WO2018151426A1

WO2018151426A1 - Method for superseding log-in of user through pki-based authentication by using merkle tree structure in utxo-based protocol, and server employing same

Info

Publication number: WO2018151426A1
Application number: PCT/KR2018/000913
Authority: WO
Inventors: 나승일; 김희순; 홍재우; 어준선
Original assignee: 주식회사 코인플러그
Priority date: 2017-02-14
Filing date: 2018-01-19
Publication date: 2018-08-23
Also published as: KR101816652B1

Abstract

The present invention provides a method for superseding a log-in through PKI-based authentication with respect to a log-in request of a user by using a blockchain database. According to the method of the present invention, once information requesting superseding of a log-in through an authentication app is obtained from a service provision app on a user terminal, a service provision server transfers authentication request response information to the service provision app and, after an authentication redirection request thereof is transferred to the authentication app and then server challenge request information is obtained, server challenge request response information is transferred to the authentication app, thereby supporting the determination as to whether or not certificates of the server and the app are valid, an authentication result message including information on the validity is obtained from an authentication server, a predetermined access token is transferred to the service provision app, and thereby the log-in is handled by providing support such that a service can be used.

Description

How to substitute user login through PKI based authentication using Merkle Tree structure in UTXO based protocol and server using the same

In the present invention, a login is performed through public key infrastructure (PKI) -based authentication for a user's login request for using a service provided by a service providing server using a Merkle tree structure in an UTXO (unspent transaction output) based protocol. The present invention relates to a service providing server and an authentication server for performing the same.

OAuth 2.0 is a service for subscribing to a user's personal account, which is a standardized authentication method in web, mobile, and desktop applications, and an open protocol for secure authentication. Since there was no standard of authentication method before OAuth was used, the combination of ID and password, which is the existing basic authentication, was used, which was weak in security. In the case of non-basic authentication, each application identified the user according to their own company's method, including Google's AuthSub, AOL's OpenAuth, Yahoo's BBAuth, and Amazon's Web Services API. OAuth is an authentication standard that standardizes these different authentication methods. With OAuth, applications that share this authentication do not need separate authentication. This makes it possible to integrate and use multiple applications. OAuth 2.0 is the latest version of OAuth. This OAuth 2.0 method is outlined as follows.

When a user wants to use a service provided by a service providing server, first, an authentication request for login is transmitted to the service providing server from a user terminal which is a terminal of the user according to the user's operation.

The service providing server receiving the authentication request transmits the login information to the authentication server, and the authentication server verifies the login information and returns the authorization information to the service providing server when the verification is successfully completed.

According to the approval information, the service providing server transmits predetermined approval delivery information to the user terminal, and the user terminal receiving the received information transmits the information requesting an access token to the authentication server, thereby accessing issued by the authentication server. Obtain a token. Then, the user terminal may request a resource related to the service from the service providing server with the access token, and thus the login agent procedure is completed.

On the other hand, the service providing server may request a verification request for the access token to the authentication server to confirm whether the access token obtained from the user terminal is valid, and in response, the authentication server may return the user's attribute information.

In the conventional OAuth, the authentication procedure is performed only by checking whether the user ID (user identification information) and the password match, and there is still a problem that the security is weak when the user ID and password are stolen. Certificates that can be introduced to increase security, such as conventional public certificates, generally require a high cost of issuance, and are subject to restrictions on use. The blockchain newly replaces conventional public certificates, although security and usability are strong. It would be desirable to use an underlying certificate.

Therefore, the present inventor is not limited to the conventional OAuth 2.0 protocol, but by using a blockchain-based technology, the security is more enhanced than the conventional OAuth 2.0 protocol, and a method capable of substituting authentication of individuals or servers of various structures. I would like to propose.

The present invention is to provide a method and a server for enhancing the security and usability of the conventional OAuth described above, the object of the present invention is to provide a technical method that can replace the existing method at a low cost while strong security and usability. There is.

Specifically, the present invention provides a method of ultimately preventing forgery by referring to certificate-related information recorded in a private / public blockchain database of virtual currency and recording information on the authentication result in such a blockchain database. It aims to do it.

In addition, the present invention aims to increase security by verifying not only a certificate for a user individual using multiple signatures but also a certificate of a service providing server that is a target of a service request.

Meanwhile, an object of the present invention is to provide a temporary ID, so that a service can be provided even for a user who does not have a user ID.

In addition, another object of the present invention is to ensure the integrity (integrity) of the database by performing verification on the relevant information using the transaction recorded in the blockchain database as described above.

Still another object of the present invention is to provide a system for providing a login agent service based on a blockchain having a means for performing authentication for an individual or a server having various structures.

The characteristic structure of this invention for achieving the objective of this invention mentioned above, and realizing the characteristic effect of this invention mentioned later is as follows.

According to an aspect of the present invention, there is provided a method for performing login through a public key infrastructure (PKI) based on a login request of a user for using a service provided by a service providing server using a blockchain database. The method may include (a) at least one neighboring hash value that matches a first specific hash value that is a hash value of a server certificate registration transaction that is a value of a server certificate that is a certificate of the service providing server or a processed value-the The neighbor hash value may include (i) a hash value of a specific server certificate registration transaction that is information of or processed by a specific server certificate, (ii) a hash value of a specific application certificate registration transaction that is information of a specific application certificate or a processed value thereof, and (iii) a hash of a particular authentication result message, or a specific authentication result transaction, which is a processed value. One of the hash values containing the value-an application certificate registration transaction, which is a first representative hash value generated by hashing together or a value of the first representative hash value, and a certificate of an authentication application executed by the user terminal. A second representative hash value or a value obtained by processing the second representative hash value generated by hashing together at least one neighboring hash value matching the second specific hash value, which is a hash value, is recorded in a predetermined blockchain database. In the state in which the authentication request information, which is information for requesting the substitution of the login through the authentication application, is obtained from the service providing application executed by the user terminal, the service providing server determines whether the substitution of the login is possible. The service requests the authentication request response information as a result of the determination. Delivering to the providing application; (b) if the server challenge request information including the variable authentication value generated by the authentication server is obtained from the authentication application after the authentication redirection request of the service providing application is transmitted to the authentication application, The service providing server forwards the server challenge request response information corresponding to the server challenge request information to the authentication application, causing the authentication server to refer to the predetermined blockchain database to determine whether the server certificate and the application certificate are valid. Assisting to determine whether or not; And (c) an authentication result message including whether the server certificate and the application certificate are valid is obtained from the authentication server, and the authentication result message is an authentication success message indicating that the server certificate and the application certificate are valid. And handling, by the service providing server, the login by passing a predetermined access token to the service providing application to enable the service providing application to use the service through the access token. do.

According to another aspect of the present invention, there is provided a method for performing login through a public key infrastructure (PKI) based on a login request of a user for using a service provided by a service providing server using a blockchain database. The method may include (a) at least one neighboring hash value that matches a first specific hash value that is a hash value of a server certificate registration transaction that is a value of a server certificate that is a certificate of the service providing server or a processed value-the The neighbor hash value may include (i) a hash value of a specific server certificate registration transaction that is information of or processed by a specific server certificate, (ii) a hash value of a specific application certificate registration transaction that is information of a specific application certificate or a processed value thereof, and (iii) the resolution of a specific authentication result transaction, which is a specific authentication result message or a processing value thereof. An application certificate registration transaction, which is a first representative hash value generated by hashing together or a value obtained by processing the first representative hash value, and a certificate of an authentication application executed by the user terminal. A second representative hash value or a value obtained by processing the second representative hash value generated by hashing together at least one neighboring hash value matching the second specific hash value, which is a hash value, is recorded in a predetermined blockchain database. In the state of being present, the challenge initiation request information is obtained from the authentication application executed by the user terminal in response to an authentication redirection request corresponding to the authentication request information, which is information for requesting the substitution of the login through the authentication application. When the authentication server, the challenge Generating a variable authentication value corresponding to the request information and passing the challenge initiation request response information including the variable authentication value to the authentication application, thereby allowing the authentication application to verify whether a server certificate which is a certificate of the service providing server is valid. Supporting server challenge request response information corresponding to server challenge request information for determining whether to obtain from the service providing server; (b) when response request information including a multi-signature value, which is a value obtained by signing the server challenge request response information using a private key of an application certificate which is a certificate of the authentication application, is obtained from the authentication application, Determining, by the server, whether the server certificate and the application certificate are valid using the server certificate registration transaction and the application certificate registration transaction obtained with reference to the response request information, the predetermined blockchain database; And (c) the authentication server forwarding an authentication result message including whether the server certificate is valid to at least one of the authentication application and the service providing server, indicating that the authentication result message indicates that the server certificate is valid. In the case of the authentication success message, the service providing server supports the transfer of a predetermined access token to the service providing application executed by the user terminal, thereby allowing the service providing application to download the service through the access token. Processing the login by making it available for use.

According to another aspect of the present invention, there is provided a method for performing a login through a public key infrastructure (PKI) based on a login request of a user for using a service provided by a service providing server using a blockchain database. Provided, the method comprises: (a) at least one neighbor that matches a particular hash value that is information of an application certificate that is a certificate of a second application executed by the user terminal or a hash value of an application certificate registration transaction that is a processed value; Hash value-The neighbor hash value is (i) a hash value of a specific application certificate registration transaction, which is information of a specific application certificate or a processed value thereof, and (ii) a hash value of a specific authentication result message or a specific authentication result transaction, which is a processed value thereof. Is at least one of hash values containing- Representation of a login through the second application from a first application executed by the user terminal in a state where a representative hash value generated by hash operation or a value obtained by processing the representative hash value is recorded in a predetermined blockchain database. When the authentication request information including the user identification information for identifying the user is obtained from the second application that has received an authentication redirection request, which is information requesting the information, the service providing server determines the user identification information. Delivering challenge initiation request information including an authentication server; (b) when the challenge initiation request response information including the variable authentication value generated by the authentication server is obtained in response to the challenge initiation request information, the service providing server receives the application challenge request information including the variable authentication value. Delivering to the second application to enable the second application to generate a value signed by the variable authentication value with a private key of the application certificate; (c) when the application challenge request response information including a value signed with the private key of the application certificate is obtained, the service providing server transmits the application challenge request response information to the authentication server, thereby authenticating the authentication. Assisting a server to determine whether the application certificate is valid with reference to the predetermined blockchain database; And (d) an authentication result message including whether the application certificate is valid from the authentication server is obtained, and if the authentication result message is an authentication success message indicating that the application certificate is valid, the service providing server is temporary. Passing an ID (temporary ID) to the second application, causing the first application to access (i) the temporary ID and (ii) the authentication success message passed from the second application to the first application. Processing the login by supporting the use of the service through an access token.

Again, according to one aspect of the present invention, a method for performing login through a public key infrastructure (PKI) based on a login request of a user for using a service provided by a service providing server using a blockchain database As provided herein, the method comprises: (a) at least one matching information of an application certificate which is a certificate of a second application executed by the user terminal or a specific hash value which is a hash value of an application certificate registration transaction which is a processed value; Neighbor Hash Value-The neighbor hash value is (i) a hash value of a specific application certificate registration transaction, which is information of or processed by a specific application certificate, and (ii) a hash of a specific authentication result message, which is a specific authentication result message or a processed value. Is at least one of the hash values containing the value Representation of a login through the second application from a first application executed by the user terminal in a state where a representative hash value generated by hash operation or a value obtained by processing the representative hash value is recorded in a predetermined blockchain database. The user identification information is obtained from the service providing server that obtains authentication request information including user identification information for identifying the user from the second application that has received an authentication redirection request. Generating, by the authentication server, a variable authentication value in response to the challenge start request information when the challenge start request information is obtained; (b) forwarding the challenge initiation request response information including the generated variable authentication value to the service providing server so that the service providing server delivers the application challenge request information including the variable authentication value to the second application. Supporting the second application to generate a value signed by the variable authentication value with a private key of the application certificate; (c) when application challenge request response information including a value signed with a private key of the application certificate is obtained, the authentication server refers to the application challenge request response information and the predetermined blockchain database. Determining whether the application certificate is valid using the obtained application certificate registration transaction; And (d) the authentication server forwards an authentication result message including whether the application certificate is valid to the service providing server and the second application, causing the service providing server to send the authentication result message to the application certificate. (I) said temporary application passed from said second application to said first application and supporting said temporary application to said second application if the authentication success message indicates that is valid; Processing the login by supporting the service via an ID and (ii) an access token included in the authentication success message.

