KR100441416B1 - The system of sharing customer data with security and the method of that - Google Patents

Abstract

The system and method for sharing customer information having security of the present invention is a sharing system capable of extracting redundant subscription customer information in an encrypted state while performing encryption on the participant's own and blocking the leakage of the customer information owned by the participating company. And to a sharing method.

The sharing system of the present invention provides an encryption means, receives encrypted subscription customer information of a plurality of participating companies, extracts duplicate subscription customer information, and transmits the contents of the processed results to the plurality of participating companies. By including the processing unit and the processing unit and the processing unit of a number of participating companies to encrypt the customer information using the encryption means provided from the host company to the processing unit of the host, receiving the contents of the results extracted and processed by the host company, In the absence of decryption and decryption, it is possible to share information on duplicate subscribers of multiple participating companies.

In addition, the above sharing system may be composed of only a number of participating companies without a host company, an encryption device for encrypting self-subscribed subscriber information using a common encryption means, transmitting encrypted customer information to the plurality of participating companies or processing the following data The transmission device that transmits the necessary information from the processing results from the device to a number of participating companies, the data management device processing using the customer information received from the transmission device, and the customer transmitted from the transmission device of the multiple participating companies. By including a receiving device that receives the necessary information from the results processed in the information or data management device, it is possible to share information on the duplicate subscription customers of a number of participating companies in the state that the data can not be decrypted and decrypted.

In addition, the sharing method of the present invention is achieved by a first method of having security by encrypting using a keyless one-way function and a second method of having security by encrypting using a sequential public key encryption technique. .

Description

The system of sharing customer data with security and the method of that}

The present invention relates to security-based customer information sharing, and in detail, by performing participant's own encryption to discourage the leakage of customer information owned by the participating company, by identifying duplicate subscription customers in an encrypted state, This paper presents a system and method for sharing customer information with security that can maximize marketing efficiency through sharing and revitalize joint marketing market.

The internet, which is a treasure trove of information, is changing the lifestyle of modern people. Banks, tickets, and shopping are the basics. The internet is so diverse and vast that there are no applicable areas such as movies, music, and games. The speed is changing drastically.

In order to provide such a variety of information and services to member customers, most companies in the Internet market are building their own customer databases. To some degree, these customer databases have fewer than 100,000 to as many as five million customers.

However, due to the tendency of subscribers who are reluctant to leak personal information, various privacy policies, and concerns about privacy infringement, each company collects only limited information from customers for its own sales or marketing.

However, despite the difficulty of collecting information, customers who use the Internet are generally subscribed to a number of sites in duplicate, and provide additional information to the corresponding sites.

1 is a diagram for explaining an example of a general customer who has subscribed to multiple companies.

As shown, customer K joins the following three companies and provided personal information. At these three companies, information about customers is limited in their own way. In particular, the company A, the spot site, and the company C, the shopping mall site, contain static information such as name, social security number, address, and telephone number, and dynamic information such as customer purchase information.

In this case, when it is possible to know that customer K is simultaneously subscribed to A, B, and C companies, A, B, and C with customer K as members can conduct sales and management through more various analysis. In other words, if the information about the customer K joining each company can be shared with each other, the customer K's tastes will be more diverse, and high quality service and marketing can be performed.

However, in order to extract duplicate customers who are registered in duplicate by the conventional method, sharing of the entire customer information of each of A, B, and C companies is essential. However, in this process, the leakage of customer information of each company causes serious problems. In other words, the leakage of customer information is not only a breach of customers' personal information, but also a significant loss to the company's valuable assets.

In general, marketing techniques include Customer Relationship Management (CRM) through maintaining various relationships with customers. This CRM technique is a marketing methodology that is differentiated from past mass marketing, segmentation marketing, and niche marketing. It is a series of marketing that collects, analyzes and applies customer information necessary for marketing. It's a comprehensive concept of how to do things.

However, the CRM technique based on customer information has a problem in satisfying the function of obtaining high quality customer information. In other words, most customers who sign up as members tend to be reluctant to disclose their information due to the risk of personal information leakage. Because of this tendency, many companies are making various efforts by investing a lot of money to secure high quality customer information through analysis of customer tendency by conducting survey events and analyzing customer activity history.

