KR20060056319A - 전자 인증서의 보안 및 확인 방법 - Google Patents
전자 인증서의 보안 및 확인 방법 Download PDFInfo
- Publication number
- KR20060056319A KR20060056319A KR1020067000686A KR20067000686A KR20060056319A KR 20060056319 A KR20060056319 A KR 20060056319A KR 1020067000686 A KR1020067000686 A KR 1020067000686A KR 20067000686 A KR20067000686 A KR 20067000686A KR 20060056319 A KR20060056319 A KR 20060056319A
- Authority
- KR
- South Korea
- Prior art keywords
- certificate
- authority
- hid
- owner
- user device
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims abstract description 24
- 238000012795 verification Methods 0.000 claims description 3
- 238000004891 communication Methods 0.000 description 5
- 238000012986 modification Methods 0.000 description 4
- 230000004048 modification Effects 0.000 description 4
- 238000010586 diagram Methods 0.000 description 2
- 230000008520 organization Effects 0.000 description 2
- 238000012546 transfer Methods 0.000 description 2
- 230000004913 activation Effects 0.000 description 1
- 238000013475 authorization Methods 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000009849 deactivation Effects 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
- 238000000115 helium ionisation detection Methods 0.000 description 1
- 230000007420 reactivation Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/56—Financial cryptography, e.g. electronic payment or e-cash
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Storage Device Security (AREA)
- Credit Cards Or The Like (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
Claims (6)
- 기관(AU)이 소유자에게 발행한 전자 인증서(C)의 보안 및 확인 방법에 있어서,상기 인증서(C)는 상기 소유자에 의해 작동되는 사용자 장치(PC)의 메모리에 저장되고, 상기 사용자 장치(PC)는 상기 인증서(C)의 데이터 모두 또는 일부를 상기 기관(AU)으로 전송하고,초기화 단계 동안에, 상기 방법은상기 기관(AU)이 상기 사용자 장치(PC)와 관련된 네트워크 식별자(HID)를 판정하는 단계와,상기 기관(AU)이 상기 식별자(HID)를 상기 인증서(C)의 상기 데이터와 함께 저장하는 단계를 포함하는 것을 특징으로 하는 방법.
- 제 1 항에 있어서,상기 식별자(HID)를 상기 인증서(C)와 함께 저장하는 단계는 상기 소유자에 의한 패스워드(PIN) 입력 단계를 포함하는 것을 특징으로 하는 방법.
- 제 2 항에 있어서,상기 인증서와 관련된 상기 패스워드(PIN)는 상기 인증서를 수신하는데 사용되는 채널과 다른 채널을 통해 상기 인증서의 소유자에 의해 수신되는 것을 특징으 로 하는 방법.
- 제 2 항에 있어서,상기 인증서와 관련된 상기 패스워드(PIN)는 상기 기관(AU)의 데이터베이스 내의 네트워크 식별자(HID)와 상기 인증서(C)의 링킹 동작 후에 디스에이블되는 것을 특징으로 하는 방법.
- 제 1 항에 있어서,상기 네트워크 식별자(HID)는 상기 사용자 장치(PC)의 하드웨어 구성을 상기 네트워크에 접속된 상기 장치를 고유한 방법으로 식별하는 어드레스 또는 번호로서 정의하는 식별자인 것을 특징으로 하는 방법.
