JP2022506740A - Cryptographic systems and methods for personal information processing - Google Patents

Abstract

An encryption / decryption system and method that can enhance security by encrypting personal information using different versions of encryption keys are disclosed. According to one aspect of the invention, the private key management module includes a private key management module, a receive module, an encryption module, and a transmit module, but the private key management module generates a new private key when a predetermined key update condition is met. , And give new version information to the generated new private key, save the new private key and the new version information given to the new private key in the key storage destination, and respond to the request to provide the private key of the encryption module. The latest private key generated most recently and the version information of the latest private key are provided, and the encryption request terminal is the encryption information corresponding to the encryption target information and the version information corresponding to the encryption information-here, encryption. The version information corresponding to the information is the version information of the private key used to generate the encrypted information-provided by an encryption system that stores in a database.

Description

The present invention relates to an encryption / decryption system and method for personal information processing. More specifically, the present invention relates to an encryption / decryption system and method capable of enhancing security by encrypting personal information using different versions of encryption keys.

Recently, with the development of computer technology, an increasing number of companies are adopting ERP (Enterprise Resource Planning) solution software, which is a computer system for business related to the management and management of a company. With such ERP solution software, a company will handle a large amount of data necessary for the management and management of the company such as finance, production, and inventory.

The data handled by the ERP solution may include personal and confidential information.

The usual method of processing personal information or confidential information is a method of encrypting the relevant data and then storing the data in a storage destination (for example, a database). Most of the encryption / decryption of the stored data is performed based on the private key generated in advance, and unless there are special circumstances, the preset private key will be used forever. That is, in the normal encryption / decryption method, the private key once generated is used forever.

According to such a conventional encryption / decryption method, when the private key is leaked, there is a problem that all the data stored in the database can be leaked.

Therefore, it is necessary to provide a method for flexibly managing the private key used for encryption / decryption.

The problem to be solved by the present invention is encryption, which can enhance security by encrypting personal information using encryption keys of different versions in order to solve the problem of the conventional method. / To provide a decryption system and method.

According to one aspect of the present invention, an encryption request including a predetermined encryption target information is received from at least one private key, a private key management module that manages version information corresponding to each private key, and an encryption request terminal. In response to the encryption request, the encryption request receiving module requests the private key management module to provide a private key, and receives the encrypted private key and the version information of the encrypted private key from the private key management module. Then, the encryption module that encrypts the encryption target information using the received encryption secret key to generate the encryption information corresponding to the encryption target information, and the encryption corresponding to the encryption target information. The secret key management module generates a new private key when a predetermined key update condition is satisfied, and includes a transmission module that transmits the encryption information and the version information of the encrypted private key to the user terminal. New version information is given to the generated new private key, and the new private key and the new version information given to the new private key are stored in the key storage destination to respond to the request for providing the private key of the encryption module. The latest private key generated most recently and the version information of the latest private key are provided, and the encryption request terminal has the encryption information corresponding to the encryption target information and the version information corresponding to the encryption information. -Here, the version information corresponding to the encryption information is the version information of the private key used for generating the encryption information-the encryption system for storing in the database is provided.

In one embodiment, the encryption system is a decryption request receiving module that receives a decryption request including predetermined decryption target information and version information corresponding to the decryption target information from the decryption request terminal, and the decryption. A decryption module that requests the secret key management module for the decryption secret key corresponding to the version information corresponding to the decryption target information, and further decrypts the decryption target information by using the received decryption secret key. It may be included.

In one embodiment, the encryption module further generates hash information corresponding to the encryption target information, and the transmission module further transmits hash information corresponding to the encryption target information to the user terminal. The encryption request terminal may further store hash information corresponding to the encryption target information in the database.

In one embodiment, the encryption system is a decryption request including predetermined decryption target information, hash information corresponding to the decryption target information, and version information corresponding to the decryption target information from the decryption request terminal. The decryption request receiving module that receives the decryption request and the decryption secret key corresponding to the version information corresponding to the decryption target information are requested from the secret key management module, and the decryption using the received decryption secret key is used. It further includes a decoding module that decodes the decryption target information, but the decoding module verifies the hash information corresponding to the decryption target information, and if verified, even if the decryption target information is decoded. good.

In one embodiment, the encrypted target information may be characterized as personal information or confidential information.

In one embodiment, the private key management module responds to a request for providing a private key of the encryption module, and based on the encryption target information, among all the private keys already stored in the key storage destination, the secret key is described. The optimum private key for the encryption target information may be selected, and the selected optimum secret key and the version information of the optimum secret key may be provided to the encryption module.

