KR102586412B1 - Method for generating user pseudo information identifier using temporary key issued on user terminal and system therefor - Google Patents

Abstract

The present invention relates to a method for generating a user decision information identifier and a system for the same. Specifically, in implementing an online voting system based on a blockchain network, anyone can confirm the voting results (tally) while voting by each voter. The content relates to a method and system for generating a user decision information identifier to ensure that it is not tracked on the network, and using a temporary key issued on the voter's terminal, that is, the user terminal, when generating the user decision information identifier. .

Description

Method for generating user decision information identifier using temporary key issued on user terminal and system therefor {METHOD FOR GENERATING USER PSEUDO INFORMATION IDENTIFIER USING TEMPORARY KEY ISSUED ON USER TERMINAL AND SYSTEM THEREFOR}

The present invention relates to a method for generating a user decision information identifier and a system for the same. Specifically, in implementing an online voting system based on a blockchain network, anyone can confirm the voting results (tally) while voting by each voter. The content relates to a method and system for generating a user decision information identifier to ensure that it is not tracked on the network, and using a temporary key issued on the voter's terminal, that is, the user terminal, when generating the user decision information identifier. .

Voting refers to one of the methods of gathering the opinions of the majority to make a decision. Such voting can be done in an environment where multiple voters can express their individual opinions according to a set method.

Recently, with the development of network infrastructure, online voting has been increasingly conducted instead of offline voting. Examples of online voting include referendums for apartment management being conducted through online voting sites and viewer voting in entertainment audition programs. You can.

Meanwhile, what is important to consider when implementing an online voting system is the so-called secret voting right, which ensures that the contents of the vote cannot be known to anyone other than the voter. In offline voting, secret voting is guaranteed by verifying your identity with an ID card, stamping the ballot paper, marking your vote, and then putting it in the ballot box. In particular, no information that can identify the voter is recorded. Ballot papers of the same standard are being used as a means of ensuring secret voting.

Likewise, in online voting, a means to ensure secret voting is required, and at the same time, the voting results (tally) must be confirmed by anyone. The present invention relates to this means, that is, generating and utilizing user decision information identifiers.

In addition, the present invention was invented to solve the technical problems discussed above, as well as to provide additional technical elements that cannot be easily invented by those skilled in the art. In particular, the present invention is DB-based and can be used for any event that asks the opinions of multiple participants, that is, any event related to voting.

Korean Patent No. 10-2171568 (announced on October 23, 2020)

The purpose of the present invention is to prevent individual voters' voting details from being exposed to the outside when implementing an online voting system.

At the same time, the present invention records voting information on a blockchain network so that voting results (counts) can be viewed by all users, and also makes manipulation of voting results fundamentally impossible, thereby increasing the reliability of the entire online voting system. The purpose is to increase.

In addition, the purpose of the present invention is to increase voter convenience by allowing only the voter to check past voting history to see what voting details he or she has participated in online voting with.

In addition, the present invention electronically signs the user's decision information using a temporary key issued on the voter's terminal, that is, the user terminal, and causes the SSO server to electronically sign including the public key of the temporary key when generating an authority token. The purpose is to enable verification of user decision information and user decision information identifier transmitted from the user terminal to the voting server by including steps such as recording the authority token in the blockchain network.

Meanwhile, the technical problems of the present invention are not limited to the technical problems mentioned above, and other technical problems not mentioned will be clearly understood by those skilled in the art from the description below.

In order to solve the above problem, the method of generating a user decision information identifier on a user terminal according to the present invention is (a) the user terminal transmits a user authentication request to the first server, and issues a user authentication request from the first server in response. receiving an authentication token; (b) the user terminal issuing a temporary key; (c) The user terminal transmits a service access authority request to the second server - the authority request includes a public key corresponding to the temporary key - and receives an authority token issued from the second server in response, The authority token includes a public key matching the temporary key, the authority token is electronically signed by the second server, and the authority token is recorded on a blockchain network after the electronic signature; (d) the user terminal transmitting an event information request to a third server and receiving event information provided from the third server in response; (e) the user terminal generating a user decision information identifier by hashing the event code included in the authority token and the event information; (f) the user terminal transmits the user decision information identifier and the user decision information to the third server, wherein the user decision information is electronically signed using the temporary key. .

