KR20010094882A - Method and system for configuration/backup/restore of the security environment required of user's terminals to run Web services implemented by signed applets - Google Patents

Abstract

PURPOSE: A method and system for setting/backing up/restoring a security environment demanded to a user terminal receiving web service using a signed applet is provided to supply a security environment setting method to be possessed in a personal computer receiving a web service using an applet signed through a web browser and to supply a backing-up and restoring technique to a security environment set in security terminals receiving various services using the signed applet. CONSTITUTION: The system determines the kind of an operating system for a terminal(300). If the operating system is capable of applying(302), it is judged whether a Java compatible browser is installed(310). It is judged whether a Java runtime environment plug-in function supporting a security model is installed(320). A Java home directory, a user log-in name, and a position of a user home directory are detected(330¯334). Detailed directories necessary for a service are created in a user home directory(340). If a value of a Java.security file is "false", setting to "true"(350). A password packages being stored in "password package supplying file" are installed in the terminal, and a package supplier names are registered in the Java.security file(352). An additional method in a security environment setting method is called(360).

Description

Method and system for configuration / backup / restore of the security environment required of user's terminals to run Web services implemented by signed applets}

The present invention relates to security technology in a web-based environment, and more particularly, to a method and system for setting / backup / restoring a security environment required for terminals accessing a secure web system using signed applets using a web browser.

Recently, Internet and web related application services are rapidly being activated. However, the Internet system is open and Web services tend to be vulnerable. Signed applets are server-signed applets, and various services related to security can be provided using signed applets. In order to receive a service using signed applets, the user terminal to receive the service must provide and manage a predetermined security environment for the signed applets to be downloaded and executed.

There are not many Web services using signed applets based on the latest Java language version 2 security model.

The technical problem to be achieved by the present invention is to provide an easy and convenient and universal security environment setting method for a security environment that a terminal, such as a personal computer to receive a web service using a signed applet through a web browser, It is to provide an easy and convenient backup and restore technology for a secure environment set in secure terminals receiving various services using applets.

In order to receive services using signed applets provided by web servers, a secure environment in which signed applets operate well in a terminal of a user connected to the Internet must be set in advance. However, the specific conditions of a secure environment required for Web services using signed applets are service specific and require a great deal of expertise in the Java language and security. That is, the setting of the security environment of the terminal is a very demanding task for a general user without specialized knowledge, and therefore an easy and convenient security environment setting method is required. In addition, in order to support damage of the security environment of the security terminal or movement of the user, a method for easily and conveniently backing up the security environment set in the security terminal and restoring as necessary is required.

Specifically, the technical problem to be achieved by the present invention is to provide a system that satisfies the following technical objectives. First, an object of the present invention is to provide a method of setting, backing up and restoring a convenient and automated security environment for terminals provided with services implemented using signed applets. Second, an object of the present invention is to provide a general configuration method for various services using signed applets, not a configuration method only for a specific service. Third, an object of the present invention is to provide a method for preparing for damage of a security environment of a security terminal due to an attack or failure of a computer virus. Fourth, an object of the present invention is to provide a method for supporting a user's movement by restoring the same security environment at the time of backup when a user moves to receive a service using signed applets from another terminal.

FIG. 1 is a diagram illustrating the role of a system setting / backup / restoration system (lower right side in the drawing) of a security environment according to the present invention for a web service environment (upper left side in the drawing) using signed applets.

2 is a diagram illustrating the functions of the elements constituting the security environment setting / backup / restore system of the present invention.

3 is a flowchart of a security environment setting method according to the present invention.

4 is a flowchart of an ancillary method in the security environment setting method according to the present invention.

FIG. 5 is a flowchart of another version of the method corresponding to the method of FIG. 4.

6 is a flowchart of a secure environment backup method according to the present invention.

7 is a flowchart of a security environment restoration method according to the present invention.

8 is a flowchart of a method for restoring a security policy environment using a parse record, which is an additional method in the method for restoring a security environment according to the present invention.

9 is an exemplary diagram of directories and files constructed in a secure terminal by the secure environment setting and restoration method of the present invention.

The security environment setting / backup / restoration system of the present invention includes a security environment setting unit, a security environment backup unit, and a security environment restoration unit that can be implemented in programming languages such as C / C ++ and Java.