In one embodiment, the private key management module periodically generates a new private key, and the generated new private key is given new version information and stored in the key storage destination, or is generated most recently. If the new private key is used more than a certain number of times, a new private key is generated, and the generated new private key is given new version information and stored in the key storage destination, or is explicitly stored by the key administrator. When a new private key is input, a new private key may be generated, and new version information may be given to the generated new private key and stored in the key storage destination.

In one embodiment, the private key management module receives a key update condition from a predetermined policy server, generates a new private key when the received key update condition is satisfied, and uses the generated new private key. You may give new version information and save it in the key storage destination.

In one embodiment, a re-encryption request receiving module that receives a re-encryption request for existing encryption information already stored in the database from the encryption request terminal is included, but in response to the re-encryption request, The secret key management module acquires an alternative secret key having version information different from the version information corresponding to the existing encryption information and the version information of the alternative secret key, and the encryption module obtains the alternative secret key. The existing encryption information is re-encrypted to generate re-encryption information, and the transmission module transmits the re-encryption information and the version information of the alternative private key to the user terminal, and the encryption is performed. The encryption request terminal may save the existing encryption information and the version information corresponding to the existing encryption information in the database by substituting the re-encryption information and the version information corresponding to the re-encryption information. good.

According to another aspect of the present invention, a step in which an encryption system receives an encryption request including predetermined encryption target information from an encryption request terminal, the encryption system responds to the encryption request. , The step of extracting the encrypted secret key and the version information corresponding to the encrypted secret key from the predetermined key storage destination, the encryption system encrypts the encrypted target information using the encrypted secret key. Then, the step of generating the encryption information corresponding to the encryption target information, the encryption system transfers the encryption information corresponding to the encryption target information and the version information of the encryption secret key to the user terminal. The step of transmitting and the encryption information corresponding to the encryption target information and the version information corresponding to the encryption information by the encryption request terminal-here, the version information corresponding to the encryption information is the encryption. A new private key is generated and generated if the encryption system meets certain key update conditions, including the step of storing in the database the version information of the private key used to generate the encryption information. The encryption system further includes a step of giving new version information to the new private key and storing the new private key and the new version information given to the new private key in the key storage destination. In response to the encryption request, an encryption method for providing the latest private key generated most recently and the version information of the latest private key is provided.

In one embodiment, a step in which the encryption system receives a decryption request including predetermined decryption target information and version information corresponding to the decryption target information from a decryption request terminal, and the encryption system. The step of extracting the decryption secret key corresponding to the version information corresponding to the decryption target information and decrypting the decryption target information using the decryption secret key may be further included.

In one embodiment, the step of generating the encryption information corresponding to the encryption target information includes the step of the encryption system further generating hash information corresponding to the encryption target information, and the encryption target is included. The step of transmitting the encryption information corresponding to the information and the version information of the encryption private key to the user terminal includes a step of further transmitting hash information corresponding to the encryption target information to the user terminal. The step of storing the encryption information corresponding to the encryption target information and the version information corresponding to the encryption information in the database may include a step of further storing the hash information corresponding to the encryption target information in the database. good.

In one embodiment, the encryption system includes a decryption request from a decryption request terminal, including predetermined decryption target information, hash information corresponding to the decryption target information, and version information corresponding to the decryption target information. And the encryption system extracts the decryption secret key corresponding to the version information corresponding to the decryption target information, and decrypts the decryption target information using the decryption secret key. The encryption system may further verify the hash information corresponding to the decryption target information, and if verified, decode the decryption target information.

In one embodiment, the step in which the encryption system extracts the encryption secret key and the version information corresponding to the encryption secret key from a predetermined key storage destination in response to the encryption request is the encryption target. Based on the information, a step of selecting the optimum private key (maximizing the security) for the encrypted target information from all the private keys already stored in the key storage destination may be included.

In one embodiment, the encryption system generates a new private key and gives new version information to the generated new private key when a predetermined key update condition is satisfied, and the new private key and the new secret key are given. The step of storing the new version information given to the new private key in the key storage destination periodically generates a new private key, and gives the generated new private key the new version information to the key storage destination. In the step of saving to, if the most recently generated private key is used more than a certain number of times, a new private key is generated, and new version information is given to the generated new private key and saved in the key storage destination. Even if a step or a step of generating a new private key and giving new version information to the generated new private key and saving it in the key storage destination when an explicit command of the key administrator is input is included. good.

