KR101991313B1 - Apparatus, method and computer program for user uthentification - Google Patents

Abstract

A user authentication method using a motion input includes transmitting motion instruction information to a user's PC in a service providing server; Displaying the motion instruction information on the screen of the user's PC under the control of the service providing server; Determining, at the service providing server, whether the motion input received from the user's mobile device corresponds to motion indication information; And transmitting the security clear signal to the user's PC when the motion input corresponds to the motion indicating information in the service providing server.

Description

[0001] APPARATUS, METHOD AND COMPUTER PROGRAM FOR USER UTHENTIFICATION [0002]

[0001] The present invention relates to an apparatus, a method and a computer program for performing user authentication, and more particularly, to an apparatus, a method and a computer program for performing user authentication using various methods for providing a game service.

A user can play an online game by installing a program for executing a game on a user device including a variety of wired and wireless communication devices such as a personal computer, a smart phone, and a tablet PC. In addition to PCs, users are increasingly enjoying games in various places using mobile communication devices.

On the other hand, when a user wants to play a game using a PC, OTP (One Time Password) authentication method is used in addition to password authentication. OTP means a user authentication scheme that uses a one-time password of a random number generated randomly.

In the OTP authentication method used for user authentication using a game service, when the generated OTP is displayed on the PC screen, the number input to the mobile device authenticated as the device owned by the user is displayed on the PC screen A method of judging whether or not they coincide with each other is used. When the number input to the mobile device matches the number displayed on the PC screen, the user authentication of the user who owns the mobile device is completed.

In order to authenticate a user who plays a game, security can be further enhanced by using OTP using motion, pattern input, biometric authentication, etc. in addition to the existing OTP authentication method.

In addition, an authentication method such as motion, pattern input, biometric authentication, and the like is randomly presented to the user, thereby making it possible to induce the user's interest in the game.

According to an embodiment of the present invention, there is provided a method of authenticating a user using a motion input, the method comprising: transmitting motion indication information to a user's PC in a service providing server; Displaying the motion instruction information on the screen of the user's PC under the control of the service providing server; Determining, at the service providing server, whether the motion input received from the user's mobile device corresponds to motion indication information; And transmitting the security clear signal to the user's PC when the motion input corresponds to the motion indicating information in the service providing server.

A method for authenticating a user using a motion input according to an embodiment includes receiving a security release request from a user's PC at a service providing server before transmitting motion indication information; And generating, at the service providing server, motion indication information in response to the unsecure request.

In the service providing server according to an exemplary embodiment, the step of generating motion indication information in response to a security release request may include generating motion indication information including at least one of a motion direction of the mobile device, For example.

The user authentication method using a motion input according to an exemplary embodiment may include a direction of movement of the mobile device, a vertical direction, a lateral direction, and a circular movement direction of the mobile device.

The method for authenticating a user using a motion input according to an exemplary embodiment may further include displaying a user interface for requesting user authentication on a screen of a user's mobile device under the control of a service providing server.

The server for user authentication using the motion input according to an exemplary embodiment of the present invention includes:

The processor includes a memory, a processor, and a communication unit. The processor transmits motion indication information to the user's PC, displays motion indication information on a screen of the user's PC, and receives motion input from the user's mobile device And to transmit the security release signal to the user's PC when the motion input corresponds to the motion indication information.

The processor in accordance with one embodiment may receive the unsecure request from the user's PC and generate the motion indicating information in response to the unsecure request, prior to sending the motion indicating information.

A processor in accordance with one embodiment may control to generate motion indication information that includes information about at least one of a motion direction of a mobile device, a velocity of motion, and a number of motions.

The direction of movement of the mobile device according to one embodiment may include up-down, left-right and circular motion directions of the mobile device.

The processor according to an exemplary embodiment may be configured to display a user interface for requesting user authentication on a screen of a user's mobile device.

A method of authenticating a user according to an exemplary embodiment of the present invention includes: determining, by a service providing server, a security release method and a security release password upon receiving a security release request from a user's PC; Displaying a screen showing a security release password according to the security release method on the screen of the user's PC under the control of the service providing server; Determining, at the service providing server, whether the input received from the user's mobile device matches the secret unlock password; And transmitting, at the service providing server, an unsecure signal to the user's PC, if the received input matches the unsecure password.

The method of authenticating a user according to an embodiment may further include receiving a security release request from a user's PC at a service providing server before deciding a security release method and a security release password.

In the case where the security release method according to an embodiment is a password input method, the security release password may include an OTP including at least one combination of letters and numbers generated at a predetermined time.

