KR100586805B1 - Sheet used in preventing exposure of secret number, methods therefor and apparatus therefor - Google Patents

Abstract

The present invention provides a sheet of paper which prevents the password from being exposed, which is a sheet of paper consisting of a plurality of sections describing different information, in which a combination of codes used as a password is identifiably recorded in an order of arrangement. And a second section in which a rearrangement number of the code selected in the first section is recorded; and an identification factor indicative of a combination of the codes contained in the first section. The password combinations described in the section allow you to reconstruct the password. In addition, the present disclosure further discloses a method for preventing exposure of a password using the same and an apparatus for performing the same.

Password, exposure, prevention, encryption

Description

Sheet for preventing password exposure and exposure prevention method using the same and device therefor {Sheet used in preventing exposure of secret number, methods therefor and apparatus therefor}

The following drawings attached to this specification are illustrative of preferred embodiments of the present invention, and together with the detailed description of the invention to serve to further understand the technical spirit of the present invention, the present invention is a matter described in such drawings It should not be construed as limited to

1 illustrates an example of sheet paper according to the present invention.

2 shows a configuration of a network according to the present invention.

3 illustrates a table according to the invention.

4 is a view for explaining an embodiment of not exposing a password to another person.

* Brief description of the major symbols in the drawings *

100: sheet 200: input device

The present invention relates to a method for preventing exposure of a password, an apparatus for performing the same, and a system for performing the same, and more particularly, to use a password using other codes corresponding to the password so that the password used as an authentication means is not exposed to others. To one invention.

With the development of information and communication technology, many things can be achieved through a communication network such as the Internet. For example, things that were previously done offline, such as purchasing goods through shopping malls and financial transactions through banks, can now be done through the communication network. This makes the password used to authenticate the user even more important.

On the other hand, in the case of using a financial transaction offline, the applicant manuscripts what is written in the transaction application, fills in a password to be used for the financial transaction, and submits it to the person in charge. Or, even in the case of applying for a credit card, the applicant will be asked to fill out a transaction application form, which also requires the applicant to fill out the password without any filtering.

Therefore, there is a problem that the user's password is exposed to others at the time of transaction is quite high. In addition, even in a transaction through a communication network, if a password, which is an authentication means, is exposed, there is a possibility that the credit information or other important information of the user is exposed as it is. Nevertheless, very few security measures have been in place yet.

Regarding the security technology of passwords, Korean Patent Application No. 2001-63268, "Automatic Generation of Variable Passwords," describes how to generate a new password every time according to a certain calculation rule. The present invention discloses a technique for preventing accidents that may occur due to the exposure of passwords in financial transactions. However, according to the prior art, first, a fixed password is registered and thereafter, a new password corresponding to the registered conditions is generated every time a financial transaction is made. There are problems that cannot be achieved.

In addition, Korean Application No. 2001-46246 "Financial Transaction Limitation and Incident Reporting Method Using Multiple Passwords" registers a password used in a financial transaction with a plurality of passwords having different purposes, and automatically generates a financial accident. It discloses a technology that can be configured to be reported to a specific institution to minimize the damage caused by financial accidents. According to this prior art, in the event of a financial accident, a limited number of financial transactions are carried out to protect the owners and to be immediately reported to the relevant institutions, thereby effectively solving the problem. However, this prior art has a limitation in that it is possible to prevent the accident on a limited basis by configuring to solve it in the event of an accident. That is, when a financial accident occurs, it is preferable as a technique for solving the problem, but it is not possible to prevent the exposure of the password that is the source of the problem.

The present invention has been devised to solve the above problems, and it is intended to provide the present invention that prevents the exposure of the password to others in the course of a transaction that requires the use of the password.

In order to achieve the above object, one aspect of the present invention provides a sheet of paper which allows a password to be used as a different number, which is a sheet of paper consisting of a plurality of sections describing different information, and the code used as a password. A first section in which the combination of the first and second codes is recognizably recorded in the arranged order; a second section in which the rearrangement number of the code selected in the first section is recorded; and a combination of the codes contained in the first section. Is an identification factor; and allows the password to be reconstructed with a sequence combination of codes described in the second section.

