KR100286904B1 - System and method for security management on distributed PC - Google Patents

Abstract

A distributed PC security management system and method are disclosed. To the SENEX management system (1), agency management system (2), manager system (3), user registration management system (4), encryption system (5), decryption system (6), and X-FTP server module (7). In the distributed PC security management system is configured, the security policy and access control management step by the management server (S100); The user identification and authentication management step of checking the authentication when decrypting by encrypting the file with the access control group key and the user's private key, and immediately notifying the attempted action by the administrator's print when an illegal accessor violates the password for a certain number of times (S200). ); Securely import and send shared files and folders on a net share between remote locations by access control to ensure the integrity of important documents, protect files and folders with the ability to protect encrypted files from hidden and deleted files, and compress them. And batch diskette sequential backup by encryption function, enabling program execution and file preview in the protector state to prevent the deletion and copying of important files at random, and to selectively check and repair viruses during encryption or decryption File and folder self-protection step by the confidentiality and integrity having a function (S300); And it consists of a task tracking (LOG) step (S400) for executing a log (Log) function for the audit record and the operation record for all file-related security tasks.

Description

System and method for security management on distributed PC

The present invention relates to a distributed PC security management system, in particular, the key document information encryption and decryption function in the PC distributed on the network, real-time remote access control for each user and group, recovery of lost password, encrypted file on the network share Import / send function, protector of important files and folders on network share, hide important files, prevent recovery of deleted files, track file logging (logging), illegal access print notification, virus check and repair The present invention relates to a distributed PC security management system that can thoroughly manage and access key information by security manager and prevent and prevent information leakage.

In general, currently used PC security products rely on the smart card reader (Smart Card Reader) to implement the encryption function, such as a separate add-on boot control board that is easy to cause hard disk malfunction It is a personal security product that uses hardware to securely manage only information in individual PCs.

In conventional personal PC security products, the conventional method is to install a key management center and request a key distribution there. In this way, a private key must be shared in advance between the key management center and the users of the network.

For example, let's say you want to communicate with Gap-soon. At this time, the player asks the key management center to distribute the key with the other party, and the key management center creates a secret key K (ab) and distributes the secret key to the player and the player. If this is a large-scale network, the subscriber may request the key management center whenever the subscriber shares a new secret key, so that one key management center cannot cope with it. Of course, multiple key management centers share a secret key in advance, and in more cases, a key management structure may be constructed in a hierarchical structure.

However, there is a problem with this. In a network having a diverse and dynamically changing complex structure, such an orderly hierarchical key management center has a problem of complicated management, increased cost, and severe confidentiality of the key management center.

In addition, the existing product relies on the smart card reader, the encryption function is implemented, the inconvenience of use and high purchase cost.

The encryption function is implemented, but the encrypted file and password recovery function is not provided in case the password and the encryption key are lost, which may cause a reverse function for the security of important documents.

It provides simple encryption function for own PC file, so internal security management by the administrator in the organization is impossible.

While encrypting important files and saving them on diskettes at the time of storage, backup functions are provided, but collective backup file security management for multiple files and folders cannot be performed.

The virus check function is not implemented at the time of encryption, so it is impossible to decrypt important documents.

Information sharing by illegal accessors is exposed to shared files when sharing the network, and there is a problem that it is difficult to maintain the confidentiality of the security products because it is possible to illegally copy S / W as a security product.

The present invention has been proposed to solve the above-mentioned problems of the prior art, and an object of the present invention is to use a method of sharing a key in a key distribution method, in which each member of the group advances all common keys with other members. , User authentication check, individual / group user access control, encryption and decryption function, data security function in network, job log function, etc. By separately using the administrator server software that transmits the access control change rule in real time, it provides the administrator with the function to systematically manage the use of information by internal users, and it is impossible to decrypt by illegal users to control the security of important documents and password. Security key by providing password recovery function and S / W for management server. Organization function, sequential backup of compressed and encrypted multiple files and folders, efficient backup file security management for important documents, secure shared private network by group key for shared files on Windows network share By establishing a Virtual Private Network (VPN), a group of users with the same access rights can securely import and send encrypted files from a remote location, and optionally provide a virus check and repair function when encrypting and decrypting. It provides distributed PC security management method that provides secure file security management function.

Another object of the present invention is to provide an authentication function based on the CHALLENGE-RESPONSE method when installing a software system that is particularly suitable for executing the distributed PC security management method, thereby destroying important document management in the organization by unauthorized copying of security software by internal users. It provides distributed PC security management system that provides the function of issuing user keys when installing administrator S / W so that users can be blocked in advance.

1 is a conceptual diagram of a distributed PC security management system of the present invention.

Figure 2 is a block diagram of a distributed PC security management system of the X-Filer client / server model according to an embodiment of the present invention.

3 is a data flow diagram (DFD) of the SENEX management system of FIG.

4 is a data flow diagram of the agency management system of FIG.

5 is a data flow diagram of the ADMIN management system of FIG.

6 is a data flow diagram of the user registration management system of FIG.

7 is a data flow diagram of the encryption system of FIG.

8 is a data flow diagram of the decryption system of FIG.

9 is a flowchart illustrating a distributed PC security management method according to the present invention.

FIG. 10 is a flow chart illustrating "security policy and access control management by a management server" of FIG.

FIG. 11A is a flowchart illustrating administrator registration and key addition in FIG. 10, FIG. 11B is a security policy and access authority registration, and FIG. 11C is a file and password recovery.

12A to 12B are flowcharts illustrating file encryption in 'user identification and authentication management' of FIG.

FIG. 13 is a flowchart illustrating file decryption in 'user identification and authentication management' of FIG. 9; FIG.

FIG. 14 is a flow chart illustrating file import and export in 'Protecting Files and Folders by Confidentiality and Integrity' of FIG.

15 is a flow chart illustrating the preview in 'Protecting Files and Folders by Confidentiality and Integrity'.

FIG. 16 is a flow chart illustrating encrypted file backup in 'Protecting Files and Folders by Confidentiality and Integrity Self.'

Fig. 17 is a flow chart illustrating restoration of an encrypted file in 'File and Folder Self Protection by Confidentiality and Integrity'.