The decrypting method and decrypting decrypting method may include selecting one of a motion input, a password input, a pattern input, and a biometric authentication according to an exemplary embodiment.

The step of determining the security release method and the security release ciphering according to an exemplary embodiment may include determining a security release cipher corresponding to the plurality of security release methods and the plurality of security release methods.

The step of determining a security release method and the security release cipher according to an embodiment includes: determining a security release method as a motion input; And deciding the decryption secret as motion indication information including information on at least one of a direction of movement of the mobile device, a speed of movement, and a number of movements.

The direction of movement of the mobile device according to one embodiment may include up-down, left-right and circular motion directions of the mobile device.

The method may further include displaying a user interface for requesting user authentication on a screen of the mobile device of the user under the control of the service providing server according to an exemplary embodiment.

A computer program stored on a computer-readable medium for implementing the method of user authentication according to one embodiment may be provided.

In addition to the existing OTP authentication method, OTP using motion, pattern input, biometric authentication, etc. is used to further enhance security and induce user's interest.

In addition, by presenting an authentication method such as motion, pattern input, biometric authentication, and the like to the user at random, it is possible to improve the security and increase the user's interest in the game.

1 illustrates an online game providing system 100 including a user device and a server according to one embodiment.
FIG. 2 is a diagram for explaining a game service providing server 200 according to an embodiment.
3 is a diagram illustrating a detailed configuration of a user device 300 according to an embodiment.
4 is a flowchart of a method for providing a game service according to an embodiment.
5 is a flowchart of a user authentication method using a motion input according to an exemplary embodiment.
6 is a diagram for explaining an operation in which the game service providing server 200 transmits motion indication information to the user device 300 according to an embodiment.
7 is a diagram for explaining an operation in which the game service providing server 200 transmits an authentication request to a user's mobile device 10 according to an embodiment.
8 is a diagram for explaining an operation in which the game service providing server 200 receives a motion input from a user's mobile device 10 according to an embodiment.
9 is a diagram for explaining an operation in which the game service providing server 200 transmits a security release signal to the user device 300 according to an embodiment.
10 is a flowchart of a user authentication method according to an embodiment.
11 is a diagram for explaining a method for authenticating a user when the security release method is determined to be a biometric authentication method according to an embodiment.
12A to 12C are diagrams for explaining a method of authenticating a user when a security release method is determined as a motion input according to an embodiment.
13 is a diagram for explaining a method of authenticating a user when the security release method is determined to be a password input method according to an embodiment.

Hereinafter, exemplary embodiments according to the present invention will be described in detail with reference to the contents described in the accompanying drawings. In addition, a method for constructing and using an electronic device according to an embodiment of the present invention will be described in detail with reference to the contents described in the accompanying drawings. Like reference numbers or designations in the various drawings indicate components or components that perform substantially the same function.

Terms including ordinals such as first, second, etc. may be used to describe various elements, but the elements are not limited by terms. Terms are used only for the purpose of distinguishing one component from another. For example, without departing from the scope of the present invention, the first component may be referred to as a second component, and similarly, the second component may also be referred to as a first component. The term " and / or " includes any combination of a plurality of related items or any of a plurality of related items.

The terminology used herein is for the purpose of describing the embodiments only and is not intended to limit and / or to limit the invention. The singular expressions include plural expressions unless the context clearly dictates otherwise. In the present application, the term " comprising or comprising " or " comprising " is intended to specify the presence of stated features, integers, , But do not preclude the presence or addition of one or more other features, elements, components, components, or combinations thereof.

In the following description, the user may mean a user, a gamer, and is not limited to the above example.

1 illustrates an online game provision system 100 including a server and a user device according to one embodiment.

The online game providing system 100 of the present invention may include a server 20 and at least one user device 11 to 15. [ The server 20 can provide an online game service through a network. The server 20 may simultaneously provide an online game to at least one user device 11 to 15, and the online game may mean a game in which a plurality of users access and enjoy the network.

According to one embodiment, the server 20 may include a single server, a collection of servers, a cloud server, and the like, and is not limited to the above example. In addition, the server 20 may include a database for storing user data.

The at least one user device 11 to 15 may be an electronic device capable of installing and running a game, and may be a device capable of communicating with the server 20 via a network. At least one user device 11 to 15 may be a personal computer 11, a tablet 12, a notebook 13, a smartphone 14 and a TV 15 as well as a PDA Digital assistants, portable multimedia players (PMPs), navigation, MP3 players, digital cameras, refrigerators, washing machines, vacuum cleaners, and the like. In addition, the at least one user device 11-15 may include, but is not limited to, a wearable device having a communication function and a data processing function.

