KR102402705B1 - Method and server for verifying multifactor security of mobile remote control based on zero trust model in separated netwrok environment - Google Patents

Abstract

Disclosed is a zero-trust model-based multifactor security authentication method for mobile remote control in a network separation environment to block hacking attacks. According to the present invention, the method comprises the following steps of, by a zero-trust model-based Zeroxy server functioning as a proxy server: (a) when receiving a connection request to a network-separated solution server from a Zeroxy mobile module operating in conjunction with a user terminal, referring to a location-based analysis result of the access request of a location-based verification module included in the Zeroxy server and identity-based authentication information of the user terminal acquired from the Zroxy mobile module to verify the access request according to a predetermined scenario selected from first to N^th scenarios determined according to a category of the access request, where N is an integer greater than or equal to 1; and (b) referring to the predetermined scenario selected from the first to N^th scenarios and a verification result of the access request to perform a reaction process in conjunction with at least a part of the Zeroxy mobile module and a Zeroxy extension module operating in conjunction with the solution server.

Description

Zero trust model-based multi-factor security authentication method and server for mobile remote control in network separation environment

The present invention relates to a zero trust model-based multi-factor security authentication method and server for remote mobile control in a network separation environment.

In fields where security is very important, such as the military field or technology research field, a separate network is often used. In such a divided network use environment, in most cases, it is set so that control of the corresponding network can be performed only in a designated place to maintain security. Nevertheless, there may be cases where it is necessary to control a separate network in a place other than the corresponding place. To this end, as a conventional method, a method of changing an IP address using a VPN and then controlling the corresponding divided network is used.

However, in this way, there is a problem of cost due to the need to purchase VPN service separately, and once access to the separate network is obtained through VPN, it is unlimited in the separate network without a separate verification process. There is a problem in that it becomes possible to connect to , making it vulnerable to hacking attacks.

An object of the present invention is to solve the above problems.

Another object of the present invention is to provide a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment.

Another object of the present invention is to prevent hacking attacks by having a Xeroxy server that controls the connection between the user terminal and the solution server, and allowing the Xeroxy server to continuously verify the user terminal's access request.

Another object of the present invention is to perform multi-factor security authentication by performing a first verification through a location-based verification module and performing a second verification using identity-based verification information.

The characteristic configuration of the present invention for achieving the object of the present invention as described above and for realizing the characteristic effects of the present invention to be described later is as follows.

According to an aspect of the present invention, in a zero trust model-based multi-factor security authentication method for mobile remote control in a network separation environment, (a) a zero trust model-based Xeroxy server performing a function as a proxy server When a connection request to a network-separated solution server is obtained from the Jeroxy mobile module operating in conjunction with the user terminal, the first to Nth scenarios determined according to the category of the connection request - N is an integer greater than or equal to 1 - According to a specific scenario selected among verifying the request; and (b) a reaction process in which the Jeroxy server interworks with the solution server through the Xeroxy extension module by referring to the specific scenario selected from among the first to Nth scenarios and the verification result for the access request. A method comprising the step of performing is disclosed.

As an example, in step (a), (a1) when the server at the time of presentation corresponds to a first specific scenario corresponding to registration in the category of the access request, the location information of the user terminal included in the access request after obtaining, causing the location-based verification module to perform a first verification, which is at least a part of verification of the access request, with reference to the location information and a verification data set specially acquired for the user terminal; and (a2) the presenting server, when the first verification indicates that the access request is valid, sends, according to the first specific scenario, at least one of the identity-based authentication information of the user terminal to the presenting extension module according to the first specific scenario. A second verification of the access request is performed through a process of transmitting a part and obtaining a result of verifying at least a part of the identity-based authentication information with reference to the verification and matching information for the solution server by the extension module at the time of presentation A method comprising the step of verifying the connection request by causing

As an example, (a3) when the server at the time of presentation, when the reliability of the access request obtained through the first verification and the second verification is less than or equal to a threshold, including a landmark object of a region corresponding to the location information sending a notification to the user terminal to send an additional verification image; and (a4) when the presentation server obtains the additional verification image from the user terminal, the image analysis module causes the reference modeling of the landmark object, the location information of the user terminal, and the land of the landmark object The method further comprising the step of performing a third verification on the access request by verifying the additional verification image with reference to the mark location information is disclosed.

As an example, in step (a4), the presenting server causes the image analysis module to obtain access angle information for the landmark object with reference to the location information and the landmark location information of the user terminal After that, the third verification is performed by obtaining a landmark object reference image from the reference modeling by referring to the approach angle information, and then calculating the degree of matching between the landmark object reference image and the additional verification image A method is disclosed.

As an example, in step (b), when the Xeroxy server verifies that the connection request is valid, the Xeroxy mobile module connects to the solution server through the Xeroxy extension module according to the first specific scenario. Disclosed is a method comprising performing the reaction process by supporting access and storing at least a portion of the identity-based authentication information of the user terminal.

As an example, in step (a), the presentation server causes the machine learning unit, which is at least a part of the location-based verification module, to perform a K-NN algorithm with reference to the verification dataset planned for the user terminal. After obtaining the safe range coverage rate for a specific verification dataset selected with reference to the location information from among the verification datasets, when the smallest value of the safe range coverage ratio is greater than or equal to a preset threshold, the access request is A method is disclosed, comprising performing said first verification by causing it to be determined to be valid.