18 is a flow chart illustrating log recording.

19A to 19N are user interface screens of an administrator program.

20A to 20D are user program registration screens.

21A to 21B show screens of a file encryption process.

22A to 22D show screens of a file decryption process.

23A to 23T are screens showing the function of a decryption browser.

Explanation of symbols on the main parts of the drawings

1: SENEX Management System 2: Agency Management System

3: Admin system 4: User registration management system

5: encryption system 6: decryption system

7: X-FTP Server Module

In order to achieve the above object, the present invention provides a SENEX management system (1), an agency management system (2), an administrator system (3), a user registration management system (4), an encryption system (5), A distributed PC security management system comprising a decryption system (6) and an X-FTP server module (7), comprising: a security policy and an access control management step (S100) by a management server; The user identification and authentication management step of checking the authentication when decrypting by encrypting the file with the access control group key and the user's private key, and immediately notifying the attempted action by the administrator's print when an illegal accessor violates the password for a certain number of times (S200). ); Securely import and send shared files and folders on a net share between remote locations by access control to ensure the integrity of important documents, protect files and folders with the ability to protect encrypted files from hidden and deleted files, and compress them. And batch diskette sequential backup by encryption function, enabling program execution and file preview in the protector state to prevent the deletion and copying of important files at random, and to selectively check and repair viruses during encryption or decryption File and folder self-protection step by the confidentiality and integrity having a function (S300); And it provides a distributed PC security management method, characterized in that consisting of a task tracking (LOG) step (S400) for executing the audit log and the log (Log) function for all file-related security tasks.

In addition, in order to achieve the above another object, the present invention provides a SENEX management system (1) for the public key and agency information of the agency (Agency) for the security management of the main information, and the distributor ( Provides agency information, receives a registration key from the SENEX management system 3, manages the public key and supplier information of the manager system at a supplier, and has an agency management system 2 In the distributed PC security system: providing administrator information to the agency management system 3, receiving a registration key from the agency management system 3, and registering a user An administrator system 3 having a key management module, an access authority policy module, and a password file recovery module that provides a password recovery function for managing the system; A user registration management system 4 for registering user keys with the administrator system 3 and its own system for user registration, and receiving user information access authority from the administrator system 3; The user registration confirmation is received by the user registration management system 4, group encryption by an encryption key (key) of the access permission group using various encryption algorithms, individual encryption by an individual user encryption key, by user password input Selection of access rights including dual access control, compression / decompression of files to be encrypted by the corresponding access rights, preservation of original folders, encryption of files and folders invisible, multiple file and folder designation function, An encryption system 5 which provides a function of erasing erase and secure sharing / release of encrypted files; An X-FTP client module for importing / sending encrypted files, receiving a list of encrypted files from the encryption system 5, decrypting the encrypted files in a file decryption module, and backing up and restoring diskettes of important files A file storing and restoring function, and a decryption system (6) for requesting the administrator system (3) to restore the password file; And an X-FTP server module for searching for a PC on which a network share is set, executing an import / send of an encrypted file on the network share, and performing an export / import of an encrypted shared file between encrypted shared folders in the same group PC. It provides a distributed PC security management system, characterized in that (7).

Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.

1 is a conceptual diagram of a distributed PC security management system of the present invention, Figure 2 is a distributed PC security management system of the X-Filer client / server model according to an embodiment of the present invention is a SENEX management system (1), agency (Agency) It consists of a management system 2, an administrator system 3, a user registration management system 4, an encryption system 5, a decryption system 6, and an X-FTP server module 7.

The module of the X-Filer server is composed of the SENEX management system 1, the agency management system 2, and the administrator system 3, and the module of the X-Filer client is user registration management. It consists of the system 4, the encryption system 5, the decryption system 6, and the X-FTP server module 7.

The distributed PC security system (ASSURE / X-Filer for Workgroup) according to the present invention is a PC security software for public key-based workgroups that provides file encryption and digital signature functions, and the X-Filer distributed file security system is a Windows 95/98. / NT operating system software, the hardware environment requires more than PC 486-DX 50MHz, 8Mb RAM, HDD 3M or more free space, optional Smart Card Reader (ISO 7816-1 / 2/3 Standards compatible) and smart card and fingerprint mouse.

Pre-installation of ASSURE X-FILER PC security software must be equipped with Windows NT4.0 / 98/95 operating system. Also, pre-installation of ASSURE X-FILER PC security software is required. Establish security policy such as management, key management overview and collect user information such as name, user access authority, department name, title, access authority, etc.

FIG. 3 is a data flow diagram (DFD) of the SENEX management system 1 of FIG. 2, FIG. 4 is a data flow diagram of the agency management system 2, FIG. 5 is a data flow diagram of the ADMIN management system 3, FIG. 6 is a data flow diagram of the user registration management system 4, FIG. 7 is a data flow diagram of the encryption system 5, 8 shows a data flow diagram of the decryption system 6.

In the key distribution method, a key is shared based on ID without preliminary communication for exchanging keys to share a key. Each member of a group stores all common keys in advance with other members. Just put it.

