KR20060098412A - Timely variable password formation module and a floating password application method - Google Patents

Abstract

In general, prepare a password to be used by an individual to refer to a separate reference value whenever a password is required at any place and time, and to change the password information frequently based on this value. By completing the authentication of the password, the user prepares to remember the operation process as secret information so that the user can generate a password to be changed through the operation according to a specific convention, and the verification password created in the password generation module Use it every time so that authenticity is judged.

Password, Password, Personal Information, Personal Information, Login, Password, Internet Banking, Account Access

Description

Password generation module that generates passwords that change from time to time and how to use passwords from time to time using them {Timely variable password formation module and a floating password application method}

Occasionally, the password value in the present technology can be changed from time to time, the variable password can be configured as an independent function separately. By generating passwords through a password generation module that can be integrated, operated, or operated independently according to the requirements of the system utilized, the function and structure of these password generation modules and how to use them are illustrated below. have.

1; Complete flow diagram for password generation

2; Example of password generation flow according to password type

3; An example flow diagram of the generation and use of the random password

4; Example of creating a random password that refers to a random value as a reference value

5; Illustration of application and selection of occasional variable password

6; Example of password usage on the Internet

7; An example of the occasional variable password in encrypting file information

8; Example of the generation flow of the occasional variable password referencing the date value as a reference value

The present invention relates to the generation and use of passwords for managing and accessing specially protected information, and more particularly, when a user enters a password to access protected information or a device, The authenticity of the password is referred to as "Occasionally Changed Password"), and if true, it permits the initiation or access of the work.

A password is originally used to protect a particular piece of information, facility, or work from an unspecified person. A password is a password that consists of certain letters or numbers that only someone knows that cannot be easily guessed by others. It is called). These passwords are also used as a key (hereinafter referred to as a "secret key") to store valuable information using various encryption technologies and to decrypt the encrypted information again. Of course, it is widely used to start the operation of various devices and devices. In addition, passwords are widely used as initial gateways to allow access to specific accounts on networks connected by digital communications networks.

Passwords are widely used in information encryption technology as well as authentication, digital signature, identity verification, and so on. It is very important to deal with it so that it is not exposed, stolen or decrypted, and it can be hidden or encrypted with special characters to prevent it from being exposed to the monitor screen (hereinafter referred to as 'screen') in the storage and management of information. Many technologies are introduced to secure safety and convenience. Various technologies have been introduced to prevent this sensitive information from being exposed due to neglect of secret keys, predictability of passwords, and monitoring of keyboard inputs in communication networks such as hacking.

Encryption technology converts plaintext into ciphertext, which encrypts ordinary information using various algorithms to make information, and decrypts it in plaintext only when allowed using a secret key. For example, identity verification or authorization verification involves storing certain mutually agreed passwords, that is, passwords, and verifying the authenticity of this value and the entered value. A password is a secret key in a limited form, and is used to further enhance the simplicity that a user can easily memorize or use. On the other hand, ciphers or passwords commonly used in various fields of public or symmetric keys belong to separate encryption technologies, whereas password generation and use thereof in the present technology are generally well known methods. In the following description, the secret key generation will be omitted.

The password used to verify encryption technology or permissions must be secretive that only you can know and cannot be easily estimated by others, and should be used immediately everyday for your own use without reference to any special records or information. It must be simple enough to be secured, and it must be secured so that third parties can not estimate or operate by combining arbitrary letters and numbers.Furthermore, it is possible to extract or relate information by observing keyboard operation with malicious intentions such as hacking. Secure records should not be leaked. Therefore, passwords must have this confidentiality, simplicity, stability and security at the same time.

This simple format and often used passwords are widely used, with specifics that rely on memory rather than leaving a separate record to ensure confidentiality, and most easily use your own ID or phone number. On the other hand, in order to further secure safety, complex letter combinations may be made and stored in a separate record file, and related information may be stored in a separate record file such as an external portable memory device such as a smart card or a USB memory for security. It can also be stored and used at Meanwhile, in a network communication network such as the Internet, an event such as a user's access may be generated by storing a personal identification name (ID) and a password in a database during an identification process to allow access. It is used to check this every time, and it is recommended to change and use the saved password from time to time to ensure the protection of personal information.