In order to achieve the first object, the security environment setting unit of the security environment setting / backup / restore system of the present invention, the security environment required for the user terminal to access the web server providing the service using the signed applets to receive the service Provides security environment data files that can be adjusted according to the characteristics of the general security environment configuration method and services for configuration. In addition, the security environment backup unit provides a security environment backup method capable of backing up the current security environment of the terminal in which the security environment is set. In addition, the secure environment restorer may use the secure environment backup data files generated by performing the secure environment backup method to restore the secure environment at the time of the secure environment backup from the new terminal or the damaged terminal. to provide.

In order to achieve the second object, the security configuration method of the present invention provides security for various services by adjusting only the contents of the data files that can be edited according to the characteristics of the web service, that is, the configuration data files. It is considered possible to set the environment. That is, the security configuration method of the present invention serves as a general security configuration method for various services using signed applets by editing the contents of environment data files.

In order to achieve the third and fourth objects, the environment backup method of the present invention operates to back up the current security environment of the terminal in which the security environment is set as data files, that is, the security environment backup data files. Is used to prepare for the case of system failure or damage or when the user moves and restores his security environment in a new terminal by using the backup data files stored in the security environment.

Hereinafter, with reference to the accompanying drawings, the configuration and operation of the embodiment of the present invention will be described in detail as follows.

The present invention uses signed applets conforming to the specification that is compliant with the security model presented in the Java language version 2 in an Internet environment consisting of a terminal with a web server and a universal Java-compatible web browser and a secure terminal, according to a presently preferred embodiment. It describes the configuration / backup / restore system of security environment for services. However, as long as the security model on which the present invention is based is not obsolete due to serious errors or the like, the system of the present invention can also be used for services using signed applets implemented in the Java language of version 2 or higher and can execute signed applets. It can be used not only for Java compatible web browsers but also for services using various alternative programs.

1 is a view for explaining the role of the security environment setting / backup / restore system according to the present invention, reference numeral 170 denotes a security environment setting / backup / restore system in a hypothetical example secure web service environment in the upper left of the figure Show the role.

Referring to FIG. 1, the security environment setting / backup / restoration system 150 of the present invention stores the storage device 142 of the terminal 140, or the secure terminals 130 ₁ to 130 _N through the Internet 120. The devices 132 ₁ to 132 _N may be distributed online or in a recording medium such as a CD.

Here, the terminal refers to all kinds of machines that can be operated by a web browser (or a corresponding program having a function capable of executing a signed applet) having a Java compatible function. For example, it refers to a personal computer or workstation where a Java-compatible browser can be installed, a portable computer, a Java-compatible personal digital assistant (PDA), or the like.

Here, the secure terminals 130 ₁ to 130 _N refer to the terminal 140 as a security environment setting method (see FIGS. 3, 4 and 5 to be described later) or a security environment restoration method (see FIGS. 7 and 8). It refers to a terminal with an environment in which signed applets successfully executed and provided by the server (ie automatically downloaded to the terminal when connected to the server) can operate well.

When the terminal 140 connected to the Internet 120 becomes the secure terminal 130 _N by using the secure environment setting / backup / restoration system of reference numeral 170 shown in FIG. 1, the user of the secure terminal receives the signed applets. The service can be provided from the web server 100 that provides the used service.

2 is a diagram illustrating the functions of the elements constituting the security environment setting / backup / restore system of the present invention.

The security configuration unit configures a security environment that can run signed applets guaranteed by various security-related service systems using the security configuration data files and the security configuration method. That is, the security environment setting unit converts the terminal 200 having no security environment into the security terminal 210. The details of the configuration depend on the contents of the secure configuration data files.

The secure environment backup unit generates secure environment backup data files for the current secure environment of the secure terminal 210 and stores them in a separate storage medium 220 such as a diskette or a zip disk.

Subsequently, when the secure terminal is in an abnormal state due to an attack such as a virus or when the user moves and uses a new terminal, the secure environment restorer uses the secure environment backup data files previously backed up to the storage medium 220 to secure it. By restoring the environment, a secure terminal 210 in which the security environment at the time of backup is restored is constructed.

If a user who used a security terminal uses his security environment as it is on a new terminal due to a business trip or the like, a security environment backup and restoration method may be performed. That is, the secure environment backup unit and the secure environment restorer consider the mobile user. They also provide countermeasures in the event of a computer virus damage.