As an example, the step (a) may include: (a5) the location of the user terminal included in the access request when the presentation server responds to a second specific scenario in which the category of the access request corresponds to a persistent access. After acquiring the information, causing the location-based verification module to perform a first verification, which is at least a part of verification for the access request, with reference to the location information and a verification dataset planned for the user terminal ; and (a6) the presenting server, when the first verification indicates that the access request is valid, sends, according to the second specific scenario, at least one of the identity-based authentication information of the user terminal to the presenting extension module according to the second specific scenario. transmitting a part and verifying the access request by performing a second verification on whether or not the authorization level of the access request is satisfied with reference to the authority status information of the user transmitted by the extension module in response to this at the time of presentation Disclosed is a method characterized in that

As an example, in the step (a), the presenting server causes a neural network learned by referring to the verification dataset, which is at least a part of the location-based verification module, at the time when the access request is received is the T-th time. - T is an integer greater than or equal to 2 - When , the (T-K)-th time to the T-th time of the user terminal - K is an integer greater than or equal to 1 and less than or equal to T-1 - The position including position sequence information for a change in position Disclosed is a method characterized in that the continuous verification is performed by calculating a fitness for the sequence information by applying at least one neural network operation to the information.

As an example, before the step (a), (a01) the presentation server causes the neural network to obtain location sequence information for learning about location information changes during connection of verified users and unauthorized users to the solution server. calculating suitability for learning with respect to the location sequence information for training by applying at least one neural network operation to the verification dataset including; and (a02) at least a part of its parameters by the Xerox server, by causing the neural network to generate a loss by referring to the training suitability and correct answer fitness information for the verification dataset, and then backpropagating it Disclosed is a method characterized in that it further comprises the step of learning.

As an example, the presenting server grants an authority in the form of an integer value based on a binary sum rule with reference to the verification result for the specific scenario and the access request, wherein the binary sum rule is In a state in which the values of the rights are set in the form of a multiplier of 2, when a specific authority corresponding to a specific sum value is granted, when the specific sum value is the sum of the values set in the form of a multiplier of 2, in the form of a multiplier of 2 Disclosed is a method characterized in that the rights corresponding to the set values are rules included in the specific authority.

According to another aspect of the present invention, there is provided a Xeroxy server that functions as a proxy server for performing a multi-factor security authentication method based on a zero trust model for mobile remote control in a network separation environment, wherein one or more instructions are stored therein. Memory; and one or more processors configured to perform the instructions, wherein the processor is configured to: (I) when a connection request to a network-separated solution server is obtained from the Xeroxy mobile module operating in conjunction with a user terminal, the access request According to a specific scenario selected from the first to Nth scenarios determined according to the category of N is an integer greater than or equal to 1, a process of verifying the access request with reference to the identity-based authentication information of the user terminal obtained from the roxy mobile module; and (II) the specific scenario selected from among the first to the Nth scenarios and the verification result for the access request, and configured to perform a reaction process in conjunction with the solution server through a Xeroxy extension module A server is started.

As an example, the (I) process includes: (I1) when the category of the access request corresponds to a first specific scenario corresponding to registration, after obtaining the location information of the user terminal included in the access request, the a process for causing a location-based verification module to perform a first verification, which is at least a part of verification for the access request, with reference to the location information and a verification data set acquired for the user terminal; and (I2) when the first verification indicates that the access request is valid, transmit at least a portion of the identity-based authentication information of the user terminal to the presentation extension module according to the first specific scenario; At the time of presentation, the extension module performs a second verification on the access request through a process of obtaining a result of verifying at least a portion of the identity-based authentication information with reference to the verification collation information for the solution server, thereby resolving the access request. A server comprising a process for verifying is disclosed.

As an example, the (I) process includes (I3) a local landmark object corresponding to the location information when the reliability of the access request obtained through the first verification and the second verification is less than or equal to a threshold sending a notification to the user terminal to send an additional verification image to and (I4) when the additional verification image is obtained from the user terminal, the image analysis module refers to the reference modeling of the landmark object, the location information of the user terminal, and the landmark location information of the landmark object. The server is disclosed, further comprising a process of performing a third verification on the connection request by verifying the additional verification image.

As an example, in the (I4) process, the processor causes the image analysis module to obtain the approach angle information for the landmark object with reference to the location information and the landmark location information of the user terminal. , Obtaining a landmark object reference image from the reference modeling with reference to the approach angle information, and then performing the third verification by calculating the degree of matching between the landmark object reference image and the additional verification image The server is started.

As an example, the process (II) may include: when the processor verifies that the connection request is valid, the Xeroxy mobile module can access the solution server through the Xeroxy extension module according to the first specific scenario A server is disclosed, characterized in that the reaction process is performed by supporting to do so, and storing at least a portion of the identity-based authentication information of the user terminal.

As an example, the (I) process is performed by the processor, at least a part of the location-based verification module, by causing the machine learning unit to perform the K-NN algorithm with reference to the verification dataset planned for the user terminal. After obtaining the safe range coverage rate for a specific verification data set selected by referring to the location information from among the verification datasets, if the smallest value of the safe range coverage ratio is greater than or equal to a preset threshold, the access request is deemed valid. A server is disclosed, characterized in that the first verification is performed by making a determination.

