KR20100005923A - System and method for identifying own usage permission jointly and recording medium - Google Patents

Abstract

PURPOSE: A system and a method for checking sharing of a use right and a recording medium therefor are provided to use keystroke pattern analysis and keystroke clustering of character string information included in user input information, thereby conveniently and accurately determining whether a user right of an authenticated user is shared. CONSTITUTION: An interface provider(115) includes keystroke information about character string information in user input information and transmits it. A keystroke cluster checker(140) checks a keystroke cluster of the keystroke information. If one keystroke cluster is checked, a sharing checking unit(175) checks a user right corresponding to the user input information as a non-sharing user right. If two or more keystroke clusters are checked, the sharing checking unit checks a user right shared by at least two users.

Description

System and Method for Identifying Usage Permission Jointly and Recording Medium}

1 is a diagram illustrating a system for confirming user rights sharing through keystroke clustering of string information included in user input information according to an embodiment of the present invention.

FIG. 2 is a diagram illustrating a functional configuration of a keystroke module for checking user authority sharing through keystroke clustering of string information included in user input information according to an embodiment of the present invention.

3 is a diagram illustrating a user authentication process for registering user input information according to an embodiment of the present invention.

4 is a diagram illustrating a process of transmitting and receiving keystroke-based user input information to confirm user authority sharing through keystroke clustering of string information included in user input information according to an embodiment of the present invention.

5 is a process of storing keystroke information included in keystroke-based user input information in a storage medium for checking user authority sharing through keystroke clustering of string information included in user input information according to an embodiment of the present invention. Figure is a diagram.

6 is a diagram illustrating a process of confirming a sharing state of a user right by reading a keystroke pattern according to an exemplary embodiment of the present invention.

<Description of main parts of drawing>

100: web server 105: web interface unit

110: web page operation unit 115: interface providing unit

120: information receiving unit 125: information storing unit

130: information extraction unit 135: user authentication unit

140: terminal address check unit 145: keystroke cluster check unit

150: keystroke information storage unit 155: keystroke pattern information generation unit

160: keystroke pattern information storage unit 165: sharing determination information storage unit

170: pattern similarity check unit 175: shared confirmation unit

180: user authentication D / B 185: storage medium

190: client terminal

The present invention provides a key including one or more input duration information, input interval information, and pressure information for two or more pieces of key data constituting character string information included in the user input information with respect to user input information transmitted from a terminal used by a user. Processing for transmission including keystroke information, checking terminal address information on the terminal, and character string information included in the terminal address information, the user input information, and each key data constituting the string information. And storing N (N> 1) corresponding to the same word (or sentence or index word) among string information stored at least a predetermined number of times in a predetermined period in association with the storage medium in association with the keystroke information for the storage medium. Of input duration information, input interval information and pressure information included in Identifying m (m> = 1) keystroke clusters including n (n <= N) pattern target keystroke information in which at least one pattern target information is distributed within a predetermined range and the result of the confirmation When one keystroke cluster is identified, the terminal usage authority corresponding to the terminal address information is not shared, and when two or more keystroke clusters are identified, the terminal usage authority corresponding to the terminal address information is two or more. And confirming that it is being shared by the user.

With the continuous development of information and communication technology, economic activities (e.g. e-commerce, non-face-to-face financial transactions, etc.) and public opinion activities (e.g. comments, bulletin boards) through communication networks are activated, and paid content use (e.g. online lectures, games, items) As purchases are becoming more frequent, identifying users accurately in the non-face-to-face state online has become an important security factor.

Therefore, most online service providers that provide high-security online services attempt to accurately identify users in a non-face-to-face state through a certificate or OTP (One Time Password), but this is only for malicious theft. It is only intended to prevent / replicate, but does not handle the case when an authenticated user decides to share his or her authorization rights with others.

In particular, the sharing of the authentication authority with others by the authenticated user means that the amount of revenue is reduced for the online service provider, and most online service providers are trying to block it, but the present solution There is no situation.

Of course, a solution that can prevent the authenticated user from sharing his authentication authority with others is by using biometrics. The authentication method using the biometrics is to use a user's unique biometric characteristics such as fingerprint, facial feature, irises, palm print, etc. of the authenticated user as an authentication means. Must have a separate biometric device for authenticating the biometrics on the user side. However, not only most users are reluctant to have the biometric device, but also the cost of purchasing the biometric device is difficult to prevent the user authenticated using the biometrics from sharing their authentication authority with others. The thing involves a very difficult problem.