The security configuration / backup / restore system of the present invention may be implemented in the form of an application written in general programming languages such as C / C ++ as well as the Java language. The configuration / backup / restore system only performs configuration / backup / restore for the secure environment and does not act as a client itself in a service system (see FIG. 1) using signed applets.

Now, before describing in detail the methods provided by the security configuration / backup / restore system of the present invention, terms and files related to security configuration are described in detail.

Signed applets are applets that contain a signature of who created the applet. In order to be provided with a service provided by a web server using signed applets, the terminal 140 must set constraints and permission conditions for a secure environment in which signed applets used for such a web service can operate successfully. do. For example, when a user attempts to use a service using signed applets provided by the company A, the user's terminal must have at least the following security environment conditions.

A condition that a public key certificate corresponding to the secret key used to sign by A must exist in the user's key repository. Here, the key storage is a place for securely storing public key certificates trusted by the user of the secure terminal.

A condition for permission to read or write terminal directories and files necessary for execution when applets signed by A are downloaded to the terminal and executed.

When the applets signed by A are downloaded to the terminal and executed, the authority condition for reading the attribute values of the terminal required for execution.

The security environment setting unit provides a security environment setting method for performing the setting of the security environment conditions, and in order to correspond to various services using signed applets, information on a security environment suitable for each service is configured for the configuration data. Provided in the form of files. By editing and adjusting the contents of the configuration data files, it is possible to set various security environments and permissions for various kinds of security-related systems without modification of the security configuration program itself. Configuration data files provided by the security configuration unit of the present invention are at least as follows.

* Cryptography package provider file: Required if the service provider uses its own cryptographic package (s).

* Default user policy file: Specifies the user-specific security policy required for the user who wants to receive the service, that is, the directory and file name of the security related permissions and associated key storage file.

* Basic public key certificate records: This is in the form of <certificate, alias of the certificate> and the server's public key certificates and other verified certificates that are required for the signed applets provided by the web server to run on the terminal. Alias is being saved.

Directory listing file: Specifies a list of directories in the terminal that are required for the service.

At least the following grant items may be registered in the “basic user parcel file”.

* Read access to the user.home attribute for the user home directory location, the user.name for the user login name, and the java.home attribute for the Java home directory.

* Access rights to directories (see FIG. 9) and files of the terminal required for the service.

* File access to user parcel file (s) and keystore (s).

* Access to java.security file.

* Execute permission for the programs in the $ {java.home} / bin directory.

For example, there is a web server with a domain name of www.i4soft.com, and the web server is downloaded from a directory named "service" and its subdirectories of the web server, and aliased. ) Provides services using applets signed with a public key certificate that is i4softRootA or i4softRootB. Allows you to read the user.home, user.name, and java.home attributes for such signed applets, read or write a directory called "secure" and its subdirectories under the user home directory, and Java security files. (java.security file) and user parsing file (s) registered in the Java security file, read or write user key vault file (s), and the "bin" directory under the Java home directory The following is an example of a "default user parcel file" that allows you to run programs that exist in. Here, see FIG. 9 for the directories.

The "default public key certificate records" are the public key certificates for the server (or service administrators) provided by the secure web system, i.e. appear in the example "User Default Parcel File" (alias i4softRootA or i4softRootB). ) Records for certificates such as public key certificates.

The "directory listing file" specifies directories required by signed applets used for the service. After the security environment setting method (see FIGS. 3, 4, and 5) is performed, directories designated in the "directory list file" are constructed in the terminal. Because of directory permission issues, you will usually need to have directories under your home directory in your "directory list file".

Now, the security environment setting method, the security environment backup method, and the security environment restoration method provided by the security environment setting / backup / restore system according to the present invention will be described in detail.

3 is a flowchart of a security environment setting method according to the present invention.

First, the type of a system operating system (OS) for the terminal is determined (step 300). This can be known using the os.name attribute of the terminal. If it is determined in step 302 that the OS is supported, it is determined whether a Java compatible browser is installed (step 310). If the step 310 is satisfied, it is determined whether a Java runtime environment plugin function supporting the security model proposed by Java 2 is installed (step 320). In other words, the security configuration method requires that a Java runtime plug-in (or compatible functional element) exists on the terminal capable of running a Java compatible browser and signed applets.

When the terminal has finished checking at least the OS, the Java compatible web browser, and the Java runtime plug-in, at least the location of the Java home directory, the user login name, and the user home directory is determined (steps 330 to 334). These can be determined using the java.home attribute of the terminal, the user.home attribute and the user.name attribute in the terminal. Next, detailed directories necessary for the service are created in the user home directory (step 340). That is, directories specified in the above-mentioned "directory list file" are built in the terminal. Existing directories are not created.