At least one user device (11-15) can receive a game service through the server (20) using a network. The meaning of receiving a game service using a network may include the meaning that communication between the game server and the terminal can be performed through various communication methods.

According to one embodiment, a network means a connection established (or formed) using a predetermined communication method, and may mean a communication network for transmitting / receiving data between a terminal and a terminal or between a terminal and a server.

The communication method may include a communication method such as a predetermined communication standard, a predetermined frequency band, a predetermined protocol, or communication through a predetermined channel. For example, it may include Bluetooth, BLE, Wi-Fi, Zigbee, 3G, LTE, ultrasound communication methods, and may include both short range communication, long distance communication, wireless communication and wired communication. Of course, the present invention is not limited to the above example.

According to one embodiment, the short-range communication method may mean a communication method capable of communicating only when a device (terminal or server) performing communication is within a predetermined range. For example, Bluetooth, NFC, . The term "long distance communication method" may mean a communication method in which a device that performs communication can communicate without regard to distance. For example, the long-distance communication method may mean a method in which two devices communicating through a repeater, such as an AP, can communicate even when the distance is equal to or greater than a predetermined distance, and a cellular network (3G, LTE) And may include a communication method used. Of course, the present invention is not limited to the above example.

According to one embodiment, the online game may include various genres such as sports, MMORPG, AOS, FPS, TCG, and CCG. The online game may be a confrontational game between a user and a user, or a confrontation method between a user and a computer (for example, artificial intelligence). Of course, the present invention is not limited to the above example, and there is no limit to the form of the online game.

According to one embodiment, the server 20 may provide a screen for authentication requests or a user interface for unsecure input to at least one user device 11-15.

FIG. 2 is a diagram for explaining a game service providing server 200 according to an embodiment.

The game service providing server 200 may be a server device that provides a game service. Also, the game service providing server 200 may be a server device that provides a game service and provides various user authentication methods.

The game service providing server 200 can obtain the user's ID, password, and information on the user's authorized mobile device from a database (not shown).

According to one embodiment, the database may store and manage information about the user playing the game. The database according to an exemplary embodiment may include a user's friend list information for a plurality of games provided by a manufacturer of a game, play information of a user, character information of a user, information on items of a user, and the like. According to one embodiment, the database may be included in the game service providing server 200.

A database according to an exemplary embodiment may store a list generated by mapping a PC playing a game to a mobile device owned by a user with the same account.

The processor 210 controls the overall operation of the game service providing server 200. For example, the processor 210 may control the operation of the game service providing server 200 by executing a program stored in the memory 220 of the game service providing server 200. [

The processor 210 may provide a function for driving a game. For example, the processor 210 may perform a function of generating content to be provided in a game. Here, the function of generating content can be performed by executing a program code (program code) stored in the game service providing server 200. The program code stored in the game service providing server 200 may be updated by the manufacturer.

The processor 210 in accordance with one embodiment may execute one or more programs stored in the memory 310. [ Processor 210 may include single core, dual core, triple core, quad core, and cores thereof. In addition, the processor 210 may include a plurality of processors.

The processor 210 according to one embodiment may control to transmit motion indication information to the user device. The processor 210 may control to display motion indication information on the screen of the user device.

According to one embodiment, the motion indication information may be content for instructing a user to use a mobile device. The motion direction information may include text, moving images, and still images. In addition, the motion direction information may be different depending on the time point at which the motion direction information is generated.

The motion indication information may be for indicating a movement of a user using an authorized mobile device to use the game service. When the motion instruction information is displayed according to the generation time point and is displayed only to a user who uses the user device, it is possible to provide a function of performing user authentication.

Specifically, the user authentication function may be provided by determining whether the user provides the motion input corresponding to the displayed motion indication information using the authenticated mobile device.

The motion direction information may include at least one of a direction of moving the mobile device, a number of times of movement, and a speed.

For example, the motion indication information may include moving the mobile device up or down or side to side, drawing a circle with the mobile device, shaking the mobile device, and so on. In addition, the motion direction information may include moving the mobile device quickly and slowly. In addition, the motion direction information may include moving the mobile device up and down, right and left by a predetermined number of times.

The above description is only an example of the motion direction information, and the motion direction information may include all combinations of the above.

The motion input according to an exemplary embodiment may be an input indicating a movement that a user provides through moving a mobile device that has been authenticated to the user's device.

The motion input can be recognized through a gyro sensor, an acceleration sensor or the like built in the user's mobile device.

The processor 210 determines whether or not the motion input received from the user's mobile device corresponds to the motion indication information and the processor 210 transmits a security release signal to the user device when the motion input corresponds to the motion indication information .