In addition, in the method of generating the user decision information identifier, the user decision information identifier and the user decision information transmitted to the third server in step (f) are, by the third server, the electronic signature of the second server and The electronic signature of the user terminal may be confirmed.

Additionally, in the method for generating the user decision information identifier, the third server may further receive the authority token or some of the information included in the authority token from the user terminal.

Additionally, in the method for generating the user intention information identifier, the user intention information identifier and the user intention information confirmed by the third server may be recorded on the blockchain network.

According to the present invention, it is possible to guarantee the secrecy of online voting, and furthermore, it is possible to create a voting environment in which manipulation is impossible by recording voting results in a blockchain network.

Additionally, according to the present invention, the voter has the effect of being able to check his/her voting history (including voting details).

In addition, according to the present invention, it is possible to check the consistency of the voting record (user opinion information and user opinion identifier) transmitted by the voter to the voting server, and furthermore, it is possible to check the actual voter turnout.

Meanwhile, the effects of the present invention are not limited to those mentioned above, and other technical effects not mentioned will be clearly understood by those skilled in the art from the description below.

Figure 1 schematically shows an online voting system according to the present invention.
Figure 2 shows a first embodiment of generating a user decision information identifier on a user terminal.
Figure 3 shows a second embodiment of generating a user decision information identifier using a temporary key issued on the user terminal.

Details regarding the purpose and technical configuration of the present invention and its operational effects will be more clearly understood by the following detailed description based on the drawings attached to the specification of the present invention. Embodiments according to the present invention will be described in detail with reference to the attached drawings.

The embodiments disclosed herein should not be construed or used as limiting the scope of the present invention. It is obvious to those skilled in the art that the description, including embodiments, of this specification has various applications. Accordingly, any embodiments described in the detailed description of the present invention are illustrative to better explain the present invention and are not intended to limit the scope of the present invention to the embodiments.

The functional blocks shown in the drawings and described below are only examples of possible implementations. Other functional blocks may be used in other implementations without departing from the spirit and scope of the detailed description. Additionally, although one or more functional blocks of the present invention are shown as individual blocks, one or more of the functional blocks of the present invention may be a combination of various hardware and software components that perform the same function.

Additionally, the expression including certain components is an “open” expression and simply refers to the presence of the components and should not be understood as excluding additional components.

Furthermore, when a component is referred to as being “connected” or “connected” to another component, it should be understood that although it may be directly connected or connected to the other component, other components may exist in between. do.

Figure 1 schematically shows an online voting system according to the present invention. When referring to this, the online voting system first includes a user terminal 10, then a first server 100, a second server 200, and a third server. 300, and a blockchain network 50 may be included.

The purpose of the present invention is to provide an online voting system with enhanced security and reliability. In particular, the main feature is to make it impossible to track who entered what decision information and voted by creating and utilizing a 'user decision information identifier'. In addition, the main feature is that voting information is recorded in the blockchain network 50 to prevent any arbitrary manipulation or editing of voting results.

The first server 100 to the third server 300 shown in FIG. 1 are respectively a server for user authentication (authentication server), a server for SSO service (SSO server), and a server for managing voting events ( It may be a voting management server), and the user terminal 10 can individually access these servers to collect specific data and generate a user decision information identifier by encrypting the collected data. At this time, the first server 100 and the second server 200 may be implemented as a single server device.

The term 'user opinion information identifier', which will be frequently mentioned in this detailed description, literally means letters, numbers, or a combination of letters and numbers for the purpose of identifying the opinion information of a specific user. In simple terms, it means that a specific user can use it online. This is to identify specific voting intentions, that is, user intention information, when voting. At this time, the 'user decision information identifier' should not reveal who the vote was made by, but should only serve to distinguish the user's decision information from other people's decision information.

For example, assuming that voter A is participating in the apartment block representative election, A can vote for candidate 2, and the voting information processed by A on the online voting system is [User decision information identifier] + [ Candidate No. 2], and of course no information that could identify person A will be exposed.