Next, if the value of the policy.expandProperties term in the Java security file (java.security file) is additionally "false" under the Java home directory, it is set to "true" (step 350). If it is already set to "true", the Java security file is not modified. In fact, the value of the policy.expandProperties clause is set to "true" by default in the Java security file provided by the Java runtime environment. Setting the policy.expandProperties clause to "true" means you can use macros like $ {java.home}.

Next, the cryptographic packages included in the above "cryptographic package provider file" are installed in the terminal and the package provider names are registered in the Java security file (step 352). For example, if a password provider package is already registered in the Java security file, and the password package x.y.z.C is included in the "password package provider file", the following is added to the Java security file.

security.provider.2 = x.y.z.C

If the "password package provider file" is an empty file, the Java security file is not modified. Next, a method corresponding to FIG. 4 or FIG. 5 which is an additional method in the security environment setting method is called (operation 360). After the security environment setting method is successfully performed, the following items exist as a result of the user terminal. They provide a secure environment for running signed applets used for services.

* Java compatible browser

* Java runtime environment plug-in (or equivalent functional element)

Java security file (java.security file)

* System parsing file (created when installing Java runtime environment plugin)

* User Parcel File (s)

* Keystore (s) registered in user parcel file (s)

4 is a flowchart of an ancillary method in the security environment setting method according to the present invention.

The method of FIG. 4 actually handles most of the security configuration tasks. The method of FIG. 4 sets the security environment using configuration data files provided by the security environment setting method (files other than the "password package provider file").

After the method of FIG. 4 is performed, the following file exists in the terminal. file: $ {user.home} /.$ {user.name} J .policy. Here, for example, if J is 1, then file: $ {user.home} /.$ {user.name} 1.policy file. Since this file is responsible for defining user-specific security parsing, it is called a user parsing file. The directory and file name of the parse file must be registered in the Java security file, and registering the parse file in the Java security file means registering the path and file name of the parse file.

Referring to FIG. 4, the process begins with a process for a user parcel file. First, the variables J and K are initialized to 1 (step 400), and the file file: $ {user.home} /.$ {user.name} J .policy is not present in the terminal. Increase the J value (steps 402 to 404). file: $ {user.home} /.$ { user.name} J .policy file does not exist in the terminal, file in the aforementioned "default user files in the parlor," which provides a secure environment, how to set up a user's home directory: $ {user.home} /.$ {user.name} J Copy to the .policy file (step 406). If the user parse file is not registered in the Java security file, additionally register the corresponding parse item (steps 408 to 410).

When registering a parse item in a Java security file, a macro expression is usually used to represent the attribute value. For example, if the value of the user.name attribute is "kim" and the value of the user.home attribute is "/ users / kimdir", the file: /users/kimdir/.kim3.policy file is a Java parsing entry. It can be registered in a security file.

// policy.url.2 = file: /users/kimdir/.kim3.policy

policy.url.2 = file: $ {user.home} /.$ {user.name} 3.policy

Next, the variable K value is increased until there is no key storage file file: $ {user.home} /.$ {user.name} K .keystore file in the terminal (steps 412 to 414). Then, the user receives contents necessary for generating a new key storage file, for example, a key storage password, a key pair alias, a secret key alias, and the user's personal information (step 416), and generates a new key storage file (step 418). At this time, one new key pair is generated together in the key storage. And the generated keystore file file: $ {user.home} /.$ {user.name} K .keystore is the user parcel file, that is, file: $ {user.home} /.$ {user.name} J. If it is not registered by checking whether it is registered in the policy file, it is registered (steps 420 to 422). The following is an example of registering a key repository with a file name ".kim3.keystore" that exists in the same directory as the parcel file. The keystore path should be registered relative to the location of the parcel file.

keystore ".kim3.keystore"

Next, in order to generate the user's self-signed public key certificate for the public key of the key pair existing in the key storage, the public key certificate file name is input to the user (step 424), and the user's public key certificate is generated (step 424). Step 426). Next, the generated public key certificate is stored in the temporary certificate store (see FIG. 9) of the terminal (step 428). Next, public key certificates corresponding to "basic public key certificate records" which are one of security configuration data files provided by the security configuration unit are imported into the user's key storage (step 430). The inserted certificates will have aliases provided by the certificate records. Finally, the "directory list file" is copied to the terminal for the secure environment backup method which can be performed later (step 432).