According to another aspect of the present invention, a method for performing login through a public key infrastructure (PKI) based on a login request of a user for using a service provided by a service providing server using a blockchain database is provided. The service providing server to perform is provided, the server, at least one matching the first specific hash value of the information of the server certificate that is the certificate of the service providing server or the hash value of the server certificate registration transaction that is a processed value Neighbor Hash Value-The neighbor hash value is (i) a hash value of a specific server certificate registration transaction, which is information of a specific server certificate or a processed value thereof, and (ii) a specific application certificate registration transaction, which is information of a specific application certificate or a processed value thereof. A hash value of, and (iii) a specific authentication result message or A first representative hash value generated by a hash operation together or a value processed by the first representative hash value, and an authentication application executed by the user terminal. A second representative hash value or a value obtained by processing the second representative hash value generated by hashing together at least one neighboring hash value matching the second specific hash value that is a hash value of an application certificate registration transaction that is a certificate of A communication unit which obtains, from the service providing application executed by the user terminal, authentication request information, which is information for requesting to substitute the login through the authentication application, while being recorded in a predetermined blockchain database; And (i) when the authentication request information is obtained, transferring authentication request response information, which is a result of determining whether the login is possible, to the service providing application, (ii) an authentication redirection request of the service providing application ( After authentication redirection request is transmitted to the authentication application, if server challenge request information including a variable authentication value generated by the authentication server is obtained from the authentication application, server challenge request response information corresponding to the server challenge request information is obtained. Sending the authentication application to the authentication application to enable the authentication server to determine whether the server certificate and the application certificate are valid by reference to the predetermined blockchain database, and (iii) from the authentication server. An authentication result message including a server certificate and whether the application certificate is valid is obtained, and if the authentication result message is an authentication success message indicating that the server certificate and the application certificate are valid, predetermined access to the service providing application. And a processor that carries a process of handling the login by passing an access token to enable the service providing application to make the service available through the access token.

According to another aspect of the present invention, a method for performing login through a public key infrastructure (PKI) based on a login request of a user for using a service provided by a service providing server using a blockchain database is provided. An authentication server for performing is provided, wherein the server includes at least one neighboring hash that matches information of a server certificate that is a certificate of the service providing server or a first specific hash value that is a hash value of a server certificate registration transaction that is a processed value. Value-The neighbor hash value is (i) a hash value of a specific server certificate registration transaction, which is information of or processed by a particular server certificate, (ii) a hash of a specific application certificate registration transaction, which is information of a particular application certificate or a processed value thereof. Value, and (iii) a specific authorization result message or A first representative hash value generated by a hash operation together or a value processed by the first representative hash value, and a certificate of an authentication application executed by the user terminal. A second representative hash value or a value obtained by processing the second representative hash value generated by hashing together at least one neighboring hash value matching the second specific hash value that is a hash value of an in-application certificate registration transaction is predetermined. In the state of being recorded in the blockchain database, a challenge from an authentication application executed by the user terminal in response to an authentication redirection request corresponding to authentication request information, which is information for requesting proxy for login through the authentication application. Communication to obtain start request information .; And (i) when the challenge initiation request information is obtained, generating a variable authentication value corresponding to the challenge initiation request information, and transferring the challenge initiation request response information including the variable authentication value to the authentication application, thereby authenticating the authentication. A process for enabling an application to obtain server challenge request response information corresponding to server challenge request information for determining whether a server certificate which is a certificate of the service providing server is valid, (ii) the authentication application; If response request information including a multi-signature value, which is a value of signing the server challenge request response information by using a private key of an application certificate that is a certificate of, is obtained from the authentication application, the response request information and the predetermined Blockchain Database A process of determining whether the server certificate and the application certificate are valid using the server certificate registration transaction and the application certificate registration transaction obtained with reference to the license; and (iii) whether the server certificate is valid. Causing the service providing server to be executed by the user terminal when the authentication result message is an authentication success message indicating that the server certificate is valid by transferring an authentication result message to at least one of the authentication application and the service providing server. Handling the login by supporting a service providing application to pass a predetermined access token to the service providing application to enable the service providing application to use the service through the access token. And a processor to perform the process.

According to another aspect of the present invention, a method for performing login through a public key infrastructure (PKI) based on a login request of a user for using a service provided by a service providing server using a blockchain database is provided. The service providing server to perform is provided, the server is matched with a specific hash value of the information of the application certificate, which is a certificate of the second application executed by the user terminal or a hash value of the application certificate registration transaction that is a processed value thereof. At least one neighbor hash value-The neighbor hash value is (i) a hash value of a specific application certificate registration transaction, which is information of a specific application certificate or a processed value thereof, and (ii) a specific authentication result message or a specific authentication result which is a processed value thereof. The solution containing the hash value of the transaction At least one of the values-from the first application executed by the user terminal in a state in which a representative hash value generated by hashing together or a value obtained by processing the representative hash value is recorded in a predetermined blockchain database; A communication unit configured to obtain authentication request information including user identification information for identifying the user from the second application that has received an authentication redirection request, which is information for requesting a proxy for login through an application; And (i) when the authentication request information is obtained, transferring challenge initiation request information including the user identification information to an authentication server, and (ii) variable authentication generated by the authentication server in response to the challenge initiation request information. When the challenge initiation request response information including the value is obtained, the application transmits the application challenge request information including the variable authentication value to the second application so that the second application sends the variable authentication value to the private key of the application certificate ( a process for supporting generation of a value signed with a private key; (iii) if application challenge request response information including a value signed with a private key of the application certificate is obtained, the application challenge request response information is obtained. Forwarding to the authentication server to the authentication server A process of assisting to determine whether the application certificate is valid with reference to the predetermined blockchain database, and (iv) an authentication result message including whether the application certificate is valid from the authentication server, If the authentication result message is an authentication success message indicating that the application certificate is valid, a temporary ID is transmitted to the second application, so that the first application is passed from the second application to the first application. And a processor for performing the process of processing the login by supporting the service through (i) the temporary ID and (ii) an access token included in the authentication success message.

According to another aspect of the present invention, a method for performing login through a public key infrastructure (PKI) based on a login request of a user for using a service provided by a service providing server using a blockchain database is provided. An authentication server for performing is provided, the server comprising at least one matching information of an application certificate, which is a certificate of a second application executed by a user terminal, or a specific hash value, which is a hash value of an application certificate registration transaction, which is a processed value. Neighbor hash value of-The neighbor hash value of (i) the hash value of a specific application certificate registration transaction that is the information of the application or the processing of the (i) and the (ii) the specific authentication result message or a specific authentication result of the transaction Of hash values containing hash The second application from the first application executed by the user terminal in a state in which a representative hash value generated by hashing together or a value obtained by processing the representative hash value is recorded in a predetermined blockchain database. From the service providing server that obtains authentication request information including user identification information for identifying the user from the second application received an authentication redirection request, which is information requesting to act on behalf of the login. A communication unit for obtaining challenge initiation request information including user identification information; And (i) when the challenge initiation request information is obtained, generating a variable authentication value in response to the challenge initiation request information, and (ii) generating the challenge initiation request response information including the generated variable authentication value. By supporting the service providing server to deliver the application challenge request information including the variable authentication value to the second application so that the second application sends the variable authentication value to the private key of the application certificate. And (iii) if application challenge request response information including a value signed with a private key of the application certificate is obtained, the application challenge request response information and the predetermined value; By referring to the blockchain database of A process of determining whether the application certificate is valid using an obtained application certificate registration transaction, and (iv) delivering an authentication result message to the service providing server and the second application including whether the application certificate is valid; To allow the service providing server to pass a temporary ID to the second application if the authentication result message is an authentication success message indicating that the application certificate is valid and cause the first application to: A process for processing the login by supporting the use of the service through an access token included in the temporary ID and the authentication success message transmitted from a second application to the first application; It includes documents.

According to the method of the present invention, there is an effect that can replace the existing OAuth at a low cost while strong security and usability.

In addition, according to the method of the present invention, there is an effect that a high security level through high level encryption, multiple signatures, issuance of temporary ID through cross-validation, and the like.

In addition, according to the method of the present invention, the forgery of the certificate-related information is essentially prevented, thereby ensuring the reliability.

BRIEF DESCRIPTION OF THE DRAWINGS The following drawings, which are attached to be used in the description of the embodiments of the present invention, are merely some of the embodiments of the present invention, and may be used to those skilled in the art to which the present invention pertains (hereinafter referred to as "normally skilled person"). In other drawings, other drawings may be obtained based on these drawings without inventive work being made.

1 is a conceptual diagram schematically illustrating an exemplary configuration of a service providing server, an authentication server, and a user terminal for performing a method for substituting login according to the first to third embodiments of the present invention.

FIG. 2 is a sequence diagram exemplarily illustrating a method for performing login through multiple signatures using a server certificate and an application certificate according to the first to third embodiments of the present invention.

3 is a sequence diagram exemplarily illustrating a method for substituting login using multiple information in the absence of a user ID according to the first to third embodiments of the present invention.

4 and 5 are conceptual views schematically illustrating a process in which transactions are recorded in a predetermined database according to the second embodiment of the present invention.

6 and 7 exemplarily illustrate a smart contract (source code) for limiting the number of times of use of a certificate to initNumber and 10 according to the third embodiment of the present invention.

DETAILED DESCRIPTION The following detailed description of the invention refers to the accompanying drawings that show, by way of illustration, specific embodiments in which the invention may be practiced to clarify the objects, technical solutions and advantages of the invention. These embodiments are described in sufficient detail to enable those skilled in the art to practice the invention.

As used herein, the term “database” refers to a system of data, that is, a set of integrated managed information and a system for managing the same, and includes at least some of a general relational database, a MongoDB database, and a blockchain database. One is not limited thereto. In the present specification, for convenience of description, a blockchain database of virtual currency is described, but a person skilled in the art may understand that other types of databases may be modified.

As used herein, the term “public blockchain database” refers to utilizing all computing devices on a virtual currency system that manages a public blockchain, a blockchain that is widely used in the public as a blockchain of virtual currency, as a database.

In addition, the term “private blockchain database” in the present specification refers to a so-called, privately configured private block that is directly managed by an authentication server according to the present invention, which uses a blockchain of virtual currency but is not a public blockchain used for the public. Refers to a database using a chain.

The virtual currency refers to a digital currency circulated by a transaction based on an electronic wallet with blockchain technology, and in the virtual currency, bitcoin, light coin, dark coin, name coin, ceramic coin, ripple, etc. There is this.

In the present specification, the "smart contract" is code that can be compiled into executable bytecode and executed on at least one computing device, and is configured to perform a predetermined procedure if a specific condition is satisfied at the time of execution, and the result of the execution Integrity of the execution result refers to a concept characterized in that it is verified by consensus on the execution result calculated from the at least one computing device.

Moreover, throughout the description and claims of the present invention, the word "comprises" and variations thereof are not intended to exclude other technical features, additives, components or steps. Other objects, advantages and features of the present invention will become apparent to those skilled in the art, in part from this description and in part from the practice of the invention. The following examples and drawings are provided by way of illustration and are not intended to limit the invention.

Moreover, the present invention encompasses all possible combinations of the embodiments indicated herein. It should be understood that the various embodiments of the present invention are different but need not be mutually exclusive. For example, certain shapes, structures, and characteristics described herein may be embodied in other embodiments without departing from the spirit and scope of the invention with respect to one embodiment. In addition, it is to be understood that the location or arrangement of individual components within each disclosed embodiment may be changed without departing from the spirit and scope of the invention. The following detailed description, therefore, is not to be taken in a limiting sense, and the scope of the present invention, if properly described, is defined only by the appended claims, along with the full range of equivalents to which such claims are entitled. Like reference numerals in the drawings refer to the same or similar functions throughout the several aspects.

The first embodiment of the present invention is an embodiment in which an unspent transaction output (UTXO) of virtual currency is used, and an individual transaction related to the UTXO is recorded in a predetermined blockchain database.

The second embodiment of the present invention uses a UTXO of virtual currency to record an individual transaction related to the UTXO in a first blockchain database, and then generate a representative hash value generated from the transactions recorded in the first blockchain database. Is an embodiment configured in an anchoring manner in which the integrity of the recording is doubled by recording a in the second blockchain database.

The third embodiment of the present invention uses a state database (SDB) for managing state information on a certificate that varies by smart contract, and records a transaction in a predetermined blockchain database. The change in state is an embodiment that is configured by writing to a state database.

For reference, in the present invention, if the first blockchain database is a blockchain database in which data is directly recorded, the second blockchain database is a blockchain that is indirectly recorded through the first blockchain database for data integrity. It's a database.

Unless otherwise indicated herein or clearly contradicted by context, an item referred to in the singular encompasses the plural unless the context otherwise requires. Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings so that those skilled in the art can easily implement the present invention.

1 is a conceptual diagram schematically illustrating an exemplary configuration of a service providing server, an authentication server, and a user terminal for performing a method for signing in according to the present invention.

Referring to FIG. 1, an authentication server, a service providing server, and a user terminal according to an embodiment of the present invention are typically a computing device 100 (eg, a computer processor, memory, storage, input and output devices, other conventional devices). A device that may include components of a computing device; an electronic communication device such as a router, a switch, etc .; an electronic information storage system such as a network attached storage (NAS) and a storage area network (SAN), computer software (ie, computing device) It may be to carry out the method according to the invention using a combination of instructions to cause it to function in a particular way, such a computing device 100 comprising a communication unit 110, a processor 120, It can communicate indirectly or directly with each other.

