KR20080112674A - Apparatus, system, method and computer program recorded medium for authenticating internet service server and user by using portable storage with security function - Google Patents
Apparatus, system, method and computer program recorded medium for authenticating internet service server and user by using portable storage with security function Download PDFInfo
- Publication number
- KR20080112674A KR20080112674A KR1020070061389A KR20070061389A KR20080112674A KR 20080112674 A KR20080112674 A KR 20080112674A KR 1020070061389 A KR1020070061389 A KR 1020070061389A KR 20070061389 A KR20070061389 A KR 20070061389A KR 20080112674 A KR20080112674 A KR 20080112674A
- Authority
- KR
- South Korea
- Prior art keywords
- internet service
- user
- electronic authentication
- electronic
- service providing
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F15/00—Digital computers in general; Data processing equipment in general
Abstract
The present invention relates to an apparatus, a system, a method and a recording medium for authenticating a server and a user using a portable storage device having a security function.
The present invention provides a system for providing an Internet service, comprising a user authentication unit, a flash memory unit, and an external communication terminal inside a portable storage device having a security function. An electronic authentication device for managing / storing various access information and providing an authentication service for verifying no tampering and suitability of users and servers, and providing the authentication service; Wired and wireless communication network for providing a wired and wireless communication path; A user terminal connected to the electronic authentication device through an external communication terminal and providing the authentication service via the wired / wireless communication network; Issuing, registering, and authenticating the electronic authentication device to newly issue the electronic authentication device to the user; when the electronic authentication device is connected through the wired / wireless communication network, after authenticating the electronic authentication device, It provides an electronic authentication system comprising at least one Internet service providing server for providing an Internet service.
According to the present invention, by providing an electronic authentication service and system using a portable storage device with a security function, the user can safely carry personal information, anytime, anywhere safely using a mobile phone and various computer devices, membership, You can use various Internet services such as login, user authentication, service use, product purchase, and payment for goods and services safely and conveniently.
Description
1 is a view for explaining an electronic authentication device according to a preferred embodiment of the present invention;
2 is a view showing an embodiment of an electronic authentication system for providing an authentication service using the electronic authentication device of the present invention;
3 is a view for explaining the registration and issuance of an electronic authentication device for an electronic authentication service according to a preferred embodiment of the present invention;
4 is a view for explaining a process of providing an Internet service through an electronic authentication service in an Internet service providing server according to an embodiment of the present invention;
5 is a view for explaining the connection and disconnection between the electronic authentication device and the user terminal according to an embodiment of the present invention;
6 is a diagram illustrating a process of providing an Internet service service by an electronic authentication program according to an exemplary embodiment of the present invention.
<Description of Symbols for Main Parts of Drawings>
100: electronic authentication device 110: flash memory unit
120: program area 130: electronic certification program
150: data area 160: user authentication unit
180: communication unit 200: electronic authentication system
210: user terminal (computer device) 220: wired and wireless communication network
230: Internet service providing server 240: Internet service providing terminal
The present invention relates to an apparatus, a system, a method and a recording medium for authenticating a server and a user using a portable storage device having a security function. More specifically, the flash memory unit and the user authentication unit are configured inside the portable storage device, and the electronic authentication device having an external communication terminal is connected to a computer device having an external communication terminal such as a mobile phone or a USB device. An electronic authentication system, apparatus, and method of implementing the same, comprising accessing a plurality of Internet service providing servers by operating an electronic authentication program installed in the server, integrated management of user or corporate user information, and using a more secure and convenient Internet service. It is about.
As the Internet is activated, the use of electronic commerce, online games, and portal services using the Internet is increasing rapidly every year. These services adopt a variety of login methods to prove the legitimacy of the user, and typically, enter a name (ID, Identification) and password defined to identify the user, submit a certificate, and OTP (One). -Time Password, one-time password input method, etc. are used singly or in combination.
These methods are not only cumbersome to remember, carry and manage from a user's point of view, they also confuse users with different information required by each Internet service provider. In order to use, there is an inconvenience of managing and possessing a large number of personal information and security media.
In addition, as tangible and intangible money transactions, such as e-commerce and online games, increase, malicious hacking and electronic frauds are increasing. Malicious hacking or e-financial frauds take over personal information and certificates stored in the PC gradually from the creation and inducement of fraudulent sites pretending to be passive service providers. The methods and methods are becoming more sophisticated and sophisticated, such as forcing them to move to the site.