In this way, it is to be understood that the user intention information identifier is not intended to identify the person participating in the vote, but rather to identify the user's intention information, that is, the intention to vote for the option to be voted for.

Meanwhile, a detailed explanation of the user terminal 10, servers 100 to 300, and blockchain network is as follows.

First, regarding the user terminal 10, the user terminal 10 refers to a terminal owned or carried by a user (voter). This includes portable terminals such as smartphones, PDAs, tablet PCs, etc., as well as home PCs. Installable terminals such as the like may also be included. When viewing these user terminals from the perspective of devices, it is assumed that each user terminal 10 is equipped with a central processing unit (CPU) and memory. The central processing unit may also be called a controller, microcontroller, microprocessor, microcomputer, etc. Additionally, the central processing unit may be implemented by hardware, firmware, software, or a combination thereof. When implemented using hardware, an application specific integrated circuit (ASIC) or a digital signal processor (DSP) is used. , DSPD (digital signal processing device), PLD (programmable logic device), FPGA (field programmable gate array), etc., if implemented using firmware or software, a module, procedure or function that performs the above functions or operations. The firmware or software may be configured to include. In addition, memory includes ROM (Read Only Memory), RAM (Random Access Memory), EPROM (Erasable Programmable Read Only Memory), EEPROM (Electrically Erasable Programmable Read-Only Memory), flash memory, SRAM (Static RAM), It can be implemented with HDD (Hard Disk Drive), SSD (Solid State Drive), etc.

For reference, this detailed description will be described assuming that the user terminal 10 is a smartphone or a tablet PC to aid understanding of the invention. In this case, the user terminal 10 may include a display and a touch-sensitive surface, and may additionally be connected to one or more other physical user input means, such as a physical keyboard, mouse and/or joystick. Additionally, the user terminal 10 may further include means for detecting and recording sound or voice. Meanwhile, various applications running on the user terminal may optionally use at least one common means for physical user input, such as a touch-sensitive surface. One or more functions of the touch-sensitive surface, as well as corresponding information displayed on the user terminal, may optionally be adjusted and/or changed from one application to the next and/or within individual applications. In this way, the universal physical architecture of the user terminal (such as a touch-sensitive surface) can optionally support a variety of applications using user interfaces that are intuitive and clear to the user.

Meanwhile, servers are a configuration that stores and executes programs to perform each function, that is, a set of commands, and may also be a configuration that responds to various requests received from a plurality of user terminals. As will be described later, each server provides a token or information in response to a request from the user terminal 10.

The form of the server may be at least one server PC managed by a specific operator, or it may be a cloud server provided by another company, that is, a cloud server that the operator can sign up for and use. When implemented as a server PC, the server may include a central processing unit and memory, and since this was mentioned in detail in the previous description of the user terminal, the description will be omitted here.

Next, blockchain refers to a distributed data storage technology that connects blocks that record transaction information for a certain period of time in the form of a chain and replicates and stores them on numerous computers simultaneously. The blockchain network 50 connects data like a chain and makes transaction records public for anyone to view rather than storing them on a centralized server, preventing data forgery or alteration from the beginning, that is, mutually monitoring transaction records. It is a P2P structured data storage method that allows this. Data recorded on the blockchain is very difficult to forge or falsify through hacking, so anyone can trust it. Additionally, because the data recorded on the blockchain is distributed and stored on multiple computers, DDoS attacks or ransomware attacks on specific nodes are possible. It is also safe from Furthermore, because blockchain can be maintained and operated autonomously by equal participants, it has more flexible characteristics compared to the existing server-client structure where all information was concentrated on a central server.

When a random voting action occurs, a block for the voting action is created and broadcast, and each node that receives the block adds the block to the end of its blockchain and synchronizes its smart contract database.

With reference to FIG. 1, the online voting system according to the present invention, the user decision information identifier, and each component constituting the system were examined.

Figure 2 shows a first embodiment of a method for generating a user decision information identifier.