An object of the present invention for solving the above problems, input duration information, input interval information for two or more key data constituting the character string information included in the user input information for the user input information transmitted from the terminal used by the user And interface providing means for processing to transmit keystroke information including one or more pressure information, and checking terminal address information on the terminal, and a character string included in the terminal address information and the user input information. Keystroke information storage means for storing information and keystroke information for each key data constituting the character string information in a storage medium, and the same word among character string information stored at least a predetermined number of times in a predetermined period in connection with the storage medium. Or sentences (or index terms), N (N> 1) keys M (m> = 1 including n (n <= N) pattern target keystroke information in which one or more pattern target information among input duration information, input interval information, and pressure information included in the stroke information are distributed within a predetermined range) Keystroke cluster identification means for confirming the number of keystroke clusters, and when the verification result indicates that one keystroke cluster is identified, it is confirmed that the terminal usage authority corresponding to the terminal address information is not shared. When the above keystroke cluster is confirmed, the present invention provides a usage right sharing confirmation system having a sharing confirmation means for confirming that a terminal usage right corresponding to the terminal address information is shared by two or more users.

According to an embodiment of the present invention, a method for sharing usage rights includes input duration information, input interval information, and the like for two or more pieces of key data constituting string information included in the user input information with respect to user input information transmitted from a terminal used by a user. Processing to include keystroke information including one or more pieces of pressure information, and confirming terminal address information for the terminal, and including character string information included in the terminal address information and the user input information. Storing the keystroke information for each key data constituting the string information in a storage medium in association with the keystroke information; Define input duration contained in corresponding N (N> 1) keystroke information M (m> = 1) keystroke clusters containing n (n <= N) pattern target keystroke information in which one or more pattern target information among beams, input interval information, and pressure information is distributed within a predetermined range. ) And the check result, if one keystroke cluster is confirmed, it is confirmed that the terminal use authority corresponding to the terminal address information is not shared, and if two or more keystroke clusters are identified, the terminal address information And confirming that the terminal usage right corresponding to the data is shared by two or more users.

According to an aspect of the present invention, there is provided a method for sharing permission rights, generating m keystroke pattern information through n pattern target keystroke information included in the identified m keystroke clusters, and m keystroke pattern information. Confirming the pattern similarity information for the terminal and if the pattern similarity information is equal to or less than a predetermined sharing determination criterion similarity, confirming that the terminal use authority corresponding to the terminal address information is not shared, and determining whether the pattern similarity information is preset. If the reference similarity or more, characterized in that further comprising the step of confirming that the terminal use authority corresponding to the terminal address information is shared by two or more users.

According to the present invention, if the user input information is transmitted from a terminal used by an authenticated user, the user input information includes user authentication information-including at least one of user ID information, password, and ID / PW information. As a result, when one keystroke cluster is identified, it is determined that the user authentication information is not shared, and when two or more keystroke clusters are identified, confirming that the user authentication information is shared by two or more users. It is characterized in that it further comprises.

In the usage right sharing confirmation method according to the present invention, the user input information, characterized in that the user is registered through the terminal and the post information on the web, the search keyword information transmitted from the terminal comprises one or more; It is done.

On the other hand, it includes a computer-readable recording medium, characterized in that the program for executing the above-described usage rights sharing confirmation method recorded.

On the other hand, the usage right sharing confirmation system according to the present invention, input duration information, input interval for two or more key data constituting the string information included in the user input information with respect to the user input information transmitted from the terminal used by the user Interface providing means for processing transmission including keystroke information including one or more information and pressure information, and confirming terminal address information for the terminal, and included in the terminal address information and the user input information. Keystroke information storage means for storing the string information and the keystroke information for each key data constituting the string information in a storage medium and the same word of the string information stored a predetermined number of times in a predetermined period in association with the storage medium N (N> 1) corresponding to (or sentence or index word) M (m> =) containing n (n <= N) pattern target keystroke information in which at least one pattern target information among input duration information, input interval information, and pressure information included in the keystroke information is distributed within a predetermined range. 1) keystroke cluster identification means for verifying the keystroke clusters and the result of the verification, when one keystroke cluster is identified, it is confirmed that the terminal usage authority corresponding to the terminal address information is not shared. And, when two or more keystroke clusters are identified, sharing confirmation means for confirming that the terminal use authority corresponding to the terminal address information is shared by two or more users.