In addition, while attempting to share customer information through strategic alliances between companies in this process, the problem of leakage of customer information for non-redundant customers is inevitable. In addition, in the process of performing strategic alliance, there are many limitations such as customer's agreement, related company's certification, and complexity of sharing. Therefore, macroscopically, high-quality information about the subscribed customers is already provided and not properly used, and each company pays an expensive price to secure additional quality information.

Therefore, we need a new security technique that can carry out contradictory concepts that can share the customer's information about duplicated customers while maintaining the security of the customer's information. It is more urgently needed because of its popularity.

Accordingly, an object of the present invention for solving the above-mentioned problems is that the participating companies perform the same method of encryption to extract the common information without decryption while blocking the leakage of customer information owned by the participating companies. It is to provide a technology for a customer information sharing system and method having a security that can pursue the maximization of marketing efficiency and activation of the joint marketing market by sharing customer information.

In the case of applying the present invention, participating companies can gain the benefit of marketing through customer information shared with other companies while fundamentally blocking the leakage of their core customer information. Therefore, since the responsibility of leakage of customer information is clear, it is possible to obtain the effect of activating a joint marketing market in which various companies participate and maximizing marketing efficiency of participating companies.

To this end, in the present invention, in order to realize an efficient and secure system that cannot be decrypted for joint marketing, the encryption method proposed by the present invention needs to solve the following technical problems.

1. Encrypted information must not be decrypted, whether hosted or participated. (Undecryptable)

2. It should be possible to determine whether the information before encryption is the same without decrypting the encrypted information. (Identity identification possible)

The customer information used in the present invention is not only secure to other participating companies, but also the host company that determines the identity of the information should not be able to know the original information. Since the existing encryption schemes mainly focus on the secure transmission and decryption of information, simple application cannot satisfy the above conditions. For example, if each participating company has the same public key and private key, only one secret key can be easily decrypted, resulting in a weak security system. Another method might be to limit the sharing of the private key only between participants and the organizer to know only the public key. However, this method becomes difficult to secure when the number of participants is over a certain size. Therefore, a new encryption technique is needed to achieve the above object.

1 is a view for explaining an example of a general customer who has duplicated a number of companies.

2 is a block diagram of a customer information sharing system having security according to an embodiment of the present invention.

3 is a flow chart of a method of sharing customer information having security to encrypt using a keyless one-way function in accordance with one embodiment of the present invention.

4 is a flowchart of a method of sharing customer information having security of encrypting using an encryption method using a public key according to an embodiment of the present invention.

<Description of Symbols for Major Parts of Drawings>

200: processing device of the host

210: encryption management unit

220: data management unit

221: database 222: encryption stage

223: customer information gathering group 224: data mining group

230: service management unit

300: processing equipment of participating companies

400: network

Customer information sharing system having a security of the present invention for achieving the above object, in the state connecting the host company and a number of participating companies in the network,

Provides an encryption means for encryption, receiving the encrypted customer information of a number of participating companies to extract common information, and the processing unit of the host to transmit the contents of the processed customer information to the required number of participating companies, And by using the encryption means provided from the processing unit of the host company by encrypting the subscribing customer information subscribed to the host company, and including the processing device of a number of participating companies that receive the contents of the results of processing the customer information extracted by the host company,

It is characterized by sharing the customer information of multiple participating companies while maintaining security.

In addition, the first customer information sharing method having security according to the present invention, in the system for connecting the processing apparatus of the host company and a number of participating companies via a network,

In order to encrypt the customer information of the participating companies themselves, a plurality of participants participate in the process using the encryption means transmission step, the transmitted encryption means and the keyless one-way function, which transmits the encryption means including the keyless one-way function from the host's processing device to the plurality of participating companies. One-way function encryption step to encrypt the body subscription customer information in the processing unit of the enterprise, Customer encryption information transmission step of transmitting the encrypted subscription customer information to the processing unit of the host company, Common information extraction to extract common information from the transmitted customer encryption information Step, processing the information of the subscribing customer for the extracted common information and outputs the step of transmitting to the processing unit of the participating company,

The second customer information sharing method having security according to the present invention,

In order to encrypt the subscribing customer information of the multi-participating companies, the step of transmitting a predetermined means of encryption from the host's processing unit to the multi-participating companies. Public key exchange step for exchanging public keys of the host company and multiple participating companies, public key encryption step for encrypting the body subscription customer information in the processing device of multiple participating companies using the transmitted encryption means and public key, encryption The customer encryption information transmission step of transmitting a subscription customer information to the processing device of the host, the common information extraction step of extracting common information from the transmitted customer encryption information, processing the information of the subscription customer for the extracted common information to the participating company And a product transmission step for transmitting to the processing apparatus.