Now, let's say that the names of the members in the n groups are ID1, ID2, ..., IDn. The center positions between all two. In other words, the key Kij of IDi and IDj is determined. Each of these keys must be chosen at random. However, Kij = kji. In other words, this table is symmetrical about the diagonal. You don't need to have a key Kij on the diagonal, but let's make it, because IDi will use it as a key to keep your secret information encrypted. The center sends IDi the keys Ki1, Ki2,., Kin in the row of IDi in this table, and IDi keeps it secret. If IDi needs to communicate with IDj, read Kij. IDj also holds the same key Kji = Kij, so the common key is shared. This method is called Enhanced Secret Key Management (ESKM). Since the keys between the two are also randomly generated and have no relation to other keys, no information is obtained about the keys of other users. Because of this, stability is very high. In addition, the center first prepares the variable function f (x, y) for large networks. This is a function that generates keys by inserting the names IDi and IDj into x and y. This key is used as the common key Kij of IDi and IDj. Kij = f (IDi, Idj). Since Kij = Kji, f (x, y) must be a symmetric function. In other words, f (x, y) = f (y, x). The center then delivers fi (y), defined by fi (y) = f (IDi, y) to each user IDi in the system. In other words, this function is represented by a row corresponding to IDi, and passing this function is equivalent to passing Ki1, ki2,., And Kin to IDi in an ESKM manner. If IDi wants to share a key with IDj, assign this name IDj to this function. That is, the common key Kij is obtained by Kij = fi (ID j) = f (ID i, ID j). If IDj is also assigned to its own function fj (y) = f (ID j, y), Kji = fj (IDi) = f (ID j, ID i) = f (IDi, ID j) = Kij Get the key. This is the key distribution scheme that we want to patent in distributed PC security products. ESKM is an ID-based password-based key pre-distribution. The simplest ESKM consists of an administrator server and a user who is not specifically instructed. Each user, unless specifically instructed, has his or her own broadly represented 'name' represented by the same ID as the mail account. The manager server, called ESKM manager server, generates the algorithm of the manager server indicated by G. Algorithm G of the administrator server is secret and no one other than the ESKM administrator should know its contents. If the ID is entered as G, Algorithm G outputs a secret algorithm. The secret algorithm is safely distributed to users with matching IDs. Secret algorithms can generate ordinary keys. If the owner enters the ID as the secret algorithm, the secret algorithm outputs the normal key between the owner and the user whose ID matches. Therefore, a common key is that the user received his algorithm and pre-distributed it to the user. Because of the US standard code representation for information exchange, the following is chosen for mathematical purposes-a ^ b always means the power for b's power used in the modulo context-a ^ [b] is the parent of b -A_ [b] means the application of the underlying index or b-a_ [b, c] means the lower indexes or the application of b and c-a = b is the equivalent in the modulo context Or means match-E_k (M) means encryption of message M by key k-D_k (C) means decryption of ciphertext C by key k. Key algorithms of ESKM 1.1 Manager Server Algorithm: It is expressed as manager server G_ [i, j]. G_ [i, j] and G- (m, m) are arranged in the left-right symmetric covariant tensors. The component is any number belonging to function GF (q) with q being the preferred number. 1.2 Effective ID: 'effective ID': x_ [A] ^ [i]; x_ [A] ^ [i] = f ^ [i] (ID_ [A]), f is already defined as a one-way function. Valid IDs are contradictory change vectors and their components also belong to GF (q). 1.3 Secret Algorithm A secret algorithm is generated from the ID corresponding to the algorithm of the administrator server. For example, A's secret algorithm is given by X_ [A, i] = G_ [i, j] f ^ [j] (ID_ [A]) mod q, = G_ [i, j] x_ [A] ^ [j] mod q, then the secret algorithm It is a covariant vector and its components also belong to GF (q). 1.4 Common Key: Any common key is generated by a secret algorithm and ID. For example, the generation of a common key between A and B is as follows: k_ [ AB] = X_ [A, i] f ^ [i] (ID_ [B]) mod q (A side) = X_ [B, j] f ^ [j] (ID_ [A]) mod q (B side) = G_ [i, j] x_ [A] ^ [j] x_ [B] ^ [i] mod q As above, the main equation for the linear scheme ESKM is simple. Moreover, the attacker needs at least some other secret algorithm to completely break the system. It is a pragmatism that suggests that the functions are linear, suggesting ESKM planning. 2. ESKMS Setup 2.1 ESKMS Set up The Private Algorithm Generation system describes the algorithms of the ESKM Manager Server and the Manager Server. ESKMS first generates an algorithm G and a secret location of the administrator server. 2.2 Applying for a user A in a user-configured ESKMS expresses a secret-algorithm for the Internet in its own personal ID, personal ID. 1) User A applies for his own public ID. ID [A] For ESKMS, a public ID is a generic ID for the Internet that contrasts with a personal ID. 2) Receiving A's application and its public ID, the ESKMS confirms the correctness of user A and ID_ [A]. 3) If the application did not have a problem, ESKMS generates a personal ID. X_ [A] uses the administrator server's algorithm G. X_ [A] () = G (ID_ [A],) = G ( , ID_ [A]) 4) ESKMS secretly distributes personal IDs to user A through accessing more channels than X [A] Internet. 5) Receive the personal ID, and store A in the personal ID. User A can distribute each different common key using user B and the personal ID that do not interact with each other. User A enters the public ID of user B. k_ [AB] = X_ [A] (ID_ [B]) = G (ID_ [A], ID_ [B]) Independently, User B can generate a common key with a personal ID: X [B k_ [BA] = X_ [B] (ID_ [A]) = G (ID_ [B], ID_ [A]) = G (ID_ [A], ID_ [B]) = k_ [AB] Cryptographic Protocols for Key Distribution Describes some of the strongest specifications of ESKM. 3.1 Secret communication The method of passing a session key is important when dealing with confidential information by common key cryptography. The ciphertext C, or E_K (M), represents the key share between sender A and receiver B, followed by the communication protocol protocol. 3.1.1 Sender common key generation: Sender A generates a common key with its private ID and B's public ID. K_ [AB] = X_ [A] (ID_ [B]) Session key generation: Sender A randomizes the session key. Generate message encryption: Message M is encrypted with the session key in ciphertext C. C = E_k (M) Session Key Encryption: The session key is encrypted with the common key. E_k_ [AB] (k) Send ciphertext: Sender A sends the ciphertext as follows (a denotes and). ID_ [A] aE_k_ [AB] (k) aC 3.1.2 Extract recipient public ID: Receive encrypted data and receiver B extract sender's public ID ID_ [A] Generate common key: Receiver B has his personal ID and sender A Create a common key using the public ID of. k_ [AB] = X_ [B] (ID_ [A]) Session Key Decoding: The session key is decrypted with the common key. k = D_k_ [AB] (E_k_ [AB] (k)) Message decoding: The message is decrypted with the session key. M = D_k (C) 3.2 User Authentication Because of ESKM, two non-interactive users each distribute their own common key. Using this, requester C verifies responder V. 3.2.1 Requestor Request Word Generation: Requestor C generates a request word: R R is generated at once and with a random generator. Request word transfer: Requestor C sends request word R to responder V. 3.2.2 Responder common key generation: Responder V generates common key (V '): k_ [CV] k_ [CV] = X_ [V] (ID_ [C]) Request word encryption: Receive request word R, Responder V encrypts with the common key (R '). R '= E_k_ [CV] (R) Request Response: Responder V responds back to Requester C with R'. 