The processor 210 according to one embodiment may receive the unsecure request from the user device and generate the motion indicating information in response to the unsecure request, prior to transmitting the motion indicating information.

The processor 210 according to one embodiment can control to generate motion indication information including information on at least one of the direction of motion, the velocity of motion, and the number of movements of the mobile device.

The direction of movement of the mobile device according to one embodiment may include up-down, left-right and circular motion directions of the mobile device.

The processor 210 according to an exemplary embodiment may control the display of the user's interface of the mobile device of the user to request the user authentication.

The processor 210, in accordance with one embodiment, may determine an unsecure mode and an unsecure password upon receipt of an unsecure request from the user device.

In addition, the processor 210 may control the display of the screen indicating the security release method and the security release password on the screen of the PC.

In addition, the processor 210 may receive an unsecure input from the user ' s mobile device. Processor 210 may determine whether the received input is consistent with an unsecure password and may send an unsecure signal to the user device if the received input matches the unencrypted password.

The processor 210 may receive an unsecure request from the user device before determining the unsecure mode and the unsecure password.

The processor 210 may include an OTP in which, when the security release method is a password input method, the security release password is composed of a combination of at least one of letters and numbers generated at a predetermined time.

The processor 210 can select a security release method from at least one of a motion input, a password input, a pattern input, and a biometric authentication.

The processor 210 may determine a security release cipher corresponding to a plurality of security release methods and a plurality of security release methods.

The memory 220 according to an exemplary embodiment may store various data, programs, or applications for driving and controlling the game service providing server 200. The program stored in the memory 220 may include one or more instructions. Programs (one or more instructions) or applications stored in the memory 220 may be executed by the processor 210.

The communication unit 230 can send and receive data or signals to / from the user device (11 to 15 in Fig. 1) and the database through the network under the control of the processor 220. [

The communication unit 230 can communicate with the user device using at least one of wireless communication and wired communication. According to one embodiment, the communication unit 230 can communicate with the user device in order to provide the user with the content determined during the game play under the control of the processor 220. [ Further, the communication unit 230 can receive user information of a user playing a game from a database (not shown) under the control of the processor 220. [ The communication unit 230 may receive the user information of the user playing the game from the user device under the control of the processor 220. [

The communication unit 230 can receive a security release request from a user device that wants to play the game, for example, under the control of the processor 220. [ The communication unit 230 can transmit the security release method and the security release password to the user device under the control of the processor 220. [

The communication unit 230 may be a hardware module such as a network interface card, a network interface chip and a network interface port and may be a network device driver ) Or a software module such as a networking program.

The game service provision server 200 may include more components than the components shown in FIG.

3 is a diagram illustrating a detailed configuration of a user device 300 according to an embodiment.

Also, the user device 300 may be a device for a user to play a game under the control of a game service providing server.

The user device 300 may include a memory 310, a processor 320, a user interface 330, and a communication unit 340.

According to one embodiment, the user device 300 may include a user's PC. In addition, the user device 300 is not limited to a user's PC, but may include a PC in another location (e.g., a PC room), a user's tablet, and the like.

The memory 310 may be a computer readable recording medium and may include a permanent mass storage device such as a random access memory (RAM), a read only memory (ROM), and a disk drive. Also, the memory 310 may store an operating system and at least one program code (for example, a code for driving a game program driven by the user device). These software components may be loaded from a computer readable recording medium separate from the memory 310 using a drive mechanism. Such a separate computer-readable recording medium may include a computer-readable recording medium such as a DVD / CD-ROM drive, a memory card, and the like. In other embodiments, the software components may be loaded into the memory 310 via the communication unit 340 rather than a computer-readable recording medium. For example, at least one program may be loaded into the memory 310 based on a program installed by the developers or files provided by a game server (see 20 in FIG. 1) that distributes the installation files or patch files of the game .

The processor 320 in accordance with one embodiment may execute one or more programs stored in the memory 310 or commands provided through the communication unit 340. [ Processor 320 may include single core, dual core, triple core, quad core, and cores thereof. In addition, the processor 320 may include a plurality of processors.

The user interface 330 according to one embodiment may receive user input. For example, the user interface 330 may receive user input requesting unsecure.

The user interface 330 may include a key pad, a dome switch, a touch pad (contact type electrostatic capacity type, pressure type resistive type, infrared ray detection type, surface ultrasonic wave conduction type, A piezo effect method, etc.), a jog wheel, a jog switch, and the like, but is not limited thereto.