Hereinafter, a customer information sharing system having security and a method thereof according to the present invention will be described in detail with reference to the accompanying drawings.

The present invention can be referred to as a technology related to cryptography, customer relationship management CRM, information system agency ASP (Application Service Provider).

In cryptography, encryption refers to a process of converting data into cipher text using a specific algorithm, and decryption refers to a process of restoring cipher text to original data. At this time, the sentence to be encrypted is called plaintext and the encrypted result is called ciphertext.

Representative encryption methods include one-key cryptosystem and public-key cryptosystem. Single-key cryptography means that the same key is used for encryption and decryption, and public-key cryptography means two keys, a secret key and a public key. This encryption method mainly focuses on encrypting and decrypting information such as transmission of secure information, authentication, and digital signature. In other words, the encryption of the information assumes the possibility of decrypting the original plain text.

Also, in cryptography, a one-way function is a function that is impossible to restore the original information with the transformed result in converting the given information. Most of the cryptographic systems that are secured can be viewed as one-way functions. In the case of such an encryption system, the original information can be easily decrypted at any time if the key value necessary for decryption is known. Among the one-way functions, the keyless one-way function means a one-way function without a key for restoring the original information, and in this case, the possibility of decryption of the encrypted information is essentially blocked.

As described above, CRM (Customer Relationship Management) refers to a marketing method of collecting / analyzing / applying customer information necessary for marketing by maintaining various relationships with customers. Since the CRM technique is focused on collected customer information, the quantity and quality of collected customer information have a decisive influence on marketing wins and losses, but as described above, customers are reluctant to expose their information. Companies that run are in big trouble.

Application Service Provider (ASP) service is a contract that a customer uses a facility owned by an ASP service provider. ASP service provides service to many customers. The ASP market is rapidly expanding in the areas of enterprise resource planning (ERP), supply chain management (SCM), and CRM.

Among these, interest in the ASP model is increasing in the aforementioned CRM field. When applying the ASP model to co-marketing, each client provides its own customer information to the ASP, and the ASP collects the customer information provided by each customer and goes through data mining to identify a consistent flow or trend. It will provide you with the marketing information you need. The ASP model of CRM may be a representative application of the present invention. However, as described above, the participating companies provide their own customer information to the ASP in this process, which causes a problem of leakage of customer information.

Therefore, in order to solve this problem, the ASP organizer who manages the extraction of the information of the duplicate subscribers cannot decrypt the encrypted result, but the technology for encrypting the identification of the customer information provided from the various participating companies is possible. Will be provided. As will be described later, the encryption process of the present invention is based on the use of an encryption method that cannot be decrypted so that the information on the subscription customer cannot be confirmed except the participating company that has the information on the subscription customer.

2 is a block diagram of a customer information sharing system having security according to an embodiment of the present invention.

As shown, the customer information sharing system having security of the present embodiment is connected to the processing device 200 of the host and the processing device 300 of the participating company that manages joint marketing through a network 400, such as the Internet It is configured to exchange information with each other.

The processing device 200 of the master, the encryption management unit 210 for generating and managing encryption means related to encryption, the data management unit 220 for processing the received encrypted customer information, and the service that provides the processing results to the participating companies The management unit 230 can be largely divided. The data management unit 220 includes a database 221 which is the center, an encryption stage 222 that performs additional encryption and decryption through interworking with the database 221, and correction of the customer information and determination of the identity of the customer. The customer information collecting unit 223 collects information, and the data mining unit 224 processes the collected customer information into service information necessary for marketing.

Joint marketing in the present invention requires the application of a special encryption technique due to the somewhat contradictory premise of mutual sharing of customer information that should not be leaked. The customer's personal information of each participating company is divided into core and secondary information. That is, information unique to the individual such as a resident registration number, name, telephone number, etc. becomes essential information, and the remaining information such as gender, age, occupation, hobby, specialty, interests, etc. becomes incidental information. In the present invention, the unique information is encrypted and sent to the host company for joint marketing. In this case, it is essential to allow the host company and other participating companies not to decipher the encrypted information, but to identify the identity of the information.

Therefore, encryption means for joint marketing must satisfy the following conditions. First, the encrypted information should not be decrypted. Second, it should be possible to determine whether the information before the encryption is identical with the encrypted information.