The communication unit 110 of the computing device may transmit and receive a request and a response with another computing device to which the computing device is linked. For example, the request and response may be made by the same TCP session, but are not limited thereto. For example, it may be transmitted and received as a UDP datagram.

In addition, the processor 120 of the computing device may include a hardware configuration such as a micro processing unit (MPU) or a central processing unit (CPU), a cache memory, a data bus, and the like. In addition, the operating system may further include a software configuration of an application performing a specific purpose.

제1 실시예First embodiment

Now, a method of substituting login according to the present invention will be described from the first embodiment.

FIG. 2 is a sequence diagram exemplarily illustrating a method for performing login through multiple signatures using a server certificate and an application certificate (hereinafter, referred to as a “multi-signed login proxy method”) according to the present invention.

Referring to FIG. 2, in the multi-signature login agent method according to the first embodiment of the present invention, authentication request information, which is information for requesting substitute agent login through an authentication application executed by a user terminal used by a user, includes the user terminal. When obtaining from the service providing application executed by (S210), the service providing server delivers the authentication request response information, which is a result of determining whether the agent can perform the login (S215) (S215). , S215).

In this case, the authentication request information may include authentication type information (auth type), which is information defining a type of authentication. For example, this authentication type information may be used to select the type of authentication requested according to the severity of the service, such as whether to use a service such as a simple inquiry or an important service such as payment when the user wants to use the service. Corresponds to the parameter that makes it possible.

The authentication request information may include authentication application identification information for identifying the authentication application, and the service providing server that obtains the authentication application identification information may include (i) a service provided by the service providing server. Based on information such as whether or not the proxy for login through the authentication application is allowed, and (ii) if the service permits the login through the authentication application, whether the proxy is allowed for the user. It is possible to determine whether the substitution of the login is possible, the result can be returned as authentication request response information.

For example, the authentication request information may further include at least one of information for identifying the user terminal and information for identifying the service providing application, in order to determine whether a proxy for login may be allowed for the user. There will be, but is not limited to, a person of ordinary skill in the art may assume various criteria by which the service providing server can allow a proxy to log in through the authentication application.

The authentication request response information includes at least one of the authentication application identification information, an authorization level, service providing server identification information capable of identifying a service providing server, and a referrer service key. can do.

Here, the approval level refers to the level, range and degree of the service that the user is provided from the service providing server by using the login agent of the present invention. The approval level is a value provided by the authentication server at each login agent. In addition, the authentication server determines the level equal to or lower than the access level, which is a value uniquely set for the service providing server. The access level is determined by the authentication server at the time of registration of the server certificate, which is the certificate of the service providing server, which will be described in detail later.

In addition, the reference service key (referrer service key) is a value used to identify the identity of the session (session) in which the user is performed when the user uses the login agent method of the present invention, the service providing server The value provided by

On the other hand, in the first embodiment the step (S210, S215) is the information of the server certificate, which is the certificate of the service providing server or the server certificate registration transaction, which is a processed value, and the information of the application certificate, which is the certificate of the authentication application, or the same. The application certificate registration transaction, which is a value, may be performed while being recorded in the blockchain database. The blockchain database may be a private blockchain database or a public blockchain database.

In the present specification, the certificate, that is, the server certificate and the application certificate generally means a certificate by a public key and a private key generated by the public key infrastructure (PKI) based encryption scheme. .

The information of the certificate that can be delivered to the authentication server in the registration phase of the certificate for registering the certificate is, for example, (i) a public key PubA generated by the public key infrastructure (PKI) based encryption scheme. It may include. The information of the certificate may further include (ii) an identification information hash value IdhashA which is a result of hashing identification information for identifying a subject of the certificate, and the information of the certificate may include (iii) the PKI-based encryption scheme. At least one of additional information such as a encryption type, (iv) a license key, and (v) a license level as information for specifying at least one of a type and a type of hash operation. May be further included.

Specifically, the license key is predetermined information that is negotiated in advance between the operator of the service providing server and the operator of the authentication server. Therefore, if the license key is different from the one negotiated in advance or the type of the license key does not conform to a predetermined standard, the information transmitted to the authentication server may be determined as traffic for cracking. Meanwhile, the operator side of the authentication server may change the corresponding license key to an unusable state when the contract relationship with the operator of the service providing server is terminated.

In addition, the license level corresponds to the level, scope and degree of the service provided by the authentication server to the service providing server for the login agent, the license level is a value that can be predetermined by the above agreement.

On the other hand, the information of the certificate may further include information generated in the registration phase of the certificate in response to the information of (i) to (v) obtained by the authentication server, which identifies the certificate. The information may be at least one of certificate identification information and an access level. When the certificate is a server certificate, the certificate identification information is server certificate identification information. When the certificate is an application certificate, the certificate identification information is application certificate identification information.

This access level means the range and degree of a service that can be accessed through the certificate when the login agent service is provided through the certificate, and the license level is a unique value between the authentication server and the service providing server. On the other hand, the access level is assigned to the service providing server by the authentication server when the server certificate is issued, and is a value unique to the certificate. The access level may be determined by the authentication server to be equal to or lower than the license level.

In addition, the identification information hash value IdhashA may be used by a corporation or an individual who is identification information of the user, for example, a service provider who is a user of a service providing server, an authentication application used in a user terminal, or a user who is a user of a second application. It may be a result of hashing information. The identification information may include, for example, at least one of a name (name), a date of establishment (date of birth), contact information, and an e-mail, but the present disclosure is not limited thereto.

In addition, hash functions used for the hash operation are MD4 function, MD5 function, SHA-0 function, SHA-1 function, SHA-224 function, SHA-256 function, SHA-384 function, SHA-512 function and HAS-. 160 function may be included, but is not limited thereto. For example, Triple SHA256 would be possible.

The integrity of the server certificate and the application certificate may be verified by referring to the server certificate registration transaction and the application certificate registration transaction recorded in the blockchain database. This will be described later in detail.

Next, the multi-signature login proxy method according to the first embodiment of the present invention, after the authentication redirection request (authentication redirection request) of the service providing application is transmitted to the authentication application (S220), the authentication server from the authentication application When the server challenge request information including the variable authentication value generated by the obtained (S230, S235), the service providing server delivers the server challenge request response information corresponding to the server challenge request information to the authentication application (S240). (S245 to S250) by supporting the authentication server to determine whether a server certificate which is a certificate of the service providing server and an application certificate that is a certificate of the authentication application are valid (S220 to S250).

Herein, the authentication redirection request may include service providing application identification information for identifying a service providing application, service type information for identifying a type of a provided service, the authentication level, and a service for identifying a service providing server. It may include at least one of the providing server identification information and the reference service key.

In addition, the variable authentication value is used to verify whether the server certificate and the application certificate is valid, and may be a one-time number, for example, a timestamp value, but is not limited thereto. For example, it may be a random random nonce, i.e. a random value, generated from any seed value. As such, the method for generating the variable authentication value will not be described in more detail because it is unnecessary detail in understanding the present invention, as it is known or easily understood by those skilled in the art.

The server challenge request information may further include at least one of a referrer auth key and the referrer service key. The referrer authentication key is used to identify which authentication application and challenge initiation request delivered by the service providing server in the user using the login agent method of the present invention, that is, to identify the authentication application and the service providing server. A value provided is a value provided by the authentication server. This referrer authentication key is a value included in the challenge initiation request response information transmitted from the authentication server to the authentication application, which will be described later.

Meanwhile, the server challenge request response information corresponding to the server challenge request information may further include at least one of the reference authentication key, service type information, authorization level, and service providing server identification information.

In the PKI-based encryption scheme used in the present invention, the information transmitted and received between the subjects performing the method is encoded by using the public key of the receiving side. It is common to be. On the receiving side, information to be transmitted can be obtained by decoding using the private key of the receiving side. Specifically, in this case, the server challenge request information may include the variable authentication value encoded by the public key of the server certificate. Then, the service providing server obtains the variable authentication value from the server challenge request information using the private key of the server certificate, and includes the value of signing the variable authentication value using the private key of the server certificate. The server challenge request response information may be delivered to the authentication application. However, the information to be transmitted will not necessarily be encoded using the public key of the receiving side. For example, the well-known symmetric-key algorithm may be used.

After the steps S220 to S250, the multi-signature login agent method according to the first embodiment of the present invention obtains an authentication result message including whether the server certificate and the application certificate are valid from the authentication server ( S260a, S260b), and if the authentication result message is an authentication success message indicating that the server certificate and the application certificate are valid, the service providing server transmits a predetermined access token to the service providing application ( S270) to process the login by supporting the service providing application to use the service through the access token (S260a, S260b and S270).

Here, the authentication result message may further include the application certificate identification information, and may further include at least one of the service providing application identification information and the service providing server identification information.

In addition, the access token is predetermined information transmitted to the service providing server by a user terminal executing the service providing application to use the service, and may be an ASCII value or a binary value. This access token is a unique value for identifying a user using the service providing application and is a value that should be stored without being exposed. Therefore, it may be delivered according to a PKI-based encryption scheme. The access token may be a value that is invalidated when the issuing subject sets a predetermined validity period to exceed the validity period in the future.

As an example, the access token may be an access token provided in an OAuth authentication scheme, in which case the access token may be a combination of alphanumeric characters and special characters. For example, the access token provided in the OAuth authentication method may be in the form of “fb2e77d.47a0479900504cb3ab4a1f626d174d2d”, and a person of ordinary skill in the art may understand the access token used in the OAuth authentication method provided as an example.

Referring again to the multi-signature login agent method according to the first embodiment of the present invention based on the authentication server, the multi-signature login agent method, first, request to substitute the login through the authentication application executed by the user terminal When the challenge initiation request information is obtained from the authentication application executed by the user terminal in response to an authentication redirection request S220 corresponding to the authentication request information S210, the authentication server, By generating a variable authentication value corresponding to the challenge initiation request information and transferring the challenge initiation request response information including the variable authentication value to the authentication application (S235), the authentication application is a certificate of the service providing server. To determine whether a server certificate is valid And supporting the server challenge request response information corresponding to the server challenge request information (S240) from the service providing server (S245) (S210 to S245).

Herein, the challenge initiation request information may include at least one of application certificate identification information for identifying an application certificate, the service providing application identification information, and the reference service key.

The challenge initiation request response information corresponding thereto may further include at least one of the referrer authentication key and the referrer service key. As described above, the referrer authentication key is used to identify which authentication application and challenge initiation request delivered by the service providing server in the user using the login agent method of the present invention, that is, the authentication application and the service provision. A value provided by the authentication server to identify the server.

Next, in the multi-signature login agent method according to the first embodiment of the present invention, a multi-signature value which is a value obtained by signing the server challenge request response information using a private key of an application certificate which is a certificate of the authentication application. If the response request information including a is obtained from the authentication application, the authentication server further comprises the step of determining whether the server certificate and the application certificate is valid using the response request information (S250).

Here, the response request information may further include at least one of the reference authentication key, the service type information, the authorization level, and service providing server identification information.

In step S250, the authentication server verifies whether the server certificate and the application certificate are valid by verifying a signature of the multi-signature value using the public key of the server certificate and the public key of the application certificate. It can be characterized by. In this case, a predetermined hash value A can be obtained from the multi-signature value using the public key of the server certificate and the public key of the application certificate, and the predetermined hash value A and the variable authentication value can be obtained. The signature can be validated by comparing the result (B) obtained by applying the hash function. In such a comparison, the signature is invalid if the hash value and the result obtained by applying the predetermined hash function are different, and if the signature is the same, it is well known to a person skilled in the art. You will see how to validate digital signatures.

Meanwhile, in relation to step S250, the authentication server may support to manage or manage information regarding an access level to the service providing server, and the approval level may be referred to with reference to the access level. authorization level), and in this case, the authentication result message may include information regarding the authorization level, and whether or not the server certificate is valid may be determined with reference to the authorization level.

For example, the access level may include cracking history information related to whether the service providing server has been cracked, if any, how often and how often, or the function and performance of the security service that the service providing server can provide. Information and rating information determined based on the license level. As the example of the registration phase of the certificate described above, this access level may be a value determined in the registration phase of the certificate, but is not limited thereto, and a person skilled in the art may understand that the access level may vary with time.

Meanwhile, the permission level determined according to the access level may correspond to information indicating the service use level, for example, when a service allowed to a user who uses the service through the service providing server is differentiated according to the service use level. have. In addition, the authorization level may be used as a basis for determining a valid time for using the service with one login. In addition, the operator of the authentication server can easily change the access level or the authorization level in the case that the login agent service needs to be restricted due to the service providing server being exposed to cracking.

Next, in the multi-signature login agent method according to the first embodiment of the present invention, the authentication server sends an authentication result message including whether the server certificate is valid to at least one of the authentication application and the service providing server. When the authentication result message is an authentication success message indicating that the server certificate is valid by forwarding (S260a and S260b), a predetermined access token is generated by the service providing server to a service providing application executed by the user terminal. ) To process the login (S260a, S260b, and S270) by supporting the service providing application to use the service through the access token. In the sequence diagram of FIG. 2, step S260a is shown after step S260b, but the order may be reversed, and step S260a and step S260b may be performed simultaneously.