In one embodiment, the encryption system generates a new private key when a predetermined key update condition is satisfied, and gives new version information to the generated new private key to obtain the new private key and the new private key. The step of saving the new version information given to the new private key in the key storage destination receives a key update condition from a predetermined policy server, and if the received key update condition is satisfied, a new private key is generated. And may include a step of giving new version information to the generated new private key and storing it in the key storage destination.

In one embodiment, the encryption system receives a re-encryption request for existing encryption information already stored in the database from the encryption request terminal, and the encryption system responds to the re-encryption request. In response, the alternative secret key having the version information different from the version information corresponding to the existing encryption information and the version information of the alternative secret key are extracted, and the existing encryption information is re-used by using the alternative secret key. The step of generating the encrypted re-encryption information, the transmission module transmits the re-encryption information and the version information of the alternative private key to the user terminal, and the user terminal performs the existing encryption. Further may include a step of substituting the information and the version information corresponding to the existing encrypted information with the re-encrypted information and the version information corresponding to the re-encrypted information and storing the information in the database.

According to another aspect of the present invention, there is provided a computer-readable recording medium on which a program for performing the method described above is recorded.

According to another aspect of the invention, the encryption system includes a processor and a memory for storing the program, and if the program is executed by the processor, the encryption system is described above. An encryption system is provided that allows the method to be performed.

According to one embodiment of the present invention, it is possible to provide an encryption / decryption system and a method capable of enhancing security by encrypting personal information using encryption keys of different versions. can.

A brief description of each of the drawings provided in order to better understand the drawings cited in the detailed description of the invention.
It is a figure which shows the driving environment of the encryption system which concerns on one Embodiment of this invention. It is a figure which shows the operation of the encryption system which concerns on one Embodiment of this invention. It is a block diagram which shows the specific structure of the encryption system which concerns on one Embodiment of this invention. It is a figure which shows an example of the information stored in a database. It is a figure which shows the format of the data to be saved. It is a figure for demonstrating the function of the encryption system which concerns on one Embodiment of this invention from the management aspect.

Since the present invention may be subjected to various transformations and may have various embodiments, specific embodiments will be illustrated in the drawings and detailed in detail. However, this is not intended to limit the invention to any particular embodiment, but should be understood to include all transformations, equivalents or alternatives contained within the ideas and technical scope of the invention. In explaining the present invention, if it is determined that a specific description of the related publicly known technique may obscure the gist of the present invention, the detailed description thereof will be omitted.

The terms first, second, etc. are used to describe various components, but the components should not be limited by terms. The term is used only for the purpose of distinguishing one component from the other.

The terms used in this application are used solely to describe a particular embodiment and are not intended to limit the invention. A singular expression includes multiple expressions unless they have a distinctly different meaning in context.

As used herein, terms such as "include" or "have" seek to specify the existence of features, numbers, steps, actions, components, parts, or combinations thereof described herein. It must be understood that it is a thing and does not preclude the possibility of the existence or addition of one or more different features or numbers, steps, actions, components, parts, or combinations thereof.

Also, as used herein, when one component "sends" data to another component, the component may send data directly to the other component, at least one or the other. It means that data may be transmitted to other components via the component of. On the other hand, when one component "sends" data directly to another component, the data is sent from the component to the other component without going through the other component. Means.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings. The same reference numeral presented in each drawing indicates the same member.

FIG. 1 is a diagram showing a driving environment of an encryption system according to an embodiment of the present invention.

Referring to FIG. 1, a predetermined encryption system 100 may be provided in order to embody the encryption / decryption method according to the embodiment of the present invention. The encryption system 100 may be a data processing device. In one embodiment, the encryption system 100 may be a server.

The encryption system 100 can perform encryption on predetermined data or decrypt the encrypted data at the request of the user terminal 10.

The encryption system 100 can encrypt data by a private key method.

In one embodiment, the information to be encrypted may be personal information or confidential information.

Personal information can be used as information that can directly or indirectly identify an individual (including the case where a specific individual cannot be identified by the information alone, but can be easily combined with other information to identify the individual), such as name, resident number, and so on. It may include date of birth, gender, address, e-mail address, etc. Alternatively, it may be personal information defined by the Act on Promotion of Information and Communication Network Utilization and Information Protection, or the Personal Information Protection Act.

Confidential information may mean thoughts, beliefs, joining or withdrawing from labor unions or political parties, political views, information about health or sexual life, or any other personal information that could significantly infringe on the personal life of the information subject. ..