These widely used passwords, such as computer operating system startup, network connection startup, file management startup, program startup, communication startup and community entry, account holder verification, etc., can range from simple codes that rely on memory to public or private keys used in encryption technology. Increasingly important is the importance of the expansion of the complex code.

In particular, the password used for the information transmission means represented by the Internet is to start the work for the transmission and reception of data through the communication network, due to the limited size of the use code, for example, up to 16 letters or numbers Because of the ease of leaking, predicting, and hacking information, various techniques for storing and protecting data have been proposed.

Some of the technologies introduced in Korea are as follows.

Korean patent "ID theft detection system and method, a recording medium recording the program source (Registration No. 10-0320119, published date 10 January 2002)" is the first user to use the login to access the website online Authorized through the authentication as a password, complete the authentication process using the hardware system information at the time of initial membership of the user built into the database and the system information automatically extracted at the time of connection, and if necessary, the second approved By allowing additional authentication procedures to be completed using passwords, ID provides the convenience of preventing theft and detecting theft.

Another Korean patent "apparatus and method for automatically accessing a website (Registration No. 10-0494628, Announcement June 13, 2005)" describes a specific ID and password for each Internet web site that a user wants to access separately by separately midnight on the Internet. Prepare for mapping through the authentication server you have subscribed to, and save each web site's ID and password in a personal device such as a portable data storage card. Providing.

Another Korean patent, "Encryption Method of Digital File (Registration No. 10-0614617, Announcement Aug. 22, 2006)," prepares and uses a cryptographic module that is a software for separate document encryption in a normal operating system. In addition, it provides the convenience that encryption can be done while the document is open, and the storage path can be set automatically.

This technology, the convenience that fixed passwords that are currently widely used should be easy to memorize for immediate use, and the security of ensuring unpredictability by complex combinations and configurations can not be satisfied at the same time, and passwords are frequently changed to separate portable storage media. Even if it is secured by storing in the security, the problem of loss and damage is still not solved, there is a lot of inconvenience, such as a number of easy-to-use passwords to prepare and change from time to time to use. In addition, if the password is exposed due to carelessness or malicious intentions of others, the problem cannot be solved.

It satisfies the convenience of relying on simple memorization for easy and immediate use of personally used passwords, the unpredictable safety, and the security of changing passwords from time to time. There is a need for a technique in which safety is ensured so as not to be stolen by any combination or prediction while using a size that can be used.

Also, make sure that these passwords have a size and format that you can easily memorize. It is necessary to prevent the need to be stored as a separate record or file or to a portable media. Even if the keyboard operation is monitored and the information is extracted, the existing password can be invalidated early to reveal or expose the password. There must be a password generation technique to prevent the spread of damage.

In addition, in the change of the regular passwords that are commonly used, there is a need for a technique for assigning different secret information to ensure stability, and at the same time, to easily remember various passwords changed so frequently.

In order to realize such a technical problem, the present technology prepares to input a password that is changed at any time, which is displayed with different information, whenever a password is required at any place and time, and as a password that is changed at any time. By authenticating the authenticity, the password generation module (hereinafter referred to as the "password generation module") consists of an operation processing process that can generate a password through an operation that conforms to a specific convention of a change password to be changed by a user. In this case, the authentication is completed by automatically generating an occasional variable password for checking and checking whether this value and the password value that the user inputs for authentication are the same.

To this end, it will be understood that a password generation module capable of generating a variable password that is characteristically prepared in the present technology can be sufficiently implemented through the following embodiments. In addition, in the following description, such an embodiment is described in various ways according to the steps and sequence from password generation initiation to completion, but the description itself is intended to provide an explicit implementation of an embodiment of the present technology. And sequences of steps should not be treated as definite and formal requirements for implementing the present technology.

Exemplary systems for implementing the present technology include a database capable of separately recording the password generation module and all the information used in the password generation module, or preparing to process such information with an embedded program. In its most basic configuration, a series of arithmetic processes are typically specified according to a user's choice among a plurality of pieces of information, having a structure or numerical information of a plurality of functional expressions used in a program processing module and a process as predetermined information. It can be a combination of processes with a process that allows a value to be assigned. In addition, the password generation module is an independent program, may be a module capable of processing data according to a predetermined algorithm described below, may be a module that is built into the operating system or commercial programs, and operate within the control circuit in the mechanical device It could also be operated as part of a control module for identification.