- 제 1 항에 있어서,확인 단계는 상기 사용자 장치(PC)에 의해 서비스 공급자(SP)로부터의 서비스에 액세스하는 동안에 수행되고,상기 방법은상기 인증서를 상기 서비스 공급자(PC)로 전송함으로써 상기 소유자를 식별하는 단계와,상기 서비스 공급자(SP)에 의해 상기 사용자 장치와 관련된 네트워크 식별자(HID)를 판정하는 단계와,상기 인증서 및 상기 네트워크 식별자(HID)에 의해 형성된 세트를 상기 기관(AU)으로 전송하는 단계와,상기 초기화 단계 동안에 상기 데이터베이스(BD)에 등록된 상기 데이터와 비교함으로써 상기 세트를 확인하는 단계와,상기 비교 결과를 상기 서비스 공급자(SP)에게 전송하고, 상기 서비스 공급자는 상기 결과에 따라서 접속된 사용자에게 이전에 요구된 서비스를 허락하는 단계를 포함하는 것을 특징으로 하는 방법.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CH12322003 | 2003-07-14 | ||
CH01232/03 | 2003-07-14 |
Publications (2)
Publication Number | Publication Date |
---|---|
KR20060056319A true KR20060056319A (ko) | 2006-05-24 |
KR101066693B1 KR101066693B1 (ko) | 2011-09-21 |
Family
ID=33569575
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020067000686A KR101066693B1 (ko) | 2003-07-14 | 2004-07-06 | 전자 인증서의 보안 및 확인 방법 |
Country Status (14)
Country | Link |
---|---|
US (1) | US7958348B2 (ko) |
EP (1) | EP1645070B1 (ko) |
JP (1) | JP4764339B2 (ko) |
KR (1) | KR101066693B1 (ko) |
CN (1) | CN1823494B (ko) |
AT (1) | ATE464715T1 (ko) |
BR (1) | BRPI0411625A (ko) |
CA (1) | CA2532521C (ko) |
DE (1) | DE602004026585D1 (ko) |
ES (1) | ES2344108T3 (ko) |
PL (1) | PL1645070T3 (ko) |
PT (1) | PT1645070E (ko) |
TW (1) | TWI350686B (ko) |
WO (1) | WO2005006646A1 (ko) |
Families Citing this family (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2007249629A (ja) * | 2006-03-16 | 2007-09-27 | Dainippon Printing Co Ltd | 生体情報登録システム |
WO2008052310A1 (en) * | 2006-10-04 | 2008-05-08 | Pgmx Inc | Method and system of securing accounts |
US9087183B2 (en) * | 2006-10-04 | 2015-07-21 | Rob Bartlett | Method and system of securing accounts |
USRE47533E1 (en) * | 2006-10-04 | 2019-07-23 | Aaa Internet Publishing Inc. | Method and system of securing accounts |
KR100715359B1 (ko) * | 2006-12-19 | 2007-05-09 | 한국버추얼페이먼트 주식회사 | 모바일 결제 인증 시스템 및 방법 |
US8341709B2 (en) * | 2008-10-22 | 2012-12-25 | Research In Motion Limited | Pushing certificate chains to remote devices |
US8843125B2 (en) * | 2010-12-30 | 2014-09-23 | Sk C&C | System and method for managing mobile wallet and its related credentials |
SG190749A1 (en) * | 2010-12-30 | 2013-07-31 | Sk C&C Co Ltd | System and method for managing ota provisioning applications through use of profiles and data preparation |
US9374244B1 (en) * | 2012-02-27 | 2016-06-21 | Amazon Technologies, Inc. | Remote browsing session management |
USRE49392E1 (en) | 2012-10-05 | 2023-01-24 | Aaa Internet Publishing, Inc. | System and method for monitoring network connection quality by executing computer-executable instructions stored on a non-transitory computer-readable medium |
US11838212B2 (en) | 2012-10-05 | 2023-12-05 | Aaa Internet Publishing Inc. | Method and system for managing, optimizing, and routing internet traffic from a local area network (LAN) to internet based servers |
US10917299B2 (en) | 2012-10-05 | 2021-02-09 | Aaa Internet Publishing Inc. | Method of using a proxy network to normalize online connections by executing computer-executable instructions stored on a non-transitory computer-readable medium |
BR112018001151A2 (pt) * | 2015-07-20 | 2018-09-18 | Notarize Inc | sistema e método para validar a autoria de uma seção de assinatura eletrônica |
US10298396B1 (en) | 2015-11-10 | 2019-05-21 | Wells Fargo Bank, N.A. | Identity management service via virtual passport |
Family Cites Families (27)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5982898A (en) | 1997-03-07 | 1999-11-09 | At&T Corp. | Certification process |
JP3595109B2 (ja) * | 1997-05-28 | 2004-12-02 | 日本ユニシス株式会社 | 認証装置、端末装置、および、それら装置における認証方法、並びに、記憶媒体 |
JP3587045B2 (ja) * | 1998-02-04 | 2004-11-10 | 三菱電機株式会社 | 認証管理装置及び認証管理システム |