The private key used for encryption / decryption may be stored in the key storage destination 200. The key storage destination 200 may be embodied in a form included in the encryption system 100, and depending on the embodiment, the key storage destination 200 may be constructed in a remote location, and both may be connected via a network. In the latter case, a security channel may be formed between the key storage destination 200 and the encryption system 100. Further, the encryption system 100 can access the key storage destination 200 via socket communication.

On the other hand, the user terminal 10 may be an information processing device having a network communication function. For example, the user terminal 10 may be a desktop computer, a laptop computer, a mobile phone, a satellite phone, a wireless phone, a SIP (Session Initiation Protocol), a WLL (Williance Local Loop) station, a smartphone, a tablet PC, or a PDA (Personal Digital Assistant). ) And the like, it may be a processing device including a mobile device.

The encryption system 100 and the user terminal 10 are connected via a wireless network, and can transmit and receive various information, data, and / or signals necessary for embodying the technical idea of the present invention.

The number of user terminals 10 and 10-1 may be plural.

The user terminal 10 may be an encryption request terminal requesting encryption or a decryption request terminal requesting decryption.

Even if the user terminal 10 requests the encryption system 100 to encrypt the information to be encrypted such as personal information or confidential information, and stores the information encrypted by the encryption system 100 in a predetermined database 20. good. That is, the user terminal 10 does not store the encryption target information in the plain text form, but may convert it into the encrypted form and store it in the database 20.

On the other hand, the encryption system 100 may update the private key used for encryption, or may manage the updated private key for each version. Therefore, the encryption system 100 may perform encryption / decryption using any one of many private keys having different versions.

In one embodiment, the encryption system 100 may update the private key if there is a periodic or explicit update command.

In another embodiment, the encryption system 100 may update the private key according to the update policy provided by the predetermined policy server 300.

FIG. 2 is a diagram showing the operation of the encryption system 100.

Referring to FIG. 2, an application requesting data encryption or decryption may be installed in the user terminal 10, and the encryption system 100 includes an encryption / decryption module and a private key management module. It may be. The encryption / decryption module is a module that encrypts / decrypts according to the request of the application, and the private key management module can perform functions of generating, inquiring, and deleting the private key. At least one private key used for encryption / decryption is stored in the private key storage destination 200. As described above, the private key management module can access the private key storage destination 200 via a method such as socket communication, and the private key storage destination 200 may be constructed in a remote location.

FIG. 3 is a block diagram showing a specific configuration of the encryption system 100.

As shown in FIG. 3, the encryption system 100 includes an encryption request receiving module 110, an encryption module 120, a transmitting module 130, a decryption request receiving module 140, a decryption module 150, a re-encryption request receiving module 160, and a secret. The key management module 170 may be included. Depending on the embodiment of the present invention, some of the components described above may not necessarily be the components essential for the realization of the present invention, and depending on the embodiment, the encryption system 100 may be configured. Of course, it may contain more components than this. For example, the encryption system 100 may have other configurations included in the encryption system 100 (eg, encryption request receiving module 110, encryption module 120, transmission module 130, decryption request receiving module 140, decryption module 150, etc.). It may further include a control module (not shown) capable of controlling the functions and / or resources of the re-encryption request receiving module 160, private key management module 170, etc.).

The cryptographic system 100 may include the hardware resources and / or software necessary to embody the technical ideas of the invention, necessarily meaning one physical component, or one. It does not mean a device. That is, the encryption system 100 does not mean a logical combination of hardware and / or software provided for embodying the technical idea of the present invention, and is installed in a device separated from each other as necessary. And by performing each function, it may be embodied as a set of logical configurations for embodying the technical idea of the present invention. Further, the encryption system 100 may mean a set of configurations separately embodied for each function or role for embodying the technical idea of the present invention. For example, the encryption request receiving module 110, the encryption module 120, the transmitting module 130, the decryption request receiving module 140, the decryption module 150, the re-encryption request receiving module 160, and the private key management module 170 are different physical devices. It may be located in the same physical device. Further, depending on the embodiment, each of the encryption request receiving module 110, the encryption module 120, the transmitting module 130, the decryption request receiving module 140, the decryption module 150, the re-encryption request receiving module 160, and the private key management module 170. The combination of the software and / or the hardware constituting the above may also be located in different physical devices, and the configurations located in different physical devices may be organically combined with each other to embody the respective modules.

Further, in this specification, a module may mean a functional and structural combination of hardware for carrying out the technical idea of the present invention and software for driving the hardware. For example, a module may mean a given code and a logical unit of hardware resources for the given code to be made, not necessarily physically concatenated code, or one type of hardware. It can be easily inferred by an expert with average knowledge in the technical field to which the present invention belongs that it does not mean ware.