On the other hand, in the multi-signature login agent method according to the first embodiment of the present invention, after the step (S250), the authentication server, the authentication result message or a value processed therein recorded in the blockchain database as an authentication result transaction Or supporting another device linked to the authentication server (not shown). By recording this authentication result transaction in the blockchain database, not only an administrator using an authentication server or a third party who has authority to access the blockchain database can verify the authenticity of the authentication result message, but also multiple authentication results. You can manage the statistical value of messages.

In addition, the multi-signature login agent method according to the first embodiment of the present invention, (i) information of a specific server certificate recorded in the blockchain database, the authentication server, periodically or in response to an integrity verification request Or at least one of a specific server certificate enrollment transaction that is a fictitious value, (ii) a specific application certificate enrollment transaction that is a fictitious value of a specific application certificate or a fictitious value, and (iii) a specific authentication result transaction that is a specific authentication result message or a fictitious value. Verifying the integrity of the information of (i), (ii) and (iii) by referring to the information of (i), or supporting another device linked to the authentication server (not shown). Can be.

Next, FIG. 3 is a sequence diagram exemplarily illustrating a method for performing a login using multiple information in the absence of a user ID (hereinafter, “a temporary ID login proxy method”) according to the present invention. In the following description, the same detailed features as the multi-signature login agent method according to the first embodiment will not be described repeatedly, and only the differences will be described in detail.

Referring to FIG. 3, the temporary ID login proxy method according to the first embodiment of the present invention may be configured to request a proxy for login through a second application executed by the user terminal from a first application executed by the user terminal. When the authentication request information including the user identification information for identifying the user from the second application that has received the authentication redirection request (authentication redirection request), which is information (S310), is obtained (S320), the service providing server receives the user. And transmitting the challenge start request information S330 including the identification information to the authentication server (S310 to S330).

In this case, the user identification information is information for distinguishing the user from other users and may be anything uniquely determined for each user. For example, the user identification information may be login information for using a service provided through the second application, or may be predetermined certificate information issued for the user.

In addition, similar to the multi-signature login agent method according to the first embodiment, the steps S310 to S330 may include information on a server certificate, which is a certificate of the service providing server, or a server certificate registration transaction, which is a processed value thereof, and the second application. The information on the application certificate, which is a certificate of, or an application certificate registration transaction, which is a processed value thereof, may be performed while being recorded in the blockchain database.

Next, the temporary ID login proxy method according to the first embodiment of the present invention, when the challenge start request response information including the variable authentication value generated by the authentication server in response to the challenge start request information is obtained (S335) The service providing server transmits the application challenge request information (S340) including the variable authentication value to the second application, thereby causing the second application to transmit the variable authentication value to the certificate of the second application. The method may further include steps S335 and S340 for generating a value signed by a private key.

As an example to which the PKI-based encryption scheme used in the present invention is applied, the challenge initiation request information may further include a public key of a server certificate which is a certificate of the service providing server, and in this case, the challenge initiation request response information. May include the variable authentication value encoded by the public key of the server certificate. If so, in this example, the service providing server may obtain the variable authentication value from the challenge initiation request response information S335 using the private key of the server certificate in the steps S335 and S340. The application challenge request information including the signed value of the variable authentication value may be transmitted to the second application using the public key of the application certificate (S340).

Referring back to FIG. 3, after the steps S335 and S340, the temporary ID login proxy method according to the first embodiment of the present invention includes an application including a value signed by a private key of the application certificate. When the challenge request response information is obtained (S345), the service providing server transmits the application challenge request response information to the authentication server (S350) so that the authentication server uses the application challenge request response information to the application certificate. It further includes steps (S345, S350) to assist in determining whether is valid.

Since the application challenge request response information includes a value signed with the private key of the application certificate, whether the value signed using the public key of the application certificate held by the authentication server corresponds to the variable authentication value. Can be verified, thereby determining whether the application certificate is valid. The description will be replaced with the description of the method for validating the above-described signature.

After the steps S345 and S350, in the temporary ID login proxy method according to the first embodiment of the present invention, an authentication result message including whether the application certificate is valid is obtained from the authentication server, and the authentication result message is obtained. If the authentication success message indicating that the application certificate is valid, the service providing server transmits a temporary ID to the second application, which causes the first application to transmit from the second application to the first application. Processing the login by supporting the use of the service via (i) the temporary ID and (ii) an access token included in the authentication success message.

In this case, the temporary ID may be determined by referring to the information on the access token and the authorization level included in the authentication success message. For example, the temporary ID may be provided with information regarding a service usage level indicating a service available in accordance with the characteristics of the service provided by the service providing server. The service may be provided through the first application with the temporary ID. The user may use the service within a range determined according to the service use level.

Referring again to the temporary ID login proxy method according to the first embodiment of the present invention with reference to the authentication server, the temporary ID login proxy method is, first, by the user terminal from a first application executed by the user terminal. Obtaining authentication request information including user identification information for identifying a user from the second application, which receives an authentication redirection request, which is information for requesting the proxy for login through the executed second application (S310). When the challenge initiation request information including the user identification information is obtained from the service providing server (S320), the authentication server generates a variable authentication value in response to the challenge initiation request information (S310 to S330). Challenge challenge request response information including the generated variable authentication value; By transmitting to the service providing server (S335) to allow the service providing server to deliver the application challenge request information including the variable authentication value to the second application (S340) to allow the second application to the variable authentication value. To generate a value signed with a private key of an application certificate which is a certificate of the second application (S335, S340), and a value signed with a private key of the application certificate. When the application challenge request response information is obtained (S345 and S350), the authentication server may determine whether the application certificate is valid using the application challenge request response information (S345 and S350).

Similar to the multi-signature login agent method according to the first embodiment, the temporary ID login agent method according to the first embodiment includes the blockchain database as the authentication result transaction by the authentication server as the authentication result transaction. It may further include the step (not shown) for recording to or to record to other devices linked to the authentication server.

Referring back to FIG. 3, in the temporary ID login proxy method according to the first embodiment, after the steps S345 and S350, the authentication server provides the service with an authentication result message including whether the application certificate is valid. Delivers to the server and the second application (S355a, S355b), causing the service providing server to provide a temporary ID when the authentication result message indicates that the application certificate is valid; (I) the temporary IDs (S360, S370a) and (ii) the access included in the authentication success message, which is passed to the first application from the second application and that causes the first application to pass to the application (S360). By processing the login by supporting the use of the service (S380) through access tokens (S355b, S370b) The system (S355a to S370b) further includes. In the sequence diagram of FIG. 3, step S355a is shown as step S355b, but the order may be reversed, and step S355a and step S355b may be performed simultaneously. The same applies to steps 370a and S370b.

On the other hand, the temporary ID login proxy method according to the first embodiment also, periodically or in response to the integrity verification request, the authentication server, (i) the information of the specific server certificate recorded in the blockchain database or processing the same At least one of a value of a specific server certificate enrollment transaction, (ii) information of a specific application certificate or a specific application certificate enrollment transaction that is a processed value, and (iii) a specific authentication result message or a specific authentication result transaction that is a processed value. The method may further include verifying the integrity of the information of (i), (ii), and (iii) or supporting another device linked to the authentication server (not shown).

제2 실시예Second embodiment

Next, a second embodiment of a login proxy method according to the present invention will be described. In the following, the same technical features as those of the above-described first embodiment will not be repeatedly described, and only the differences will be described in detail.

Referring back to FIG. 2, the steps S210 and S215 described above with respect to the first embodiment may include information on a server certificate which is a certificate of the service providing server in the multi-signature login agent method according to the second embodiment of the present invention. Or at least one neighbor hash value matching the first specific hash value which is a hash value of a server certificate registration transaction, which is a processed value, wherein the neighbor hash value is: (i) a specific server certificate information or a processed value of the specific server certificate; A hash value of a registration transaction, (ii) a hash value of a specific application certificate enrollment transaction that is information of, or an instrumentation of, a particular application certificate; Is one of the hash values-a first representative hash value or a first representative hash value generated by hashing together A second representative hash value generated by hashing together an empty value and at least one neighboring hash value matching a second specific hash value that is a hash value of an application certificate registration transaction that is a certificate of an authentication application executed by the user terminal; Or a value obtained by processing the second representative hash value is recorded in a predetermined blockchain database.

Thereafter, in steps S230 and S235, the authentication server refers to the predetermined blockchain database in determining whether the server certificate and the application certificate are valid. The specific meaning is to determine whether the server certificate and the application certificate are valid using the server certificate registration transaction and the application certificate registration transaction obtained with reference to the predetermined blockchain database.

This second embodiment of the present invention uses a UTXO of virtual currency to write an individual transaction related to the UTXO in a first blockchain database, and then, a representative hash generated from transactions recorded in the first blockchain database. By recording the value in the second blockchain database, it can be configured in an anchoring manner, which doubles the integrity of the recording. In this case, the predetermined blockchain database is the second blockchain database, and in step S210 , S215) is performed while the server certificate registration transaction and the application certificate registration transaction are further recorded in the first blockchain database.

In more detail, the anchoring scheme is described. In the multi-signature login agent method according to the second embodiment of the present invention, after step S250, (A) the authentication server displays the authentication result message or the processed value thereof. A process of recording to the first blockchain database as an authentication result transaction or allowing other devices to interoperate with the authentication server to record; and (B) a hash value of the authentication result transaction if at least one anchoring condition is satisfied. At least one neighbor hash value that matches a particular hash value, wherein the neighbor hash value is (i) a hash value of a particular server certificate registration transaction that is information of, or a processed value of, a particular server certificate, (ii) information of a particular application certificate, or A hash value of a specific application certificate enrollment transaction, which is a processed value, and (iii) a specific authentication result message or Is one of hash values including a hash value of a specific authentication result transaction, which is a processed value-a representative hash value generated by hashing together or a value processed by the representative hash value is recorded in the second blockchain database, or Assisting other devices linked to the authentication server to record, and performing a process of acquiring a transaction ID, the representative hash value or a value obtained by processing the representative hash value, is position information recorded in the second blockchain database; It may further include (not shown).

In this case, the aforementioned anchoring condition may include (i) a condition in which a predetermined number of specific hash values and neighboring hash values are obtained or generated, (ii) a condition that a predetermined time elapses, and (iii) in the first blockchain database. It may include at least one of a condition that the block is generated, (iv) a condition for the service characteristic.

The operation of a particular hash value and at least one neighbor hash value may be performed by various functions. A particular hash value is denoted by input, and at least one neighboring hash value is represented by x1, x2,... , represented by xn, can be represented by the following equation.

[Equation 1]

In this case, the authentication server may store and manage the specific hash value and the at least one neighbor hash value in a predetermined data structure. The data structure may vary, for example, may be a merkle tree structure. In this case, the calculation of the specific hash value and at least one neighbor hash value may be performed through the Merkle tree.

That is, the authentication server may support to generate or generate a merkle tree in which the specific hash value is assigned to a leaf node, and if at least one anchoring condition is satisfied, at least one matching the specific hash value Acquire the representative hash value or the processed value of the representative hash value generated by hashing the hash values assigned to one other leaf node together, and recording the obtained value in the second blockchain database or other device. Can help them record.

The authentication server may record the hash value finally assigned to the root node of the Merkle tree as the representative hash value in the second blockchain database or allow other devices to record it. At this time, a value obtained by processing the representative hash value may be recorded. For example, the result of performing the hex operation may be registered in the representative hash value.

On the other hand, when the authentication server stores the particular hash value and the at least one neighboring hash value in a predetermined first data structure, and then stores and manages a second data structure having the same form as the first data structure, The first data structure and the second data structure may be connected in a chain form.

In particular, when the first data structure and the second data structure are Merkle trees as in the above-described example, the root value of the first data structure or the hash value of the root value is the first leaf of the second data structure. Can be assigned to a node.

In addition, when the second data structure is generated, verification of the first data structure is performed to more surely ensure the integrity of the data.

In addition, when the Merkle tree is the first Merkle tree among at least one Merkle tree connected in a chain form, the first leaf node of the Merkle tree has a hash value of a predetermined message data consisting of text, numbers, or symbols or the same. One value can be assigned. For example, a hash value of an input message initially assigned by the authentication server may be assigned when generating the merkle tree.

4 and 5 show examples of merkle trees generated in accordance with the present invention.