If you use this password generation module to allow access from the network, such as the Internet, you can use the authenticity of the account holder, such as a bank or credit card. When verifying the integrity of withdrawal, when storing the output data generated by using a general program as confidential data, and when demonstrating that the authorized authority to initiate the necessary operations on the device or device that requires security In this case, in each of these application cases, the present invention may be embodied in a corresponding unique expression method according to the system of instructions constituting the process, and in each case, the principle or development of the present technology. It should be seen that the method or operation method is applied without any difference.

Although the characteristics of the present technology are implemented as a password generation module, the representative embodiment is a representative embodiment of the present invention, the basic principle and the core of the present technology, and the method of generating and changing the password, which are often changed, are various regardless of the name. It may be implemented in the form.

In order to describe these features in more detail, a password method that uses a fixed value, which is now commonly used as a password, is generally referred to as a fixed password (hereinafter referred to as a "fixed password"). Through the hypothesis that there is a personal account in the “ABC Bank”, the characteristics of the occasional variable password will be described first.

In general, just as Internet sites require limited access to members, ABC Bank requires you to register a personal identification name (ID) and a separate password that only you need to know to manage your account. Of course, in addition to this, it requires a public key secret key such as a public certificate or additional security card information provided to an individual for additional security and information protection, but this is a matter of distinct encryption technology. In the present technology, password generation and use thereof are generally well known methods and will be omitted in the following description.

The ID is a fixed value determined for each individual at the time of initial input within the range of not overlapping, and the password is also a fixed value designated as a specific value according to the user's choice, and allows the user to update this value from time to time for information protection. However, it is a fixed password in the sense that it should be used as a fixed value until the update. As an example for explanation, when the user registration is completed by setting the ID as “blue_sky” and the fixed password as “abc1234”, the user Every time you open ABC Bank's account, you will need to provide your username “blue_sky” and your fixed password “abc1234”.

On the other hand, as a feature of the present technology, the presentation of the ID and password required for account access is the same as the conventional method, but instead of the fixed password to provide a password that is changed from time to time, for example, the fixed The password becomes the first password and changes daily, for example, by specifying a reference exchange rate value of the won against the dollar as the mood value referenced in the password input, and specifying that the password is entered at the end of the first password, As a specific example, the fixed password “abc1234” value is inputted as “abc1234950” by adding today's exchange rate, for example, 950, so that the user can verify the identity at the time of initial registration. If a value such as abc1234950 ”is entered, this value is automatically set before the authenticity determination process. It is to store the relevant information in the variable password generation module so that it can be generated. In other words, the first password is prepared in advance so that the value of today's exchange rate value is added as the basis of the determination. Or in addition to changing the arrangement of the reference value to prepare a number of means, such as "950abc1234", such occasional variable password is left as a separate record as the user enters the password to access ABC Bank's own account Even if you do not save or save it, you can easily enter it by simply adding today's exchange rate value. Even if the password you accessed today is exposed to a third party, a new value must be entered as the password changes as the exchange rate changes. Therefore, unless the disclosure to the third party that the password is changing according to the exchange rate value, it is prepared to prevent the damage caused by the password exposure.

As another feature of the present technology, the first password, a reference value that can be changed daily, and an operation method of newly converting and generating a password such as adding this reference value, as well as specifying a specific variable value to be reflected in the calculation process The first password and the second password may be arbitrarily updated or stored and used according to a user's request.

As another feature of the present technology, in the operation process and the operation method of the occasional variable password included in the password generation module, various calculation methods, for example, addition, subtraction, deletion, addition, and position conversion, can be selected. It is to be prepared to use a fixed password or occasional variable password combination method, depending on whether or not the input of the variable value, or the size of the input value of the second password, the process and method Instructional preparation and implementation in accordance with the art can be easily accomplished by those skilled in the art will not need to be long discussed the case.

In addition, the generation of the random variable password, which is a feature of the present technology, can be appropriately implemented by software alone or in combination with hardware as necessary. Thus, the methods and processes of the present technology include those carried out on a machine, such as a computer, on which program code is loaded and executed, and the processing procedures and results are embedded program code (ie, instructions) on a tangible medium, such as a computer medium. In order to be executed whenever necessary, ie whenever an event occurs.