3.2.3 Requestor Common Key Generation: Requester C generates a common key. k_ [CV] uses the personal ID of V '. Public ID k_ [CV] = X_ [C] (ID_ [V]) of X_ [V] and C: Response decryption: Receive the response, requester C decrypts the response with the common key (R ''). R '' = D_k_ [CV] (R ') comparison: Requester C compares R and R' '. If R '' = R, the authentication is confirmed; otherwise, authentication is denied. 3.3 Mutual proofs Mutual proofs are proved using two authentication protocols. However, it is generally possible to save the cost of communicating with dual protocols. A using ID_ [A] and B using ID_ [B] already have both mutual authentication and each known public ID. 3.3.1 Object A common key generation: A generates a common key: k_ [AB] k_ [AB] = X_ [A] (ID_ [B]) Request word generation: A generates a request word: R_ [ A] Send request word: A sends word R_ [A] to B. 3.3.2 Object B common key generation: B generates common key: k_ [AB] k_ [AB] = X_ [B] (ID_ [A]) Request word encryption: A has common key k_ [AB] Encrypt R_ [A] R '_ [A] = E_k_ [AB] (R_ [A]) Request word generation: B also generates a request word. R_ [B] Request and Response Word Transfer: B sends the words R '_ [A] and R_ [B] to A. R '_ [A] aR_ [B] 3.3.3 Decrypt Object A Response: Receive response R' _ [A], and A decrypts with common key. R '' _ [A] = D_k_ [AB] (R '_ [A]) Comparison: A compares R' '_ [A] and R_ [A]. If R '' _ [A] and R_ [A], A is authorized to B, otherwise authentication is denied. Request word encryption: A encrypts outgoing word R_ [B] with common key R '_ [B] = E_k_ [AB] (R_ [B]) Send response: A sends R' _ [B] to B send. 3.3.4 Decrypt Object B Response: Receive response R '_ [B], B decrypt it with common key R' '_ [B] = D_k_ [AB] (R' _ [B]) comparison: B is R ' Compare '_ [B] and R_ [B]. If R '' _ [B] and R_ [B], B is authorized to A, otherwise authentication is denied. 3.4 Message Authentication The recipient cannot trust a message using key sharing based on ESKM. It is possible to prove that there is. Message authentication is where the receiver verifies that the message is not forged and that the sender's identity is correct. Sender A sends message M to receiver B. And suppose that the sender A knows the public ID of the receiver B. Here, protocols do not interact between each individual. 3.4.1 Sender common key generation: Sender A generates a common key: k_ [AB] From its own personal ID and the recipient's public ID, k_ [AB] = X_ [A] (ID_ [B]) Message hashing: Sender Separate the A message (M) and the result H (M). H is a predefined hash function. MAC generation: The message acknowledgment code (MAC) is generated from the hash value and the common key. MAC = E_k_ [AB] (H (M)) Message acknowledgment code (MAC) and message transmission: Sender A sends its MAC address corresponding to its public ID and message to receiver B. (a: and, M: message, MA: message identification code (MAC)) ID_ [A] aM aMA 3.4.2. Recipient Common Key Generation: Upon receipt of the message with the Mac, Recipient B decompresses the sender's public ID: ID_ [A] The recipient then generates a common key with the public ID and his private ID. k_ [AB] = X_ [B] (ID_ [A]) Message Hashing: Receiver B separates message M 'from the message that came with the MAC and the hashed M'. H (M ')-> Hash MAC decryption of message: Recipient B decrypts MAC with common key. H (M) '= D_k_ [AB] (MAC)-> Received MAC Decoding Comparison: Recipient B compares the hashed message with the decrypted message acknowledgment code (MAC), if H (M') and H (M) If the 'is equal, then verify the certificate; otherwise, reject the certificate. 3.5 In the digital signature ESKM, describe all digital signature skimmers based on ESKM that use a one-way quasi-homogenous mapping where all relevant common keys already have a pre-distributed personal ID. However, the following signature scheme is a signature scheme based on ID and does not have a public key. 3.5.1 Signer Signature: Signer A signs the message M with its personal ID using a one-way quasi-homogenous function. Sign_ [M, A] () = F_M (X_ [A] ()) The algebraic structure of X_ [A] was created as Sign_ [M, A] by quasi-morphology. However, the personal ID itself cannot originate from a one-way signature of function F. Send or Open Message: Signer A opens or sends a message, its public ID and signature to Verifier B. ID_ [A] aM aSign_ [M, A] 3.5.2 Create Verifier certifier_1: The message and signer's public ID, and verifier B generates auth_1. Prover_1 (Auth_1) uses its own personal ID X_ [B] Auth_1 = F_M (X_ [B] (ID_ [A])), = F_M (k_ [AB]). Generate attestor_2: Create attester_2 (Auth_2) with your signature and public ID ID_ [B] Auth_2 = Sign_ [M, A] (ID_ [B]) = F_M (X_ [A] (ID_ [B])) = F_M (k_ [AB]) Comparison: Verifier B compares prover_1 (Auth_1) and prover_2 (Auth_2). If the prover_1 (Auth_1) and the prover_2 (Auth_2) are the same, then the authentication is verified, otherwise the authentication is denied. 3.6 Key Recovery We describe an important recovery plan based on ESKM [5]. ESKM is particularly strong in Key Recovery Systems (KRS) with Data Recovery Field (DRF) [6]. E_k_ [AB] (k) Exhibits key recovery protocols between the Data Recovery Agent (DRA) and the Key Recovery Agent (KRA). The data recovery agent (DRA) obtains an encryption statement including the session key that has already been encrypted. ID_ [A] aE_k_ [AB] (k) 3.6.1 Data Recovery Agent (DRA) Data Recovery Field Extraction: A Data Recovery Agent (DRA) is a session that has been encrypted as a Data Recovery Field (DRF) from encrypted text to be recovered. Extract the key. DRF = E_k_ [AB] (k) Key recovery program: The data recovery agent (DRA) sends an ESKMS an application requesting key recovery with the recipient's public ID, recipient public ID and data recovery field (DRF). ID_ [A] aID_ [B] aDR 3.6.2 Enhanced Secret Key Management System (ESKMS) key recovery authentication: Prove that the ESKMS application is trusted, if it is acceptable, ESKMS does the following; Informs the data recovery agent (DRA) of the results. Common key generation: ESKMS generates common key by the algorithm of the administrator server using two public IDs. K_ [AB] = G (ID_ [A], ID_ [B]) Session key recovery: ESKMS uses common key data. Decrypt the Recovery Field (DRF) k = D_k_ [AB] (DRF) Return Session Key: ESKMS returns session key k to the Data Recovery System (DRS). 3.6.3 Data Recovery Agent (DRA) Messages Recovery: Receiving the session key K causes the data recovery agent (DRA) to decrypt the cryptogram with it. M = D_k (C) Each secret algorithm is recommended to be stored in the same module as the IC card. As one legend of the one-way quasi-isomorphism used in digital signatures, a quasi-homology based on a separate log problem is proposed. 3.7.1 Signature The signature is given as follows. Where Sig_ [M, A, i] = h ^ X_ [A, i] mod pp is the large prime to satisfy q | p-1 h is the specific value determined by message M and the signer's ID_ [A] h = h (M, ID_ [A]) 3.7.2 Authenticator_2 Authenticator_2 (Auth_2) is calculated as: Auth_2 = prod_ [i = 1] ^ [i = m] Sig_ [M, A , i] ^ f ^ [i] (ID_ [B]) mod p = prod_ [i = 1] ^ [i = m] Sig_ [M, A, i] ^ x_ [B] ^ [i] mod p “ prod ”means that the periods are extended from i = 1 to i = m. The security of the signature plan relies on a complex of equations and information-theoretic security.