In order to solve this problem, conventionally, a portable magnetic device such as a USB memory device has been used to store and carry a file or an authorized certificate in which Internet service IDs and passwords have been input, but in such a case, a simple file form without special security measures is used. There is a chance that it is stored and lost or stolen or copied without your knowledge.
In addition, even if the user enters the correct URL, if a user is forced to go to a fraudulently created fraudulent site, there is an increasing number of cases of personal information leakage and financial damage due to the inability to distinguish a fraudulent site from a normal site. .
In order to solve the above problems, the present invention, the flash memory unit and the user authentication unit is configured in the portable storage device having a security function, the external communication terminal such as a mobile phone or USB to the electronic authentication device having an external communication terminal After connecting to a computer device that is connected to a computer device, and running a digital authentication program installed in the electronic authentication device to access a number of Internet service providing server, integrated management of personal or corporate user information and to perform a more secure and convenient Internet service An object of the present invention is to provide an electronic authentication system, an apparatus, and an implementation method thereof.
In order to achieve the above object, the present invention provides a system for providing an Internet service, comprising a flash memory unit, a user authentication unit and an external communication terminal inside a portable storage device having a security function, An electronic authentication device for managing / storing various user information of a user by running a program and providing the Internet service; Wired and wireless communication network for providing a wired and wireless communication path; A user terminal connected to the electronic authentication device through an external communication terminal provided and providing the Internet service via the wired / wireless communication network; Issuing, registering, and authenticating the electronic authentication device to newly issue the electronic authentication device to the user; when the electronic authentication device is connected through the wired / wireless communication network, after authenticating the electronic authentication device, It provides an electronic authentication system comprising one or more Internet service providing server for providing the Internet service.
In addition, according to another object of the present invention, in the device connected to the user terminal having an external communication terminal to provide an Internet service, the program area and screen data for storing the electronic authentication program for providing the Internet service, the Internet A flash memory unit including a data area for storing service data, computer device-specific data, and user setting data; Equipped with a Chip Operating System (COS), it has an encryption algorithm including a public key infrastructure (PKI) method and a secret key method, and a memory area for storing user's personal information and authentication information. A user authentication unit including; And an external communication terminal such as a USIM slot and a USB terminal for connection with the user terminal.
In addition, according to another object of the present invention, the user's user information, Certification Identification Number (CIN), Personal Identification Number (PIN), Server Identification Number (SIN) and electronic In an electronic authentication system including an electronic authentication device for storing an authentication program, a user terminal, and an Internet service providing server, in the method of providing an Internet service using the Internet service providing server, (a) the electronic authentication program provides the Internet service. Requesting the server authentication number from a server; (b) the Internet service providing server processing the server authentication number; (c) the Internet service providing server notifying a result of processing the server authentication number; (d) accessing the Internet service providing server if the server authentication is successful as a result of processing the server authentication number; (e) accessing the Internet service providing server, the Internet service providing server requesting the electronic authentication unique number from the electronic authentication program; (f) receiving, by the Internet service providing server, the Internet service request from the electronic authentication program when the electronic authentication unique number is registered; (g) the internet service providing server processing the internet service; And (h) informing the electronic authentication device of the processing result of the Internet service by the Internet service providing server.
In addition, according to another object of the present invention, the user's user information, Certification Identification Number (CIN), Personal Identification Number (PIN), Server Identification Number (SIN) and electronic In the electronic authentication device for storing the authentication program, a method for providing an Internet service through the interworking with the Internet service providing server connected to the user terminal, (a) When the electronic authentication device is connected to the user terminal, the user Identifying a terminal; (b) the electronic authentication device driving the electronic authentication program for the user terminal and authenticating the user through the personal identification number; (c) if the user authentication is successful in step (b), the driven electronic authentication program accessing the Internet service providing server according to the user's request; (d) the electronic authentication program interworking with the internet service providing server to perform authentication through the electronic authentication unique number, and requesting the internet service according to a request of the user; (e) the electronic authentication program interworking with the internet service providing server to process the internet service; And (f) receiving the processing result of the Internet service from the Internet service providing server by the electronic authentication program.