US7111173B1 (en) * | 1998-09-01 | 2006-09-19 | Tecsec, Inc. | Encryption process including a biometric unit |
JP2000201143A (ja) * | 1999-01-05 | 2000-07-18 | Nec Corp | 端末認証装置 |
AU3504800A (en) | 1999-02-25 | 2000-09-14 | Cybersource Corporation | Stored value electronic certificate processing |
AU3712300A (en) * | 1999-06-11 | 2001-01-02 | Liberate Technologies | Hierarchical open security information delegation and acquisition |
US7231371B1 (en) * | 1999-11-19 | 2007-06-12 | Swisscom Mobile Ag | Method and system for ordering and delivering digital certificates |
FI109253B (fi) | 2000-08-22 | 2002-06-14 | Smarttrust Systems Oy | Varmennettu identiteettiketju |
AU2002220182A1 (en) * | 2000-10-20 | 2002-05-21 | Wave Systems Corporation | System and method for managing trust between clients and servers |
US6968242B1 (en) * | 2000-11-07 | 2005-11-22 | Schneider Automation Inc. | Method and apparatus for an active standby control system on a network |
KR20010008101A (ko) * | 2000-11-08 | 2001-02-05 | 제경성 | 하드웨어의 고유번호를 이용한 전자거래 시스템 및 그 방법 |
KR20020096581A (ko) | 2001-06-21 | 2002-12-31 | 스타브리지커뮤니케이션 주식회사 | 지불결제용 단말기인증방법 및 이를 이용한 지불결제방법 |
JP2003046533A (ja) * | 2001-08-02 | 2003-02-14 | Nec Commun Syst Ltd | ネットワークシステム、その認証方法及びそのプログラム |
JP4280036B2 (ja) * | 2001-08-03 | 2009-06-17 | パナソニック株式会社 | アクセス権制御システム |
ITTO20010771A1 (it) * | 2001-08-03 | 2003-02-03 | T I S S Srl | Metodo di autenticazione mediante dispositivo di memorizzazione. |
JP2003046500A (ja) * | 2001-08-03 | 2003-02-14 | Nec Corp | 個人情報管理システム及び個人情報管理方法、並びに情報処理サーバ |
US7925878B2 (en) | 2001-10-03 | 2011-04-12 | Gemalto Sa | System and method for creating a trusted network capable of facilitating secure open network transactions using batch credentials |
US20030069915A1 (en) * | 2001-10-09 | 2003-04-10 | James Clough | Method for authenticating mobile printer users |
US20030084172A1 (en) * | 2001-10-29 | 2003-05-01 | Sun Microsystem, Inc., A Delaware Corporation | Identification and privacy in the World Wide Web |
FR2834158B1 (fr) * | 2001-12-21 | 2005-02-11 | Radiotelephone Sfr | Procede de signature electronique |
FI114956B (fi) * | 2001-12-27 | 2005-01-31 | Nokia Corp | Menetelmä palvelun käyttämiseksi, järjestelmä ja päätelaite |
EP1383327B1 (en) * | 2002-06-11 | 2013-12-25 | Panasonic Corporation | Content distributing system and data-communication controlling device |
US7581095B2 (en) * | 2002-07-17 | 2009-08-25 | Harris Corporation | Mobile-ad-hoc network including node authentication features and related methods |
US7574738B2 (en) * | 2002-11-06 | 2009-08-11 | At&T Intellectual Property Ii, L.P. | Virtual private network crossovers based on certificates |
US7565688B2 (en) * | 2002-12-23 | 2009-07-21 | Hewlett-Packard Development Company, L.P. | Network demonstration techniques |
US7302565B2 (en) * | 2003-06-24 | 2007-11-27 | Arraycomm Llc | Terminal identity masking in a wireless network |
-
2004
- 2004-06-28 TW TW093118841A patent/TWI350686B/zh not_active IP Right Cessation
- 2004-07-06 BR BRPI0411625-9A patent/BRPI0411625A/pt active IP Right Grant
- 2004-07-06 EP EP04744497A patent/EP1645070B1/fr active Active
- 2004-07-06 PT PT04744497T patent/PT1645070E/pt unknown
- 2004-07-06 CN CN2004800201005A patent/CN1823494B/zh active Active
- 2004-07-06 DE DE602004026585T patent/DE602004026585D1/de active Active
- 2004-07-06 CA CA2532521A patent/CA2532521C/en not_active Expired - Fee Related
- 2004-07-06 JP JP2006520052A patent/JP4764339B2/ja active Active
- 2004-07-06 PL PL04744497T patent/PL1645070T3/pl unknown
- 2004-07-06 WO PCT/IB2004/051129 patent/WO2005006646A1/fr active Search and Examination
- 2004-07-06 AT AT04744497T patent/ATE464715T1/de not_active IP Right Cessation
- 2004-07-06 ES ES04744497T patent/ES2344108T3/es active Active