The private key management module 170 can manage at least one private key and version information corresponding to each private key. The private key management module 170 may perform a function of extracting a private key used for encryption / decryption from a key storage destination 200, generating a new private key, or deleting or updating an existing private key. can.

On the other hand, each key stored in the key storage destination 200 may be given a different version from each other. That is, each key stored in the key storage destination 200 may be given a unique version, and the private key management module 170 can also assign the version.

The key storage destination 200 may be a DB in which records having the formats of {private key} and {private key version} are stored.

The encryption request receiving module 110 may receive an encryption request including predetermined encryption target information from the encryption request terminal 10.

In response to the encryption request, the encryption module 120 requests the private key management module 170 to provide the private key, and receives and receives the encrypted private key and the version information of the encrypted private key from the private key management module 170. It is possible to encrypt the encryption target information and generate the encryption information corresponding to the encryption target information by using the encrypted private key.

In response to the request for providing the private key of the encryption module 120, the private key management module 170 extracts one of the private keys already stored in the key storage destination 200 and provides it to the encryption module 120. Can be done.

For example, the private key management module 170 can provide the most recently generated private key.

In another embodiment, the private key management module 170 responds to the request for providing the private key of the encryption module 120, and is based on the encryption target information, among all the private keys already stored in the key storage destination 200. The optimum private key for the encryption target information can be selected, and the selected optimum private key and the version information of the optimum private key can be provided to the encryption module 120. There are various ways to select the optimal private key. In one embodiment, the private key management module 170 can select a private key that maximizes the security of the information to be encrypted.

The transmission module 130 can transmit the encryption information corresponding to the encryption target information and the version information of the encryption private key to the encryption request terminal 10.

Then, the encryption request terminal 10 uses the encryption information corresponding to the encryption target information and the version information corresponding to the encryption information-here, the version information corresponding to the encryption information is used to generate the encryption information. The private key version information-can be stored in the database 20.

On the other hand, depending on the embodiment, the encryption module 120 further generates hash information corresponding to the encryption target information, and the transmission module 130 further transmits the hash information corresponding to the encryption target information to the user terminal. The encryption request terminal 10 can also further store the hash information corresponding to the encryption target information in the database 20. The hash information will be used later for data verification.

On the other hand, the private key management module 170 generates a new private key, gives new version information to the generated new private key, and is given to the new private key and the new private key when a predetermined key update condition is satisfied. The new version information can be stored in the key storage destination 200, and the latest private key generated most recently and the version information of the latest private key can be provided in response to the request for providing the private key of the encryption module.

Depending on the embodiment, the private key management module 170 periodically generates a new private key, and gives new version information to the generated new private key and stores it in the key storage destination, or the most recently generated private key. If is used more than a certain number of times, a new private key is generated, and the generated new private key is given new version information and saved in the key storage destination 200, or an explicit command of the key administrator is input. If this is the case, a new private key may be generated, and the generated new private key may be given new version information and stored in the key storage destination 200.

Alternatively, in one embodiment, the private key management module 170 receives a key update condition from a predetermined policy server 300, generates a new private key when the received key update condition is satisfied, and generates a new secret. New version information may be given to the key and saved in the key storage destination 200.

In this way, the private key management module 170 updates the private key used for encryption. Therefore, when the encryption request terminal 10 requests encryption for a plurality of pieces of information, the plurality of pieces of information are all based on the same private key. It is not encrypted and may be encrypted with a private key that meets certain conditions or is updated periodically.

On the other hand, as described above, the encrypted information (ie, the encrypted information) may be stored in the database 20 together with the version of the private key used to generate the encrypted information, in some cases. Depending on the case, it may be saved together with the hash value.

FIG. 4 is a diagram showing an example of information stored in the database, and FIG. 5 is a diagram showing the format of the stored data.

Referring to FIG. 4, a plurality of data are stored in the database 20 in a form encrypted by a total of four private keys v1, v2, v3, v4, and the respective encrypted information is shown in FIGS. 4 and 5. As shown, it is stored in the form of {private key version}, {encryption}, {hash}, the secret key version is the secret key identifier of the cipher made by the symmetric key algorithm, and the hash value is cryptographic. A value for checking sentence modulation.

As described above, according to the technical idea of the present invention, the encrypted data can be decrypted only by the specified private key. Therefore, even if the specific private key is leaked, the entire data may be in danger. Can be prevented.

On the other hand, depending on the embodiment, instead of storing the version of the private key used for generating the ciphertext in the DB 20, if the ciphertext is input, the secret used for encrypting the input ciphertext is stored. A neural network that outputs the key version may be stored. At this time, the neural network may be a neural network having a property of overfitting to the training data.