9 is a flowchart illustrating a distributed PC security management method according to the present invention.

Distributed PC security system (ASSURE X-Filer V3.0) according to the present invention is a security policy and access control management by the management server (step S100), user identification and authentication management (step S200), its own by confidentiality and integrity It consists of a protection (step S300), and a job tracking step (S400) for audit records and job tracking (Log) for all file-related security work.

FIG. 10 is a flowchart illustrating 'security installation and access control management by a management server' of FIG. 9.

FIG. 11A is a flowchart illustrating administrator registration and key addition in FIG. 10, FIG. 11B is a security policy and access authority registration, and FIG. 11C is a file and password recovery.

Security installation and access control management step by the management server (S100) is an administrator registration and key addition step for transmitting the real time access control change rule for files and folders in real time, not passively and remotely (S110), the authority to set access rights security policy by group and grant group key authentication, and to grant user key issuance and authentication to prevent illegal S / W copying Security policy and access rights registration step (S120) to have a file and password recovery step (S130) to enable the recovery by the administrator in the case of loss and disposal of the password and encryption key of the encrypted file.

The user identification and authentication management step (S200) checks the authentication at the time of decryption by encrypting the file with the access control group key and the user's private key, and allows the illegal accessor to immediately notify the attempted action by the administrator's print when an access attempt is made more than three times. .

The file and folder self-protection step (S300) by the confidentiality and integrity ensures the integrity of important documents by securely importing / sending files by FTP server through remote access control of shared files and folders on a net share. It protects files and folders with the function of restoring encrypted files by hiding and deleting encrypted files, enabling batch backup of diskettes sequentially by compression and encryption functions, and executing programs and previewing files in the protector state. This prevents the deletion and copying of important files arbitrarily, and provides the function of virus check and repair selectively when encrypting or decrypting.

The job tracking step (S400) includes an audit record and a log function for a job record in all file-related security work.

The administrator registration and key addition step (S110) confirms user authentication (step S1), and inputs administrator information if the user is an authenticated user (step S2). If the administrator is registered or not (step S3), if the administrator is authenticated, a user registration key (PROD ID) is generated (step S4), and the administrator registration information (Admininfo.txt) and the user registration key (PROD ID) are stored ( After step S5), a registration key of the agency is issued (step S6) and the reg key is input (step S7). Administrator information, a key count, and a registration key are registered (step S8), and a password is input (step S9) to register the password (S10).

The security policy and access authority registration step (S120) registers the group information (step S13), queries the group (step S14), inputs user information if it is not the corresponding group (step S15), and a virtual private network (VPN). Checks whether there is network transmission within step S16).

If it is not the network transmission, check whether there is FTP transmission over the Internet (step S17), if not, repeat step S16, and if it is FTP transmission, check whether the FTP server is active (step S18). Is not valid, an error message of the X-FTP server is displayed (step S19). If the FTP server is valid, Accessgroup, userlist.txt, programmer key, and userinfo.txt are stored using the X-FTP administrator server (X-Filer Server). ) To the user's application (X-Filer client) (step S20). The user is queried (step S21) and the user key is registered (step S22) and a user registration key (Reg key) is issued (step S23) and stored in Userlist.txt (step S24).

The file and password recovery step (S130) opens the encrypted file (step S30) and checks whether it is a floppy disk (step S31) and converts the file if it is a floppy disk (step S32). After the floppy disk check process, it is checked whether or not it is the same group (step S33). If it is not the same group, it is terminated. If it is the same group, the encrypted file is decrypted (step S34) to generate a decrypted file (step S35).

12A to 12B are flowcharts illustrating file encryption in the user identification and authentication management step (S200).

The user identification and authentication management step (S200) includes a file encryption step of managing the encrypted file by encrypting the file by various encryption algorithms, and a file decryption step of decrypting the file using the decryption algorithm of the encrypted file. do.

The file encryption step includes a registration key registration check (step S237), a registration key registration check (step S238) when the registration key is registered, and a computer file of a selected file when the group key is registered. After the authorization check (step S239), it is checked whether there is the same name among the encrypted files (step S240), and if there is the same name, the encrypted file name is input (step S241). If the reg key registration check (step S237), the group key registration check (step S238), and the selected file are not the corresponding computer file checks (step S239), the log file is recorded and stored (step S239). Step S255).