Preferably, the first section is provided to be separable from the second section so as to prevent exposure of a password that may occur by removing a combination of codes included in the first section.

More preferably, the first section is coated with an opaque material to protect the signs contained therein.

On the other hand, the password applied by the above-mentioned sheet paper, by reconfiguring the original password in the input device of the present invention and then registered in the system so that the user can use the password applied as it is, the device is a combination of the code used as a password Responsive to the identifier and configured to form an original password from the rearrangement number; an input module for inputting the identifier and the rearrangement number; and reconstructing the password from the table with the identification factor. A combination module for detecting a combination of codes to be used, and sequentially reconstructing the original password from the rearranged numbers by sequentially matching the numbers corresponding to the respective digits of the rearranged numbers to the detected combination of codes. do.

In addition, the input module is composed of a barcode reader for reading a bar code, it is preferable to configure so that the identification factor of the barcode can be easily read. Alternatively, if the sheet paper 100 further comprises marking means, the input module may be configured with an optical mark reader (OMR) reader for detecting it.

On the other hand, in another aspect of the present invention, there is provided a method for preventing a password from being exposed in a transaction process by utilizing the above-described sheet paper and an input device, wherein the exposure prevention method includes a number selected from a combination of codes recorded on the sheet paper. Receiving a rearrangement number; and an identification factor for indicating a combination of codes used to create the rearrangement number; Detecting from the table a combination of codes used to generate the rearrangement number with reference to the identifier; And detecting the original password by sequentially matching the rearrangement number to the combination of the detected codes according to the number of digits.

Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings. Prior to this, terms or words used in the specification and claims should not be construed as having a conventional or dictionary meaning, and the inventors should properly explain the concept of terms in order to best explain their own invention. Based on the principle that can be defined, it should be interpreted as meaning and concept corresponding to the technical idea of the present invention.

Therefore, the embodiments described in the specification and the drawings shown in the drawings are only the most preferred embodiment of the present invention and do not represent all of the technical idea of the present invention, various modifications that can be replaced at the time of the present application It should be understood that there may be equivalents and variations.

1 shows an example of a sheet of paper 100 according to the present invention. Sheet paper 100 shown in Figure 1 is a view for explaining an embodiment in which the present invention in the form of a sticker to be pasted in the column to be described in the conventional transaction application form to write a password.

The sheet 100 according to the present invention includes a first section 10 in which a plurality of code combinations used as a password are identifiably recorded in an arrangement order; and a rearrangement number of the code selected in the first section is recorded. It is preferably configured to include a second section 20; and an identification factor for indicating the arrangement order of the codes contained in the first section. In addition, the sheet of paper 100 of the present invention is preferably provided with a perforation line 30 to separate the first section 10 and the second section 20 to be separated from each other, more preferably The first section 10 is preferably coated with an opaque material such as silver foil so that the signs described in this section 10 are not visible.

The first section 10 is a section in which codes used for a password that a user wants to specify are stored in a random arrangement order. Preferably, the codes 11, 12, 13, 14 are erased according to the number of digits used as the password so that they are described corresponding to each digit of the password. In addition, although only Arabic numerals are illustrated in the drawings, other symbols such as alphabets and special characters may be used. On the other hand, the symbols described in this section 10 are identified by sequence number.

In addition, the second section 20 is a section in which the sequence number (hereinafter referred to as 'rearrangement number') of the code selected in the first section is recorded. This section 20 is also divided into a plurality of groups 21, 22, 23, 24 corresponding to the groups 11, 12, 13, 1 14 of the signs contained in the first section 10. That is, the rearrangement numbers of the codes selected in each group 11, 12, 13, 14 of the first section are recorded in each group 21, 22, 23, 24 of the second section 20 corresponding thereto. For example, if '5' '8' '3' '4' is sequentially selected from each group among the codes existing as a group in the first section, the second section includes the redundancy of the numbers selected in the first section. The array numbers '4' '1' '2' '0' are stored in the corresponding groups 21, 22, 23 and 24, respectively. Preferably, the group of the second section 20 is further provided with a means for marking the rearrangement number with a sign pen or the like, which are marked to correspond to the respective codes by the number of digits, so that the applicant can easily In addition to being able to select and write a code, it is also possible to easily detect a password selected by the user even in the process of registering a password by computer.