Referring to the drawings, the method for generating a user decision information identifier according to the first embodiment begins with a step (S101) in which the user terminal 10 requests user authentication from the first server 100. The first server 100 may serve as an authentication server, for example, after receiving the user's or voter's ID and password from the user terminal 10, it can confirm whether the user is the one who can use the service.

After step S101, if the information of the person who previously requested user authentication is confirmed to be a registered user, the first server 100 may issue an authentication token to the user terminal 10 (S102). The authentication token may be composed of a string in the form of a random number, and may be used to confirm whether or not the user is authorized when subsequently accessing at least one of the second server 200 or the third server 300.

After step S102, the user terminal 10 can receive PIN information from the user (S103). There may be various ways in which PIN information is input to the user terminal 10, for example, letters, numbers, or a combination thereof arbitrarily determined by the user, or a random pattern input by the user, or fingerprint, face, or iris. Recognizable biometric information, etc. can be used as PIN information. PIN information must be information known only to the user and information that only the user can provide. The above individual user PIN information can be used to prevent even the entities providing the service from knowing which user expressed which intention. PIN information can be a medium that prevents other entities from tracking which user has expressed which opinion information, and at the same time allows only the relevant user to inquire which opinion information he or she has sent to which voting event. That is, the user can run the application installed on the user terminal 10 and then input PIN information, through which the user can check the voting history in which he or she has participated in the past.

After step S103, the user terminal 10 may request service access authority from the second server 200 (S104). The second server 200 may be an SSO server. An SSO server is a server that provides SSO services. SSO refers to a technology that allows multiple services to be used without additional authentication with one login authentication. Authentication is performed by one system, and that system is responsible for each service. The SSO service is provided by providing authentication information to the system (server). This step is a step in which the user terminal 10 requests permission to access a specific service from the SSO server. For example, the user terminal 10 requests access permission from the SSO server to use an online voting service. You can. Meanwhile, in the process of performing this step, a request for additional authentication information may be made to the user terminal 10, and SSO authentication information, which is separate authentication information different from the user authentication information previously entered by the first server 100, may be requested. More may be required. There is no limit to the type of SSO authentication information as long as it can identify the user terminal 100 or the user (voter).

Meanwhile, after step S104, the second server 200 issues an authority token in response to the request (S105). The authority token is used to access other servers when attempting to use services provided by other servers linked to the second server 200. In this process, the user terminal 10 directly sends the authority token to the other server. There may be a step in which the second server 200 transmits the authorization token handed over by the user terminal 10 to another server.

After receiving the authority token, the user terminal 10 may request event information from the third server 300 (S106). This step can also be understood as a step in which the user (voter) decides which vote to participate in and expresses his or her intention to participate in that vote. The third server 300 may be a voting management server.

For example, in this step, several ongoing voting events are displayed on the screen of the user terminal 10, and when the user selects any one voting event, the user terminal 10, more precisely, the user terminal ( The application running in 10) may request event information from the third server 300.

After step S106, the third server 300 may deliver event information in response to the above request (S107), and the event code is always included among the delivered event information. Event information may include various information about the voting event in which the user (voter) wishes to participate, such as voting purpose, voting time, available options, explanation of voting result calculation, or compensation for voting participation. may be included.

After receiving event information (event code), the user terminal 10 can generate a user decision information identifier (S108). The user decision information identifier can be created by encrypting the PIN information previously entered by the user, and the previously received permission token and event code. Preferably, the user decision information identifier can be generated by hashing the combination of the PIN information, authority token, and event code. In this way, up to step S108 may be included in the method of generating a user decision information identifier according to an embodiment of the present invention.

Meanwhile, after the user opinion information identifier is generated, the user terminal 10 transmits the user opinion information of the user (voter) to the third server 300 (S109). The method continuing from step S101 and including step S109 can be defined as a so-called online voting method. In step S109, a step of combining the user's decision information identifier and the user's decision information created previously may be included. For example, if the user wishes to vote for option 1, the user terminal 10 may add the information “choice 1” to the user decision information identifier and transmit it to the third server 300. That is, in this step, a process of transmitting information about 'which option' was selected by 'someone' identified by the 'user decision information identifier' to the third server 300 may be performed.