FIG. 5 is a flowchart for another version of the procedure corresponding to the method of FIG. 4.

5 is another version of the method for ultimately generating the same effect as the method of FIG. 4 or to minimize the case of generating a new parcel file in detail. Both the methods of FIG. 4 and FIG. 5 are compatible with the methods of the present application.

The method of FIG. 5 begins with processing a parsing file for a user. That is, it reads the Java security file ($ {java.home} /lib/security/java.security file) under the Java home directory (step 500). It is under the user's home directory among the parcel terms registered in the file. In step 502, it is checked whether a term exists for the parse file existing in the directory). If the term doesn't exist, then the parse term for the user doesn't exist yet, so register the term for the user, that is, the file: $ {user.home} /. Java.policy file, in the Java security file. Step 504). The parsing file for the parsing term already exists in the terminal (step 506), and if it already exists, the contents of the "user default parcel file" provided by the security configuration method (see Fig. 3) are applied. Add to the parse file (step 508). If the corresponding parse file does not yet exist in the terminal, the "user basic parcel file" is copied as it is (step 510).

After processing the parsing file for the user, we are now ready to process the keystore for the user. That is, by checking whether there is a key storage term in the parcel file (step 512), and if it does not exist, receives a file name that does not yet exist under the user's home directory of the terminal to register the key storage (step 514). The key storage term is registered in the parcel file (step 516). Next, it is checked whether the key storage file for the corresponding key storage term actually exists in the terminal (step 518), and if present, the user inputs contents for generating a new certificate file (step 520). If the key storage file for the term does not yet exist in the terminal, the user receives the contents necessary for generating the key storage and the certificate file (step 522), creates a new key storage file (step 524), and extracts the certificate file. In step 526, the user receives a certificate file name. Next, the user's public key certificate file is extracted from the key storage (step 528) and copied to the term certificate storage of the terminal (step 530).

Now, the certificates corresponding to the "default public key certificate records" provided by the security environment setting method are imported into the user's key storage (steps 532 to 534). If certificates with the same alias as the certificate aliases of the certificate records already exist in the key repository, the step of deleting them first (step 532) may optionally be performed. If you use a long name, such as the name of a service company's domain name as a certificate alias, it is expected that few certificates exist for different purposes and have the same alias.

Finally, the directory list file, which is a list of directories generated by the security environment setting method, is stored in the terminal for the security environment restoration method (step 536). The storage location of the "directory listing file" is assumed to be some location under the user's home directory.

6 is a flowchart of a secure environment backup method according to the present invention.

First, a storage medium and a directory location for storing environment backup data are received from a user and checked (steps 600 to 602). When a storage medium and a location capable of performing a write operation are designated, the java.home property is read to find a Java home directory (step 610), and it is checked whether a security environment to be backed up exists in the terminal (step 620). The check verifies whether a Java runtime environment plug-in (or compatible feature) is installed, the existence of a Java security file, the existence of user parcel files registered in the Java security file, and the presence of keystores registered in the parcel files. will be.

If there is a security environment to be backed up, if the web server provides a download service for the latest version of the security environment restoration program, the security environment restoration program is downloaded and backed up from the web server (step 630). The downloaded security environment restore program can be distributed in the form of a signed jar file. If the web server does not provide such a service or the user does not want it, step 630 may be omitted. Next, the Java security file existing in the terminal and the current user login name are backed up (steps 632 to 634), and the user home directory is found (step 636). Next, using the "directory list file" stored in the terminal to back up the directories created by the execution of the security environment setting method and the files contained in the directory (step 638). At this time, the temporary certificate store of the terminal is also backed up. Next, parsing files existing in the user home directory among the parsing files registered in the Java security file are found (step 640), and information on each is generated and backed up (step 642). A parse record is a record that consists of three fields:

* "Palace file" field: Save the contents of the parse file.

* "Key vault file" field: Saves the key vault file registered in the parcel file. If no keystore file is found, the value is "null".

* "Directory and file name of the parse file" field: Stores the directory and file name of the parse file.

7 is a flowchart of a security environment restoration method according to the present invention.