As an example, the (I) process includes: (I5) when the category of the access request corresponds to a second specific scenario corresponding to a persistent access, after obtaining the location information of the user terminal included in the access request, a process for causing the location-based verification module to perform a first verification, which is at least a part of verification for the access request, with reference to the location information and a verification data set acquired for the user terminal; and (I6) when the first verification indicates that the access request is valid, transmit at least a portion of the identity-based authentication information of the user terminal to the presentation extension module according to the second specific scenario; and a process of verifying the access request by performing a second verification on whether or not the authorization level of the access request is satisfied with reference to the authority status information of the user transmitted in response by the extension module at the time of presentation. is initiated

As an example, in the process (I), the processor causes the neural network learned by referring to the verification dataset, which is at least a part of the location-based verification module, at a time point at which the access request is received is a T-th time - T is an integer greater than or equal to 2 - When it is said that the (T-K) time to the T-th time of the user terminal - K is an integer greater than or equal to 1 and less than or equal to T-1 - in the location information including location sequence information for a change in location Disclosed is a server characterized in that the continuous verification is performed by calculating a fitness for the sequence information by applying at least one neural network operation.

As an example, before the (I) process, the processor (I01) causes the neural network to include location sequence information for learning about location information changes during connection of verified users and unauthorized users to the solution server. a process of calculating suitability for learning with respect to the location sequence information for training by applying at least one neural network operation to the verification dataset; and (I02) a process of causing the neural network to learn at least some of its parameters by generating a loss by referring to the fitness for learning and the correct answer fitness information for the validation dataset and then backpropagating it. A server, characterized in that it is set to perform, is disclosed.

As an example, the processor, with reference to the verification result for the specific scenario and the access request, grants the authority in the form of an integer value based on the binary sum rule, wherein the binary sum rule is In a state where the value is set in the form of a multiplier of 2, when a specific authority corresponding to a specific sum value is granted, when the specific sum value is the sum of values set in the form of a power of 2, the values set in the form of a power of 2 The server, characterized in that the rights corresponding to the rules included in the specific authority is disclosed.

The present invention is effective in providing a zero trust model-based multi-factor security authentication method for remote mobile control in a network separation environment.

In addition, the present invention has an effect of preventing hacking attacks by providing a Xeroxy server that controls the connection between the user terminal and the solution server, and allowing the Xeroxy server to continuously verify the user terminal's access request.

In addition, the present invention is effective to perform multi-factor security authentication by performing the first verification through the location-based verification module and performing the second verification using the identity-based verification information.

1 is a view showing a Xeroxy server performing a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment according to an embodiment of the present invention, and a Xeroxy mobile module and Xeroxy operating in conjunction therewith; It is a diagram showing an extension module.
2 is a flowchart illustrating a zero trust model-based multi-factor security authentication method for remote mobile control in a network separation environment according to an embodiment of the present invention.
3 is a diagram illustrating a process performed in the Xeroxy mobile module to perform a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment according to an embodiment of the present invention.
4 is a diagram illustrating a process performed in a Xeroxy server to perform a multi-factor security authentication method based on a zero trust model for mobile remote control in a network separation environment according to an embodiment of the present invention.
5 is a diagram illustrating a process performed by the Xeroxy extension module to perform a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment according to an embodiment of the present invention.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS [0012] DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS [0010] DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS [0010] Reference is made to the accompanying drawings, which show by way of illustration specific embodiments in which the present invention may be practiced. These embodiments are described in sufficient detail to enable those skilled in the art to practice the present invention. It should be understood that the various embodiments of the present invention are different but need not be mutually exclusive. For example, certain shapes, structures, and characteristics described herein with respect to one embodiment may be implemented in other embodiments without departing from the spirit and scope of the invention. In addition, it should be understood that the location or arrangement of individual components within each disclosed embodiment may be changed without departing from the spirit and scope of the present invention. Accordingly, the detailed description set forth below is not intended to be taken in a limiting sense, and the scope of the present invention, if properly described, is limited only by the appended claims, along with all scope equivalents as those claimed. Like reference numerals in the drawings refer to the same or similar functions throughout the various aspects.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings in order to enable those of ordinary skill in the art to easily practice the present invention.

1 is a view showing a Xeroxy server performing a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment according to an embodiment of the present invention, and a Xeroxy mobile module and Xeroxy operating in conjunction therewith; It is a diagram showing an extension module.

Referring to FIG. 1 , the Jeroxy server 100 may include an OTP generator 130 , a location-based verification module 140 , an authorization manager 150 , and a secure module 160 . Here, 'xeroxy' of the xeroxy server 100 is a coined word combining 'Zero Trust' and 'Proxy', and may be understood to mean that it relates to a proxy server that performs verification based on the zero trust model. All of 'representative' used in the following components may be understood to have the same meaning. In this case, the input/output and operation processes of the OTP generator 130 , the location-based verification module 140 , the authority manager 150 , and the secure module 160 may be performed by the communication unit 110 and the processor 120 , respectively. However, in FIG. 1 , a detailed connection relationship between the communication unit 110 and the processor 120 is omitted. In addition, the memory 115 may be in a state in which various instructions to be described later are stored, and the processor 120 is configured to execute the instructions stored in the memory, thereby performing processes to be described later to carry out the present invention. The description of the Xerox server 100 as described above does not exclude the case in which the Xeroxy server 100 includes an integrated processor in which a medium, a processor, and a memory are integrated for implementing the present invention.