More specifically, if the encryption request terminal 10 receives the encryption information corresponding to the encryption target information and the version information corresponding to the encryption information, the encryption request terminal 10 will receive the version information corresponding to the encryption information. The encrypted information labeled in is input to the neural network to learn the neural network.

Since the neural network is learned only by the learning data input by the encryption request terminal 10 (that is, the encryption information labeled with the version information corresponding to the encryption information), it is actually overfitted with the encryption information. When one of the encrypted information used for training is input to the neural network after the training of the neural network is completed, the secret key used to encrypt the input encrypted information is used. Version information may be output from the neural network. The version information of the private key output in this way may be used to decrypt the encrypted information later.

Hereinafter, decoding will be described with reference to FIG.

The decryption request terminal 10-1 can extract at least one of the data stored in the database 20 and make a decryption request to the encryption system 100.

Then, the decoding request receiving module 140 can receive the decoding request including the predetermined decoding target information and the version information corresponding to the decoding target information from the decoding request terminal (for example, 10-1). .. Depending on the embodiment, the decryption request may further include hash information corresponding to the decryption target information.

The decryption module 150 requests the secret key management module 170 for a decryption secret key corresponding to the version information corresponding to the decryption target information, and decodes the decryption target information using the received decryption secret key. can do.

Depending on the embodiment, the decoding module 150 verifies the hash information corresponding to the decoding target information, and if verified, the decoding target information may be decoded.

On the other hand, the encryption system 100 may re-encrypt the existing encrypted information with another private key, or may batch process the re-encryption of the entire data stored in the database 20.

Therefore, the re-encryption request receiving module 160 can receive the re-encryption request of the existing encryption information already stored in the database 20 from the encryption request terminal 10.

Then, in response to the re-encryption request, the private key management module 170 acquires the alternative private key and the version information of the alternative private key having the version information different from the version information corresponding to the existing encryption information, and the encryption module. The 120 can generate the re-encrypted information by re-encrypting the existing encrypted information by using the alternative private key. In order to re-encrypt the specific encrypted data, the encryption module 120 may perform a process of decrypting the encrypted data with the original encryption key and then encrypting with the new encryption key.

The transmission module 130 transmits the re-encryption information and the version information of the alternative private key to the user terminal, and the encryption request terminal 10 re-encrypts the existing encryption information and the version information corresponding to the existing encryption information. The information and the version information corresponding to the re-encryption information can be substituted and stored in the database 20.

FIG. 6 is a diagram for explaining the function of the encryption system 100 according to the embodiment of the present invention from the management aspect.

With reference to FIG. 6, the administrator can inquire, change, delete, and generate the private key via the management tool installed in his / her terminal. The private key of the data encrypted by the data patch processing may be newly generated or replaced with an existing version to perform batch decryption processing, and then re-encryption may be performed. Forgery / alteration verification may be performed on the encrypted personal information.

FIG. 7 is a diagram for explaining an encryption process among the encryption methods for personal information processing according to the embodiment of the present invention.

Referring to FIG. 7, the encryption request terminal 10 can request the encryption system 100 to encrypt the personal information A (S110).

Then, the encryption system 100 acquires one of the private keys (secret key k) stored in the key storage destination 200 from the key storage destination 200 and the version information V (k) of the private key k (S120). , Personal information A can be encrypted with the private key k to generate encrypted information E (S130).

After that, the encryption system 100 transmits the encryption information E and the version information V (k) of the private key k used for encrypting the encryption information E to the encryption request terminal 10 (S140), and requests encryption. The terminal 10 can store the encryption information E and the version information V (k) in the DB 20 (S150).

Depending on the embodiment, the encryption system 100 may further generate hash information and transmit it to the encryption request terminal 10, and the encryption request terminal 10 may store the hash information together.

Further, depending on the embodiment, the encryption request terminal 10 may perform the process as shown in FIG. 8 instead of the 150 steps in FIG. 7. Referring to FIG. 8, the encryption request terminal 10 stores only the encryption information E in the DB 20 (S151), and instead of storing the version information V (k) of the private key k in the DB 20, the encryption request terminal 10 uses V (k). The labeled encryption information E may be input to the neural network 25 as training data (S152). Then, the neural network is machine-learned by the training data E (S153).

FIG. 9 is a diagram for explaining a decryption process among the encryption methods for personal information processing according to the embodiment of the present invention.

