 (en) * 2006-11-14 2013-05-16 Igt Behavioral biometrics for authentication in computing environments

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130123007A1 (en) * 2006-11-14 2013-05-16 Igt Behavioral biometrics for authentication in computing environments
KR20080011362A (en) * 2007-09-28 2008-02-04 (주)민인포 Method for hacking protection of gotp
US20100180336A1 (en) * 2009-01-13 2010-07-15 Nolan Jones System and Method for Authenticating a User Using a Graphical Password
US20120223890A1 (en) * 2010-09-01 2012-09-06 Nokia Corporation Mode Switching
US20120159616A1 (en) * 2010-12-16 2012-06-21 Research In Motion Limited Pressure sensitive multi-layer passwords

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2022087432A1 (en) * 2020-10-23 2022-04-28 Capital One Services, Llc Multi-factor authentication using symbols
US11888841B2 (en) 2020-10-23 2024-01-30 Capital One Services, Llc Multi-factor authentication using symbols
CN112738561A (en) * 2020-12-03 2021-04-30 西安慧博文定信息技术有限公司 OTP (one time programmable) image encryption and verification based method and equipment

Similar Documents

Publication Publication Date Title
US8826406B2 (en) Password security input system using shift value of password key and password security input method thereof
KR101425171B1 (en) Apparatus and method for input user password
US9684780B2 (en) Dynamic interactive identity authentication method and system
US9367679B2 (en) Input information authentication device, server device, input information authentication system, and program of device
US8495732B2 (en) Entering an identifier with security improved by time based randomization of input steps
KR100960517B1 (en) user authentication method of having used graphic OTP and user authentication system using the same
US10574647B2 (en) User authentication method and system for implementing same
US20230334452A1 (en) Security key input system and method using one-time keypad
WO2017030210A1 (en) User authentication method using graphic otp
KR20100095346A (en) Method of user authentication using the virtual keyboard and computer readable storage medium storing program for executing method thereof
KR101474924B1 (en) Locking system and method using dial
Revathy et al. Advanced safe PIN-Entry against human shoulder-surfing
KR100927280B1 (en) How to prevent secure string exposure using fake rounds
CN105678131B (en) Information processing method, massaging device, mobile terminal and server
Salman et al. A graphical PIN entry system with shoulder surfing resistance
KR20100070741A (en) User authentication method using graphic one-time password
Mulwani et al. 3LAS (three level authentication scheme)
KR20080011362A (en) Method for hacking protection of gotp
KR20100070708A (en) User authentication method using graphic one-time password
KR100844195B1 (en) A user authentication method of having used graphic OTP
JP5774461B2 (en) INPUT INFORMATION AUTHENTICATION DEVICE, SERVER DEVICE, INPUT INFORMATION AUTHENTICATION SYSTEM, AND DEVICE PROGRAM
KR20080080064A (en) Method for user authentication using graphic otp
KR101063523B1 (en) User authentication method using a user authentication password consisting of two or more characters
KR101659809B1 (en) Apparatus for input password for user authentication and method for thereof and system for thereof
WO2020040395A1 (en) System for preventing smudge and shoulder surfing attacks on mobile device and user pattern authentication method

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15901750

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 11/07/2018)

122 Ep: pct application non-entry in european phase

Ref document number: 15901750

Country of ref document: EP

Kind code of ref document: A1