The communication unit 340 may provide a function for the user device 300 and the game server (see 20 in FIG. 1) to communicate with each other through the network. For example, the request generated by the processor 320 of the user device 300 according to the program code stored in the recording device such as the memory 310 may be transmitted to the game server 20 under the control of the communication unit 340 have. In addition, control signals, commands, contents, files, and the like provided from the game server 20 may be received by the user device 300 through the communication unit 340 of the user device 300. For example, control signals and commands of the game server 20 may be transmitted to the processor 320 or the memory 310 through the communication unit 340, and contents or files may be transmitted to a separate computer of the user device 300 Can be loaded onto a readable recording medium.

The user device 300 may include more components than the components shown in FIG. For example, the user device 300 may further include a display (not shown). The display may be a liquid crystal display, a thin film transistor-liquid crystal display, an organic light-emitting diode, a flexible display, a three-dimensional display, And an electrophoretic display. If the display and the touchpad are layered to form a touch screen, the display may be used as an input device in addition to an output device

4 is a flowchart of a user authentication method using a motion input according to an exemplary embodiment.

The user authentication method illustrated in FIG. 4 may provide a user authentication function using a motion input to a user who intends to use the game service. In addition, the game service providing method shown in FIG. 4 may be performed in the game service providing server 200 of FIG.

In step S410, the game service providing server 200 may transmit the motion instruction information to the user's PC (S410).

In step S420, the game service providing server 200 may display the motion instruction information on the screen of the user's PC (S420).

The motion indication information may be a content for instructing a user to move using the mobile device. The motion direction information may include text, moving images, and still images. In addition, the motion direction information may be different depending on the time point at which the motion direction information is generated.

In step S430, the game service providing server 200 may determine whether the motion input received from the user's mobile device corresponds to the motion instruction information (S430).

In step S440, if the motion input corresponds to the motion instruction information, the game service providing server 200 may transmit a security release signal to the user's PC (S440).

5 is a flowchart of a user authentication method using a motion input according to an exemplary embodiment.

The user authentication method shown in FIG. 5 may be performed in a PC, a server, and a mobile device for a user to play a game.

The server shown in FIG. 5 may correspond to the game service providing server 200 of FIG. Hereinafter, the server, the service providing server and the game service providing server are used in the same sense.

In step S501, the user's PC may transmit a security release request to the service providing server (S501). In step S503, the service providing server can receive a security release request from the user's PC (S503).

In step S505, the service providing server can generate the user's motion instruction information (S505). The motion indication information may be a content for instructing the user to move using the mobile device, and may be different depending on a time point at which the motion indication information is generated.

In step S507, the service providing server can transmit the motion instruction information to the user's PC (S507).

In step S509, the user's PC can receive the motion instruction information from the service providing server (S509).

In step S511, the user's PC can display the motion instruction information on the PC screen (S511).

In step S513, the service providing server may transmit an authentication request to the user's mobile device (S513). The transmission of the authentication request of step S513 may be performed before or after the step of transmitting the motion direction information (S507).

In step S515, the user's mobile device may receive an authentication request from the service providing server (S515).

In step S517, the user's mobile device may display an authentication request screen (S517).

After receiving the authentication request from the server in the authentication request screen, the user can ignore or approve the authentication request. Hereinafter, the case where the user approves the authentication request in the authentication request screen of the mobile device will be described.

In step S519, the user's mobile device can recognize the motion input from the user (S519). For example, the motion input may be input by the user moving the mobile device while holding the mobile device by hand.

In step S521, the user's mobile device may transmit the motion input to the service providing server (S521).

In step S523, the service providing server can receive the motion input (S523).

In step S525, the service providing server may determine whether the motion input corresponds to the motion instruction information (S525).

In step S525, if the service providing server determines that the motion input corresponds to the motion instruction information, the service providing server may transmit the security release signal to the user's PC in step S527 (S527).

In step S525, if the service providing server determines that the motion input does not correspond to the motion instruction information, the service providing server may return to step S513 and send the authentication request to the user's mobile device again.

In step S529, the user's PC may receive a security release signal from the service providing server. In this case, the user's PC can display a screen indicating that the security release is completed. In addition, the service providing server can provide the game service to the authenticated user.

On the other hand, each of the steps represented as being performed in the user's PC in Fig. 5 may be performed in a different mobile device that is different from the user's authorized mobile device of the user's tablet PC.

6 is a diagram for explaining an operation in which the game service providing server 200 transmits motion indication information to the user device 300 according to an embodiment.

The mobile device 10 may include a user's smartphone, tablet PC, watch as well as various wearable devices with communication and data processing capabilities that are capable of authenticating with the device that the user owns.

The user device 300 may be a device for the user to actually play the game.

According to an embodiment, the database of the game service providing server 200 may map and store the user device 300 and the mobile device 10 as devices according to the same account.