After step S109, the third server 300 may record the previously received user intention information in the blockchain network 50 (S110).

Meanwhile, Figure 3 shows a method for generating a user decision information identifier according to a second embodiment. The second embodiment differs from the first embodiment in that it utilizes a temporary key issued on the user terminal 10.

Referring to the drawing, the second embodiment includes the step of the user terminal 10 requesting user authentication to the first server 100 (S301) and the step of the first server 100 issuing an authentication token (S302). It may be included, and since this is substantially the same as steps S101 and S102 of the first embodiment, detailed description will be omitted.

After step S302, the user terminal 10 may issue a temporary key (S303). Delegation refers to a random private key based on a public key algorithm, and can be used to verify the user decision information identifier or user decision information in subsequent steps of delegation. For reference, the key may be a completely newly created number, letter, or a combination thereof, or it may be an HD wallet-based key. An HD wallet-based key refers to a private key derived from a single root key, and can refer to a key that guarantees the anonymity of the key itself and can be regenerated only by the owner of the root private key.

After step S303, the user terminal 10 may request service access authority from the second server 200, that is, the SSO server (S304), and in this step, the user terminal 10 creates a public key corresponding to the temporary key. The key may be transmitted to the second server 200. In other words, the user terminal 10 can provide an environment in which the entire electronic voting system can verify the user's voting record by sharing the public key corresponding to the temporary key previously issued to the SSO server.

After step S304, the second server 200 may generate an authority token according to the service access authority request (S305). At this time, the second server 200 may perform an electronic signature while including the public key corresponding to the temporary key when generating the authority token.

After step S305, the second server 200 may record the generated and electronically signed authority token in the blockchain network 50 (S306), and may also issue the authority token to the user terminal 10 ( S307) You can. When an authority token is issued to the user terminal 10, the transaction ID generated when the authority token is recorded in the blockchain network may be transmitted to the user terminal 10 together.

After step S307, the user terminal 10 may request event information from the third server 300, that is, the voting management server (S308), and the third server 300 may send an event containing an event code in response. Information may be provided to the user terminal 10 (S309).

After step S309, the user terminal 10 may generate a user decision information identifier (S310). The user decision information identifier can be generated by encrypting the authority token previously received from the second server and the event code received from the third server. Preferably, the user decision information identifier can be generated by hashing the combination of the authority token and the event code.

After step S310, the user terminal 10 can electronically sign the user's decision information using the temporary key (S311). The user can enter a specific voting intention through his or her user terminal 10, which can be defined as user intention information. The user terminal 10 electronically signs the above user intention information with the temporary key, thereby registering the user's voting intention. Physician information can be verified at a later stage.

After step S311, the user terminal 10 may transmit the user intention information and the user intention information identifier to the third server 300 (S312). As mentioned in the first embodiment above, this step can be understood as a step in which the user terminal 10 combines the user's decision information with the user's decision information identifier and transmits it to the third server 300.

After step S312, a step (S313) in which the third server 300 verifies the user decision information identifier and user decision information may be performed. In this step, the third server 300 can verify the electronic signature executed by the second server 200 and the electronic signature executed by the user terminal 10. At this time, the third server 300 ) assumes that the transaction ID, that is, the transaction ID generated when the second server 200 records the authority token in the blockchain network 50, has been shared from the user terminal 10 before step S313. do. For example, the third server 300 receives a request for event information from the user terminal 10 in step S308, or in step S312 of receiving the user decision information and user decision information identifier from the user terminal 10, or other user When there is an opportunity to transmit and receive data through network communication between the terminal 10 and the third server 300, the above transaction ID can be shared, and the third server 300 refers to the above transaction ID to create a blockchain network. The verification step can be performed by obtaining an authority token or a public key included in the authority token (a public key matching the temporary key) from (50).

Finally, after step S313, a step may be performed in which the third server 300 records the user decision information identifier and user decision information verified in the previous step in the blockchain network 50. At this time, the third server 300 can also store the authority token in the blockchain network 50 to enable later inquiry by a third party.

With reference to the above drawings, we looked at the user decision information identifier generation method and the overall online voting system according to the present invention.