In FIG. 4, a Merkle tree with 4 (2 ² ) leaf nodes is shown. Since the illustrated Merkle tree is the first Merkle tree (tree_id = 0), it can be seen that the hash value SHA256 (PrivBC_unique_message) of the predetermined message data PrivBC_unique_message is assigned to the h1 node which is the first leaf node. If there is a registration of transactions, the authentication server creates a next leaf node of the last leaf node of the Merkle tree currently being configured, and assigns a specific hash value or a processed value of a specific hash value or allows another device to assign it. do. For example, in the merkle tree of FIG. 4, when the value assignment is completed from the previous step to the second leaf node h1 node, the next leaf node h2 node is created to process a specific hash value or a specific hash value (SHA256 ( input2)) can be assigned. In addition, the authentication server calculates (i) a specific hash value and (ii) a hash value assigned to the h3 node which is a sibling node of the h2 node which is the third leaf node to which the specific hash value is assigned or causes another device to perform the operation. Can support calculations. The hash value for the operation value that is the result of the operation is assigned to the parent node (h23 node) of the h2 node and the h3 node. Since the parent node (h23 node) is not the root node of the Merkle tree, the authentication server may repeat the process by using the hash value assigned to the h23 node as the specific hash value. That is, the hash value assigned to the h23 node is designated as a specific hash value, and the hash value assigned to the h23 node and the hash value assigned to the h01 node are calculated and assigned to the parent node (h0123) node of the h23 node and the h01 node. have. At this time, since the h0123 node is the root node of the Merkle tree, the authentication server records the hash value assigned to the h0123 node or the processed value (hex (h {node_index})) in the second blockchain database, or to another device. Can help you record.

To describe this recursively, when at least one anchoring condition is satisfied, (x1) the authentication server is configured to: (i) the sibling of the node to which the particular hash value and (ii) the particular hash value are assigned. Hashing the hash value assigned to the node together or allowing other devices to hash the hash, assigning the hash value for the computed value that is the result of the operation to the parent node of the node or allowing another device to assign it, (x2) if the parent node is the root node of the Merkle tree, supports to record the hash value assigned to the parent node to the second blockchain database as the representative hash value or to allow other devices to record; (x3) If the parent node is not the root node of the Merkle tree, (x1) to (x3) may be repeated by using a hash value assigned to the parent node as the specific hash value. To do.

In a second embodiment, the hash values-(i) a hash value of a specific server certificate registration transaction, which is information of or processed by a particular server certificate, (ii) a specific application certificate registration transaction, which is information of a particular application certificate or a processed value of it. A hash value of, and (iii) a hash value of a particular authentication result message or a particular authentication result transaction that is a truncated value-if this number of leaf nodes is obtained, each hash value is assigned to the aforementioned Merkle tree input (leaved to the leaf node). Value).

In addition, the authentication server may generate the root value of the aforementioned Merkle tree on a predetermined time basis (the (ii) anchoring condition). In this case, when a predetermined time elapses, the authentication server may generate a Merkle tree using the input values up to that time, record the root value of the Merkle tree in the second blockchain database, or support another device to record. .

In this case, however, a value may not be assigned to a sibling node of a node to which a specific hash value of the Merkle tree is assigned even after a predetermined time has elapsed. In this case, when a predetermined anchoring condition is satisfied and a hash value is not assigned to a sibling node of a node to which the specific hash value is assigned, the authentication server allocates a predetermined hash value to the sibling node or causes another device to make a hash value. The allocation may be supported so that the root value of the Merkle tree is calculated in the above-described manner. For example, the authentication server may duplicate the specific hash value and assign it to the sibling node or support another device to assign it.

In addition, the service characteristic is a company type that is a management entity of the server involved in the record, cost information paid by the entities using the login agent service, time zone information on which the transaction is recorded, area information on the record, and the server involved in the record. It can be at least part of the information. However, it is not limited to what was described here.

On the other hand, if generation of a new Merkle tree is started and at least one anchoring condition is satisfied in the absence of receiving a transaction, the authentication server determines that predetermined message data is allocated to the first leaf node and the second leaf node. The Merkle Tree may be generated or supported by another device, and the root value or the processed value of the Merkle Tree may be recorded in the second blockchain database or the other device may be recorded. In this case, for example, a leaf tree of two leaf nodes may be generated.

Meanwhile, as described above, the authentication server stores the specific hash value and the at least one neighboring hash value in a predetermined first data structure, and then stores and manages a second data structure having the same form as the first data structure. In this case, the first data structure and the second data structure may be connected in a chain form. In particular, when the first data structure and the second data structure are Merkle trees, a root value of the first data structure or a hash value of the root value may be allocated to the first leaf node of the second data structure. .

5 illustrates a Merkle tree generated as the second data structure according to the present invention.

Referring to FIG. 5, it can be seen that the root value hex (h0123) of the merkle tree (tree_id = 0) of FIG. 4 is assigned to the first leaf node (h4 node) of the new merkle tree. The present invention has an advantage of easily tracking even when data modulation occurs in the middle by connecting a plurality of data structures generated when a transaction occurs, thereby improving the integrity of the data.

In addition, the certificate registration method according to the second embodiment of the present invention, in addition, periodically or in response to the integrity verification request, the authentication server, at least one transaction recorded in the first blockchain database- The transaction may include (i) a specific server certificate registration transaction, which is information of a specific server certificate or a processed value thereof, (ii) a specific application certificate registration transaction, which is information of a specific application certificate or a processed value thereof, and (iii) a specific authentication result message. Or a first representative hash value or the first representative hash value generated by hashing together at least one neighboring hash value that matches one of the transactions including a specific authentication result transaction that is a processed value. The processed value is recorded in the second blockchain database corresponding thereto. 2) verifying the integrity of the transaction by verifying whether the representative hash value or the second representative hash value matches a processed value or supporting another device interworking with the authentication server (not shown) It may further include.

As an example, the first and second blockchain databases may be blockchain databases. In this case, the first blockchain database may be a private blockchain database, and the second blockchain database may be a public blockchain database.

However, the present disclosure is not limited thereto, and a person skilled in the art may refer to the first blockchain database as a private blockchain database or a public blockchain database. Likewise, the second blockchain database may be any one of a private blockchain database and a public blockchain database. You can understand that it can be one.

Next, the temporary ID login proxy method according to the second embodiment will be described. The same technical features as in the above-described first embodiment will not be repeatedly described, and only differences will be described in detail.

Referring to FIG. 3, steps S310 to S330 described above with respect to the first embodiment may be a certificate of a second application executed by a user terminal in the temporary ID login proxy method according to the second embodiment of the present invention. At least one neighbor hash value that matches the information of the application certificate or a specific hash value that is a hash value of an application certificate registration transaction that is a processed value-The neighbor hash value is (i) a specific application certificate or a processed value A representative hash value generated by hashing together a hash value of an application certificate enrollment transaction and (ii) a hash value of a particular authentication result message or a hash value of a particular authentication result transaction that is a truncated value thereof. The hash value is stored in a predetermined blockchain database. Performed in the womb. On the other hand, whether the application certificate is valid or not is determined by the authentication server with reference to the predetermined blockchain database.

In addition, similar to the multi-signature login agent method according to the second embodiment, the temporary ID login agent method according to the second embodiment includes (A) the authentication result message or a value processed by the authentication server as an authentication result transaction. A process for supporting recording by the other device linked to the first blockchain database or interworking with the authentication server, and (B) a specific hash value which is a hash value of the authentication result transaction if at least one anchoring condition is satisfied; At least one neighboring hash value matched, wherein the neighboring hash value is (i) a hash value of a specific application certificate enrollment transaction that is information of, or a processed value of, a particular application certificate registration transaction; Contains at least one of the hash values of the authentication result transaction. The representative hash value or the processed value of the representative hash value is recorded in the second blockchain database or supported by another device linked to the authentication server, and the representative hash value or the representative hash value is processed. The method may further include performing a process of obtaining a transaction ID, which is position information recorded in the second blockchain database (not shown).

Unlike the multi-signature login agent method according to the second embodiment, the temporary ID login agent method according to the second embodiment essentially includes a specific server certificate registration transaction, which is information of a specific server certificate or a processed value, in a neighbor hash value. This may not be because server certificates are not necessarily used. Except for this difference, the contents described in the multi-signature login agent method according to the second embodiment may be applied to the temporary ID login agent method according to the second embodiment.

제3 실시예Third embodiment

Next, a third embodiment of the login proxy method according to the present invention will be described. Hereinafter, only technical features of the third embodiment different from the above-described first embodiment will be described.

The method according to the third embodiment is performed using a smart contract. The smart contract is source code that can be compiled on executable bytecode and executed on a plurality of computing devices including an authentication server or other devices linked to the authentication server. Configured to perform, the integrity of the execution result that is the result of the execution is verified by consensus on the execution result calculated from the plurality of computing devices.

The information on the smart contract-based certificate includes (i) a public key PubA generated by the public key infrastructure (PKI) -based encryption scheme, and (ii) a smart contract SC corresponding to the valid condition VcertA of the certificate. Contains the byte code BC (SC (VcertA)), which is the result of (VcertA) being compiled. The information on the smart contract-based certificate may further include an identification information hash value IdhashA which is a result of hashing identification information for identifying a subject of the certificate. The information on the smart contract-based certificate may include encryption type, license key, and license level as information for specifying at least one of the type of the PKI-based encryption scheme and the type of the hash operation. At least one of additional information such as a license level may be further included.

The information of the certificate includes the public key PubA corresponding to the subject of the certificate, the identification information hash value IdhashA which is a result of hashing the identification information for identifying the subject of the certificate, and the validity of the certificate. The authentication server or other device that obtains the condition VcertA (S205 and S210) generates a smart contract SC (VcertA) corresponding to the valid condition, compiles the smart contract, and as a result, the byte code BC (SC). (VcertA)).

In this third embodiment, a server certificate which is a certificate of the service providing server and an application certificate which is a certificate of an authentication application executed by the user terminal may be the smart contract-based certificate.

Specifically, referring back to FIG. 2, the steps S210 and S215 described above with respect to the first embodiment may include processing the information of the server certificate or the same in the multi-signature login agent method according to the third embodiment of the present invention. One value is a server certificate registration transaction or information of the application certificate or an application certificate registration transaction, which is a processed value, is recorded in the blockchain database, and is an execution parameter of the smart contract SC (VcertA) of the server certificate and the application certificate. The state S (SC (VcertA)) is performed in the state registered in the state database SDB. When the server certificate and the application certificate including the smart contract are initially recorded, the S (SC (VcertA)) will be set to a predetermined initial state and recorded in the state database. Here, the initial state means a state that is first given to the certificate in order to determine whether the validity condition is satisfied. For example, an initial state corresponding to the smart contract of FIG. 7 may be counter = 10.

Thereafter, in steps S230 and S235, the authentication server refers to a predetermined blockchain database and the state database in determining whether the server certificate and the application certificate are valid. The specific meaning thereof is (i) the server certificate registration transaction obtained with reference to the predetermined blockchain database, (ii) the application certificate registration transaction, (iii) the server certificate and the application obtained from the state database. The existing execution result of each smart contract and (iv) their new execution result is referred to to determine whether the server certificate and the application certificate are valid. In order to refer to the predetermined blockchain database, the authentication server is further configured to store the server certificate registration transaction and the application certificate registration transaction, which were obtained at the time of registration of each of the server certificate registration transaction and the application certificate registration transaction, in the predetermined blockchain database. It is also possible to use transaction location identifiers that refer to registered locations. A more detailed description of the validity of the certificate will be described later with reference to the authentication server. Here, the valid condition VcertA of the certificate may include any condition based on information that can be obtained by the smart contract. Some examples include (i) information about the characteristics of the subject, (ii) weather information when using the certificate, (iii) date information when using the certificate, and (v) It may be a condition based on at least one of the information obtained as the acceptance of the use of the certificate, and (iv) information on the limit on the number of times of use of the certificate predetermined. Herein, the information on the characteristics of the user means, for example, information such as the gender, height, age, etc. of the individual when the user is an individual, which is obtained from various sources on a computing device executing a smart contract. Can be. It may even be included in the smart contract. In addition, the date information at the time of use of the certificate may also be obtained as data such as provided by an Internet web site, etc. All of the information of (i) to (iv) may be a plurality of computing devices for executing the smart contract. Can be obtained from a variety of sources.

An example in which the smart contract is configured according to the valid condition VcertA is illustrated in FIGS. 6 and 7, wherein FIGS. 6 and 7 respectively limit the number of times of use of the certificate to initNumber and 10, respectively. Is a diagram illustrating the code).

6 or 7, a source code of a smart contract is disclosed in which the validity condition is a condition that the number of use of a certificate is limited to initNumber or 10 times. useCounter means an arbitrary title given to the smart contract, and the command corresponding to the state of the counter that counts the number of use is designated as int counter; and changed by the command counter-= 1; after one execution. The status of the counter is returned by the command return counter;

These smart contracts are intended to be executed by a number of computing devices (called "nodes") that are converted to bytecode and constitute a public blockchain database, each of which results in a consensus algorithm. By doing so, the execution result which occupies the most of the execution results can be verified as the true execution result. In sum, one of ordinary skill in the art will appreciate that the integrity of the execution result of a smart contract is verified by consensus on the execution result calculated from the nodes. Of course, in some cases, there may be one node, and in this case, one computing device may output verification results based on such an agreement.