The secure environment restore method is performed using a secure environment restore program (distributed on an online download or a CD or the like) and secure environment backup data files (generated by the secure environment backup method). First, it is checked whether a Java compatible browser and a Java runtime environment plug-in are installed for the terminal (steps 700 and 710), and if not installed, outputs an installation guide message and ends (steps 702 and 712). If a Java-compatible browser and Java runtime environment plug-in are installed, the login name of the user who executes the secure environment restoration program (that is, the login name when connecting to the terminal) and the current login name of the user who performed the environment backup are checked to be the same. If it is wrong, a warning message is output (steps 720 to 722). In some cases, since one user may use different user login names for each terminal, a warning message is output but the user may ignore the warning and proceed with the current user login name (step 724). .

Next, the locations of the Java home directory and the user home directory are determined (step 730), and it is determined whether a Java security file already exists in the terminal (step 740). If it already exists, for each of the items in the Java security file included in the environment backup data, if the item is not in the Java security file of the terminal, it is selectively added to the Java security file of the terminal (step 744). If the Java security file does not exist in the terminal, the Java security file included in the environment backup data is copied to the terminal (step 742). In most cases, the contents of the Java security file and the terminal's Java security file included in the environment backup data will be the same as the contents of the Java security file distributed at the time of installation of the Java runtime environment plug-in. This is because Java security files specify system-wide security items for all users of the system, not for individual users. Next, the directories backed up at the time of performing the secure environment backup method and the files in the directories are copied to the terminal (step 750). The temporary certificate store for the user is also restored. Next, a method (step 760) for restoring the parcel environment using the parcel record of FIG. 8 is called.

8 is a flowchart of a security parsing environment restoration method using a parse record, which is an additional method in the security environment restoration method.

The secure environment restore method restores the parsing file (s) and key storage (s) at the time of performing the secure environment backup method using the secure environment backup data files generated by performing the secure environment backup method. The method corresponding to FIG. 8 is for restoring a parcel file and key storage corresponding to each parcel record, and is performed for each parcel record.

First, the field values of the parser record are read (operation 800). It is determined whether a directory, such as a "directory and file name of a parse file" field, stored in the parse record already exists in the terminal (step 802), and if it does not exist, creates the directory (step 804), A parse file corresponding to the content of the "Palace file" field is generated (step 806).

On the other hand, if it is determined in step 802 that the same directory as the value of the "Directory File and File Name" field already exists but the same file does not exist (step 810), the directory is not created. Only the parcel file corresponding to the content of the "Palace file" field is copied to the directory (step 820). On the other hand, if a file of the same directory and file name as the value of the "Directory File and File Name" field already exists in the terminal, a new file name that does not yet exist is inputted to the user (steps 812 to 814), and the file name of the parser file. To reflect the change in the corresponding parsing clause and the parsing record's "Directory file and file name" field of the Java security file (java.security file) (step 816), and use the modified parser record. In step 820, the parse file is restored to the new file name.

Next, if it is determined that the value of the "key vault file" field is not "null" (step 830), parsing files are analyzed to find the directory and file name of the key vault (step 832). It is determined whether a file of the same directory and file name as already found exists in the terminal (step 840). If the file does not exist, the value of the "key vault file" field is copied to the file of the directory and file name found (step 550). ).

On the other hand, if it is determined in step 840 that the same file already exists in the terminal, a new directory and file name for the key storage file is received from the user (step 842). It is determined whether a file of the same directory and name as the input value already exists (step 844), and if so, step 842 is performed again. If it is determined in step 844 that the same file does not exist, the value of the "key vault file" field is copied to a file having a directory and file name input by the user (step 846). Finally, the new directory and file name of the key storage file is reflected in the parlor file (step 848).

In a multi-user system such as UNIX, there is usually a separate system administrator rather than a normal user. Directories other than the user's home directory are usually managed by a system administrator. Therefore, the Java security file (java.security file), which may not be located in the user home directory, may not be given read or write permission to the general user. In the present invention, a user who performs the methods provided by the security configuration / backup / restore system is a system administrator level user who has write permission on a Java security file or write permission on the files with the permission of the system administrator. Suppose you got it in advance. For single-user systems such as Windows 95 or 98, there are no permissions issues for Java security files, and in most cases, such as Windows NT, a user can have system administrator privileges, so other than the user's home directory You can have read or write permissions on the directories.

9 is an exemplary diagram of directories and files in a secure terminal created by the present invention.