After inputting the encrypted file name, file deletion is checked (step S242), and if not deleted, delete flag = false (step S243), and if the file delete command is set, delete flag = true (step S244).

After the file deletion check process, it is checked whether or not to compress (step S246) and the file is compressed when the compression request is made (step S247).

If file sharing is checked (step S248), sharing flag = false is set unless sharing check (step S249), if sharing flag is set to sharing flag = true (step S250), the file is encrypted (step S251).

After encrypting the file, it is checked whether the delete flag = true (step S252), and if the delete flag = true, the original file is deleted (step S253), and the delete flag is not true or the encrypted file is stored after the original file is deleted (step S253). S254) and store the log (step S255).

13 is a flowchart illustrating file decryption in the user identification and authentication management step (S200).

The file decryption step checks user authentication (step S260), checks the password for a predetermined number of violations (step S261), and if the password is confirmed, checks the authentication key and user information registration (step S263), authentication key and user registration information. If it is registered, the access authority registration check is checked (step S264). If the access authority is registered, it is checked whether a file to be decrypted is selected (S265).

If the password is violated more than a certain number of times when the user authentication is confirmed, the information of the illegal user is printed to the administrator (step S262). If the authentication key and the user information are not registered, the access authority is not registered, otherwise the file to be decrypted is not selected. Quit.

When the file to be decrypted is selected, it is checked whether the encrypted key value is a group key (step S266), and if not the group key, the key value is set as a user encryption key (step S268). The key value is set as a group key (step S267).

After checking the encrypted key value, it is checked whether or not to compress (step S269), and if it is not a compressed file, the compression flag is set to compress = false (step S270), and if it is a compressed file, it is set to compress = true (step S271).

The existence of the original file is checked (step S272), and if the original file exists, the file name is input (step S273).

Upon installation, the file to be decrypted is checked for viruses (step S274), and if present, the virus is cured (step S275).

After the virus check, a file decryption process of decrypting an encrypted file with a key in a decryption directory and then decompressing is executed (step S276) and stored in a log (Log) for recording the contents of the operation (step S277).

14 is a flowchart illustrating file import / send in the file and folder self-protection step S300 by the confidentiality and integrity.

If the network transmission is checked (step S301), if it is a network transmission, the network driver is set (network drive = Z) (step S302), and the computer is selected (step S303) and the connection to the network driver is checked (step S304).

When connecting to the network driver, the shared file list is queried (step S305) to check whether a file of the same name exists (step S309).

In the network transmission check process, if it is not a network transmission (if it is an FTP transmission), input an IP address (step S306), check whether the network driver is connected (step S307), and connect the remote file list (step S308). It is checked whether the file exists (step S309). If the network drive is not connected, the process ends (step S304, step S307).

If a file of the same name exists in step S309, enter a new file name, and if the file of the same name does not exist, check whether the file is imported (step S311), and select 'Import file' to select the encrypted file. If importing the file (step S312) and importing the file instead of importing the file, exporting the encrypted file (step 313), and then saving the log file (step S314).

15 is a flowchart illustrating a preview in the file and folder self-protection step (S300) by the confidentiality and integrity. The encrypted file is selected (step S319), the connection program is queried (step S320), the file is viewed (step S321), and stored in a log (step S322).

FIG. 16 is a flowchart illustrating an encrypted file backup in the file and folder self-protection step S300 based on the confidentiality and integrity.

By selecting an encrypted file (step S330), selecting a backup drive (step S331), checking the disk size < encrypted file size condition (step S332), if the disk size is smaller than the encrypted file size, the encrypted disk size is entered. The file is stored separately (step S333), and if the disk size < encrypted file size condition is not stored, the encrypted file is stored (step S334), and the job record is stored in a log (step S335).

17 is a flowchart illustrating the restoration of an encrypted file in the file and folder self-protection step S300 by the confidentiality and integrity.

Select the drive to which the file is backed up (step S337), select the encrypted file (step S338), restore the encrypted file to a hard disk (HDD) (step S339), and then record the operation contents in the log. Record (step S340).

18 is a flowchart illustrating log recording. When decrypting, enter the password (step S350), check if the password has violated more than three times (step S351), print it to the administrator's computer (step S352), and record the audit record and work in the log file (Log writing). (Step S353).

The distributed PC security management software (Assure X-Filer) according to the present invention increases the security of a file or directory by using Blowfish and Seed encryption algorithms, which are proven products for the purpose of securing data inside a PC or NT workstation. give.

Reflecting the user selection management for the product of the present invention (Assure X-Filer version 3.0), using a smart card and a fingerprint mouse is an option to simply enter a user password. Key management is provided for key management by end users who register their own keys, and for centralized key registration for each company group.

By utilizing not only symmetric key encryption but also administrator authentication, the data can be shared with members of the group who are not registered in the distributed PC security management system.

In addition to having an independent interface, the Windows own interface can be shared to provide ease of use and administrators can use the key recovery function.

ASSURE X-FILER PC security software function according to the present invention is divided into administrator software and user software.

ASSURE X-FILER PC security software for administrators manages registered user DB by unit (centralized user management, prevents duplicate registration by linking with user registration module, improves security by managing key associated with hardware unique number of registration system, and simple user. Interface), key generation and management of members in the unit (group) (group definition for each user, group definition and operation for each group user, key generation and management for each group user), file recovery and password recovery.

The user's ASSURE X-FILER PC security software is capable of encrypting / decrypting files / folders, managing individual files in a file box, job tracking log function, basic functions when encrypting (file-related matters, access authority options), network Import / send encrypted files on shares, archive and restore files to back up and restore important file diskettes, access control at multiple levels including individuals and groups, password recovery and encrypted file recovery, registered user DB management, unit Provides key generation and management of my members.

The encryption / decryption function of the file / folder provides various encryption algorithms, multiple files and directories can be specified, access control group key and arbitrary password of a user to perform encryption, and encryption file and folder invisible function.