A brief embodiment of the above description refers to an example of ABC Bank's Internet banking business, but it is not limited to the case where the number of such individual accounts is singular, and even when managing multiple accounts in multiple places. Implementing and using may also be easily realized. In each such case, it is necessary to protect certain information as confidential information, such as personal computers, network servers, portable computers, and supercomputers, and online or offline, as in the case of the use of passwords for bank transfers. Regardless, in an environment in which a module capable of generating various random passwords is provided or provided, the technique of applying the random password may be easily used.

In order to describe the features of the present technology in more detail, it will be described in detail below with reference to the drawings.

FIG. 1 is a flowchart illustrating an overall procedure of generating a password, and illustrates a procedure in which a user with an ID requests a means of generating a variable password at any time and inputs corresponding information.

Referring to FIG. 1, a user sends a request to use a variable password at any time to a password generation module having a function of generating a random change password (S100). The password generation module generates a random change password prepared in itself. Guide (S101) prepare to select whether the password is to be used as a fixed or variable (S102), to guide the user to enter the necessary information according to the selection (S103), when the input is complete (S104), it is notified to check the function Prepare to see (S105), while temporarily presenting the reference value for generating the occasional change password, referring to this value, input the change password at any time (S106), and checks to see if it matches the change password generated through the operation process Generate random passwords while making sure that the creation and use of passwords are working correctly. Sex skills will be completed.

FIG. 2 is an exemplary diagram showing a flow of password generation, which allows a user to use a fixed or variable password as described in the above example. In the case of referring to a specific name for the object to be protected, such as file storage (202), the same method may be implemented.

In the case of a fixed password, the user enters an arbitrary number in the usual way (203), and after reviewing whether this value conforms to a specific protocol such as not being duplicated with an ID or prepared to exceed a specified number (204), If the password is stored in the recording medium (212), if the occasional variable password is selected, the process of selecting the occasional variable password generation method and function formula prepared in the occasional variable password generation module (205), according to the user's request Inputting the first password and the second password described in the above example (206), and temporarily recording the relevant information in the memory device so that the selected arithmetic function can be checked (207), before being recorded in the confirmed command procedure; Occasionally, the password generation module forms the same conditions as the actual function, so that the reference value, for example, the probability of the day, The virtual provision is provided to prepare an experiment (208), and the user is asked to input a random password in a method selected by the user (209), and this value is the random password value generated in the preliminary random password generation module. Prepare to check whether the match (210), and if the identity is proved to determine that the selected random variable password method can be stored as a reference value of the random variable password generation module (211) and to store it in the recording medium to be utilized (212) ) To prepare.

3 is a flowchart illustrating a method of generating a random password and a detailed procedure thereof through the configuration of a random password generation module, and a user who wants to use the random password can generate various random password generation methods 301. For example, open the date the user connects, eg 20060810, as shown in this example. month. How the password is changed due to the combined number of days as the reference value (var_to date of 301), the method of referring to a specific foreign exchange rate value that changes daily (var_ to currency rate), randomly every time the page is updated or when the page is updated. a random value of a certain digit, such as 665943, generated as a reference value (var_ to instant no.), or a time value connected to a time value such as 0900 (var_ to access time) To prepare.

According to each case selected by the user, various variables (vi) to be used in the operation of the password generation module are defined and corresponding values include date value (var_date and month date of 302) and exchange rate value (303 var_ exchange rate). In this case, the random number value (304 var_reference value) or the connection time value (305 var_time) is prepared to be automatically acquired or generated upon operation of the password generation module, that is, an event call.

In addition to the assignment of these variables, which are automatically acquired and the basis for their calculations, the user is responsible for how to convert these variables by means of which he or she is easy to remember, e.g. the values of these reference variables in the final occasional change password. Specify a number (st_) in a specific unit, which is reflected as a fixed value, and cause the specific value specified by the second password described below to be reflected as an element for converting the reference value, and an expression that calculates these values, that is, add or subtract Choose a logical function (fx) such as, add, replace, etc., and specify that the converted value be reflected at a specific location (po_), along with your ID (id_), that you should be reflected in the operation when you enter your password. To prepare the element as the second password pw_.