As described in the foregoing drawings, the security environment setting method according to the present invention creates a user parcel file, a key repository, and other necessary directories and files. For example, a directory 910 called "$ {user.name} .secure" and a user parse file ". $ {User.name} J .policy file" 912 under the user home directory 900 of the terminal. ), A key vault file corresponding to the user parcel file ". $ {User.name} K .keystore" (914) is generated. In other words, if the username is currently kim, for example, a directory called kim.secure and files such as .kim2.policy and .kim3.keystore files are created under the user's home directory. The $ {user.name} .secure directory 910 may include various subdirectories, such as subdirectory 922, which in turn is used as a temporary certificate store. For example, the security configuration method may include a subdirectory required to store a "directory list file". The directory structure and files in FIG. 9 are illustrative to illustrate the ease of implementation of the present invention and other names and structures may be used.

As described above, by automating the security environment setting / backup / restore method of the terminal that requires expertise by the present invention can be easily and conveniently set, back up and restore the security environment even without the security-related knowledge In addition, the security configuration method of the present invention can automate the process of configuring a general-purpose security environment for various kinds of services using signed applets as well as specific services. There is an effect that can be spread to the general user.

In addition, you can use macros for environment variables of the system and use environment data files that can be edited according to the needs of the service to allow general configuration for various kinds of services as well as specific services using signed applets.

In addition, since the environment backup and restoration method of the present invention supports coping with damage to the terminal and movement of the user, there is an effect of increasing stability and mobility of services using a signed applet.

Signed applets are expected to be used in a variety of services, such as e-commerce and secret exchange, and the techniques of the present invention can be widely used in a variety of services using signed applets. It can be a technical foundation.

Claims (15)