For reference, an example of byte code resulting from the compilation of the smart contract shown in FIG. 7 is as follows:

60606040525b600a6000600050819055505b607e80601d6000396000f360606040526000357c010000000000000000000000000000000000000000000000000000000090048063d732d955146039576035565b6002565b60446004805050605a565b6040518082815260200191505060405180910390f35b5506001600060008282825055059205050

Now, in step S230 and S235 of the multi-signature login agent method according to the third embodiment of the present invention, a method of determining whether the server certificate and the application certificate are valid will be described in detail. Steps S230 and S235 of the multi-signature login proxy method according to the third embodiment are performed by the authentication server using the public key of the server certificate and the public key of the application certificate as in the first embodiment. Verifying the signature of the signature value. Thereafter, the step S230, S235, if the signature of the multi-signature value is verified to be valid, the authentication server, (i) the state S1 of the server certificate smart contract that is the smart contract included in the server certificate By executing the byte code BC1 of the server certificate smart contract as an execution parameter or by supporting other devices interworking with the authentication server, the execution result of the server certificate smart contract is obtained, and the execution of the server certificate smart contract A process of determining whether the server certificate is valid with reference to a result value, and (ii) the application certificate smart contract using the state S2 of the application certificate smart contract that is the smart contract included in the application certificate as an execution parameter. Byte code BC2 The execution certificate of the application certificate smart contract by obtaining a value of the execution certificate of the application certificate smart contract by executing or by allowing other devices linked to the authentication server to execute, and whether the application certificate is valid with reference to the execution result value of the application certificate smart contract. And performing a process of determining (not shown).

Here, (i) the processes correspond to each other in that the process of determining whether the server certificate is valid and (ii) the process of determining whether the application certificate is valid. Explain.

(i) In the process, the byte code BC1 of the server certificate smart contract is executed using the state S1 of the server certificate smart contract as an execution parameter, and the server certificate is valid with reference to the execution result value of the server certificate smart contract. 6 and 7, the meaning of determining whether or not to determine whether the remaining number of use of the certificate corresponding to the state immediately before the execution is an example of an execution parameter in which the integer counter of 0 or more is state S1. If the remaining usage counter is 0, since the certificate is no longer available, the byte code BC1 is executed with this execution parameter, so that an execution result value, for example counter = -1, which is not authenticated is obtained, or alternatively ( alternatively) an existing result of execution may be obtained from the state database that it cannot be authenticated without executing the byte code BC1. In addition, there can be many smart contracts that can determine whether a certificate is valid by referring to the execution result value by calculating the execution result value based on execution parameters of various conditions.

After the certificate is used as described above, the multi-signature login agent method according to the third embodiment of the present invention, after step (S250), the authentication server, (i) the authentication result message or the value processed therein A process of recording to the blockchain database as an authentication result transaction or allowing other devices linked to the authentication server to record; and (ii) the state of the state database with reference to the execution result value obtained as a result of the execution. The method may further include updating and registering S (SC (VcertA)) as the new state S '(SC (VcertA)) in the state database or performing a process of supporting another device to register (not shown). .

In addition, a method of registering a certificate according to the second embodiment of the present invention may include verifying the integrity of a specific server certificate registration transaction, a specific application certificate registration transaction, and a specific authentication result transaction as in the first embodiment. In addition, periodically or in response to an integrity verification request, the authentication server verifies the integrity or executes the integrity of the execution result by referring to the execution result of the respective smart contract recorded in the state database. The method may further include supporting another device interworking with the server to verify.

Next, the temporary ID login proxy method according to the third embodiment will be described. Referring to FIG. 3, the above-described steps S310 to S330 regarding the temporary ID login proxy method of the first embodiment may include information on the application certificate or the same in the temporary ID login proxy method according to the third embodiment of the present invention. An application certificate registration transaction, which is a processed value, is recorded in the blockchain database, and a state (S (SC (VcertA)), which is an execution parameter of the smart contract SC (VcertA) of the application certificate, is stored in a state database SDB. On the other hand, whether the application certificate is valid or not is determined by the authentication server with reference to the blockchain database and the state database.

The method for determining whether the application certificate is valid is replaced with the description regarding the multi-signature login proxy method according to the third embodiment with respect to the smart contract-based decision method.

On the other hand, all the embodiments of the present invention described above may be implemented independently of one another, it will be understood by those skilled in the art that may be implemented in combination with each other. For example, the multi-signature login agent method according to the second embodiment may be implemented in combination with the multi-signature login agent method according to the third embodiment. In this case, as an example, the Merkle tree may be constructed from the hash values of the individual transactions recorded in the blockchain database (first blockchain database) of the third embodiment and the values recorded in the state database. The representative hash value of the Merkle tree may be recorded in the second blockchain database according to the second embodiment. Through such anchoring, the integrity of the contents recorded in the first blockchain database is compared by comparing the hash value generated using the information recorded in the first blockchain database with the representative hash value recorded in the second blockchain database. This can be verified.

Through all the embodiments of the present invention described so far, there is an effect that the forgery of the certificate is impossible using the blockchain database, while enhancing security and usability compared to the conventional OAuth.

As the above embodiments, the advantage of the technique described herein is that the forgery of authentication related information such as public key, hash value, etc. is virtually impossible, thereby ensuring the authenticity of the certificate, and verifying the authentication related transaction by using the blockchain database. By doing this, the integrity is guaranteed.

Based on the description of the above embodiment, a person skilled in the art can clearly understand that the present invention can be achieved through a combination of software and hardware or by hardware alone. The objects contributing to the object of the technical solution or the prior art of the present invention may be embodied in the form of program instructions that can be executed by various computer components and recorded in a computer-readable recording medium. The computer-readable recording medium may include program instructions, data files, data structures, etc. alone or in combination. Program instructions recorded on the computer-readable recording medium may be those specially designed and configured for the present invention, or may be known and available to those skilled in the art. Examples of computer-readable recording media include magnetic media such as hard disks, floppy disks and magnetic tape, optical recording media such as CD-ROMs, DVDs, and magneto-optical media such as floptical disks. media), and hardware devices specifically configured to store and execute program instructions, such as ROM, RAM, flash memory, and the like. Examples of program instructions include not only machine code generated by a compiler, but also high-level language code that can be executed by a computer using an interpreter or the like. The hardware device may be configured to operate as one or more software modules to perform the process according to the invention, and vice versa. The hardware device may include a processor, such as a CPU or a GPU, coupled with a memory such as a ROM / RAM for storing program instructions and configured to execute instructions stored in the memory, and may exchange signals with an external device. It may include a communication unit. In addition, the hardware device may include a keyboard, a mouse, and other external input devices for receiving instructions written by developers.

Although the present invention has been described by specific embodiments such as specific components and the like, but the embodiments and the drawings are provided to assist in a more general understanding of the present invention, the present invention is not limited to the above embodiments. For those skilled in the art, various modifications and variations can be made from these descriptions.

Accordingly, the spirit of the present invention should not be limited to the above-described embodiments, and all of the equivalents or equivalents of the claims, as well as the appended claims, fall within the scope of the spirit of the present invention. I will say.

Claims

In the method of using the blockchain database to log in through public key infrastructure (PKI) -based authentication for the user's login request to use the service provided by the service providing server,

(a) at least one neighboring hash value matching the information of a server certificate which is a certificate of the service providing server or a first specific hash value which is a hash value of a server certificate registration transaction which is a processed value-the neighboring hash value is (i ) A hash value of a specific server certificate registration transaction, which is information of a specific server certificate or a processed value, (ii) a hash value of a specific application certificate registration transaction, which is a value of a specific application certificate or a processed value, and (iii) a specific authentication result message. Or one of hash values including a hash value of a specific authentication result transaction, which is a processed value of the first representative hash value generated by hashing together or a value processed by the first representative hash value, and by the user terminal. A second hash value of the application certificate enrollment transaction, which is the certificate of the executing authentication application In a state in which a second representative hash value or a value obtained by processing the second representative hash value generated by hashing at least one neighboring hash value matching a predetermined hash value is recorded in a predetermined blockchain database, When authentication request information, which is information for requesting proxy for login through an authentication application, is obtained from a service providing application executed by the user terminal, an authentication request that is a result of the service providing server determining whether or not the login is possible. Delivering response information to the service providing application or allowing another device to deliver it;

(b) if the server challenge request information including the variable authentication value generated by the authentication server is obtained from the authentication application after the authentication redirection request of the service providing application is transmitted to the authentication application, The service providing server may allow the authentication server to transmit the server challenge request response information corresponding to the server challenge request information to the authentication application or to be transmitted to another device, thereby causing the authentication server to refer to the predetermined blockchain database. Supporting determining a certificate and whether the application certificate is valid; And

(c) if an authentication result message including whether the server certificate and the application certificate is obtained from the authentication server is obtained, and the authentication result message is an authentication success message indicating that the server certificate and the application certificate are valid, The service providing server, by passing a predetermined access token to the service providing application or by allowing other devices to pass to enable the service providing application to use the service through the access token; Steps to Process a Login

How to include.
The method of claim 1,

In step (b),

The server challenge request information includes the variable authentication value encoded by a public key of the server certificate,

The service providing server obtains the variable authentication value from the server challenge request information using a private key of the server certificate, and signs the variable authentication value using the private key of the server certificate. Delivering the server challenge request response information to the authentication application.
The method of claim 1,

In step (a),

The server certificate registration transaction and the application certificate registration transaction are further performed in a state of being recorded in a first blockchain database,

The predetermined blockchain database is a second blockchain database,

In step (b),

And support the authentication server to determine whether the server certificate and the application certificate are valid with reference to at least one of the first blockchain database and the second blockchain database.
The method of claim 3,

In step (b),

Assisting the authentication server to determine whether the server certificate and the application certificate are valid with reference to at least one of the first blockchain database and the second blockchain database, thereby causing the authentication server to: (A ) A process of recording the authentication result message or a processed value thereof as an authentication result transaction in the first blockchain database or by allowing other devices linked to the authentication server to record, and (B) a predetermined condition is satisfied. At least one neighbor hash value that matches a specific hash value that is a hash value of the authentication result transaction, wherein the neighbor hash value is (i) a hash value of a specific server certificate registration transaction, which is information of a specific server certificate or a processed value, (ii) the information in a particular application certificate or its value A representative hash value generated by hashing together a hash value of a specific application certificate enrollment transaction, and (iii) a hash value comprising a specific authentication result message or a hash value of a specific authentication result transaction that is a processed value thereof. Support to record the processed value of the representative hash value in the second blockchain database or to allow other devices linked to the authentication server to record, and the value of processing the representative hash value or the representative hash value is the second block. And performing a process of obtaining a transaction ID which is location information recorded in the chain database.
The method of claim 3,

The first blockchain database is a private blockchain database or a public blockchain database,

And wherein the second blockchain database is the private blockchain database or the public blockchain database.
In the method of using the blockchain database to log in through public key infrastructure (PKI) -based authentication for the user's login request to use the service provided by the service providing server,

(a) at least one neighboring hash value matching the information of a server certificate which is a certificate of the service providing server or a first specific hash value which is a hash value of a server certificate registration transaction which is a processed value-the neighboring hash value is (i ) A hash value of a specific server certificate registration transaction, which is information of a specific server certificate or a processed value, (ii) a hash value of a specific application certificate registration transaction, which is a value of a specific application certificate or a processed value, and (iii) a specific authentication result message. Or one of hash values including a hash value of a specific authentication result transaction, which is a processed value of the first representative hash value generated by hashing together or a value processed by the first representative hash value, and by the user terminal. A second hash value of the application certificate enrollment transaction, which is the certificate of the executing authentication application In a state in which a second representative hash value or a value obtained by processing the second representative hash value generated by hashing at least one neighboring hash value matching a predetermined hash value is recorded in a predetermined blockchain database, If the challenge initiation request information is obtained from the authentication application executed by the user terminal in response to an authentication redirection request corresponding to the authentication request information, which is information for requesting the substitution of the login through the authentication application, the authentication server, By generating a variable authentication value corresponding to the challenge initiation request information, and by passing the challenge initiation request response information including the variable authentication value to the authentication application or by allowing other devices to pass, the authentication application allows the service Offer standing Supporting server challenge request response information corresponding to server challenge request information for determining whether a server certificate which is a server's certificate is valid from the service providing server;

(b) when response request information including a multi-signature value, which is a value obtained by signing the server challenge request response information using a private key of an application certificate which is a certificate of the authentication application, is obtained from the authentication application, The server determines whether the server certificate and the application certificate are valid by using the server certificate registration transaction and the application certificate registration transaction obtained by referring to the response request information, the predetermined blockchain database, or other device. Assisting the user to determine; And

(c) the authentication server delivers an authentication result message including whether the server certificate is valid to at least one of the authentication application and the service providing server, or supports another device to deliver the authentication result message. In the case of the authentication success message indicating that the server certificate is valid, the service providing server supports the transfer of a predetermined access token to the service providing application executed by the user terminal, thereby causing the service providing application to perform the Processing the login by supporting the use of the service via an access token