Such a Xerox server 100 may operate in conjunction with the Xeroxy mobile module 200 and Xeroxy extension module 300 . The Xerox mobile module 200 may include a device handler 210 , a GPS handler 220 , a bio handler 230 , and an input handler 240 , and a secure module 250 that receives and encrypts a value from them. ) may be included. The Xerox extension module 300 may include a request forwarder 310 , an OTP generator 320 , a privilege sub-manager 330 , and a secure module 340 . Here, the Xerox mobile module 200 and the Xeroxy extension module 300 include a communication unit, a memory, and a processor similarly to the Xeroxy server 100 or may operate in conjunction with them, but are omitted from the drawings.

The Xeroxy mobile module 200 is a solution server that belongs to a network-separated private network and requires a high level of security after the user has verified the Xeroxy server 100 using a mobile app on the user terminal 500 . It can be a front-level component that helps access 400 . The Xeroxy extension module 300 may be a component in charge of the verification process of the Xeroxy server 100 at the solution server 400 end. The interworking relationship of each component shown in FIG. 1 will be described below while explaining in detail a zero trust model-based multi-factor security authentication method for remote mobile control in a network separation environment according to an embodiment of the present method.

As described above for the Xeroxy server 100 and the Xeroxy mobile module 200 and Xeroxy extension module 300 that operate in conjunction therewith according to an embodiment of the present invention, the multi-factor security authentication method of the present invention has been described. will be looked into in detail. For this, refer to FIG. 2 .

2 is a flowchart illustrating a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment according to an embodiment of the present invention.

Referring to FIG. 2 , when an access request to the network-separated private network 400 is obtained from the Jeroxy mobile module 200 , which operates in conjunction with the user terminal 500 , which functions as a proxy server, zero trust Based on the model-based Xeroxy server 100, location-based included in Xeroxy server 100 according to a specific scenario selected from among the first to Nth scenarios (N is an integer greater than or equal to 1) determined according to the category of the connection request. The access request may be verified by referring to the location-based analysis result of the verification module 140 for the access request and the identity-based authentication information of the user terminal 500 obtained from the mobile module 200 at the time of presentation (S01). Thereafter, the Xeroxy server 100 operates in conjunction with the Xeroxy mobile module 200 and the solution server 400 with reference to the verification result for the specific scenario selected from among the first to Nth scenarios and the access request. A reaction process may be performed by interworking with at least a part of the extension module 300 at the time of presentation (S02). Hereinafter, each step will be described in detail.

First, the Jeroxy server 100 performs a process according to a specific scenario selected from among the first to Nth scenarios, and each scenario will be described. First, as one scenario, it may be assumed that the user first accesses the solution server 400 through the mobile module 200 at the time of presentation. In this case, the proxy server 100 may perform a process of registering information about the user. In addition, as another scenario, it may be assumed that the user performs work while continuously connecting after first accessing the solution server 400 . The present invention is based on the zero trust model. In this case, the Xerox server 100 can continuously verify the identity of the user. In addition, connection scenarios that a person skilled in the art can assume may be included in the first to Nth scenarios.

First, for the first specific scenario, a process performed by the mobile module 200 at the time of presentation will be described. For this, refer to FIG. 3 .

3 is a diagram illustrating a process performed in the Xeroxy mobile module to perform a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment according to an embodiment of the present invention.

Referring to FIG. 3 , the mobile module 200 at the time of Xerox receives the unique ID of the user terminal 500 through the device handler 210 , the biometric information hashed through the bio handler 230 , and the GPS handler 220 through the It is possible to obtain location information at the time the access request is made, ID and PW information input by the user through the input handler 240 , and obtain an OTP value through an OTP generator (not shown). Here, the biometric information may include any of the user's biometric-related authenticationable information, such as user's fingerprint information and face photo information.

Thereafter, a token value that can be used for identification of the user terminal 500 may be generated using a unique ID of the user terminal 500 and an ID value input by the user. Thereafter, the encrypted request data may be generated by encrypting the token value, PW, location information, and hashed biometric information through the secure module 250 using the OTP value. Then, the connection request including the encrypted request data, the token value, and the user ID may be transmitted to the Jeroxy server 100 . In the drawing, Request Parameter will be used in a second specific scenario to be described later. Reference will be made to FIG. 4 to describe the subsequent process.

4 is a diagram illustrating a process performed in a Xeroxy server to perform a multi-factor security authentication method based on a zero trust model for mobile remote control in a network separation environment according to an embodiment of the present invention.

Referring to FIG. 4 , the Xeroxy server 100 generates an OTP value by using information received from the Xeroxy mobile module 200 through the OTP generator 130 of FIG. 1 , and then sends the secure module 160 . can be used to decrypt the encrypted request data included in the connection request. Thereafter, the verification of the location-based verification module 140 may be performed using the location information obtained from the decrypted request data, and another verification may be performed using the identity-based verification information including the remaining information. have.

That is, when the category of the access request corresponds to the first specific scenario corresponding to login, the server 100 at the time of presentation obtains the location information of the user terminal included in the access request, and then performs the location-based verification module ( 140), with reference to the location information and the verification data set specially acquired for the user terminal, the first verification, which is at least a part of verification for the access request, may be performed.