In this second password, a simple number such as 11, 10, or 100, which is convenient to operate as a calculation and convenient to remember, is designated, for example, an arbitrary random number 665943 is presented on the screen as a reference value. If it is specified to input a random variable password by addition in 10 units, and 11 is already entered as the second password, the password input refers to the reference value 665943 displayed on the screen and inputs the actual value 665954 as the password. It will be a good example of application in memory and mental arithmetic.

When the input is completed according to this procedure, it is prepared to randomly generate a reference value to check the function of the selected functional formula, and then it is prepared to preliminarily check whether memory and arithmetic are easy (307), although not illustrated in the drawing. It may be highly desirable to repeat the process 301 until a satisfactory result is obtained from memory or mental arithmetic through preliminary checks.

The occasional variable password generation method determined through preliminary checks is a password generation module that is stored in the storage medium for each item (308) and is prepared to be functioned at any time whenever the user accesses or, if necessary, an event.

When a user enters his / her own random password and authenticates it (310), he / she is asked to input a random password with the specified ID (311). Of these reference values, the user specified and also memorized while visually confirming the specified reference value, that is, the date, the random number provided on the guide screen, the exchange rate value provided on the guide screen, or the access time zone on the guide screen. If it is specified to refer to the second password and the first password as a fixed value, the values from all these relationships are inputted in combination. In this way, if the occasional variable password is appropriately input according to the user's memory and judgment, the password generation module is operated to pre-specify the occasional variable password generation information specified in relation to the corresponding ID, that is, the reference value (vi), An arithmetic password fx, a unit fixed value st, and a second password pw are extracted from a stored location to generate an occasional variable password through a designated algorithm. In this case, the converted reference value (pw_var) includes a reference value (vi), a unit fixed value (st), and a second password (pw) designated according to each occurrence of an event from the user, and then calculated with a designated function formula (fx), Reflecting to be represented at a specific position (po) can be summarized by the following equation.

pw_var = [f (vi, pw, st)], [po]

According to this result, a password (pw_authentic) that proves that the user, that is, that the entered password is true, is the first password PW (st) value that the user specified in advance at the time of initial subscription with a fixed value. And finally, it is determined by the combination of the converted base value (pw_var), can be summarized by the following equation.

pw_authentic = [PW (st)] + [pw_var]

Therefore, the authentication process is terminated (314) by checking whether the random password (PASSWORD, PW) entered by the user's own calculation and judgment and the random password (pw_authentic) proved inerrancy are the same values (313). ) To prepare.

In FIG. 4, an exemplary embodiment in which the reference value that is changed is a number automatically generated by a random number whenever a page is updated or accessed is used (401). Since the user should fully understand the password before entering the password, the generated random number should be expressed in advance as guide information on the initial screen where the password should be entered (402), and the user has already registered the password by referring to this value (base_no). Determining the first password (fixed) and the second password (pw), and enters a random password that is estimated by the self (403), thereby changing the occasional change that proves true in the password generation module where the event occurred In addition to the reference value already calculated for generating the password, the first ratio in the storage location, such as a database that stores the information of the ID Extract and read related information such as a password (fixed) and a second password (pw) (404), and calculate the conversion reference value (pw_var), as shown in the example of operation 312 in FIG. A true random password (pw_authentic) is generated (405), and the random random password (PASSWORD. PW) that the user arbitrarily inputs is checked to verify that the true random password is identical (406). This completes the certification process.

In a more preferred embodiment, although not shown in the drawings, in the case where the reference value is determined by any random number, at least two random number values are simultaneously generated and prepared to be presented on the guide screen as the reference value. Even if any random value is selected, if a random variable password that meets the above conversion rule is inputted, it is to authenticate that the corresponding password is just true. It will be a very preferred embodiment that makes it more difficult to do.