Referring to FIG. 9, the decryption request terminal 10-1 acquires the encryption information E to be decrypted and the version information V (k) of the secret key k used for encrypting the encryption information E from the DB 20. (S210), the encryption system 100 can request the decryption of the encryption information E (S210). At this time, the decryption request terminal 10-1 can transmit not only the encryption information E but also the version V (k) of the private key k to the encryption system 100.

Then, the encryption system 100 acquires the secret key (that is, the secret key k) corresponding to the version V (k) among the secret keys stored in the key storage destination 200 from the key storage destination 200 (S230). , The encryption information E can be decrypted with the private key k to generate the personal information A (S240).

After that, the encryption system 100 can transmit the decrypted personal information A to the decryption request terminal 10-1 (S250).

On the other hand, depending on the embodiment, the decoding request terminal 10-1 may perform the process as shown in FIG. 10 instead of the 210 steps in FIG. Referring to FIG. 10, the decryption request terminal 10-1 acquires the encryption information E from the DB 20 (S211), inputs the encryption information E to the learned neural network 25, and predicts the result of the neural network 25. Can be requested (S212). Then, the neural network 25 can output the version information V (k) of the secret key k used for encrypting the encryption information E as a prediction result (S213).

On the other hand, according to the embodiment, the encryption system 100 may include a processor and a memory for storing a program executed by the processor. The processor may include a single core CPU or a multi-core CPU. The memory may include fast random access memory or may include non-volatile memory such as at least one magnetic disk storage device, flash memory device, or other non-volatile solid state memory device. Access to memory by the processor and other components may be controlled by the memory controller. Here, when the program is executed by the processor, the encryption system 100 according to the present embodiment may be used to perform the above-mentioned method of providing consulting information.

On the other hand, the method of providing the above-mentioned consulting information according to the embodiment of the present invention is embodied in the form of a computer-readable program command and may be stored in a computer-readable recording medium. The control program and the target program according to the above may also be stored in a computer-readable recording medium. Computer-readable recording media include all types of recording devices in which data readable by computer systems is stored.

The program commands recorded on the recording medium may be those specifically designed and configured for the present invention, or may be those known and usable by those skilled in the art of software.

Examples of computer-readable recording media include hard disks, floppy disks, magnetic media such as magnetic tapes, optical media such as CD-ROMs and DVDs, and floptic discs. Optical magnetic recording media (magneto-optic media) such as (floptic disc), and hardware specifically configured to store and execute program commands such as ROM, RAM, flash memory, etc. Ware equipment is included. Further, the computer-readable recording medium may be distributed in a computer system connected by a network, and a computer-readable code may be stored and executed by a distributed method.

Examples of program commands include not only machine language codes created by a compiler, but also high-level language codes executed by a device that electronically processes information using an interpreter or the like, for example, a computer.

The hardware device described above may be configured to operate as at least one software module in order to perform the operation of the present invention, and vice versa.

The above description of the present invention is for illustration purposes only, and any person who has ordinary knowledge in the technical field to which the present invention belongs can use it without changing the technical idea or essential features of the present invention. You should be able to understand that it is easy to transform into a concrete form of. Therefore, it should be understood that the embodiments described above are exemplary in all respects and are not limiting. For example, each component described in the single type may be carried out in a distributed manner, and similarly, the components described as being distributed may be carried out in a combined form.

The scope of the present application is shown by the scope of claims described later rather than the detailed description, and the meaning and scope of the claims and all modified or modified forms derived from the concept of equality thereof are the scope of the present invention. Must be interpreted as being included in.

The present invention can be used in encryption systems and methods for personal information processing.

Claims (13)