Referring back to FIG. 4 , the Jeroxy server 100 causes a machine learning unit (not shown), which is at least a part of the location-based verification module 140 , to refer to the verification dataset planned for the user terminal 500 . Thus, by performing the K-NN algorithm, it is possible to obtain a safe range coverage rate for a specific verification dataset selected with reference to location information among the verification datasets. The safe range inclusion rate is, according to the K-NN algorithm, after calculating the distance information between the location information and each location information included in the verification dataset, using this, the location information of the user terminal 500 is stored in the verification dataset. The probability of being included in the same group as the included location information may be a value calculated for each location information. At the time of presentation, the server 100 may perform the first verification by determining that the access request is valid when the smallest value among the safe range inclusion ratios is equal to or greater than a preset threshold. The location information used in this way may be added to the verification dataset after verification is completed later.

If it is not determined that the access request is valid, the Xerox server 100 may send a location-based verification failure response to the Xeroxy mobile module 200 .

When it is determined that the access request is valid through the first verification, the Xerox server 100 may allow the permission manager 150 to grant the minimum permission to the access request according to a binary sum rule to be described later. Thereafter, when the minimum authority grant command is obtained, the authority manager 150 determines that a normal process is in progress, and transmits identity-based verification information to the extension module 300 at the time of presentation to attempt a login. Referring to FIG. 5 to describe a process performed by the Xerox extension module 300 .

5 is a diagram illustrating a process performed by the Xeroxy extension module to perform a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment according to an embodiment of the present invention.

Referring to FIG. 5 , the proxy server 100 transmits at least a portion of the identity-based authentication information of the user terminal 500 to the proxy extension module 300, and the proxy extension module 300 transmits the solution server ( 400), the access request may be verified by performing a second verification on the access request through a process of obtaining a result of verifying at least a portion of the identity-based authentication information. More specifically, when presenting, the extension module 300 may check whether the permission of the access request is valid through the permission sub-manager 330 once. When an appropriate authority is granted to the access request, the Xerox extension module 300 checks the user's ID and input PW, which are at least a part of the identity-based authentication information, through the verification verification information by interworking with the solution server 400. . When matching of the ID and PW pair is confirmed, the Xeroxy extension module 400 may transmit such a response to the Xeroxy server 100 .

After the second verification is completed through this process, the Jeroxy server 100 responds to the access request corresponding to the first specific scenario, before delivering the result to the Xeroxy mobile module 200, itself Identity-based verification information, that is, user ID, encrypted PW, token value, and hashed biometric information can be stored in the DB of Thereafter, the Xeroxy server 100 may support the user to access the solution server 400 through the Xeroxy mobile module 200 by transmitting that the access request has been successful to the Xeroxy mobile module 200 .

Here, although the first verification and the second verification have been performed, there may be a case where the reliability is somewhat lowered. For example, the smallest safe range coverage rate was derived above the threshold and passed the first verification, but the safe range coverage rate was only slightly larger than the threshold, and the second verification also passed through several attempts, etc. Even though the first verification and the second verification have been passed, there may be a case where the reliability is low. In this case, the proxy server 100 may perform additional third verification. That is, when the reference server 100 has the reliability of the access request obtained through the first verification and the second verification below the threshold, the server 100 transmits an additional verification image including the landmark object of the area corresponding to the location information. A notification may be transmitted to the user terminal 500 . Thereafter, when the server 100 obtains an additional verification image from the user terminal 500 , the reference server 100 causes the image analysis module (not shown) to perform the landmark object reference modeling, the location information of the user terminal, and the land of the landmark object The third verification for the access request may be performed by verifying the additional verification image with reference to the mark location information. Specifically, the presentation server 100 causes the image analysis module to obtain the approach angle information for the landmark object by referring to the location information and the landmark location information of the user terminal 500, and then After obtaining the landmark object reference image from the reference modeling with reference, the third verification may be performed by calculating the degree of matching between the landmark object reference image and the additional verification image.

As an example, it is assumed that the user terminal 500 transmits an access request in area B where Tower A, the tallest skyscraper in Korea, is located. At this time, as the third verification process, the Xerox server 100 may acquire an additional verification image by taking a picture including the user's own face against the background of Tower A, which is a landmark object in area B, and sending it. have. Thereafter, the presenting server 100 causes the image analysis module to refer to the location information of the user terminal 500 and the location information of the A tower, and the approach angle information of the user terminal 500 to the A tower, that is, the A tower. It is possible to obtain information about which direction can be viewed. Thereafter, with reference to the approach angle information, it is possible to obtain a landmark object reference image from reference modeling for tower A, ie, an image of how the tower A may look when a picture of tower A is taken in the user terminal 500 . Thereafter, the reference server 100 may calculate a degree of matching between the landmark object reference image and the additional verification image. That is, it can be checked whether the image of tower A shown in the additional verification image matches the landmark object reference image, and accordingly, the Jeroxy server 100 checks that the user with the actual access right is accessing from area B. can An image analysis module performing such a function may be implemented using a well-known computer vision technology.

In addition, the above-described binary sum rule will also be described. That is, the proxy server 100 may grant an authority in the form of an integer value based on the binary sum rule with reference to the verification result for a specific scenario and access request. In this case, the binary sum rule is the solution server In a state where the value of the rights for (100) is set in the form of a multiplier of 2, when a specific authority corresponding to a specific sum value is granted, when the specific sum value is the sum of values set in the form of a multiplier of 2, the corresponding value is Corresponding rights may be rules included in specific rights. For example, it may be assumed that the READ permission for the solution server 100 is 1E, the WRITE permission is 2E, and the EXECUTE permission is 4E. At this time, according to the binary sum rule, when it is necessary to grant READ and WRITE permissions, the server 100 may allow the permission manager 150 to grant 3E permissions. In addition, when WRITE and EXECUTE privileges need to be granted, 6E privileges may be granted. Through this process, authority can be assigned intuitively without setting complex variables.