In the present invention, two encryption methods are largely performed for encryption satisfying these conditions. The first embodiment encrypts each participant using a keyless one-way function, and the host extracts the duplicated customer information after receiving the encrypted information. The second embodiment is an encryption method using a public key encryption technique in which each participating company and the host share a public key and sequentially encrypt each other through interworking.

3 is a flowchart of a method of sharing customer information having security of encrypting using a keyless one-way function according to an embodiment of the present invention.

As shown, the security information sharing method of the present embodiment can be largely divided into encryption means transmission step, unidirectional function encryption step, customer encryption information transmission step, duplicate subscription customer extraction step, and output transmission step.

In the method of sharing customer information according to encryption using the keyless one-way function of the present embodiment, since the key necessary for decryption does not exist from the beginning, the decryption possibility is essentially blocked. In addition, in this embodiment, since encryption is performed using a keyless one-way function, it is possible to minimize the consumption of additional time and space resources due to encryption.

As described above, the unidirectional function simply means a function that cannot be restored to original information in converting given information. However, in the conventional cryptographic system, such a one-way function is mainly used for the purpose of maintaining security when exchanging messages. Therefore, since the one-way function has a key value, encryption and decryption are performed with this key. That is, since the encrypted information can be decrypted at any time if only the key is known, the encryption method of sharing the key has caused a serious problem of leakage of customer information.

However, since the keyless one-way function used in the present embodiment does not have a key, decryption is fundamentally impossible, and the keys do not need to be shared with each other, thereby preventing the leakage of customer information.

Although it is possible to encrypt the subscription customer information as a whole, only important information can be selectively encrypted, and such selective encryption provides time and economic advantages. In other words, additional information that does not have the risk of leakage of personal information is sent without encryption. In this case, even if it is not encrypted, the information of the customer is not known, so there is no risk of leakage of personal information of the customer. For example, important information such as social security number, name, telephone number, etc. for any registered customer may be encrypted and exported, and other additional information may be exported without encryption.

As shown in FIG. 3, first, the processing apparatus 200 of the host provides encryption means to the processing apparatus 300 of each participating company. The key to such encryption means is to provide a keyless one-way function determined by the host company. This process may be done offline.

Thereafter, each participating company's processing device proceeds with a one-way function encryption step of encrypting using a keyless one-way function of encryption means provided from the host company.

You can use any keyless one-way function. Traditional UNIX uses the DES method for password authentication, but in contrast to the typical DES method, a constant is fixed for every user and this constant is encrypted with the password as the key value. NT encrypts passwords by applying them to MD5 hash functions. You can use any known method, including these methods.

As an example of a one-way function, you can also use

The RSA cipher, published by Rivest, Shamir, and Adleman of MIT, USA, is known to be very secure because prime factorization is almost impossible because it uses synthetic numbers multiplied by two sufficiently large prime numbers. In other words, the difference in the length may vary, but if the public key is an integer of about 100 digits, it is proved to be impossible to obtain the secret key by factoring it. It is becoming. Therefore, it is almost impossible to extract the original information back from the encrypted result. By applying this property, we can create a keyless one-way function as shown below.

First, two random number generators are generated by using the transmitted customer information as an initial value. For example, if the customer information to be encrypted is X, two sufficiently large random numbers are generated using this X as a random seed of a sufficiently secure random number generator. When two different prime numbers generated as described above are p and q, the product n of the two prime numbers (= p · q) becomes the encryption result. In other words, a keyless one-way function is created with X as input and the result n as output.

After performing the encryption by the one-way function in each participating company, the processing device 300 of each participating company proceeds to the customer encryption information transmission step of transmitting the encrypted customer information to the processing unit 200 of the host company.

Thereafter, the encrypted customer encryption information transmitted to the host company is a duplicate subscription customer extraction step of extracting common data through post-processing in the processing unit 200 of the host company.

To this end, the data mining stage 224 of the controller office performs data mining that collects encrypted customer information as necessary. First, data correction is performed. In this embodiment, the customer information is collected by encrypting the customer's social security number, but there is a lot of difficulty in extracting the duplicate customer when there is an incorrect social security number. In order to correct this to some extent, it can be corrected by using encrypted information of additional information that can identify customers such as addresses or phone numbers. If correction is needed at this data mining stage, the data can be instructed and provided to the participating companies. Such correction may or may not be performed in accordance with the request for accuracy of information as long as it is satisfied that the organizer and other participating companies, which are the object of the present invention, determine the identity of the personal information in a state that cannot be decrypted.