- 2004-07-06 KR KR1020067000686A patent/KR101066693B1/ko active IP Right Grant
- 2004-07-14 US US10/890,266 patent/US7958348B2/en active Active
Also Published As
Publication number | Publication date |
---|---|
JP2007519062A (ja) | 2007-07-12 |
EP1645070B1 (fr) | 2010-04-14 |
PL1645070T3 (pl) | 2010-07-30 |
US7958348B2 (en) | 2011-06-07 |
WO2005006646A9 (fr) | 2005-05-26 |
WO2005006646A1 (fr) | 2005-01-20 |
DE602004026585D1 (de) | 2010-05-27 |
TWI350686B (en) | 2011-10-11 |
ATE464715T1 (de) | 2010-04-15 |
KR101066693B1 (ko) | 2011-09-21 |
PT1645070E (pt) | 2010-07-19 |
CA2532521C (en) | 2013-11-26 |
US20050015587A1 (en) | 2005-01-20 |
CN1823494B (zh) | 2011-11-16 |
JP4764339B2 (ja) | 2011-08-31 |
BRPI0411625A (pt) | 2006-08-08 |
EP1645070A1 (fr) | 2006-04-12 |
TW200507580A (en) | 2005-02-16 |
CA2532521A1 (en) | 2005-01-20 |
CN1823494A (zh) | 2006-08-23 |
ES2344108T3 (es) | 2010-08-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
ES2645289T3 (es) | Autenticación de transacciones seguras | |
US7899187B2 (en) | Domain-based digital-rights management system with easy and secure device enrollment | |
US7484246B2 (en) | Content distribution system, content distribution method, information processing apparatus, and program providing medium | |
US7287158B2 (en) | Person authentication system, person authentication method, information processing apparatus, and program providing medium | |
US20040088541A1 (en) | Digital-rights management system | |
US20040266395A1 (en) | Process for securing a mobile terminal and applications of the process for executing applications requiring a high degree of security | |
US8490168B1 (en) | Method for authenticating a user within a multiple website environment to provide secure access | |
US20020069361A1 (en) | Public key certificate using system, public key certificate using method, information processing apparatus, and program providing medium | |
US20020032857A1 (en) | Person identification certificate link system, information processing apparatus, information processing method, and program providing medium | |
KR20030074483A (ko) | 서비스 제공자 장치로부터 네트워크를 통하여 서비스이용자 장치에 서비스를 제공하는 서비스 제공 시스템 | |
KR101066693B1 (ko) | 전자 인증서의 보안 및 확인 방법 | |
US20020027494A1 (en) | Person authentication system, person authentication method, and program providing medium | |
US20230412400A1 (en) | Method for suspending protection of an object achieved by a protection device | |
JP2003091613A (ja) | ライセンス方法及びライセンス付与システム | |
JP4510392B2 (ja) | 個人情報認証を行うサービス提供システム | |
US20070204167A1 (en) | Method for serving a plurality of applications by a security token | |
JPH05298174A (ja) | 遠隔ファイルアクセスシステム | |
JP2004013560A (ja) | 認証システム、通信端末及びサーバ | |
JPH1166008A (ja) | Icカードを利用したゲーム装置 | |
CN105743883B (zh) | 一种网络应用的身份属性获取方法及装置 | |
KR101936941B1 (ko) | 생체인증을 이용한 전자결재 시스템, 방법 및 프로그램 | |
TWI670990B (zh) | 自動連線安全無線網路的方法與系統 | |
KR101502800B1 (ko) | 권리자 식별정보가 기록된 디지털 시스템, 응용 시스템, 및 서비스 시스템 | |
CN117396866A (zh) | 授权交易托管服务 | |
KR20140083935A (ko) | 권리자 식별정보가 기록된 디지털 시스템, 응용 시스템, 및 서비스 시스템 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
E902 | Notification of reason for refusal | ||
E701 | Decision to grant or registration of patent right | ||
GRNT | Written decision to grant | ||
FPAY | Annual fee payment |
Payment date: 20140904 Year of fee payment: 4 |
|
FPAY | Annual fee payment |
Payment date: 20150903 Year of fee payment: 5 |
|
FPAY | Annual fee payment |
Payment date: 20160901 Year of fee payment: 6 |
|
FPAY | Annual fee payment |
Payment date: 20170907 Year of fee payment: 7 |
|
FPAY | Annual fee payment |
Payment date: 20180828 Year of fee payment: 8 |
|
FPAY | Annual fee payment |
Payment date: 20190830 Year of fee payment: 9 |