How to include.
The method of claim 6,

The authentication server supports to manage or manage the information about the access level (access level) to the service providing server, determine the authorization level (reference) with reference to the access level,

The authentication result message includes information regarding the approval level, wherein whether the server certificate is valid is determined with reference to the approval level.
The method of claim 6,

In step (b),

And determining whether the server certificate and the application certificate are valid by verifying the signature of the multi-signature value using the public key of the server certificate and the public key of the application certificate.
The method of claim 6,

In step (a),

The server certificate registration transaction and the application certificate registration transaction are further performed in a state of being recorded in a first blockchain database,

The predetermined blockchain database is a second blockchain database,

After step (b),

(c0) a process for the authentication server to record the authentication result message or a processed value thereof as an authentication result transaction in the first blockchain database or to allow other devices linked to the authentication server to record;

If a predetermined condition is satisfied, at least one neighbor hash value matching a specific hash value which is a hash value of the authentication result transaction-The neighbor hash value is (i) a specific server certificate which is information of a specific server certificate or a processed value thereof. A hash value of a registration transaction, (ii) a hash value of a specific application certificate enrollment transaction that is information of, or an instrumentation of, a particular application certificate, and (iii) a hash value of a particular authentication result message, or a specific authentication result transaction, which is a fabricated value. Is one of the hash values, and-the representative hash value generated by hashing together or the processed value of the representative hash value is recorded in the second blockchain database or supported by another device linked to the authentication server. The second hash value is obtained by processing the representative hash value or the representative hash value. Performing a process of obtaining a transaction ID, the position information recorded in the database

How to include more.
The method of claim 9,

The predetermined condition is

(i) a certain number of said specific hash values, and a condition under which said neighbor hash values are obtained or generated, (ii) a condition over which a predetermined time elapses, (iii) a condition under which a block is generated, and (iv) a service characteristic. A method comprising at least one of the conditions for.
The method of claim 9,

In the step (c0),

The authentication server may generate a merkle tree or allow the other device to generate a merkle tree in which the specific hash value is assigned to a leaf node,

When the predetermined condition is satisfied, the representative hash value or the value of the representative hash value generated by hashing together the hash values assigned to the at least one other leaf node matching the specific hash value is obtained. And record the obtained value in the second blockchain database or allow the other device to record it.
The method of claim 11,

When the Merkle tree is the first Merkle tree of at least one Merkle tree connected in a chain form, the first leaf node of the Merkle tree has a hash value or a processed value of predetermined message data consisting of text, numbers or symbols. Assigned method.
The method of claim 11,

If the predetermined condition is satisfied,

(x1) the authentication server supports (i) hashing or hashing the specified hash value and (ii) the hash value assigned to the sibling node of the node to which the particular hash value is assigned, and the result of the operation Supports assigning or assigning a hash value for the computed value to the parent node of the node,

(x2) if the parent node is a root node of the Merkle tree, supports to record or record a hash value assigned to the parent node as the representative hash value in the second blockchain database,

(x3) if the parent node is not the root node of the Merkle tree, repeating the steps (x1) to (x3) by using the hash value assigned to the parent node as the specific hash value.
The method of claim 13,

In (x1) above,

If a hash value is not assigned to a sibling node of a node to which the specific hash value is assigned even though the predetermined condition is satisfied, the authentication server allocates a predetermined hash value to the sibling node or causes the other device to allocate the hash value. And performing (x1) to (x3).
The method of claim 9,

When the authentication server stores the specific hash value and the at least one neighboring hash value in a predetermined first data structure, and then stores and manages a second data structure having the same form as the first data structure, And the first data structure and the second data structure are connected in a chain form.
The method of claim 15,

When the first data structure and the second data structure are Merkle trees, a root value of the first data structure or a hash value of the root value is assigned to the first leaf node of the second data structure. Way.
The method of claim 9,

In step (a) and step (b), if there is no reception of the authentication server, and in step (c0), if the predetermined condition is satisfied, the authentication server determines that the predetermined message data is the first leaf node. And generating or generating a Merkle tree assigned to a second leaf node, and recording or recording the root value or the processed value of the Merkle tree in the second blockchain database.
The method of claim 9,

(e) at least one transaction recorded in the first blockchain database, either periodically or in response to an integrity verification request, wherein the transaction comprises: (i) information of a particular server certificate or processing it; A specific server certificate enrollment transaction, which is a value, (ii) a specific application certificate enrollment transaction, which is information of a specific application certificate or a fabricated value, and (iii) a specific authentication result transaction, which is a specific authentication result message or a fabricated value. A first representative hash value generated by hashing together at least one neighboring hash value matching the hash value of or a value obtained by processing the first representative hash value is recorded in the second blockchain database corresponding thereto. The second representative hash value or a value corresponding to the processed second representative hash value By verifying the step of support to verify the integrity (integrity) of the transaction or verifying a cause other devices that work with the authentication server,

Method further comprising a.
In the method of using the blockchain database to log in through public key infrastructure (PKI) -based authentication for the user's login request to use the service provided by the service providing server,

(a) at least one neighboring hash value matching the information of the application certificate which is a certificate of the second application executed by the user terminal or a specific hash value which is a hash value of the application certificate registration transaction which is a processed value-the neighbor hash value is at least one of hash values including (i) a hash value of a specific application certificate enrollment transaction, which is information of a specific application certificate or a processed value thereof, and (ii) a hash value of a specific authentication result message or a specific authentication result transaction, which is a processed value thereof. The second application from the first application executed by the user terminal in a state in which the representative hash value generated by hashing together or the processed value of the representative hash value is recorded in a predetermined blockchain database. Request to act on login When the authentication request information including the user identification information for identifying the user from the second application received the authentication redirection request that is information is obtained, the service providing server includes the user identification information Delivering the challenge initiation request information to the authentication server or allowing another device to deliver the challenge initiation request information;

(b) when the challenge initiation request response information including the variable authentication value generated by the authentication server is obtained in response to the challenge initiation request information, the service providing server receives the application challenge request information including the variable authentication value. Supporting the second application to generate a value signed by the variable certificate with the private key of the application certificate by delivering to the second application or by allowing another device to deliver;

(c) when the application challenge request response information including the value signed with the private key of the application certificate is obtained, the service providing server transmits the application challenge request response information to the authentication server or another device; Assisting the authentication server to determine whether the application certificate is valid by referring to the predetermined blockchain database by supporting the forwarding; And

(d) if an authentication result message including whether the application certificate is valid is obtained from the authentication server, and if the authentication result message is an authentication success message indicating that the application certificate is valid, the service providing server provides a temporary ID. (temporary ID) to the second application or to enable other devices to pass, thereby allowing the first application to pass (i) the temporary ID and (ii) the second application from the second application to the first application. Processing the login by supporting the use of the service through an access token included in an authentication success message;

How to include.
The method of claim 19,

The challenge initiation request information further includes a public key of a server certificate which is a certificate of the service providing server,

The challenge initiation request response information includes the variable authentication value encoded by the public key of the server certificate,

In step (b),

The service providing server obtains the variable authentication value from the challenge initiation request response information using a private key of the server certificate, and signs the variable authentication value using a public key of the application certificate. Conveying the application challenge request information including a value to the second application.
The method of claim 19,

In step (a),

The application certificate registration transaction, which is the information of the application certificate or a processed value thereof, is additionally recorded in the first blockchain database,

The predetermined blockchain database is a second blockchain database,

In step (c),

And wherein the authentication server determines whether the application certificate is valid with reference to at least one of the first blockchain database and the second blockchain database.
The method of claim 19,

The temporary ID is,

And the information on the access token and the authorization level included in the authentication success message.
In the method of using the blockchain database to log in through public key infrastructure (PKI) -based authentication for the user's login request to use the service provided by the service providing server,

(a) at least one neighboring hash value matching the information of the application certificate which is a certificate of the second application executed by the user terminal or a specific hash value which is a hash value of the application certificate registration transaction which is a processed value-the neighbor hash value at least one of hash values including (i) a hash value of a specific application certificate enrollment transaction, which is information of a specific application certificate or a processed value thereof, and (ii) a hash value of a specific authentication result message or a specific authentication result transaction, which is a processed value thereof. The second application from the first application executed by the user terminal in a state in which the representative hash value generated by hashing together or the processed value of the representative hash value is recorded in a predetermined blockchain database. Request to act on login Is a challenge that includes the user identification information from the service providing server that obtains authentication request information including user identification information for identifying the user from the second application received an authentication redirection request, which is information. When the start request information is obtained, by the authentication server, generating a variable authentication value in response to the challenge start request information or supporting another device to generate the variable authentication value;

(b) delivering the challenge initiation request response information including the generated variable authentication value to the service providing server or by allowing another device to deliver the application challenge request information including the variable authentication value; Supporting the second application to generate a value signed by the variable authentication value with the private key of the application certificate;

(c) when application challenge request response information including a value signed with a private key of the application certificate is obtained, the authentication server refers to the application challenge request response information and the predetermined blockchain database. Determining whether the application certificate is valid using the obtained application certificate registration transaction or supporting another device to determine; And

(d) the authentication server assists the service providing server to deliver or transmits an authentication result message including whether the application certificate is valid to the service providing server and the second application or to another device. If the authentication result message is an authentication success message indicating that the application certificate is valid, assisting the first application to pass a temporary ID to the second application, and causing the first application to transmit from the second application to the first application. Processing the login by supporting the use of the service via (i) the temporary ID and (ii) an access token included in the authentication success message.

How to include.
The method of claim 23,

In step (a),

The application certificate registration transaction is further performed in a state of being recorded in the first blockchain database,

The predetermined blockchain database is a second blockchain database,

After step (c),

(d0) a process for the authentication server to record the authentication result message or a processed value thereof as an authentication result transaction in the first blockchain database or to allow other devices linked to the authentication server to record;

If a predetermined condition is satisfied, at least one neighbor hash value matching a specific hash value which is a hash value of the authentication result transaction, wherein the neighbor hash value is (i) a specific application certificate or a specific application certificate which is a processed value. A hash value of a registration transaction and (ii) at least one of a specific authentication result message or a hash value of a specific authentication result transaction which is a processed value thereof. A value recorded in the second blockchain database or supported by another device interoperating with the authentication server, wherein the representative hash value or a value obtained by processing the representative hash value is recorded in the second blockchain database Performing a process of obtaining a transaction ID, which is information

How to include more.
The method of claim 24,

(e) at least one transaction recorded in the first blockchain database, either periodically or in response to an integrity verification request, wherein the transaction comprises: (i) information of a particular application certificate or Generated by hashing together at least one of the neighbor hash values matching a hash value of a specific application certificate enrollment transaction that is a value and (ii) a particular authentication result message or a particular authentication result transaction that is a processed value thereof. By verifying whether the first representative hash value or the value of the first representative hash value matches the second representative hash value or the second representative hash value recorded in the second blockchain database corresponding thereto. Others verifying the integrity of the transaction or interworking with the authentication server Steps that help to enable verification

Method further comprising a.
A service providing server performing a method for performing a login through a public key infrastructure (PKI) -based authentication for a user's login request for using a service provided by a service providing server using a blockchain database.