Thereafter, a step of extracting duplicate customers, which is a core content of the present invention, is performed by comparing customer information. As described above, if the specific information X encrypted in the designated manner is the same, the original information is also the same. This is a characteristic that does not change even if encrypted several times as long as the same encryption method is used. The host company has already encrypted the customer information received from the participating company by the keyless one-way function provided by the processing unit 200 of the host company can check whether they match to extract duplicate customers. Therefore, at this stage, the customer identified as having matched specific information, for example, a social security number, is the same person who is subscribed to multiple participating companies (sites).

After that, the organizer proceeds with the output transfer step of processing the final extraction result extracted through the series of processes to the participating companies. In addition, the processing unit 200 of the organizer is to organize the extraction results and then to self-organize the database.

4 is a flowchart of a method of sharing customer information having security of encrypting using an encryption method using a public key according to an embodiment of the present invention.

As shown, the customer information sharing method having security by the public key encryption method of this embodiment is largely the encryption means transmission step, public key interchange step, public key encryption step, customer encryption information transmission step, duplicate subscription customer extraction It can be divided into stages and output transfer stages.

In the public key encryption method through interworking with the host company performed in the present embodiment, the public key can be encrypted with the public key, but it cannot be decrypted without knowing the secret key. Therefore, in the present embodiment, each participating company 300 has a different public key and a private key. Since the key information of each participating company is sequentially encrypted with the public key of all participating companies, decryption is performed unless all the private keys are leaked. Becomes impossible. Therefore, even if the security is maintained, the customer information of all participating companies participating in the co-marketing satisfies the condition of distinguishable identity. In addition, if the order of the sequential encryption is determined to be one, the information of each participating company is eventually encrypted in the same manner, and thus this sequential application of the present embodiment can be used as one of the encryption means using the public key encryption technique.

In addition, in the process of encryption by the public key, it is possible to target only two companies that want to share customer information without encrypting with the public key of all companies. This is a special case of K = 2 in the above sequential encryption method. The same applies to cases where K = 3, 4, ...

As shown in FIG. 4, in the present embodiment, first, the processing device 200 of the host company first performs an encryption means transmitting step of transmitting an encryption means to the processing device 300 of each participating company.

As described above, the encryption means is generated and transmitted by the encryption management unit 210 of the host company processing device, which includes various contents that can be performed by each participating company such as an encryption method or an encryption function determined by the host company. It is. The encryption means may be delivered offline.

However, unlike the embodiment of Figure 3, the method of the present embodiment also transmits a serial number that determines the order for a number of participating companies participating in the customer information sharing system. That is, if n participating companies participate, the host company assigns a serial number from 1 to n, and the assignment is stored in the host company's database 221. In addition, the progress of the present embodiment is all stored in the database 221 of the host company.

After that, if a serial number is assigned by the host, the host and each participating company generate their own public and private keys, and perform the public key interchange step of exchanging the generated public keys. In addition, the generated public key has an encryption method and a decryption method. For example, Participating Company A has an Ea method that encrypts with a public key and a Da method that decrypts with a secret key. Therefore, the encrypted information requires Da to know the original information. In this case, the public key can be publicly exchanged, but the private key is retained on its own, and the public key is responsible for the public key.

For convenience of explanation, public key 1, public key 1, public key 2, ... … , n public key and n secret key.

As will be described later, in the present invention, the data (eg, social security number) that needs to be checked for the same value while maintaining security is encrypted n times using the first public key to the n public key. Therefore, to restore it to the original social security number, it cannot be restored without having all the secret keys 1 to n. However, the host can only detect the fact that the two encrypted results are the same.

The sequential encryption method using the public key according to the present embodiment is a method of encrypting a specific data (X) that can distinguish a subscription customer such as a social security number in a predetermined order. That is, in the case of the seventh participant, which is the seventh, the data that is continuously encrypted from the first public key to the seventh public key, E ₇ (E ₆ (E ₅ (E ₄ (E _3)). (E ₂ (E ₁ [X])))))) will be sent to the host.

Then, in the customer encryption information transmission step of transmitting the encrypted customer information of each participating company from the processing unit 300 of the participating company to the processing unit 200 of the host company, once again using the host's public key for additional security. You can send it with more encryption. In this case, the host goes through the process of decrypting with his private key immediately after receiving the customer information.