The individual file management function within the box provides selective encryption / decryption / deletion within the box, adds an optional file or file group to an existing file box, and provides a preview function without decrypting a specific file in the box. do.

Basic functions for encryption include compression / decompression, preservation of the structure of the original folder (directory structure), complete deletion of the original file after encryption, file-related options related to secure sharing and unlocking of encrypted files, and selection of an access group encryption key It provides access rights options related to group-by-group encryption, individual encryption by individual user encryption key, and dual access control by user password entry.

The function of importing / sending encrypted files on the network share searches for a PC that has a network share set up, and imports and exports a shared file by an X-ftp server between encrypted folders in the same group PC. Run

The group definition function (Access Control) of various stages such as individuals and groups is a key usage function corresponding to a specific group (for example, an individual, a department, an entire company, or an employee, manager, manager) and a person who belongs to a specific group. You can decrypt an encrypted file or folder.

19A to 19N are user interface screens of an administrator program.

20A to 20D are user program registration screens. 21A to 21B illustrate screens of a file encryption process. 22A to 22D illustrate screens of a file decryption process. 23A to 23T are screens illustrating the function of a decryption browser.

Therefore, it encrypts important electronic document information distributed in PC distributed on network, real-time remote access control by user and group, recovery function in case of lost password, protector of important file and folder on net share, hide important file, delete file Security management function to prevent access to important information in the enterprise by using security functions such as recovery prevention function, file operation tracking (logging), illegal access print notification function, virus check and remediation function. It can prevent and manage security securely.

As described above, the distributed PC security management system (ASSURE / X-Filer for Workgroup) according to the present invention is a PC security software for public key-based workgroups that provides file encryption and digital signature functions. By sharing the key based on the ID without the need for the preliminary communication of exchanging the key to share the key, if the existing user is sharing a new secret key, the key management center has caused an overload of the key management center. Since the keys between two people are also randomly created and have no relation to other keys, no information is obtained about the keys of other users. The stability is very high.

In addition, it encrypts and decrypts important electronic document information in PCs distributed on the network, real-time remote access control for each user and group, recovers lost passwords, protects important files and folders on a network share, and encrypts them on a network share. Import / send files, hide important files, prevent recovery of deleted files, track file logging (logging), notify access to illegal access prints, and optionally check and clean files for viruses to protect the company By tightly controlling access to information, you can prevent information leakage to unauthorized users.

In addition, by using strong encryption algorithms to prevent user and group access control authentication for files and folders in advance, it ensures the confidentiality, integrity, and authenticity of files and folders, and manages individual users' keys and groups Management enhances access control, which not only reduces network load, but also enables administrators to quickly and securely manage security in changing organizations.

In addition, by separately using management server software that actively transmits access control change rules in real time from a remote location, it is effective for the administrator to stably manage information usage by internal users in terms of systemic and security aspects.

Although the above has been described with reference to a preferred embodiment of the present invention, those skilled in the art will be able to variously modify and change the present invention without departing from the spirit and scope of the invention described in the claims below. It will be appreciated.

Claims (12)