A private key management module that manages at least one private key and version information corresponding to each private key,
An encryption request receiving module that receives an encryption request containing predetermined encryption target information from an encryption request terminal.
In response to the encryption request, the private key management module is requested to provide the private key, the encrypted private key and the version information of the encrypted private key are received from the private key management module, and the received encryption is performed. An encryption module that encrypts the encryption target information using a private key to generate encryption information corresponding to the encryption target information, and encryption information corresponding to the encryption target information and the encryption secret. Includes a transmit module that sends key version information to the user terminal,
The private key management module is
When a predetermined key update condition is satisfied, a new private key is generated, and new version information is given to the generated new private key, and the new private key and the new version information given to the new private key are used. It is stored in the key storage destination, and in response to the request for providing the private key of the encryption module, the latest private key generated most recently and the version information of the latest private key are provided.
The encryption request terminal is
Encryption information corresponding to the encryption target information and version information corresponding to the encryption information-Here, the version information corresponding to the encryption information is the version of the private key used to generate the encryption information. An encryption system that stores information-in a database. The encryption system is
Corresponds to the decryption request receiving module that receives the decryption request including the predetermined decryption target information and the version information corresponding to the decryption target information from the decryption request terminal, and the version information corresponding to the decryption target information. The encryption system according to claim 1, further comprising a decryption module that requests a decryption secret key from the secret key management module and decrypts the decryption target information by using the received decryption secret key. The encryption module is
Further generating hash information corresponding to the encryption target information,
The transmission module
Hash information corresponding to the encryption target information is further transmitted to the user terminal, and the hash information is further transmitted.
The encryption request terminal is
The encryption system according to claim 1, further storing hash information corresponding to the encryption target information in the database. The encryption system is
A decryption request receiving module that receives a decryption request including predetermined decryption target information, hash information corresponding to the decryption target information, and version information corresponding to the decryption target information from the decryption request terminal, and the above-mentioned A decryption module that requests the secret key management module for the decryption secret key corresponding to the version information corresponding to the decryption target information, and uses the received decryption secret key to decrypt the decryption target information. Including more,
The decoding module is
The encryption system according to claim 3, wherein the hash information corresponding to the decryption target information is verified, and when the hash information is verified, the decryption target information is decrypted. The encryption system according to claim 1, wherein the encryption target information is personal information or confidential information. The private key management module is
Optimal for maximizing the security of the encryption target information among all the private keys already stored in the key storage destination based on the encryption target information in response to the request for providing the private key of the encryption module. The encryption system according to claim 1, wherein a private key is selected, and the selected optimum private key and version information of the optimum private key are provided to the encryption module. The private key management module is
A new private key is periodically generated, and new version information is given to the generated new private key and stored in the key storage destination.
If the most recently generated private key is used more than a certain number of times, a new private key is generated, and new version information is given to the generated new private key and stored in the key storage destination, or key management. The encryption system according to claim 1, wherein when an explicit command of a person is input, a new private key is generated, and new version information is given to the generated new private key and stored in the key storage destination. .. The private key management module is
A key update condition is received from a predetermined policy server, and if the received key update condition is satisfied, a new private key is generated, and new version information is given to the generated new private key and stored in the key storage destination. The encryption system according to claim 1. It also includes a re-encryption request receiving module that receives a re-encryption request for existing encryption information already stored in the database from the encryption request terminal.
In response to the re-encryption request
The secret key management module acquires an alternative secret key having version information different from the version information corresponding to the existing encryption information and the version information of the alternative secret key.
The encryption module uses the alternative private key to generate re-encrypted information by re-encrypting the existing encrypted information.
The transmission module transmits the re-encryption information and the version information of the alternative private key to the user terminal.
The encryption request terminal is
The encryption according to claim 1, wherein the existing encryption information and the version information corresponding to the existing encryption information are replaced with the re-encryption information and the version information corresponding to the re-encryption information and stored in the database. Cryptographic system. A step in which an encryption system receives an encryption request including predetermined encryption target information from an encryption request terminal.
A step in which the encryption system extracts an encryption secret key and version information corresponding to the encryption secret key from a predetermined key storage destination in response to the encryption request.
A step in which the encryption system encrypts the encryption target information using the encryption secret key to generate encryption information corresponding to the encryption target information.
The step in which the encryption system transmits the encryption information corresponding to the encryption target information and the version information of the encryption private key to the user terminal, and the encryption request terminal is used as the encryption target information. Corresponding encryption information and version information corresponding to the encryption information-here, the version information corresponding to the encryption information is the version information of the private key used to generate the encryption information-in a database. Includes steps to save to
When the predetermined key update condition is satisfied, the encryption system generates a new private key, gives new version information to the generated new private key, and gives the new private key and the new private key. Further including the step of saving the new version information obtained in the key storage destination,
The encryption system is an encryption method that provides the latest secret key generated most recently and version information of the latest secret key in response to the encryption request. The step in which the encryption system receives a decryption request including predetermined decryption target information and version information corresponding to the decryption target information from the decryption request terminal, and the encryption system is the decryption target information. The encryption method according to claim 10, further comprising a step of extracting the decryption secret key corresponding to the version information corresponding to the above and decrypting the decryption target information using the decryption secret key. A computer-readable recording medium installed in a data processing apparatus and recording a program for performing the method according to any one of claims 10 to 11. It ’s an encryption system,
Processor,
Includes memory storing programs
The program is an encryption system that, when executed by the processor, causes the encryption system to perform the method according to any one of claims 10 to 11.

Images