Registration of the user terminal 500 may be completed through the above process. Hereinafter, a description will be given of a process of the Jeroxy server 100 in which the user terminal 500 continuously accesses the solution server 400 after registration and transmits an access request to control it. Since the process of the persistent access process has many similarities to the process of the registration process, the differences will be mainly explained.

That is, in the case of persistent connection, referring back to FIG. 3 , the mobile module 200 receives the unique ID of the user terminal 500 from the device handler 210 and the GPS handler 220 from the device handler 210 similarly to when registering. It is possible to obtain hashed biometric information through the location information of the user terminal 500 and the bio handler 230, and it is different from obtaining it through the input handler 240, but the user ID and PW were obtained at the time of registration, In this case, it is possible to obtain a request parameter (Request Parameter in FIG. 3). Since it is not the initial registration, ID and PW are not required, and since the user has to control the solution server 400, the request parameter including information about this is obtained. Thereafter, the process of calculating the token value, encrypting the request data and transmitting it to the proxy server 100 is the same.

Thereafter, the process of decryption by the server 100 at the time of presentation is the same, and the process of first verifying using the location-based verification module 140 is also the same. That is, when the proxy server 100 obtains the location information of the user terminal 500 included in the access request when the category of the access request corresponds to the second specific scenario corresponding to the persistent access, the location-based verification module to perform the first verification, which is at least a part of the verification of the access request, with reference to the location information and the verification data set obtained for the user terminal 500 . The subsequent second verification process is somewhat different. If the second verification in the registration process is a method in which verification is performed through the Xerox extension module 300 using ID and PW, which are at least part of the identity-based verification information, in this process The second verification may be a process to check whether the user's permission level reaches the permission level required for the action on the solution server 500 included in the access request.

That is, when the Xeroxy server 100 indicates that the first verification indicates that the access request is valid, the Xeroxy extension module 300 sends at least one of the identity-based authentication information of the user terminal 500 to the Xeroxy extension module 300 according to the second specific scenario. The access request may be verified by performing a second verification on whether the authorization level of the access request is satisfied by referring to the user's authority status information transmitted as a response to the partial transmission and the extension module 500 . In more detail, after the first verification is performed, the permission manager 150 of the jerxi server 100 may grant, once, the minimum permission, 1E permission according to the binary sum rule, which is the minimum permission, to the access request. Thereafter, the user's ID information, which is at least a part of the identity-based authentication information, is transmitted to the extension module 300 at the time of presentation, and in response to this, the authority status information about how much authority is granted to the ID can be obtained. have. When the user's permission status satisfies the permission level required for the action corresponding to the access request, the permission manager 150 grants a specific permission according to the user's permission level to the corresponding access request and performs the presentation by the extension module 300 ) can be passed to

Thereafter, the Xerox extension module 300 may verify the transmitted access request once again. That is, it is possible to verify once again whether a specific authority is sufficient to perform an action corresponding to the access request, and transmit the user's ID information to the solution server 400 once again to check the authority status information. Only after all of these additional verifications are completed, the user's access request is transmitted to the solution server 400 and a corresponding action can be performed.

In the persistent access process, an alternative verification process or an additional verification process may be performed in relation to the first verification process, which will be described. That is, the proxy server 100 causes the neural network (not shown), which is at least a part of the location-based verification module 140 , learned by referring to the verification data set, when the access request is received is the T-th time (T). is an integer greater than or equal to 2), position information including position sequence information for a change in position at the (T-K) th time to the T th time (K is an integer greater than or equal to 1 and less than or equal to T-1) of the user terminal 500 . By applying at least one neural network operation to to calculate the fitness for sequence information, continuous verification can be performed. That is, if a hacker modulates a GPS signal and is not accessing within the safe range, it is possible to forge location information as if accessing it within the safe range. In this case, the normal connection and the position change pattern may be different. In order to catch such a case, a neural network may be used. That is, a neural network capable of receiving continuous position information from the (T-K) th time to the T th time point and outputting a degree of suitability therefor may be used.

In such a neural network, the Jeroxy server 100 causes the neural network to enter a verification dataset including location sequence information for learning about location information changes during connection to the solution server 400 of verified users and unauthorized users. After applying at least one neural network operation to calculate the training fitness for the training location sequence information, the neural network generates a loss by referring to the training fitness and correct answer fitness information for the validation dataset, and then backpropagates it. It can be learned by allowing it to learn at least some of its parameters.

Here, the neural network may be a configuration of a general neural network including a convolutional layer, an FC layer, and a loss layer, and the configuration and learning process of such a neural network can be easily understood by a person skilled in the art, so additional description will be omitted. .

The embodiments according to the present invention described above may be implemented in the form of program instructions that can be executed through various computer components and recorded in a computer-readable recording medium. The computer-readable recording medium may include program instructions, data files, data structures, etc. alone or in combination. The program instructions recorded on the computer-readable recording medium may be specially designed and configured for the present invention, or may be known and available to those skilled in the computer software field. Examples of the computer-readable recording medium include hard disks, magnetic media such as floppy disks and magnetic tapes, optical recording media such as CD-ROMs and DVDs, and magneto-optical media such as floppy disks. media), and hardware devices specially configured to store and execute program instructions, such as ROM, RAM, flash memory, and the like. Examples of program instructions include not only machine language codes such as those generated by a compiler, but also high-level language codes that can be executed by a computer using an interpreter or the like. The hardware device may be configured to operate as one or more software modules for carrying out the processing according to the present invention, and vice versa.