In FIG. 5, a specific example in which such a series of procedures are actually performed is illustrated as an example of a password that is specified at the time of internet registration. As can be generally seen in the initial page 500 of membership of a specific Internet site, the user Preparing to input a name 501, an ID 502, which is a unique name referring to a member, and preparing to enter a first password, which is a feature of the present technology, in accordance with conventional rules (503), as the size of the password Preparing to determine whether to use a fixed or occasional password, choosing a method that is the basis for changing the password when using a random password (504), a second password to be used to convert the presented reference value Inputting (505), selecting a method of converting a reference value (506), converting That the step 507 of selecting a way that reflects the results that preparation is characterized. In addition, the user can not remember the password entered by the user to prepare a new renewal and to carry out the same as the authenticity judgment information for the specific question 508 and the answer 509 and the e-mail address 510 is a common step It would be highly desirable that the system be further prepared.

To describe in more detail the step 504 of selecting the method of reference to the occasional variable password generation, as shown in 511 separately, for example, modifying any standard value generated by a random number. A menu may be prepared, such as changing the month of the month, changing today's date, or changing today's exchange rate value, and converting these reference values using a second password to reflect them when entering the password. In the case of selecting the method (507), changing the ending number, reflecting in 10 units, and applying the second password in 1-2 or 3-4 digits of the changing number as illustrated separately (512). It will be a preferred embodiment to be prepared to choose from several methods, such as converting the reference value.

In another preferred embodiment, although not shown in the drawings, it may be possible to provide a user with a choice of a simpler logical function that does not use a second password, for convenience of the user. If you generate at least three random numbers of 100,000 units and provide them as a reference value, you can use a pre-registered procedure that you remember as secret information, that is, four-digit numbers of 1,000 units or less. By preparing to input one of the given reference values as a password while replacing it in the future, the method of logical operation or numerical operation specified by the user is used in place of the fixed password. Therefore, convenience can be provided in an improved way. There will be.

6 shows an example of a login using a password normally on the Internet, and after inputting a specified ID, followed by a password (601), in the case of using a fixed password, the user inputs in a conventional method. In the case of using the random password in the technology, for example, the reference value 665943 is referred to a reference value known to oneself, for example, a reference value 602 generated by a random random number and displayed on the screen every time the connection is made. The second password, for example, 11, which is stored by the user, is prepared to be input as 665954 in addition to the conversion method, for example, 10 units, which is specified by the user. Since the standard value is different every time the user inputs the converted value, a different password must be input from the same ID every time. Therefore, unless the conversion method is disclosed, the password change or theft of the password can be assumed in the present technology. This is very difficult.

FIG. 7 illustrates an example of a commonly used daily program, for example, a word processor or a spreadsheet such as Excel, and encrypts the information as a secret key while separately storing the completed information as a file. When attempting to modify the reference value generated by, for example, a random number, in the same manner as described above, for example, in step 701, a method of reflecting the converted value is selected (702), and a fixed password for modifying the reference value is selected. It is prepared to enter (703) to encrypt the file.

In the case of using a reference value presented by random number generation illustrated as one type of random password in this drawing, when attempting to specify a legitimate process of encrypting and decrypting a file or information, the random password inputted in advance is previously set. Although not specified in the drawing, it allows the automatic generation of multiple secret symmetric keys specified in advance, or a specific secret symmetric key as a new random number combination, so that they can be processed if they match the specified scheme or a new specific scheme. If verified as true, this secret symmetric key is used to encrypt the information and stored with the secret symmetric key information. If you want to load the encrypted file while decrypting it, create it at the time of calling the file. File with a random number value ie 68745. A predetermined password to verify the encryption process, for example, the value 68756, calculated by adding 11 to 10 units, must be entered so that the password can be verified as true and open an encrypted file with secret symmetric key information. As the symmetric key is activated to prepare the data to be decrypted, it is not necessary to be detailed because a series of processes can be easily accomplished by a person skilled in the art, but this also needs to be performed every time the file is accessed as in the Internet example. In other words, it prepares to prevent the risk of password exposure by changing the reference value and changing the occasional variable password.

In FIG. 8, another example contrasted with an example based on an arbitrary number generated by the random number used in FIG. 4 is an example of a flow of generating an occasional variable password based on a date value that changes daily and using the same. As the verification of the input password is required (801), an event occurs and the password generation module is prepared to perform a function, and the user remembers the procedure set by the user and stores the first password and the first password based on the current date. 2The password is reflected, and the occasional variable password that you consider to be true is input (802), and the password generation module stores the variables necessary for the operation of the variable variable password stored in the same user ID together with today's date date (). In step 803, the method is called from a place, based on a date, in the same predefined manner as in FIG. Step 804 obtains the converted reference value (pw_var) and a true random variable password (pw_authentic) that proves inerrancy (804), and checks whether this value is the same as the random password value (PASSWORD) entered by the user. By 805, the process of authenticating authenticity of the identity of a user using the variable password is prepared 806. Since this series of processes has a formal operation process that can be handled independently as indicated by a dotted line, it is prepared as various kinds of password generation modules to be widely used as a separate password generation module.