Thereafter, the encrypted customer encryption information transmitted to the host company is a duplicate subscription customer extraction step of extracting common data through post-processing in the processing unit 200 of the host company.

In case that all participating companies have encrypted by sequential encryption method, the information transferred to the host company is as follows.

(1) Participating Companies: E ₁ [X]

Participating Companies: E ₂ (E ₁ [X])

Participating Companies: E ₃ (E ₂ (E ₁ [X]))

:

:

Participants: En (En _-1 (…… (E ₃ (E ₂ (E ₁ [X]))) ……))

In other words, when the first participating company is encrypted by the continuous method, the encrypted information that performs the encryption to the corresponding participating company for the specified information is transmitted to the host company. Therefore, the host company must match the final encryption information, that is, En (En- ₁ (…… (E ₃ (E ₂ (E ₁ [X]))) ……)), which is the encryption information of the (n) participant. (1) Additional encryption is performed by applying the information from the participating companies to the (n-1) participating companies in sequence, applying the public key of each participating company. This additional encryption allows the data obtained from each participating company to be encrypted in the same way, so that the organizer can easily extract duplicate customers without leaking the personal information of each corporate customer.

In addition, data mining, data correction, extraction of duplicated customers, and databases performed at the duplicated subscriber extraction step are encrypted using a keyless one-way function of FIG. As in, and the subsequent duplicated customer information transmission step and request customer information transmission step is also the same.

The customer information sharing system having security of the present invention may be applied in a state in which only a large number of participating companies are connected to the network without the presence of the host company. In this case, the processing device of the host company in the above technology serves as a participant company. The other parts are mostly the same.

In other words, in a system where two or more participating companies are networked,

An encryption device for encrypting the self-subscribed subscription customer information using a common encryption means; A transmission device for transmitting encrypted customer information to the plurality of participating companies or for transmitting necessary information to the plurality of participating companies as a result of processing by the data processing apparatus mentioned below; A data management device for processing by using the received customer information; And a receiving device for receiving necessary information from the customer information transmitted from the transmission devices of the plurality of participating companies or the result processed by the data management device, so that all participating companies can determine the sameness of the customer information in a state that cannot be decrypted. Characterized in that it can.

The participant's model differs mainly from the host's part and the other parts are almost the same. In the model with the participant, each participant's own work is done by the participant's processing unit.

In addition, the first customer information sharing method having security according to the present invention, in a system for connecting the processing apparatus of a plurality of participating companies to the network,

A one-way function encryption step of encrypting body subscription customer information in a processing device of the multiple participating companies by using a keyless one-way function; Customer encryption information transmission step of transmitting the encrypted subscription customer information to the processing unit of some or all of the plurality of participating companies; A duplicate subscription customer extraction step of extracting duplicated information by receiving the transmitted customer encryption information; It includes a data processing step of processing the information of the registered customer for the extracted duplicated information and processing such as data mining,

The second customer information sharing method having security according to the present invention is a system for connecting a processing device of a plurality of participating companies to a network,

A public key interchange step of exchanging public keys of participating companies to determine the order of the plurality of participating companies and to encrypt their subscription customer information; A public key encryption step of encrypting the body subscription customer information in a processing device of a plurality of participating companies by using the encryption means and the public key transmitted in the step; Customer encryption information transmission step of transmitting the encrypted subscription customer information to the plurality of participating company processing device; A duplicate subscription customer extraction step of extracting duplicated information by receiving the transmitted customer encryption information; It includes a data processing step of processing the information of the subscription customer for the extracted duplicated information and processing such as data mining.

The model with the host company is mainly different in the part related to the host company and the other parts are almost the same.In the public key interchange step, communication with the host company is lost, and the public key encryption step and the one-way function encryption step are the same. In the encryption information transmission step, the information is transferred to other participating companies instead of the host company. The duplicated customer extraction step and the data processing step are performed by each participant, and the contents of the work are the same. The order (serial number) of the participating companies for sequential public key encryption is determined by voluntary consultation of the participating companies because there is no host company.

The first and second sharing methods are two representative methods for high quality security. In some cases, it is possible to do this in a simple way: For example, if Firm E wants to share customer information with other firms. Entity E encrypts its customer information with its public key and sends it to the counterparties. The company receiving the data encrypts its customer information with Company E's public key. This allows other companies to simply check the identity of their customer information with that of E. This method is simple, but if you find out the secret key of the other party, all the customer information of the other party can be known at once, so the security is somewhat weak. The first and second sharing methods described above are examples of implementation methods having a much higher quality of security.