In addition, according to another object of the present invention, an electronic authentication program for providing an Internet service, (a) a function of integrating / storing / managing / searching / deleting / updating the user's personal information and authentication information; (b) requesting / processing the Internet service by accessing a plurality of Internet service providing servers using the user's personal information and authentication information; (c) a function of performing authentication by transmitting an electronic authentication unique number to the Internet service providing server; (d) a function of authenticating the user using a personal identification number; (e) a function of authenticating the server by using a server authentication number; and (f) a plurality of user terminals are connected to authenticate the plurality of user terminals and the plurality of Internet service providing servers, and interwork with the plurality of user terminals. It provides a recording medium recording a computer-readable program, characterized in that it comprises a function for providing the Internet service.
Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings. First of all, in adding reference numerals to the components of each drawing, it should be noted that the same reference numerals are used as much as possible even if displayed on different drawings. In addition, in describing the present invention, when it is determined that the detailed description of the related well-known configuration or function may obscure the gist of the present invention, the detailed description thereof will be omitted.
1 is a view for explaining an electronic authentication device according to a preferred embodiment of the present invention.
In this case, the user terminal includes various computer devices, and includes a personal computer (PC) and a personal digital assistant (PDA) capable of accessing an Internet service providing server through a wired / wireless communication network such as the Internet or an internal Internet service providing network. Assistant), Mobile Communication Terminal, Card Payment Terminal, Point Of Sale (POS), Set-Top Box, Counter Terminal and Cash Dispenser (CD), ATM ( ATM (Automatic Teller Machine), bill acceptor, etc., which refers to any computer device with an external communication port, input and output devices, and their own computing functions.
In addition, the
Therefore, the
The
CIN (Certificate Identification Number), which is a unique number of the
Server Identification Number (SIN) embedded in the
The electronic authentication unique number (CIN) stored in the
Self-encrypted internal memory of the
The
The
In addition, the
The
The electronic
The smart
The
The integrated
Internet
The
The remaining area (memory) in addition to the
The
Therefore, the
The
The
2 is a diagram showing an embodiment of an electronic authentication system for providing an Internet service using the electronic authentication device of the present invention.
As shown in Figure 2, the
A plurality of computer device support means 250 of the
A plurality of Internet service providing server support means 260 is processed by using the existing web browser or the Internet access screen in the
The user setting support means 270 supports the user to set the screen and menu configuration using the Internet
In addition, the
The
The wired /
The Internet
The Internet
The above-described
In other words, the user possesses the
In the process to be described later, using the
First, the user visits each Internet service provider or authenticates himself or herself online to use the electronic authentication service of the present invention, and then applies for the electronic authentication service and receives the
As shown in FIG. 3, the person in charge of the Internet service provider confirms the user's identity using a public certificate, a security SMS, a social security number, a user's ID card, and supporting documents (S310), and electronic authentication on the Internet
When the registration procedure of the
Here, the electronic certificate registration means 242 stores an electronic certificate registration program and an application signed by the user. In addition, the electronic authentication device recorder 244 communicates with the Internet
That is, a method of returning a value calculated by the
In addition, the personal identification number (PIN) stored in the
In addition, only the electronic authentication unique number (CIN) and user information are stored in the Internet
4 is a view for explaining a process of providing an Internet service through an electronic authentication service according to an embodiment of the present invention.
The
When the
Here, the electronic authentication / user authentication means 232 of the Internet
In addition, the Internet service processing means 234 includes a case where all of the user ID, password, certificate, etc. are used or partially simplified according to an existing procedure.
When the
Here, the digital authentication unique number (CIN) is not entered directly by the user, so the error caused by the user's wrong input is excluded.
The Internet
5 is a view for explaining the connection and disconnection between the electronic authentication device and the user terminal according to an embodiment of the present invention.
When the communication unit 180 (USB terminal) of the
At this time, the
If the current
When the
While the
Here, as the electronic authentication driving means 217 for driving the
In addition, the user interface means 219 includes not only a monitor, a mouse and a keyboard of a personal computer, but also a touch screen, a keypad, buttons, a liquid crystal screen, a TV monitor, a remote controller, and the like provided by
6 is a view for explaining a process of providing an Internet service by the electronic authentication program according to an embodiment of the present invention.
When the
The
When the
The
If management setting is necessary, electronic authentication management (S610), user environment setting (S612), and user data registration (S614) are selectively performed by the user's selection.