At least one neighbor hash value matching the information of a server certificate which is a certificate of the service providing server or a first specific hash value which is a hash value of a server certificate registration transaction which is a processed value, wherein the neighbor hash value is (i) a specific server A hash value of a specific server certificate enrollment transaction, which is the information of the certificate or a fabricated value, (ii) a hash value of a specific application certificate enrollment transaction, which is the information of a specific application certificate or a fabricated value, and (iii) a specific authentication result message or a fabrication thereof. One of the hash values including the hash value of the specific authentication result transaction, which is a value-a first representative hash value generated by hash operation together, or a value obtained by processing the first representative hash value, and authentication performed by the user terminal. A second specific hash value of the application certificate enrollment transaction that is the application's certificate The authentication is performed in a state in which a second representative hash value generated by hashing together at least one neighboring hash value matching the hash value or a value obtained by processing the second representative hash value is recorded in a predetermined blockchain database. A communication unit for acquiring authentication request information, which is information for requesting the substitution of a login through an application, from a service providing application executed by the user terminal or for allowing another device to obtain the authentication request information; And

(i) when the authentication request information is obtained, a process of passing authentication request response information, which is a result of determining whether the login is possible, to the service providing application or supporting other devices to deliver; (ii) the service After the authentication redirection request of the providing application is forwarded to the authentication application, if server challenge request information including a variable authentication value generated by the authentication server is obtained from the authentication application, the server challenge request information is added to the server challenge request information. The server certificate and the application certificate are valid by referring the predetermined blockchain database by passing the corresponding server challenge request response information to the authentication application or by allowing another device to deliver the corresponding server challenge request response information. And (iii) an authentication result message is obtained from the authentication server, the authentication result message including whether the server certificate and the application certificate are valid, and wherein the authentication result message is the server certificate and the application certificate. Is an authentication success message indicating that is valid, the service providing application may pass a predetermined access token or support to another device to allow the service providing application to use the service through the access token. A processor that performs the process of handling the login by

Service providing server comprising a.
The method of claim 26,

In the above (ii) process,

The server challenge request information includes the variable authentication value encoded by a public key of the server certificate,

The processor may include obtaining a variable authentication value from the server challenge request information by using a private key of the server certificate, and signing the variable authentication value by using a private key of the server certificate. And delivering the server challenge request response information to the authentication application.
The method of claim 26,

The process (i),

The server certificate registration transaction and the application certificate registration transaction are further performed in a state of being recorded in a first blockchain database,

The predetermined blockchain database is a second blockchain database,

The process (ii),

And support the authentication server to determine whether the server certificate and the application certificate are valid by referring to at least one of the first blockchain database and the second blockchain database.
The method of claim 28,

The process (ii),

Assisting the authentication server to determine whether the server certificate and the application certificate are valid with reference to at least one of the first blockchain database and the second blockchain database, thereby causing the authentication server to: (A ) A process of recording the authentication result message or a processed value thereof as an authentication result transaction in the first blockchain database or by allowing other devices linked to the authentication server to record, and (B) a predetermined condition is satisfied. At least one neighbor hash value that matches a specific hash value that is a hash value of the authentication result transaction, wherein the neighbor hash value is (i) a hash value of a specific server certificate registration transaction, which is information of a specific server certificate or a processed value, (ii) the information in a particular application certificate or its value A representative hash value generated by hashing together a hash value of a specific application certificate enrollment transaction, and (iii) a hash value comprising a specific authentication result message or a hash value of a specific authentication result transaction that is a processed value thereof. Support to record the processed value of the representative hash value in the second blockchain database or to allow other devices linked to the authentication server to record, and the value of processing the representative hash value or the representative hash value is the second block. And a process for acquiring a transaction ID which is location information recorded in a chain database.
An authentication server performing a method of performing a login through a public key infrastructure (PKI) -based authentication for a user's login request to use a service provided by a service providing server using a blockchain database.

At least one neighbor hash value matching the information of a server certificate which is a certificate of the service providing server or a first specific hash value which is a hash value of a server certificate registration transaction which is a processed value, wherein the neighbor hash value is (i) a specific server A hash value of a specific server certificate enrollment transaction, which is the information of the certificate or a fabricated value, (ii) a hash value of a specific application certificate enrollment transaction, which is the information of a specific application certificate or a fabricated value, and (iii) a specific authentication result message or a fabrication thereof. One of the hash values including the hash value of the specific authentication result transaction, which is a value-a first representative hash value generated by hash operation together, or a value obtained by processing the first representative hash value, and authentication performed by the user terminal. A second specific hash value of the application certificate enrollment transaction that is the application's certificate The authentication is performed in a state in which a second representative hash value generated by hashing together at least one neighboring hash value matching the hash value or a value obtained by processing the second representative hash value is recorded in a predetermined blockchain database. Obtaining challenge initiation request information from an authentication application executed by the user terminal in response to an authentication redirection request corresponding to authentication request information, which is information for requesting a login through an application, or allowing another device to obtain the challenge initiation request information. Supporting communication unit; And

(i) when the challenge initiation request information is obtained, generates a variable authentication value corresponding to the challenge initiation request information, passes the challenge initiation request response information including the variable authentication value to the authentication application, or causes another device to Assisting the authentication application to obtain, from the service providing server, server authentication request response information corresponding to the server challenge request information for determining whether a server certificate which is a certificate of the service providing server is valid. (ii) when response request information is obtained from the authentication application, the response request information including a multi-signature value signed by the server challenge request response information using a private key of an application certificate that is a certificate of the authentication application; Response request Determining whether the server certificate and the application certificate are valid by using information, the server certificate registration transaction and the application certificate registration transaction obtained with reference to the predetermined blockchain database, or to allow other devices to determine Process, and (iii) forwarding an authentication result message including whether the server certificate is valid to at least one of the authentication application and the service providing server or by allowing another device to forward the authentication result message to the server certificate. Is a successful authentication message indicating that is valid, the service providing server supports the transfer of a predetermined access token to a service providing application executed by the user terminal to provide the service. It allows the application processor to perform the process that handles the login by enabling access to the service through the access token

Authentication server comprising a.
The method of claim 30,

The processor,

Support or manage information about an access level for the service providing server, determine an authorization level with reference to the access level,

And the authentication result message includes information regarding the approval level, wherein whether the server certificate is valid is determined by referring to the approval level.
The method of claim 30,

The process (ii),

And verifying whether the server certificate and the application certificate are valid by verifying the signature of the multi-signature value using the public key of the server certificate and the public key of the application certificate.
The method of claim 30,

The process (i),

The server certificate registration transaction and the application certificate registration transaction are further performed in a state of being recorded in a first blockchain database,

The predetermined blockchain database is a second blockchain database,

The processor,

After the above (ii) process,

(iii0-a) a process of recording the authentication result message or a processed value thereof as an authentication result transaction in the first blockchain database or by allowing other devices linked to the authentication server to record;

(iii0-b) if a predetermined condition is satisfied, at least one neighbor hash value that matches a specific hash value that is a hash value of the authentication result transaction, wherein the neighbor hash value is (i) information of a specific server certificate or the same A hash value of a specific server certificate enrollment transaction, which is a value, (ii) a hash value of a specific application certificate enrollment transaction, which is information of a specific application certificate or a fabricated value, and (iii) a specific authentication result transaction, a specific authentication result message or a fabricated value. Is one of the hash values including a hash value of-a representative hash value generated by hashing together or a value obtained by processing the representative hash value into the second blockchain database or written to another device linked to the authentication server. And record the representative hash value or the representative hash value by processing the representative hash value. The authentication server, characterized in that for performing the process for acquiring the transaction ID, the position information recorded in the database lock chain.
The method of claim 33, wherein

Periodically or in response to an integrity verification request, at least one transaction recorded by the processor in the first blockchain database, wherein the transaction is: (i) a specific server certificate that is information of a particular server certificate or a processed value thereof A hash value of a transaction comprising a registration transaction, (ii) a specific application certificate enrollment transaction that is information of, or a fictitious value of, a particular application certificate; A second representative hash value generated by hashing at least one neighboring hash value matched with the second representative hash value or a value obtained by processing the first representative hash value, corresponding to the second representative hash value recorded in the second blockchain database. Value or the second representative hash value to match the processed value And verifying the integrity of the transaction by verifying or supporting another device interworking with the authentication server.
A service providing server performing a method for performing a login through a public key infrastructure (PKI) -based authentication for a user's login request for using a service provided by a service providing server using a blockchain database.

At least one neighboring hash value matching the information of the application certificate which is the certificate of the second application executed by the user terminal or the specific hash value which is the hash value of the application certificate registration transaction which is a processed value-The neighboring hash value is (i At least one of a hash value of a specific application certificate registration transaction, which is information of a specific application certificate or a processed value thereof, and (ii) a hash value of a specific authentication result message or a specific authentication result transaction that is a processed value thereof. The representative hash value generated by the hash operation together or the value processed by the representative hash value is recorded in a predetermined blockchain database, and the login through the second application is executed from the first application executed by the user terminal. Requesting agency A communication unit for obtaining authentication request information including user identification information for identifying the user from the second application that has received an authentication redirection request, which is information, or for allowing another device to obtain the authentication request information; And

(i) when the authentication request information is obtained, delivering challenge initiation request information including the user identification information to an authentication server or allowing another device to deliver it; (ii) the authentication in response to the challenge initiation request information. When the challenge initiation request response information including the variable authentication value generated by the server is obtained, the application challenge request information including the variable authentication value may be transmitted to the second application or the other device may be transmitted to support the second device. A process for enabling an application to generate a value signed by the variable authentication value with a private key of the application certificate, and (iii) an application comprising a value signed by the private key of the application certificate Once the challenge request response information is obtained, the application A process of assisting the authentication server to determine whether the application certificate is valid by referring to the predetermined blockchain database by passing the challenge challenge request response information to the authentication server or by allowing another device to deliver it; and (iv) if an authentication result message including whether the application certificate is valid is obtained from the authentication server, and if the authentication result message is an authentication success message indicating that the application certificate is valid, the temporary ID is entered. To allow the first application to forward to a second application or to allow another device to forward, so that the first application is included in (i) the temporary ID and (ii) the authentication success message passed from the second application to the first application. Access token By allowing the services available through the processor to carry out the process for processing the login

Service providing server comprising a.
36. The method of claim 35 wherein

The challenge initiation request information further includes a public key of a server certificate which is a certificate of the service providing server,

The challenge initiation request response information includes the variable authentication value encoded by the public key of the server certificate,

In the above (ii) process,

The processor,

The application including a value obtained by acquiring the variable authentication value from the challenge initiation request response information using a private key of the server certificate and signing the variable authentication value using a public key of the application certificate Service providing server, wherein the challenge request information is transmitted to the second application.
36. The method of claim 35 wherein

The process (i),

The application certificate registration transaction, which is the information of the application certificate or a processed value thereof, is additionally recorded in the first blockchain database,

The predetermined blockchain database is a second blockchain database,

The process (iii),

And wherein the authentication server determines whether the application certificate is valid by referring to at least one of the first blockchain database and the second blockchain database.
An authentication server performing a method of performing a login through a public key infrastructure (PKI) -based authentication for a user's login request to use a service provided by a service providing server using a blockchain database.

At least one neighboring hash value matching the information of the application certificate which is the certificate of the second application executed by the user terminal or the specific hash value which is the hash value of the application certificate registration transaction which is a processed value-The neighboring hash value is (i At least one of a hash value of a specific application certificate registration transaction, which is information of a specific application certificate or a processed value thereof, and (ii) a hash value of a specific authentication result message or a specific authentication result transaction that is a processed value thereof. The representative hash value generated by the hash operation together or the value processed by the representative hash value is recorded in a predetermined blockchain database, and the login through the second application is executed from the first application executed by the user terminal. Requesting agency A challenge initiation including the user identification information from the service providing server that obtains authentication request information including user identification information for identifying the user from the second application that has received an authentication redirection request, which is information; A communication unit for obtaining request information or supporting another device from obtaining the request information; And

(i) when the challenge initiation request information is obtained, generating a variable authentication value in response to the challenge initiation request information or supporting another device to generate it; and (ii) a challenge initiation request including the generated variable authentication value. By sending the response information to the service providing server or by allowing another device to deliver the response information to the second application by supporting the service providing server to transmit the application challenge request information including the variable authentication value to the second application. A process for assisting the user to generate a value signed by the variable authentication value with a private key of the application certificate, and (iii) an application challenge request comprising a value signed by the private key of the application certificate. Once the response information is obtained, the application A process of determining whether or not the application certificate is valid or supporting another device to determine whether the application certificate registration transaction obtained with reference to the challenge challenge request response information and the predetermined blockchain database, and (iv) the Supporting the delivery of the authentication result message including whether the application certificate is valid to the service providing server and the second application or to allow other devices to deliver, so that the service providing server the authentication result message is valid The temporary ID passed from the second application to the first application by supporting the first application to transmit a temporary ID to the second application when the authentication success message indicates By enabling the services available through the access token (access token) included in the authentication success message processor to perform the process that handles the login

Authentication server comprising a.
The method of claim 38,

The process (i),

The application certificate registration transaction is further performed in a state of being recorded in the first blockchain database,

The predetermined blockchain database is a second blockchain database,

The processor,

After the above (iii) process,

(iv0-a) a process of recording the authentication result message or the processed value thereof as an authentication result transaction in the first blockchain database or allowing another device linked to the authentication server to record the authentication result message;

(iv0-b) if a predetermined condition is satisfied, at least one neighbor hash value matching a specific hash value that is a hash value of the authentication result transaction, wherein the neighbor hash value is: (i) information of a specific application certificate or the same; A representative hash value generated by hash operation together with at least one of a hash value of a specific application certificate enrollment transaction, which is a value, and (ii) a particular authentication result message or a hash value of a specific authentication result transaction, which is a processed value thereof. Record the processed hash value in the second blockchain database or allow other devices linked to the authentication server to record, and the representative hash value or the processed value of the representative hash value is the second blockchain. And performing a process of obtaining a transaction ID, which is location information recorded in a database. The authentication server.
The method of claim 39,

Periodically or in response to an integrity verification request, at least one transaction recorded by the processor in the first blockchain database, wherein the transaction is: (i) a specific application certificate that is information of, or a processed value of, a particular application certificate; And at least one of a registration transaction and (ii) a particular authentication result message or a particular authentication result transaction that is a truncated value of the first representative hash generated by hashing together at least one of the neighbor hash values that match the hash value of. Integrity of the transaction by verifying whether a value or a value for processing the first representative hash value matches a value for processing a second representative hash value or the second representative hash value recorded in the second blockchain database corresponding thereto. (integrity) or to another device linked to the authentication server Authentication server, characterized in that for supporting the verification.