SENEX management system (1), agency management system (2), administrator system (3), user registration management system (4), encryption system (5), decryption system (6), and X-FTP In the distributed PC security management system composed of the server module (7), A security policy and an access control management step by the management server for granting the security policy to the user in real time with the user's registration information and key management (S100); The user identification and authentication management step of checking the authentication when decrypting by encrypting the file with the access control group key and the user's private key, and immediately notifying the attempted action by the administrator's print when an illegal accessor violates the password for a certain number of times (S200). ); Ensuring integrity by securely importing / sending encrypted shared files and folders between remote locations through access control, and protecting files and folders with the ability to prevent encrypted file hiding and deletion. It is possible to protect the files and folders by confidentiality and integrity by executing the program and preview files in the protector state (S300); And Distributed PC security management method characterized in that it consists of a job tracking (LOG) step (S400) that executes an audit record and a log function for all file-related security operations. The method of claim 1, Security installation and access control management step by the management server (S100) Manager registration and key addition step (S110) of actively transmitting access control change rules for files and folders for each user and group at a remote location, not passively; Access authority security by group and authority to grant group key authentication and security to provide user key issuance and authorization to prevent illegal S / W copying Policy and access authority registration step (S120); And Distributed PC security management method comprising a file and password recovery step (S130) to enable recovery by the administrator in case of loss and discard of the encrypted file password and encryption key. The method of claim 2, The manager registration and key addition step (S110) Confirming user authentication (S1), and inputting administrator information if the user is an authenticated user (S2); Checking whether the administrator is registered (S3), if the administrator is authenticated, generates a user registration key (PROD ID) (S4), and stores the administrator registration information (Admininfo.txt) and the user registration key (PROD ID) (S5). Thereafter, a registration key of the agency is issued (S6) and the registration key is input (S7); And Distributed PC security, comprising: registering administrator information, a key count, and a registration key (S8), and entering a password (S9) to register the password (S10). How to manage. The method of claim 2, The security policy and access authority registration step (S120) Registering the group information (S13), querying the group (S14), inputting user information if it is not the group (S15), and checking whether or not there is a network transmission in the virtual private network (VPN) (S16); If it is not the network transmission, check whether there is FTP transmission through the Internet (S17), if not, repeat step S16, and if the FTP transmission, check whether the FTP server is active (S18) and the FTP server is valid. If not, the error message of the X-FTP server is displayed (S19). If the FTP server is valid, Accessgroup, userlist.txt, programmer key, and userinfo.txt can be accessed from the X-Filer Server by using X-FTP. Transmitting to the application program (X-Filer client) (S20); And Distributed PC security management, characterized in that the step of querying the user (S21) by registering the user key (S22) is issued a user registration key (Reg key) (S23) and stored in the Userlist.txt (S24) Way. The method of claim 2, The file and password recovery step (S130) Opening the encrypted file (S30) and checking whether it is a floppy disk (S31) and converting the file if it is a floppy disk (S32); And After the floppy disk check process, it is checked whether the group is the same (S33), if not the same group, and if the same group decrypts the encrypted file (S34) and generates a decrypted file (S35). Distributed PC security management. The method of claim 1, The user identification and authentication management step (S200) A file encryption step of managing the encrypted file by encrypting the file by a blowfish encryption algorithm whose key size is variably set from 32 bits to 448 bits with a symmetric key algorithm; And And a file decryption step of decrypting the encrypted file using a decryption algorithm. The method of claim 6, The file encryption step is Register key registration check (S237), if the registration key (Reg key) is registered group key registration check (S238), if the group key is registered, check whether the computer file of the selected file (S239) and then Checking whether there is the same name among the encrypted files (S240) and inputting an encrypted file name if there is the same name (S241); If the reg key registration check (S237), the group key registration check (S238), the selected file is not the corresponding computer file check (S239), if there is no corresponding step, recording and storing in a log (S255) step ; Checking the file deletion after inputting the encrypted file name (S242) and setting the flag to be deleted if not deleted (S243) and setting the flag to be deleted if the file is deleted (S244); After the file deletion check process, checking whether to compress (S246) and compressing a file when a compression request is made (S247); Checking file sharing (S248), setting a sharing flag = false if it is not a sharing check (S249), encrypting a file after setting sharing flag = true (S250) if a sharing check (S251); And After encrypting the file, it is checked whether the delete flag = true (S252) and if the delete flag = true, the original file is deleted (S253), and the delete flag is not true or the encrypted file is stored after the original file is deleted (S254). Distributed PC security management method comprising the step of storing a log (S255). The method of claim 6, The file decrypting step After confirming the user authentication (S260), check the password violated more than a certain number of times (S261), if the password is confirmed authentication key and user information registration check (S263), if authentication key and user registration information registration check access authority registration (S264) Checking whether a file to be decrypted is selected when the access right is registered (S265); If the password is violated more than a certain number of times when the user authentication is confirmed, the user's information is printed to the administrator (S262). If the authentication key and the user information are not registered, the access authority is not registered. Doing; When the file to be decrypted is selected, it is checked whether an encrypted key value is a group key (S266). If the group key is not the group key, the key value is set as a user encryption key (S268). Setting to a group key (S267); Checking the encrypted key value and checking whether it is compressed (S269), if it is not a compressed file, setting the compression flag as compress = false (S270), and if it is a compressed file, setting it to compress = true (S271); Checking the existence of the original file (S272) and inputting a file name if the original file exists (S273); Checking the file to be decrypted according to an option at installation (S274) and treating the virus if present (S275); And After the virus check, the decrypted file is decrypted by a key in the decryption directory and then the file decryption process is decompressed (S276) and stored in a log (Log) to record the contents of the operation (S277). Distributed PC security management method, characterized in that. The method of claim 1, File and folder self-protection step (S300) by the confidentiality and integrity is Checking network transmission (S301), if the network transmission, setting a network driver (network drive = Z) (S302), selecting a computer (S303), and checking a connection to a network driver (S304); When connecting to the network driver, checking a shared file list (S305) and checking whether a file having the same name exists (S309); In the network transmission check process, if it is not a network transmission (if it is an FTP transmission), enter an IP address (S306), check whether the network driver is connected (S307), and if so, look up a list of remote files (S308). Checking whether (S309); Terminating if the network drive is not connected (S304, S307); And If a file of the same name exists in step S309, enter a new file name, and if the file of the same name does not exist, check whether the file is imported (S311), and select the 'Import file' to select the encrypted file. Distributed PC security comprising the step of importing (S312) and not importing the file, but exporting the encrypted file (313), and then storing the log file (S314) if the file is selected. How to manage. The method of claim 1, Encrypt / decrypt files and folders of important electronic document information in PCs distributed on the network, real-time remote access control function for each user and group, and use specific key for encryption. Group definition function that only the person corresponding to can decrypt the encrypted file or folder, Individual file management function within the box (Optional encryption / decryption / deletion within the box, Add file group of optional file to the existing file box, File Preview function without decrypting specific file in the box, encrypting with mouse click), password recovery and file recovery function when password is lost, registration system security policy setting basic function, important file and folder on network share Protector function, hide important files, prevent recovery of deleted files, file operation tracking (Log) function History logging such as encryption / decryption, printing LOG file, sending to LOG file manager), illegal access print notification function, encryption file import / send function on network share, and optionally virus checking and cleaning function. Distributed PC security management method characterized in that by thoroughly controlling the access to important information and to prevent leakage of information in advance to maintain security. Security policy and access control management function (S100) by the management server on the computer, the user identification and authentication management function (S200), file and folder self-protection function (S300) by the confidentiality and integrity, and the job tracking (LOG) A computer-readable recording medium that records a program for realizing the function (S400). SENEX management system (1) that provides agency public key and agency information for security management of important information, and provides agency information to the SENEX management system (1), and the SENEX management system (3). In a distributed PC security system provided with a registration key from a vendor, the vendor manages the public key of the manager system and vendor information, and has an agency management system (2): Provide administrator information to the agency management system 3, receive a registration key from the agency management system 3, and register a user registration key management module and an access right policy. An administrator (3) system for managing the system, including a module and a password file recovery module that provides a recovery function when a password is lost; A user registration management system 4 for registering user keys with the administrator system 3 and its own system for user registration, and receiving user information access authority from the administrator system 3; The user registration confirmation is received by the user registration management system 4, group encryption by an encryption key (key) of the access permission group using various encryption algorithms, individual encryption by an individual user encryption key, by user password input Selection of access rights including dual access control, compression / decompression of files to be encrypted by the corresponding access rights, preservation of original folders, encryption of files and folders invisible, multiple file and folder designation function, An encryption system 5 which provides a function of erasing erase and secure sharing / release of encrypted files; An X-FTP client module for importing / sending encrypted files, receiving a list of encrypted files from the encryption system 5, decrypting the encrypted files in a file decryption module, and backing up and restoring diskettes of important files A file storing and restoring function, and a decryption system (6) for requesting the administrator system (3) to restore the password file; And X-FTP server module for searching PCs that have network shares set up, executing encrypted file import / send on network shares, and sending / importing encrypted shared files between encrypted shared folders in the same group PC. 7) Distributed PC security management system, characterized in that consisting of.