Meanwhile, the user opinion information identifier mentioned in the present invention may be used to identify two or more users, that is, one group, when displaying some opinion information. In some cases, in certain events, it may be necessary for a group of multiple users to make a decision, especially when it is difficult for multiple users to participate in individual voting through processes such as installing the application. One person with can participate in a voting event by receiving the opinions of multiple users, and the user opinion information identifier according to the present invention can also be used when transmitting the opinion information of multiple users to the third server 300. In this case, the user terminal 10 may be a terminal of one representative, and the user terminal 10 may have collected personal identifiers of users who have expressed a specific intention. It will be sufficient for personal identifiers to be able to identify each user who conveyed their intention to one representative. If necessary, an event code that can specify the voting event in which the participating user wishes to participate may be further included, but it is essential. This will not be a problem.

Meanwhile, the user terminal 10, which receives personal identifiers and decision information from individual users, can generate a so-called group decision information identifier. At this time, the group decision information identifier may include the authority token and event code of one representative, that is, the owner of the user terminal 10, and may be generated by hashing the personal identifiers of the participants. In addition, in addition to the authority token, event code, and personal identifiers of the owner of the user terminal 10, the PIN information of the owner of the user terminal 10 may be further included and hashed. The group decision information identifier generated in this way can be added with the decision information of participating users and transmitted to the third server 300 in the form of “group decision information.” Group decision information may include information about how many people chose which option, for example [31 people for option 1; Option 2: 55 people; Option 3: 198 people; ? ], etc. may be included.

On the other hand, the group decision information identifier may be generated only for users who select a specific option. For example, the first group decision information identifier is obtained by hashing the personal identifiers of the users who selected the first option, the PIN information of the owner of the user terminal 10, the authority token, and the event code, and the second group decision information identifier is It can be generated by hashing the personal identifiers of users who selected option 2, PIN information of the owner of the user terminal 10, permission token, and event code. The group decision information transmitted to the third server 300 may also be divided into two and transmitted. Since the personal identifiers who selected a specific option are different, each group decision information identifier can be distinguished from each other, and in this way, the owner of the user terminal 10, that is, one representative, can easily send multiple opinions to the third server 300. It can be delivered.

Meanwhile, in this embodiment, only one representative can check the voting participation history, and the remaining voting event participants cannot individually check their participation history without the representative.

We have looked at the method for generating user decision information identifiers and the online voting system that includes them. Meanwhile, the present invention is not limited to the specific embodiments and application examples described above, and various modifications may be made by those skilled in the art without departing from the gist of the present invention as claimed in the claims. Of course, it is possible, but these modified implementations should not be understood separately from the technical idea or outlook of the present invention.

10 user terminal
50 Blockchain Networks
100 first server
200 2nd server
300 3rd party server

Claims (4)

In a method of generating a user decision information identifier on a user terminal,
(a) a user terminal transmitting a user authentication request to a first server and receiving an authentication token issued from the first server in response;
(b) the user terminal issuing a temporary key;
(c) The user terminal transmits a service access authority request to the second server - the authority request includes a public key corresponding to the temporary key - and receives an authority token issued from the second server in response, The authority token includes a public key matching the temporary key, the authority token is electronically signed by the second server, and the authority token is recorded on a blockchain network after the electronic signature;
(d) the user terminal transmitting an event information request to a third server and receiving event information provided from the third server in response;
(e) the user terminal generating a user decision information identifier by hashing the event code included in the authority token and the event information;
(f) a step wherein the user terminal transmits the user decision information identifier and the user decision information to the third server, wherein the user decision information is electronically signed using the temporary key;
Including,
The user decision information identifier and user decision information transmitted to the third server in step (f) are characterized in that the electronic signature of the second server and the electronic signature of the user terminal are confirmed by the third server. doing,
How to generate user decision information identifier.
delete According to paragraph 1,
The third server is characterized in that it further receives the authority token or some of the information included in the authority token from the user terminal.
How to generate user decision information identifier.
According to paragraph 1,
Characterized in that the user decision information identifier and user decision information confirmed by the third server are recorded on the blockchain network.
How to generate user decision information identifier.