In the above, the present invention has been described with specific matters such as specific components and limited embodiments and drawings, but these are provided to help a more general understanding of the present invention, and the present invention is not limited to the above embodiments. , those of ordinary skill in the art to which the present invention pertains can devise various modifications and variations from such a machine.

Therefore, the spirit of the present invention should not be limited to the above-described embodiments, and not only the claims described below, but also all modifications equivalently or equivalently to the claims described below belong to the scope of the spirit of the present invention. will do it

Claims (20)

In a multi-factor security authentication method based on a zero trust model for mobile remote control in a network separation environment,
(a) When a connection request to a network-separated solution server is obtained from the Xeroxy server based on the zero trust model, which functions as a proxy server, from the Xeroxy mobile module that operates in conjunction with the user terminal, the connection request According to a specific scenario selected from the first to Nth scenarios determined according to the category of N is an integer greater than or equal to 1, verifying the access request with reference to the identity-based authentication information of the user terminal obtained from the roxy mobile module; and
(b) the Xeroxy server interworks with the solution server through the Xeroxy extension module to perform a reaction process with reference to the specific scenario selected from among the first to the Nth scenarios and the verification result for the access request steps to perform
including,
The presenting server grants the authority in the form of an integer value based on a binary sum rule with reference to the verification result for the specific scenario and the access request, wherein the binary sum rule is the value of the authority for the solution server In the state set in the form of a multiplier of 2, when a specific authority corresponding to a specific sum value is granted, when the specific sum value is the sum of the values set in the form of a multiplier of 2, the values set in the form of a multiplier of 2 A method according to claim 1, wherein corresponding rights are rules included in said specific authority. According to claim 1,
The step (a) is,
(a1) when the presentation server obtains the location information of the user terminal included in the access request when the category of the access request corresponds to a first specific scenario corresponding to registration, the location-based verification module allowing a user to perform a first verification, which is at least a part of verification for the access request, with reference to the location information and a verification data set acquired for the user terminal; and
(a2) when the presenting server indicates that the first verification indicates that the access request is valid, send at least a portion of the identity-based authentication information of the user terminal to the presenting extension module according to the first specific scenario; to perform the second verification of the access request through a process of obtaining a result of verifying at least a part of the identity-based authentication information by the extension module referring to verification and matching information on the solution server when presenting verifying the access request by
A method comprising a. 3. The method of claim 2,
(a3) When the server at the time of presentation, when the reliability of the access request obtained through the first verification and the second verification is equal to or less than a threshold, an additional verification image including a landmark object of a region corresponding to the location information sending a notification to the user terminal to transmit; and
(a4) When the presentation server obtains the additional verification image from the user terminal, the image analysis module causes the reference modeling of the landmark object, the location information of the user terminal, and the landmark of the landmark object performing a third verification on the access request by verifying the additional verification image with reference to location information
Method, characterized in that it further comprises. 4. The method of claim 3,
The step (a4) is,
The presentation server causes the image analysis module to obtain the approach angle information for the landmark object by referring to the location information and the landmark location information of the user terminal, and then refer to the approach angle information After obtaining a landmark object reference image from the reference modeling, the third verification is performed by calculating a degree of matching between the landmark object reference image and the additional verification image. 3. The method of claim 2,
The step (b) is,
When the Xeroxy server verifies that the access request is valid, the Xeroxy mobile module supports the Xeroxy mobile module to access the solution server through the Xeroxy extension module according to the first specific scenario, and and performing the reaction process by storing at least a portion of the identity-based identification information. 3. The method of claim 2,
The step (a) is,
The presenting server causes the machine learning unit, which is at least a part of the location-based verification module, to perform a K-NN algorithm with reference to the verification dataset planned for the user terminal to obtain the location information from among the verification datasets. After obtaining the safe range coverage rate for a specific verification data set selected as reference, the first verification is performed by determining that the access request is valid when the smallest value of the safe range coverage ratio is greater than or equal to a preset threshold. A method characterized in that it is performed. According to claim 1,
The step (a) is,
(a5) the server at the time of presentation, when the category of the access request corresponds to a second specific scenario corresponding to a persistent access, obtains the location information of the user terminal included in the access request, and then performs the location-based verification causing a module to perform a first verification, which is at least a part of verification for the access request, with reference to the location information and a verification data set acquired for the user terminal; and
(a6) the presenting server, when the first verification indicates that the access request is valid, sends at least a portion of the identity-based authentication information of the user terminal to the presenting extension module according to the second specific scenario and verifying the access request by performing a second verification on whether the authorization level of the access request is satisfied with reference to the authority status information of the user transmitted in response by the extension module at the time of presentation.
A method comprising a. 8. The method of claim 7,
The step (a) is,
When the presentation server causes the neural network learned by referring to the verification dataset, which is at least a part of the location-based verification module, that the time at which the access request is received is the T-th time - T is an integer greater than or equal to 2 - , by applying at least one neural network operation to the location information including location sequence information for a location change at the (TK) th time to the T th point of the user terminal - where K is an integer greater than or equal to 1 and less than or equal to T-1. and performing the continuous verification by calculating a fitness for the sequence information. 9. The method of claim 8,
Before step (a),
(a01) the presenting server causes the neural network to include at least one neural calculating fitness for learning with respect to the location sequence information for learning by applying a network operation; and