The usage right sharing confirmation system according to the present invention further includes keystroke pattern information generating means for generating m keystroke pattern information through the n pattern target keystroke information included in the identified m keystroke clusters. Characterized in that made.

In the usage right sharing confirmation system according to the present invention, the keystroke pattern information generating means generates keystroke pattern information including an average value and a variance value for the n keystroke information, or the n keys Substituting stroke information into a predetermined pattern calculation formula, permuting / combining according to a predetermined pattern calculation law, or processing a geometric operation using a preset graph to generate keystroke pattern information, or the n keystrokes After multiplying the information by a predetermined weight, and substituting a predetermined pattern calculation formula, substitution / combination according to a predetermined pattern calculation rule, or processing a geometric operation using a predetermined graph to generate the kiss trok pattern information It is characterized by.

Hereinafter, with reference to the accompanying drawings and description will be described in detail the operating principle of the preferred embodiment of the present invention. However, the drawings and the following description shown below are for the preferred method among various methods for effectively explaining the features of the present invention, the present invention is not limited only to the drawings and description below. In addition, in the following description of the present invention, if it is determined that a detailed description of a related known function or configuration may unnecessarily obscure the subject matter of the present invention, the detailed description will be omitted. Terms to be described later are terms defined in consideration of functions in the present invention, which may vary according to intentions or customs of users or operators. Therefore, the definition should be made based on the contents throughout the present invention.

In addition, preferred embodiments of the present invention to be carried out below are provided in each system functional configuration to efficiently describe the technical components constituting the present invention, or system functions that are commonly provided in the technical field to which the present invention belongs. The configuration will be omitted, and described mainly on the functional configuration to be additionally provided for the present invention. If those skilled in the art to which the present invention pertains, it will be able to easily understand the function of the components that are conventionally used among the omitted functional configuration not shown below, and also the configuration omitted as described above The relationship between the elements and the components added for the present invention will also be clearly understood.

In addition, the following examples will be used to appropriately modify, integrate, or separate the terminology so that those skilled in the art to which the present invention pertains may clearly understand the present invention. The present invention is by no means limited thereto. In other words, each means constituting the present invention is a server (or terminal) provided on the system shown in the following embodiments, or a predetermined functional configuration provided in at least one or more servers (or terminals), or at least It may be an association of at least two or more functional components provided in one or more servers (or terminals). In addition, the server (or terminal) shown in the following embodiment is shown to include at least two or more functional components for achieving the technical features of the present invention for convenience, the functional component shown in the server (or terminal) Matched with the above-described means may be provided in two or more different servers (or terminals) according to the role and function of each functional component and the corresponding server (or terminal) operator (or operator), whereby the present invention is not limited No.

As a result, the technical spirit of the present invention is determined by the claims, and the following examples are one means for efficiently explaining the technical spirit of the present invention to those skilled in the art to which the present invention pertains. It is only.

1 is a diagram illustrating a system for confirming user rights sharing through keystroke clustering of string information included in user input information according to an embodiment of the present invention.

In more detail, in FIG. 1, when a client terminal 190 requests a user input information registration by accessing a web server 100 on a communication network, the web server 100 moves to the client terminal 190 to register user input information. A keystroke module for checking user authority sharing through keystroke clustering of string information included in the user input information in an information registration interface included in a provided web page, and providing the same to the client terminal 190. Correspondingly, input duration information, input interval information, and pressure for two or more pieces of key data constituting string information included in user input information input through the information registration interface through the keystroke module in the client terminal 190. Confirm keystroke information including one or more information, and kiss When the keystroke-based user input information including the lock information is generated and transmitted, the web server 100 checks the terminal address information allocated to the client terminal 190 and based on the confirmed terminal address information. The present invention relates to a system configuration for extracting and reading keystroke information included in keystroke-based user input information and confirming user authority sharing through keystroke clustering of string information included in the user input information. Those skilled in the art can refer to FIG. 1 and / or modify the various embodiments of the user authority sharing confirmation system configuration through keystroke clustering of character string information included in the user input information. , Some components may be omitted, subdivided, or combined Implementation method) may be inferred, but the present invention includes all implementation methods inferred from the above, and is not limited to the implementation method shown in FIG.