Therefore, as described above, the present invention is able to provide a high-quality service to the customer by extracting and using duplicated customers of different companies or Internet sites or subscription in a secure state. In addition, the present invention technically solves a somewhat heterogeneous problem of sharing information in a secure state by enabling selective encryption through sharing a public key.

In addition, the present invention diversifies the implementation method by sharing the information of the customer by performing encryption by a keyless one-way function and sequentially applying a public key as described above. In addition, even in such an implementation process, it is possible to carry out various modifications based on the technical concept of the present invention, such as additional encryption, overall or selective encryption of information related to the subscription customer, and changes in the use method of the public and private keys. Do.

By using the present invention, each company can use customer information that they do not have, and improve the efficiency of marketing or e-commerce, etc., but can fundamentally block the leakage of customer information. In addition, since the leakage of customer information can be fundamentally blocked, it is possible to form a new market where information can be exchanged for marketing purposes. In addition, since each company's responsibility for customer information is clear, it is expected to accelerate the spread of joint marketing through mutual information sharing to maximize the vitalization of the marketing market and its efficiency.

Claims (22)

In the system for connecting the host company and a number of participating companies in a network, Providing an encryption means for encryption, receiving the encrypted subscription customer information of the plurality of participating companies to extract duplicated customers, and using the extracted customer information to process the necessary matters of the result of the plurality of A host's processing device for transmitting to participating companies; And Including the processing apparatus of the plurality of participating companies that encrypts the subscribing customer information subscribed to the host using the encryption means provided from the host company to transmit to the host company, and receives the necessary information from the processed information in the host company, The host company and the participating companies, characterized in that the host company can determine the identity of the customer information can be used in the state that can not be decrypted, customer information sharing system having security. The treatment apparatus of claim 1, wherein An encryption manager for generating and managing encryption means related to encryption; A data manager which processes the encrypted customer information; And And a service management unit for providing the processed customer information to the plurality of participating companies. The method of claim 2, wherein the data management unit A database for storing various kinds of information; A customer information collecting step of collecting customer information through correction and identification of customer information transmitted to the processor of the controller; And And a data mining stage for processing the collected customer information into service information necessary for marketing. In a system where two or more participating companies are networked, An encryption device for encrypting the self-subscribed subscription customer information using a common encryption means; A transmission device for transmitting the encrypted customer information to the plurality of participating companies or for transmitting necessary information to the plurality of participating companies as a result of processing by the following data processing apparatus; A data management device for processing by using the received customer information; And Receiving apparatus for receiving the necessary information of the customer information transmitted from the transmission device of the plurality of participating companies or the processing result in the data management device, All participating companies can be used to determine the identity of the customer information in a state that can not be decrypted, customer information sharing system having security. The apparatus of claim 4, wherein the data processing device is An encryption manager for generating and managing encryption means related to encryption; And a data management unit for preprocessing and managing the encrypted customer information. The method of claim 5, wherein the data management unit A database for storing various kinds of information; A customer information collecting step of collecting customer information through correction and identification of the encrypted and transmitted customer information; And And a data mining stage for processing the collected customer information into service information necessary for marketing. In the system for networking the processing equipment of the host company and a number of participating companies, An encryption means transmitting step of transmitting an encryption means including a keyless one-way function from the controller of the host company to the plurality of participating companies in order to encrypt the subscription customer information of the plurality of participating companies; A one-way function encryption step of encrypting the subscribing customer information in the processing apparatus of the plurality of participating companies by using the encryption means and the keyless one-way function transmitted in the step; Customer encryption information transmission step of transmitting the encrypted subscription customer information to the processing unit of the master company; A duplicate subscription customer extraction step of extracting duplicated information by receiving the transmitted customer encryption information; And a product transmission step of processing information of the subscription customer for the duplicated information extracted in the step and transmitting the information to the processing device of the participating company. In the system for networking the processing units of a number of participating companies, A one-way function encryption step of encrypting body subscription customer information in a processing device of the multiple participating companies by using a keyless one-way function; Transmitting customer encrypted information to transmit the encrypted subscription customer information to a processing device of some or all of the plurality of participating companies; A duplicate subscription customer extraction step of extracting duplicated information by receiving the transmitted customer encryption information; And