As shown in FIG. 6, the game service providing server 200 may transmit motion indication information to the user device 300. The motion indication information may be motion indication information generated by the game service providing server 200 according to the security release request received from the user device 200. [

At this time, the user device 300 may display a user interface 601 including motion indication information on the screen.

On the other hand, when the user attempts to log in with the user's ID and when the user attempts to log in to the game server for game play, the time when the user interface 601 including the motion instruction information is displayed on the user device 300 . ≪ / RTI >

The time when the user interface 601 is displayed on the user device 300 is determined when the user pays for the charged goods while using a store and the user who is using the service is a normal user (for example, Which is a real person).

7 is a diagram for explaining an operation in which the game service providing server 200 transmits an authentication request to a user's mobile device 10 according to an embodiment.

As shown in FIG. 7, the service providing server 200 may transmit an authentication request to the mobile device 10 of the user.

When the user's mobile device 10 receives the authentication request, it can display the authentication request screen. The authentication request screen may include a user interface 711 for notifying the user that an authentication request has been received from the server.

The user can approve or ignore the authentication request from the server through the view or close button included in the user interface 711. [

8 is a diagram for explaining an operation in which the game service providing server 200 receives a motion input from a user's mobile device 10 according to an embodiment.

As shown in FIG. 8, the motion input provided by the user's mobile device 10 may be an input by moving the mobile device while holding the mobile device by hand.

The game providing server 200 may determine whether the motion indication information included in the user interface 801 corresponds to the motion input provided by the mobile device 10. [

The motion indication information included in the user interface 801 may be provided differently depending on the point in time when the user desires to release the security. Also, the user can confirm the motion direction information included in the user interface 801, and then provide the motion input through the mobile device 10 owned by the user.

9 is a diagram for explaining an operation in which the game service providing server 200 transmits a security release signal to the user device 300 according to an embodiment.

9, when the game providing server 200 determines that the motion indication information and the motion input provided through the mobile device 10 correspond to each other, the game providing server 200 may transmit a security release signal to the user device 300 .

At this time, the user device 300 can display the user interface 901 indicating that the security decryption of the user's PC is completed.

10 is a flowchart of a user authentication method according to an embodiment.

The user authentication method shown in Fig. 10 can be performed in a PC, a server, and a mobile device for a user to play a game.

The server shown in FIG. 10 may correspond to the game service providing server 200 of FIG.

In step S1001, the user's PC can transmit a security release request to the service providing server (S1001). In step S1003, the service providing server can receive a security release request from the user's PC (S1003).

In step S1005, the service providing server can determine the security release method and the security release password (S1005). The security release method may include at least one of a motion input, a password input, a pattern input, and a biometric authentication. Also, the security release password may be an OTP generated according to at least one security release method such as motion input, password input, pattern input, and biometric authentication.

According to one embodiment, a plurality of security release methods can be determined, and a plurality of security release ciphers corresponding to a plurality of security release methods can be determined.

In step S1007, the service providing server can transmit the security release method and the security release password determined by the user's PC (S1007).

In step S1009, the user's PC can receive the security release method and the security release password determined from the service providing server (S1009).

In step S1011, the user's PC can display a screen showing the determined security release method and the security release password on the PC screen (S1011).

In step S1013, the service providing server may transmit an authentication request to the user's mobile device (S1013). The transmission of the authentication request of step S1013 may be performed before or after the transmission of the determined security release method and the security release password (S1007).

In step S1015, the user's mobile device may receive an authentication request from the service providing server (S1015).

In step S1017, the user's mobile device may display an authentication request screen (S1017).

After receiving the authentication request from the server in the authentication request screen, the user can ignore or approve the authentication request. Hereinafter, the case where the user approves the authentication request in the authentication request screen of the mobile device will be described.

In step S1019, the user's mobile device can recognize the unsecure input from the user (S1019). For example, the unsecure input may be an input provided after the user confirms the unsecure password displayed on the screen of the PC.

In step S1021, the user's mobile device may transmit an unsecure input to the service providing server (S1021).

In step S1023, the service providing server may receive the security release input (S1023).

In step S1025, the service providing server may determine whether the unsecure input matches the secrecy password (S1025).

When it is determined in step S1025 that the service providing server matches the security release input with the security release password, the service providing server may transmit the security release signal to the user's PC in step S1027 (S1027).

On the other hand, if there are a plurality of security release methods, the service providing server returns to step S1011 of displaying a screen showing the determined security release method and the security release password, and displays a security release method and a security release password that have not been displayed previously .