(a02) The Jeroxy server makes the neural network learn at least some of its parameters by generating a loss with reference to the training fitness and correct answer fitness information for the verification dataset, and then backpropagating it steps to do
Method, characterized in that it further comprises. delete A Xeroxy server performing a function as a proxy server performing a multi-factor security authentication method based on a zero trust model for remote mobile control in a network separation environment, the Xeroxy server comprising:
one or more memories storing instructions; and
one or more processors configured to perform the instructions, wherein the processor is configured to: (I) when a connection request to a network-separated solution server is obtained from the Xeroxy mobile module operating in conjunction with a user terminal, The location-based analysis result of the access request of the location-based verification module included in the presentation server and the presentation time according to a specific scenario selected from the first to N-th scenarios determined according to categories, where N is an integer greater than or equal to 1 a process of verifying the access request with reference to the identity-based authentication information of the user terminal obtained from the mobile module; and (II) performing a reaction process in conjunction with the solution server through a Jeroxy extension module with reference to the specific scenario selected from among the first to the Nth scenarios and the verification result for the access request,
The processor grants the authority in the form of an integer value based on a binary sum rule with reference to the verification result for the specific scenario and the access request, wherein the binary sum rule has a value of 2 When a specific authority corresponding to a specific sum value is granted in a state set in the form of a multiplier of The server, characterized in that the rights are rules included in the specific authority. 12. The method of claim 11,
The (I) process is
(I1) When the category of the access request corresponds to a first specific scenario corresponding to registration, after obtaining the location information of the user terminal included in the access request, the location-based verification module causes the location information and a process of performing at least a first verification, which is at least a part of verification for the access request, with reference to the verification data set acquired for the user terminal; and (I2) when the first verification indicates that the access request is valid, transmit at least a portion of the identity-based authentication information of the user terminal to the presentation extension module according to the first specific scenario; At the time of presentation, the extension module performs a second verification on the access request through a process of obtaining a result of verifying at least a portion of the identity-based authentication information with reference to the verification collation information for the solution server, thereby resolving the access request. A server comprising a process for verifying. 13. The method of claim 12,
The (I) process is
(I3) When the reliability of the access request obtained through the first verification and the second verification is equal to or less than a threshold, the user terminal transmits an additional verification image including a landmark object of a region corresponding to the location information the process of sending a notification to; and (I4) when the additional verification image is obtained from the user terminal, the image analysis module refers to the reference modeling of the landmark object, the location information of the user terminal, and the landmark location information of the landmark object, and performing a third verification on the connection request by verifying the additional verification image. 14. The method of claim 13,
The (I4) process is
After the processor obtains, by the image analysis module, the approach angle information on the landmark object by referring to the location information and the landmark location information of the user terminal, the reference angle information with reference to the approach angle information Server, characterized in that the third verification is performed by obtaining a landmark object reference image from modeling and then calculating a degree of matching between the landmark object reference image and the additional verification image. 13. The method of claim 12,
The (II) process is
the processor, if it is verified that the access request is valid, supports, according to the first specific scenario, to allow the xeroxy mobile module to access the solution server through the xeroxy extension module, and the identity of the user terminal The server, characterized in that it performs the reaction process by storing at least a part of the base proof information. 13. The method of claim 12,
The (I) process is
The processor causes the machine learning unit, which is at least a part of the location-based verification module, to perform a K-NN algorithm with reference to the verification dataset planned for the user terminal, thereby referring to the location information among the verification datasets. After obtaining the safe range coverage rate for the selected specific verification dataset, the first verification is performed by determining that the access request is valid when the smallest value of the safe range coverage ratio is greater than or equal to a preset threshold. Server, characterized in that. 12. The method of claim 11,
The (I) process is
(I5) When the category of the access request corresponds to a second specific scenario corresponding to a persistent access, after obtaining the location information of the user terminal included in the access request, the location-based verification module causes the location-based verification module to: a process of performing a first verification, which is at least a part of verification for the access request, with reference to information and a verification data set acquired for the user terminal; and (I6) when the first verification indicates that the access request is valid, according to the second specific scenario, deliver at least a portion of the identity-based authentication information of the user terminal to the Xerox extension module, the and a process of verifying the access request by performing a second verification on whether or not the authority level of the access request is satisfied with reference to the authority status information of the user transmitted by the extension module in response to this at the time of presentation. . 18. The method of claim 17,
The (I) process is
When the processor makes the neural network learned by referring to the verification dataset, which is at least a part of the location-based verification module, the T-th time at which the access request is received - T is an integer of 2 or more, the The sequence by applying at least one neural network operation to the location information including location sequence information for a change in location at the (TK) th time to the T th time point of the user terminal, where K is an integer greater than or equal to 1 and less than or equal to T-1. The server, characterized in that performing the continuous verification by calculating the fitness for the information. 19. The method of claim 18,
Prior to the (I) process,
The processor (I01) causes the neural network to operate at least one neural network operation on the verification dataset including location sequence information for learning about location information changes during connection of verified users and unauthorized users to the solution server. a process of calculating fitness for learning with respect to the location sequence information for learning by adding ; and (I02) a process of causing the neural network to learn at least some of its parameters by generating a loss by referring to the fitness for learning and the correct answer fitness information for the validation dataset and then backpropagating it. A server, characterized in that it is set to perform. delete

Images