A system for setting / backup / restore of a security environment required for a user terminal receiving a web service using signed applets, For the user terminal to access the web server providing web services using signed applets compatible with the Java security model on the Internet, and to receive the services through the web browser, the user terminal is prepared using the prepared configuration data files. A security environment setting unit for building a security environment; A security environment backup unit for backing up the current security environment of the user terminal in which the security environment is set and backing up the environment backup data files; And And a security environment restoration unit for restoring a security environment at the time of environment backup using the environment backup data files for a user terminal whose security environment is damaged. The method of claim 1, wherein the security environment setting unit, At least one configuration data file representing information about the secure environment; A cryptographic package provider file for installing the package and registering it in a java security file (java.security file) when the cryptographic package provided by an operator of the web server is used in addition to the cryptographic package provided by the Java language by default; A default user parse file for specifying permissions related to at least security of a user terminal; Basic public key certificate records for storing the server's public key certificates and other verified certificates and their aliases required for the signed applets to run on the terminal; And And a directory listing file for designating a list of directories in the terminal required to receive the service. The method of claim 2, wherein the security environment setting unit, If a secure environment is set for the terminal using the configuration data files, at least, A key repository into which certificates of the basic public key certificate records are inserted; A user parcel file registered with a term for the key storage and including parcel terms registered in a basic user parcel file, and located under a user home directory; A Java security file in which an encryption package provided by the encryption package provider file and the user parcel file are registered; And Security environment setting / backup / restore system, characterized in that the encryption package provided by the encryption package provider file is built in the storage device of the terminal. The method of claim 2, wherein the secure environment backup unit, At least a Java security file; Current user login name; Directories and files therein created at the time of the security environment setting recorded in the directory listing file; And Security environment characterized by backing up the parcel files under the user home directory and the key storage files registered in the user parcel files, and storing the backup results as environment backup data files on a recording medium designated by the user. Setup / Backup / Restore System. The method of claim 2, wherein the secure environment restorer, In the terminal by performing an environment restoration method using the secure environment backup data files generated by the secure environment backup unit, Key archive files registered in user parcel files at the time of secure environment backup; A user parcel file including the security parcel items of the user at the time of backing up the secure environment and a term for the key storages; And A Java security file including security environment items at the time of user parsing file terms and security environment backup; And And restore all directories specified in the directory listing file and the files therein. The method of claim 1, wherein the security environment setting unit, the security environment backup unit, and the security environment restoration unit are implemented as application and data files written in a predetermined general programming language, and are stored in a computer-readable recording medium. And a recording medium is detachable from the terminal or the secure terminal. The web of claim 1, wherein the security environment setting unit, the security environment backup unit, and the security environment restoration unit are implemented as application and data files written in a predetermined general programming language, and the web is provided by the user terminal through the Internet. Secure preference / backup / restore system characterized by downloadable by browser. What is claimed is: 1. A method of setting up a security environment for terminals that want to receive services by accessing web server (s) providing services using signed applets, (a) identifying a type of a system operating system of the terminal and determining whether the terminal is a supported system operating system; (b) if the step (a) is satisfied, determining whether a version of a web browser and a Java runtime environment plug-in compatible function required by the web service system are installed; (c) identifying the location of at least the Java home directory in the terminal, the user login name of the terminal and the user home directory if the step (b) is satisfied; (d) generating directories required for a service under the user home directory using a directory listing file prepared in advance; (e) constructing a key storage for a user, a parcel file in which the key storage is registered, and a Java security file in which the parcel file is registered, on the terminal; And (f) generating a public key certificate of the user and copying it to the public key certificate storage of the terminal, According to the above steps, a secure terminal having a secure environment in which signed applets downloaded from the web server can operate successfully is constructed. The method of claim 8, wherein if the step (b) is not satisfied, the user is requested to install the web browser first, or to install the Java runtime environment (JRE) plug-in or the corresponding software module. Security environment setting method characterized in that the output via the screen of the terminal. The method of claim 8, wherein a Java security file provided in a Java language exists under the Java home directory. When using a self-made encryption package in a web server providing a service using a signed applet, the package is additionally installed and a cryptographic package provider that specifies the package is registered in the Java security file. How to set up your security environment. The method of claim 8, wherein step (e) (e1) securing a user parcel file registered in a Java security file under the Java home directory in the terminal, to which a content of a basic user parcel file prepared in advance is added; (e2) securing a key repository registered in the user parcel file and including one or more key pairs of the user; (e3) inserting certificates corresponding to basic public key certificate records prepared in advance in the key archive file, The basic user parse file is a file that specifies at least a directory and file name of security-related permissions and associated keystore files to grant to the user, And the basic public key certificate records are records storing public key certificates and other verified certificates of a server required for signed applets to be executed in the terminal and their aliases. A method for backing up a secure environment of a secure terminal in which a secure environment for accessing web server (s) providing services using signed applets is already established (a) receiving and confirming a storage medium and a directory location for storing the security environment information to be backed up; (b) identifying a location of a Java home directory in the terminal and checking whether a security environment to be backed up exists in the terminal; (c) if there is a security environment to back up, backing up at least the Java security file and the current user login name existing in the terminal; (d) identifying a location of a user home directory in the terminal and reading a directory listing file to back up the directories and files therein created at the time of security environment setting; And (e) generating and backing up the information on each of the parsing files and associated key storage files registered in the Java security file and existing under the user home directory by generating the parsing records in the form of records. Secure environment backup method characterized in that. The method of claim 12, wherein in the step (e), the parse record is at least: A parcel file field for storing the contents of the parcel file; A key storage file field storing a key storage file registered in the parlor file; And And a directory and a file name field of the parser file storing the directory and file name of the parser file. In the security environment restoration method for restoring the security environment for the terminal in a state in which the security environment backup data files are secured by backing up the security environment of the terminal in which the security environment is set, (a) determining, on the terminal, whether a Java compatible web browser and a Java runtime environment (JRE) plug-in or compatible functional element necessary for receiving a service using signed applets are installed; (b) if the step (a) is satisfied, determining the location of the Java home directory and the user home directory and determining whether a Java security file exists in the terminal; (c) If the Java security file already exists in the terminal, selectively add items not included in the Java security file of the terminal among the security items registered in the backed up Java security file, and if the Java security file does not exist in the terminal Copying the backed up Java security file into the terminal; (d) copying the backed up directories and files in the secure environment backup under the user home directory of the terminal; And and (e) restoring the parser files and key storages related to the parser file to the terminal by using the prepared parser records at the time of backup of the secure environment. The method of claim 14, wherein step (e) (e1) reading the parse record, including at least a parse file field, a directory and file name field of the parse file, and a key repository file field; (e2) create a parse file corresponding to the directory and file name field of the parse file, or create a parse file with a new name that plays the same role as the parse file and change the name of the parse file in the Java security file; Reflecting the corresponding parsing term; And (e3) Analyze the contents of the key repository section of the parlor file field and generate a key archive file with the corresponding file name, or create a key archive file with a new name that plays the same role as the key archive file, and And reflecting the name in the key storage term of the parsing file.