In step S1025, if the service providing server determines that the motion input does not correspond to the motion instruction information, the service providing server may return to step S1013 and send the authentication request to the user's mobile device again.

In step S1029, the user's PC can receive the unsecure signal from the service providing server. In this case, the user's PC can display a screen indicating that the security release is completed. In addition, the service providing server can provide the game service to the authenticated user.

On the other hand, each of the steps represented as being performed in the user's PC in Fig. 10 may be performed in a different mobile device that is different from the user's authorized mobile device of the user's tablet PC.

According to an embodiment of the present invention, user authentication can be performed using a randomly determined user authentication method among a plurality of authentication methods such as a motion authentication, a password input, a pattern input, and a biometric authentication. When the user authentication is performed according to the user authentication method determined at random, the security is improved and the user's interest can be generated.

11 is a diagram for explaining a method for authenticating a user when the security release method is determined to be a biometric authentication method according to an embodiment.

Referring to FIG. 11, the user device 300 may display a user interface 1101 indicating a biometric authentication method and a security clear password on a screen. For example, when the biometric authentication method is a user's fingerprint (Touch ID) input method, the fingerprint decryption by the fingerprint input method may correspond to a unique fingerprint (Touch ID) of the user.

In Fig. 11, the user can input the fingerprint of the user (Touch ID) as the unsecure input to the mobile device 10. [

The biometric authentication method is not limited to the method of inputting a fingerprint (Touch ID), and includes all the methods of utilizing a user's body such as iris recognition, facial recognition, and vein recognition.

12A to 12C are diagrams for explaining a method of authenticating a user when a security release method is determined as a motion input method according to an embodiment.

Referring to FIG. 12A, the user device 300 may display a user interface 1201 indicating an authentication method based on a motion input method and a secret cancellation password on a screen.

When the security release method is determined to be the authentication method based on the motion input method, the security release password may be motion indication information. For example, the motion direction information may include at least one of a direction in which the mobile device 10 is moved, a speed at which the mobile device 10 is moved, and a number of times at which the mobile device 10 is moved.

For example, referring to FIG. 12A, the security release cipher by the motion input method may correspond to shaking the mobile device 10 three times up and down.

Also, referring to FIG. 12B, the security release cipher according to the motion input method can correspond to rapidly shaking the mobile device 10 from side to side.

Also, referring to FIG. 12C, the security release cipher by the motion input method may correspond to drawing the circle twice to the mobile device 10. [

13 is a diagram for explaining a method of authenticating a user when the security release method is determined to be a password input method according to an embodiment.

When the security release method is determined by the password input method, the security release password may be an OTP including numerals and / or characters.

Referring to FIG. 13, the user device 300 may display a user interface 1301 indicating a security release password according to a password input method on the screen.

For example, referring to FIG. 13, the unsecure password may be a number of '0081'. In this case, the user can release the security by inputting the number '0081' in the valid time in the mobile device 10 to match the unlocking password.

The apparatus described above may be implemented as a hardware component, a software component, and / or a combination of hardware components and software components. For example, the apparatus and components described in the embodiments may be implemented within a computer system, such as, for example, a processor, a controller, an arithmetic logic unit (ALU), a digital signal processor, a microcomputer, a field programmable gate array (FPGA) , A programmable logic unit (PLU), a microprocessor, or any other device capable of executing and responding to instructions. The processing device may perform one or more software applications performed on an operating system (OS) and an operating system. The processing device may also access, store, manipulate, process, and generate data in response to execution of the software. For ease of understanding, the processing apparatus may be described as being used singly, but those skilled in the art will recognize that the processing apparatus may have a plurality of processing elements and / As shown in FIG. For example, the processing unit may comprise a plurality of processors or one processor and one controller. Other processing configurations are also possible, such as a parallel processor.

The software may include a computer program, code, instructions, or a combination of one or more of the foregoing, and may be configured to configure the processing device to operate as desired or to process it collectively or collectively Device can be commanded. The software and / or data may be in the form of any type of machine, component, physical device, virtual equipment, computer storage media, or device , Or may be permanently or temporarily embodied in a transmitted signal wave. The software may be distributed over a networked computer system and stored or executed in a distributed manner. The software and data may be stored on one or more computer readable recording media.