Here, the electronic certificate management (S610) automatically checks the version of the
User preferences (S612) is a function that allows the user to configure and set the main screen and menus, such as Internet services, basic menu configuration, user information receiving settings that are mainly used by the user, and user preferences (S612) If you do not do this, the default screen and menu are initially configured. The setting result is stored in the
User data registration (S614) provides a function to record the authentication data and login data for each Internet service providing service, etc. in the electronic authentication device (100). This function is connected to the smart
After the above process, the user setting program is driven based on the type of the
In operation S616, the user platform may be made of only the necessary menus according to the screen configuration of a specific Internet service designated by the user on the screen of the
The
After performing the integrated information management, and performs the set Internet service (S620). The Internet service can be performed immediately according to the rules of integrated server management or when a user needs it. The Internet
When providing the Internet service to the user through the
In addition, the
In addition, it has a USB port for personal computers, personal portable information terminals, mobile communication terminals, card payment terminals, electronic cash registers, set-top boxes, teller machines and ATMs, ATMs, bill acceptors, and other automated teller machines. In order to provide an electronic authentication service by connecting the
In addition, the user can receive a variety of Internet services provided by using a single
In addition, in the present invention, a common Internet service can be processed by communicating with an Internet service providing server in a standard specialized format.
In addition, it is possible to provide a variety of applications using the
In addition, when performing the Internet service, it can automatically save the confirmation to guarantee the results and provide various statistics, the user can not only check all the usage history on the computer device, but also the electronic authentication device in the card payment terminal It is possible to provide an application program such as selecting only a card having favorable payment terms or knowing a cumulative use amount until the use using only the information embedded in the 100.
The above description is merely illustrative of the technical idea of the present invention, and those skilled in the art to which the present invention pertains may make various modifications and changes without departing from the essential characteristics of the present invention. Therefore, the embodiments disclosed in the present invention are not intended to limit the technical idea of the present invention but to describe the present invention, and the scope of the technical idea of the present invention is not limited by these embodiments. The protection scope of the present invention should be interpreted by the following claims, and all technical ideas within the equivalent scope should be interpreted as being included in the scope of the present invention.
As described above, according to the present invention, by providing a system for authenticating a server and a user by using a portable storage device having a security function, the user can safely carry personal authentication and user information, and anytime, anywhere By using the device, the Internet service can be used safely and conveniently.
In addition, by integrating and storing secure information such as fixed information and service usage information of individuals or companies distributed in each Internet service providing server into an electronic authentication device, it is safer and safer than using a simple medium to store or move. It is effective to increase portability.
In addition, while applying all the methods, such as certificates, security cards or one-time password generator used in the existing Internet services, only the electronic authentication unique number (CIN) and server authentication number (SIN), who can not be changed by third parties, By applying this known personal identification number (PIN), there is an advantage that it can perform safety, personal authentication and server authentication perfectly.
In addition, the electronic authentication program can be used to access the Internet service providing servers of various Internet service providers using a common screen and a method of use, and the individual or company distributed to each Internet service providing server provided by the electronic authentication program. It can provide the function to manage the authentication information integrally, and the analysis and planning function of the usage information.
Claims (22)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020070061389A KR20080112674A (en) | 2007-06-22 | 2007-06-22 | Apparatus, system, method and computer program recorded medium for authenticating internet service server and user by using portable storage with security function |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020070061389A KR20080112674A (en) | 2007-06-22 | 2007-06-22 | Apparatus, system, method and computer program recorded medium for authenticating internet service server and user by using portable storage with security function |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20080112674A true KR20080112674A (en) | 2008-12-26 |
Family
ID=40370373