On the other hand, the sheet of paper 100 of the present invention is provided between the first section 10 and the second section 20 has a cut line 30 to remove the first section 10 from the sheet 100 do. Another alternative is to make a closed loop so that only the symbols written on the sheet of paper 100 can be removed.

The user records the rearrangement numbers of the passwords selected in the first section 10 in the corresponding group of the second section 20, respectively, and removes the first section from the sheet of paper 100 to know the password selected by the applicant. Do not let it.

Finally, the sheet of paper 100 of the present invention, the identification factor for indicating the sequence of the order of the codes contained in the first section 10; (30) is stored, the applicant through the identification factor 30 to the application form From the rearrangement number which we listed, we let you know combination of codes that this applicant used and let you recombine original password. Preferably, the identifier is recorded on the sheet 100 in the form of a barcode.

The transaction applicant uses the sheet of the present invention prepared as part of the application, writes the password in the rearrangement number as a rearrangement number, and submits other matters to the person in charge. Therefore, the password specified by the applicant is not exposed to others. On the other hand, the person in charge receives the application and registers the rearrangement number described here as it is using the apparatus of the present invention. Then, the device of the present invention registers the password specified by the user from the input rearrangement number and registers it in the system so that the user can use the service with the password requested by the user.

Hereinafter, the network configuration of the present invention for recombining the user's password from the rearrangement number will be described in detail with reference to FIG. 2 shows a configuration of a network according to the present invention.

Referring to FIG. 2, the input device 200 according to the present invention is connected to the transaction system 300 through a communication network 400 to form a network.

The transaction system 300 is configured to store a password and corresponding transaction information (for example, a bank account) of a bank and process a user's transaction application like a traditional computer network. In the example of a bank, the transaction system 300 stores financial information such as a deposit status and a password of the deposit account for each deposit account, and is configured to process deposit transactions of a user authenticated with the password. have. The transaction system 300 receives and records passwords received from a plurality of input devices 200 connected through the communication network 400 and related service information.

The input device 200 according to the present invention is a configuration in which the rearrangement number obtained from the sheet 100 of the present invention described above is configured with the original password by referring to the table 210 and registered in the transaction system 300. .

On the other hand, the table 210 is configured to record the combination of the code contained in the sheet 100 corresponding to the identification factor 40, so that the original password can be configured from the rearrangement number. Referring to FIG. 3, the table 210 includes the code combinations included in the sheet according to the identification field 211 containing the identifier 30 for identifying the codes contained in each sheet 100. It consists of a sign field 212 containing the same code. Further, the sign field 212 is further divided into a plurality of fields corresponding to the digits of the rearrangement number, and each digit field contains a combination of codes corresponding to the place.

Therefore, the user-specified password can be reconstructed by corresponding to the table 210 in sequence according to the number of digits.

In addition, the input device 200 according to the present invention includes an input module 220 for reading a rearrangement number from a sheet to reconstruct a password from the rearrangement number input with reference to the above-described table; and the rearrangement number. The combination module 230 to be recombined with the original password to be included in the transaction system 300 with reference to the above-described table 210, it is configured to include.

The input module 220 is configured to input the rearrangement number written on the sheet into the apparatus 200, and a conventional keyboard and a barcode reader for reading a barcode are preferably used. The input rearrangement number is applied to the combination module 230 to reconstruct the original password.

The combination module 230 is configured to reconfigure the rearrangement number with a password and register it in the system 300. The combination module 230 corresponds to the number of digits among the rearranged numbers inputted through the input module 220 for each digit field of the table, sequentially detects the corresponding numbers, and reconstructs the password. The password is registered in a predetermined storage device (e.g., a database).