The method according to an embodiment may be implemented in the form of a program command that can be executed through various computer means and recorded in a computer-readable medium. The computer readable medium may include program instructions, data files, data structures, and the like, alone or in combination. Program instructions to be recorded on the medium may be those specially designed and constructed for the embodiments or may be available to those skilled in the art of computer software. Examples of computer-readable media include magnetic media such as hard disks, floppy disks and magnetic tape; optical media such as CD-ROMs and DVDs; magnetic media such as floppy disks; Magneto-optical media, and hardware devices specifically configured to store and execute program instructions such as ROM, RAM, flash memory, and the like. Examples of program instructions include machine language code such as those produced by a compiler, as well as high-level language code that can be executed by a computer using an interpreter or the like. The hardware devices described above may be configured to operate as one or more software modules to perform the operations of the embodiments, and vice versa.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments. For example, it is to be understood that the techniques described may be performed in a different order than the described methods, and / or that components of the described systems, structures, devices, circuits, Lt; / RTI > or equivalents, even if it is replaced or replaced.

Therefore, other implementations, other embodiments, and equivalents to the claims are also within the scope of the following claims.

100: Online game providing system
11, 12, 13, 14, 15: user device
20: game server

Claims (19)

A user authentication method using a motion input in a server,
Randomly generating motion indication information indicating movement of the user using the mobile device in response to the security release request when a security release request is received from the user's PC;
Transmitting the motion indication information to the user's PC;
Controlling the user's PC so that the motion indication information is displayed on a screen of the user's PC;
Determining whether a motion input received from the mobile device corresponds to the motion indication information for unsecuring the user's PC; And
And transmitting a security clear signal to the user's PC if the motion input corresponds to the motion indication information.
The method according to claim 1,
Further comprising receiving the unsecure request from the user's PC prior to generating the motion indication information.
2. The method of claim 1, wherein generating motion indication information comprises:
Generating motion indication information including information about at least one of a direction of movement, a velocity of movement, and a number of movements of the mobile device.
The method of claim 3,
Wherein the direction of movement of the mobile device includes a vertical direction, a lateral direction, and a circular motion direction of the mobile device.
The method according to claim 1,
Further comprising controlling the mobile device so that a user interface for requesting the user authentication is displayed on the screen of the mobile device.
A server for user authentication using a motion input,
Memory;
A processor; And
And a communication unit,
When the mobile terminal receives the security release request from the user's PC, generates motion indication information indicating movement of the user using the mobile device in response to the security release request,
Transmitting the motion indication information to the user's PC,
Controls the user's PC so that the motion instruction information is displayed on the screen of the user's PC,
Determining whether the motion input received from the mobile device corresponds to the motion indication information for unsecuring the user's PC,
And transmits a security release signal to the user's PC when the motion input corresponds to the motion indication information.
7. The apparatus of claim 6, wherein the processor
And receives a security release request from the user's PC before generating the motion indication information.
7. The user authentication server of claim 6, wherein the processor controls to generate motion indication information including information on at least one of a direction of movement, a velocity of movement, and a number of movements of the mobile device.
9. The method of claim 8,
Wherein the direction of movement of the mobile device includes a vertical direction, a lateral direction, and a circular movement direction of the mobile device.
7. The apparatus of claim 6, wherein the processor
And controls the mobile device so that a user interface for requesting the user authentication is displayed on a screen of the mobile device of the user.
In a server authentication method,
Randomly deciding a security release method and a security release password for unsecuring the user's PC using the user's mobile device according to the security release request when the security release request is received from the user's PC;
Controlling the user's PC so that a screen showing the security clearance password according to the security clearance method is displayed on a screen of the user's PC;
Determining whether an input received from the mobile device matches the secret unlock password; And
And transmitting a security clear signal to the user's PC if the received input matches the secure clear password.
12. The method of claim 11,
Further comprising receiving an unsecure request from the user's PC prior to determining the unsecure mode and unsecure password.
12. The method of claim 11,
Wherein the secure revocation password comprises at least one of a character and a number generated at a predetermined time when the security release method is a password input method.
12. The method of claim 11, wherein determining the secure release method and the secure release password comprises:
Selecting at least one of a motion input, a password input, a pattern input, and biometric authentication.
12. The method of claim 11, wherein the determining the secure release method and the secure release password comprises:
And deciding a security release password corresponding to the plurality of security release methods and the plurality of security release methods.
12. The method of claim 11, wherein determining the secure release method and the secure release password comprises:
Determining the security release method as a motion input; And
Determining the security clear password as motion indication information including information on at least one of a direction of movement, a velocity of movement, and a number of movements of the mobile device.
17. The method of claim 16,
Wherein the direction of movement of the mobile device includes a vertical direction, a lateral direction, and a circular motion direction of the mobile device.
12. The method of claim 11,
Further comprising controlling the mobile device so that a user interface for requesting the user authentication is displayed on the screen of the mobile device.
19. The method according to any one of claims 1 to 5 and 11 to 18,
A computer program stored on a computer readable medium for carrying out the method.

Images