In the above example, the user's ID refers to an example that is generally used when determining the identity of a specific person for a plurality of users on a network, but does not connect to the network and does not use a specific unique name, for example, a program. In the case of initiation of a file, encryption of a file, initiation of the operation of a particular device, or protection of certain information, such as by the name of the file or the name of the owner of the program instead of an ID, or by inputting specified unique information such as a recognition card Since the means should be recognized as an object of initiation and utilization of the characteristic occasional variable password, it should be seen that in the application according to the name of such an object, the present technology is not limitedly applied to the illustrated case.

In another embodiment, although not described in the figures, the operation of a particular device that uses a password, such as adopting this occasional variable password technology when entering a password in a cash machine or an automated gate of a bank, On the screen for guiding the operation, a specific number generated by an arbitrary random number as shown in the example described above, for example, provides a number such as 665943 in FIG. 3 on the guide screen, and an operator who wants to be authenticated has his or her own ID or unique recognition. In accordance with a predetermined method matched with the means, for example, using a second password such as 11 in FIG. 3, a random password, for example, a value such as 665954 in FIG. And be ready to start operating the device. Such a random password does not expose a second password or a conversion method even if a button operation is observed to a nearby third party, and the first-time random password is invalid at the same time as it is used. Is to be prevented.

As described in the above examples, the present technology should not be limited to any one embodiment, but rather should be construed in breadth and scope in accordance with the appended claims.

As described above, according to the present technology, even if a password used by a user is inadvertently exposed, if it is not used under the same conditions in time, it is possible to prevent the loss or damage or misuse of personal information due to the disclosure of the password. Reduces the complexity of password management and the risk of exposure when the same password is common to multiple sites, and because passwords are changed according to access time, operation of encrypted files or programs, and It has the effect of simultaneously improving usefulness, stability and confidentiality in operation.

Claims (6)

In the case of identity authentication, digital signature, and identity verification using a password, based on a public and standardized specific value that is changed to a different value at a specific time interval; Selecting a password that can be known only by oneself, an arithmetic operation that can be known only by a plurality of arithmetic processes, and selecting a predetermined arithmetic and expression method known only by a plurality of methods in advance; Characterized by converting the reference value that is changed to different values at specific time intervals by a specified method using a specified password, a specified method, and setting it as a changed password, and stores it in a specified recording medium Password generation module that generates passwords that change from time to time while using specific calculation methods as their own secret information used for identity verification, digital signature, and identity verification The method of claim 1, further comprising: designating a password used for the conversion as a second password, and having a password including a specific letter and a number that can be fixedly added to the converted reference value and used as the first password. Password generation module that generates passwords that change from time to time and how to use passwords from time to time using them The method of claim 1, further comprising: allowing at least one file to be encrypted and decrypted using the second password, encrypting at least one file by inputting the random password, and Password generation module for generating a password that is changed from time to time, further comprising the step of decrypting and the occasional variable password using method The method of claim 1, wherein when a connection is provided with a value generated as a random random number as a reference value, at least one random random value is generated and guided to be selected, and a random reference value selected from these is selected. Password generation module for generating a password that changes frequently, further comprising the step of preparing to use and the occasional variable password using method When the value of the first password specified by the user in the first and second meets a certain criterion, automatically preparing to use the variable password at any time, and the value of the second password is not specified When, the password generation module for generating a password that is changed frequently, further comprising the step of reflecting as it is without converting the reference value and the occasional variable password using method Preparing to separately store and store the information selected and input by each user as separate and encrypted memory information for each item in the process of generating the reference value presented in claim 1 as a converted reference value And, the password generation module for generating a password that changes from time to time, further comprising the step of enabling and deactivating the corresponding memory information, if necessary, and how to use the variable password from time to time

Images