Meanwhile, although the above-described configuration of FIG. 2 has been described based on a network configuration connected through a communication network at a remote location, those skilled in the art will appreciate that the configuration may be configured in one integrated system.

4 illustrates a flow for an example of reconfiguring a password with a rearrangement number and registering it in the system according to the present invention.

Referring to Figure 4, the transaction applicant writes a transaction application attached in the form or a sticker form of the transaction application to be described in the sheet 100 of the present invention described above the password (S100). The applicant for the transaction confirms the description of the password application method described in a part of the application, and removes the silver foil coating according to the described method to select the number of each digit used as the password in the first area 10. Then, the applicant writes the rearrangement number corresponding to the selected password in the second area 20, removes the first area 10 from the sheet 100 according to the perforation line 30, and submits it to the person in charge. .

The person in charge reads the identification factor of the rearrangement number and barcode described in the application using the input module 220 (S200).

Then, the combination module 230 searches for a combination of codes used by the applicant among the codes included in the table 210 with reference to the identification factor (S300).

Then, the number corresponding to each digit of the input rearrangement number corresponds to the retrieved code combination, and detects the corresponding sequence number, and sequentially combines the passwords to reconstruct the password from the rearrangement number (S400). Record and register.

As described above, although the present invention has been described by way of limited embodiments and drawings, the present invention is not limited thereto and is intended by those skilled in the art to which the present invention pertains. Of course, various modifications and variations are possible within the scope of the claims to be described.

According to the present invention, by solving the above problems to prevent the exposure of the password to others in the course of the transaction that must use the password, thereby solving various problems (e.g., financial accidents, identity information leakage, etc.) caused by this fundamentally There is a number. In addition, since the sheet paper according to the present invention can be easily produced with a sticker, it is possible to paste it here and reuse it without throwing away the application form currently used by various institutions. Therefore, the effect can be saved by that much.

Claims (10)

Sheet paper composed of a plurality of sections, A first section in which an arbitrary combination set of codes used as a password is sequentially arranged by the number of digits of the password; and A second section in which a rearrangement number indicating a position sequence number of each selected code in each code combination set included in the first section is recorded; And a third section in which an identifier for recording arbitrary combination sets of the codes contained in the first section is recorded; specifying an arrangement of the arbitrary combination sets of codes previously stored with the identifier. A sheet of paper that allows passwords to be reconstructed by mapping with an array of arbitrary combination sets of codes specified by the rearrangement numbers described in section 2. The method of claim 1, And the first section is separably provided from the second section. The method of claim 1, Wherein the codes are present in groups corresponding to the number of digits of the password. The method of claim 1, And the first section is coated with an opaque material. The method of claim 1, The identification sheet is recorded as a bar code, characterized in that it further comprises marking means for recording the rearrangement number. A table for storing a combination of codes used as a password in correspondence with an identification factor, so that an original password can be formed from a rearrangement number; and An input module for inputting the identifier and rearrangement number; and Detects a combination of codes used to reconstruct a password from the table with the identifier, and sequentially matches numbers corresponding to the number of digits of the rearranged numbers to the detected combination of codes, thereby reconstructing the original from the rearranged numbers. And a combination module for reconfiguring passwords. The method of claim 6, And the codes are included in the table in a group combination for each digit corresponding to the number of digits of the password. The method of claim 6, The input module comprises a barcode reader for reading a barcode, the input device characterized in that for detecting the identification factor of the barcode. A sheet paper in which a combination of a rearrangement number and a code used as a password is recorded; and an input device including a table for dividing a combination of the codes included in the sheet as an identification factor; and a password is exposed during the application process. As a way to prevent that, Receiving, by the input device, (a) a rearrangement number made of a number selected from the combination of the codes recorded on the sheet; and an identification factor for indicating a combination of the codes used to make the rearrangement number; (b) detecting from the table a combination of codes used to generate the rearrangement number with reference to the identifier; And, (c) detecting the original password by sequentially matching the rearranged number to the combination of the detected codes according to the number of digits. The method of claim 9, In the step (a), the input device detects the rearranged number recorded on the sheet by the barcode as a bar code; characterized in that it further comprises a.

Images