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020070061389A KR20080112674A (en) | 2007-06-22 | 2007-06-22 | Apparatus, system, method and computer program recorded medium for authenticating internet service server and user by using portable storage with security function |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20080112674A (en) |
Cited By (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20120040137A (en) * | 2009-06-29 | 2012-04-26 | 분데스드룩커라이 게엠베하 | Method for generating an identifier |
KR101232860B1 (en) * | 2012-04-27 | 2013-02-14 | ㈜ 엘케이컴즈 | Hybrid authentication system and method thereof |
KR101349698B1 (en) * | 2009-12-31 | 2014-01-10 | 에스케이플래닛 주식회사 | System and method for certification using portable storage medium, and terminal and authentication server and portable storage medium thereof |
KR101403626B1 (en) * | 2013-08-14 | 2014-06-03 | (주) 뉴코 | Method of integrated smart terminal security management in cloud computing environment |
KR20150139659A (en) * | 2014-06-03 | 2015-12-14 | 박영성 | Illegal using preventing system for membership internet service |
KR20160011070A (en) * | 2014-07-21 | 2016-01-29 | 주식회사 코스콤 | Security and financial services providing system and method using a card connected directly to a user terminal |
KR102047739B1 (en) * | 2019-03-08 | 2019-11-22 | 주식회사 다음정보기술 | Cloud-based Clean Security Module Remote Utilization System and Method |
KR102263739B1 (en) | 2021-02-15 | 2021-06-11 | 주식회사 한국정보보호경영연구소 | My data wallet system and operation method thereof |
-
2007
- 2007-06-22 KR KR1020070061389A patent/KR20080112674A/en not_active Application Discontinuation
Cited By (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20120040137A (en) * | 2009-06-29 | 2012-04-26 | 분데스드룩커라이 게엠베하 | Method for generating an identifier |
KR101349698B1 (en) * | 2009-12-31 | 2014-01-10 | 에스케이플래닛 주식회사 | System and method for certification using portable storage medium, and terminal and authentication server and portable storage medium thereof |
KR101232860B1 (en) * | 2012-04-27 | 2013-02-14 | ㈜ 엘케이컴즈 | Hybrid authentication system and method thereof |
KR101403626B1 (en) * | 2013-08-14 | 2014-06-03 | (주) 뉴코 | Method of integrated smart terminal security management in cloud computing environment |
KR20150139659A (en) * | 2014-06-03 | 2015-12-14 | 박영성 | Illegal using preventing system for membership internet service |
KR20160011070A (en) * | 2014-07-21 | 2016-01-29 | 주식회사 코스콤 | Security and financial services providing system and method using a card connected directly to a user terminal |
KR102047739B1 (en) * | 2019-03-08 | 2019-11-22 | 주식회사 다음정보기술 | Cloud-based Clean Security Module Remote Utilization System and Method |
KR102263739B1 (en) | 2021-02-15 | 2021-06-11 | 주식회사 한국정보보호경영연구소 | My data wallet system and operation method thereof |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9741033B2 (en) | System and method for point of sale payment data credentials management using out-of-band authentication | |
US8739266B2 (en) | Universal authentication token | |
US20110185181A1 (en) | Network authentication method and device for implementing the same | |
CN101258507B (en) | Mass storage device with automated credentials loading | |
US9667626B2 (en) | Network authentication method and device for implementing the same | |
KR20070048815A (en) | System and method for the one-time password authentication by using a smart card and/or a mobile phone including a smart-card chip | |
KR101125088B1 (en) | System and Method for Authenticating User, Server for Authenticating User and Recording Medium | |
KR20080112674A (en) | Apparatus, system, method and computer program recorded medium for authenticating internet service server and user by using portable storage with security function | |
KR20090051147A (en) | Internet settlement system | |
WO2009101549A2 (en) | Method and mobile device for registering and authenticating a user at a service provider | |
KR20120083491A (en) | Terminal management system and terminal management method | |
KR100869157B1 (en) | Apparatus, Method and Computer Program Recorded Medium for Providing Electronic Wallet Service | |
KR20110002968A (en) | Method and system for providing financial trading service by using biometrics and portable memory unit therefor | |
KR20070065863A (en) | Apparatus, system, method and computer program recorded medium for providing electronic waller service by using usim (universal subscriber identity module) card | |
JP4135151B2 (en) | Method and system for single sign-on using RFID | |
US20090241186A1 (en) | Method for removable element authentication in an embedded system | |
JP5107885B2 (en) | Personal information providing apparatus, personal information providing method | |
KR20110002967A (en) | Method and system for providing authentication service by using biometrics and portable memory unit therefor | |
JP5409871B2 (en) | Personal information providing apparatus and personal information providing method | |
KR20110029032A (en) | Method for processing issue public certificate of attestation, terminal and recording medium | |
CN105590197B (en) | Router-based payment method and router | |
KR101171235B1 (en) | Method for Operating Certificate | |
KR20110001475A (en) | Method and system for the right of using service via network and portable memory unit therefor | |
KR100865879B1 (en) | Method for Processing Financial Transaction and Recording Medium | |
KR100966295B1 (en) | Method for Providing Electronic Wallet Service by Using Universal Subscriber Identity Module Card and Electronic Wallet Apparatus |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
N231 | Notification of change of applicant | ||
WITN | Withdrawal due to no request for examination |