a data processing step of processing information of a subscription customer for the duplicated information extracted in the step to process data mining or the like. The method of claim 7 or 8, wherein the one-way function encryption step A random prime number generating step of generating two random prime numbers using the customer information as an initial value from the random prime number generator of the transmitted encryption means; And And a result value generating step of generating a result value by multiplying two different decimal values generated. The method of claim 7 or 8, wherein the one-way function encryption step And encrypting the entire customer information subscribed to the participating company. The method of claim 7 or 8, wherein the one-way function encryption step Among the customer information subscribed to the participating company, important information essential to the subscription customer is encrypted, and additional information except the important information is not encrypted, characterized in that the security information sharing method. In the system for networking the processing equipment of the host company and a number of participating companies, An encryption means transmitting step of transmitting a predetermined encryption means to the plurality of participating companies from the processing unit of the host to encrypt the subscription customer information of the plurality of participating companies; A public key interchange step of exchanging public keys of the host company and the plurality of participating companies to determine the order of the plurality of participating companies and to encrypt the subscription customer information of the plurality of participating companies; A public key encryption step of encrypting the subscribing customer information in the processing device of the plurality of participating companies using the encryption means and the public key transmitted in the step; Customer encryption information transmission step of transmitting the encrypted subscription customer information to the processor of the host company; A duplicate subscription customer extraction step of extracting duplicated information by receiving the transmitted customer encryption information; And a product transmission step of processing information of the subscription customer for the duplicated information extracted in the step and transmitting the information to the processing device of the participating company. The method of claim 12, In the public key encryption step, the participant that has been assigned K number according to the sequence of assignments to each participant company uses the public keys from the first to the K number in sequence to continuously use its specified customer information. Encrypted with In this case, in the extracting of duplicate subscription customers, the host company receiving encryption information from the corresponding participating company proceeds in a continuous manner by further encrypting using public keys K + 1 to Nth in order. Characterized in that the customer information sharing method having security. Where K is one of the serial numbers assigned from the host and N is the total number of participating companies. The method of claim 12, In the public key encryption step, the participant that has been assigned K number according to the sequence of assignments to each participant company uses the public keys from the first to the Nth in order to continuously use its specified customer information. And encrypting the extracted duplicated customer in the extracting step of the host, characterized in that it can be modified and operated so as not to perform additional encryption, customer information sharing method having security. The method of claim 12, In the step of transmitting the encrypted information, the customer information encrypted in the public key encryption step is encrypted with the public key of the host for further security during transmission to the host, and then transmitted. In this case, the duplicated subscription customer extraction step, characterized in that proceeds after decrypting with the secret key of the host, customer information sharing method having security. In the system for networking the processing units of a number of participating companies, A public key interchange step of exchanging public keys of the plurality of participating companies in order to encrypt subscription customer information of the plurality of participating companies according to a predetermined order of participating companies; A public key encryption step of encrypting the body subscription customer information in the processing apparatus of the plurality of participating companies by using the encryption means and the public key transmitted in the step; Transmitting customer encryption information for transmitting the encrypted subscription customer information to the plurality of participating company processing apparatuses; A duplicate subscription customer extraction step of extracting duplicated information by receiving the transmitted customer encryption information; And a data processing step of processing information of a subscription customer for the duplicated information extracted in the step to process data mining or the like. The method of claim 16, In the public key encryption step, the K-participating company sequentially encrypts its specific customer information using K-keys from 1st to Nth in order according to a predetermined sequence of participating companies. The customer information sharing method having a security. The method of claim 12 or 16, wherein the public key encryption step And encrypting the entire customer information subscribed to the participating company. The method of claim 12 or 16, wherein the public key encryption step Among the customer information subscribed to the participating company, important information essential to the subscription customer is encrypted, and additional information except the important information is not encrypted, characterized in that the security information sharing method. 17. The method of claim 12 or 16, wherein extracting duplicate subscription customers And a data mining process of collecting the transmitted encrypted customer information into a series of cleanup processes. 17. The method of claim 7, 8, 12, 16, wherein the extracting the duplicate subscription customer is Security information sharing method, characterized in that it further has a transform function that can be used for data processing by extracting other duplicate information (for example, age) without extracting whether the customer has a duplicate subscription. The method of claim 7 or 12, wherein transmitting the encryption means The method of sharing customer information, characterized in that it can be provided offline.