For example, those skilled in the art to which the present invention pertains may refer to, and / or modify, the keystroke clustering of character string information included in the user input information in the client terminal 190. A method comprising a program including a keystroke module for checking user authority sharing, or for checking user authority sharing through keystroke clustering of character string information included in the user input information in the client terminal 190. It will be apparent that an implementation method for real-time loading a program including a keystroke module may be inferred, and it will be apparent that the present invention includes all implementation methods inferred.

Referring to FIG. 1 according to an embodiment of the present invention, a system for checking user rights sharing through keystroke clustering of character string information included in the user input information includes one or more browser programs, and through the browser program. A client terminal 190 connected to a communication network and the client terminal 190 connected through the communication network, and when the client terminal 190 is connected through the communication network, the client terminal 190 for registering user input information. And a keystroke module for checking user authority sharing through keystroke clustering of the string information included in the user input information in the information registration interface included in the webpage provided by Correspondingly, the client terminal 190 Keystroke information including one or more input duration information, input interval information, and pressure information for two or more key data constituting string information included in user input information input through the information registration interface through the keystroke module. After confirming, generating and transmitting keystroke-based user input information including the keystroke information, confirming the terminal address information assigned to the client terminal 190, the key based on the confirmed terminal address information And extracting and reading the keystroke information included in the stroke-based user input information to confirm sharing of user rights through keystroke clustering of the string information included in the user input information. do.

However, in FIG. 1, the web server 100 is illustrated as being formed in one server form for convenience. However, the present invention is not limited thereto, and the web server 100 includes two or more server groups for each component. Types (eg, keystroke information included in the keystroke-based user input information based on a webpage operation server providing a webpage to the client terminal 190 and terminal address information assigned to the client terminal 190). And a keystroke authentication server for verifying user rights sharing through keystroke clustering of the string information included in the user input information. The present invention includes all the inferred implementation methods. Characterized in that made. That is, in FIG. 1, the web server 100 does not mean a physical server name, but a functional name for checking user authority sharing through keystroke clustering of string information included in the user input information. It is clear that it is a naming.

According to the exemplary embodiment of the present invention, the web server 100 performing the function of the webpage operation server registers user input information including string information in a bulletin board, a comment, a blog, a mini homepage, and the like to post it on the web. Preferably, the web server 100 includes all types of web servers and a search server that provides a search service through user input information including a search keyword.

The client terminal 190 is a wired communication network based on Transmission Control Protocol / Internet Protocol (TCP / IP) (eg, Asymmetric Digital Subscriber Line (ADSL) / Very High-data Rate Digital Subscriber Line (VDSL), cable communication network). A mobile communication terminal including at least one wired terminal including a desktop computer or a laptop connected to the web server 100 or connected to a code division multiple access (CDMA) based mobile communication network, or IEEE IP-TV including at least one wireless terminal including at least one or more portable Internet terminals connected to the 802.16x-based high-speed wireless Internet, or capable of bi-directional communication through any one of the wired or wireless communication networks. Or at least one TV device (not shown) including at least one digital TV or at least one DMB. W, and it characterized in that formed, characterized in that obtained by having a browser program and outputting the received web page through the communication network contains the information registering interface for registration of the user input information.

Persons of ordinary skill in the art to which the present invention pertains know the technical features of the client terminal 190 including one or more of the wired terminal, the wireless terminal, or a TV device (not shown). Detailed description thereof will be omitted for convenience.

According to an embodiment of the present invention, the web server 100 may include web page operation data including one or more web page sources and web contents for generating (or extracting) a web page to be provided to the client terminal 190. And a database for storing user registration data including user input information including string information input through the information registration interface and user information for inputting the user input information. The database may be provided in a database management system (DBMS) associated with the web server 100.

According to an exemplary embodiment of the present invention, the web page source included in the web page operation data may include one or more tag strings for generating a web page to be provided from the web server 100 to the client terminal 190. Tag string), one or more scripts to be included in the web page, and one or more information contents corresponding to the web page contents. In this case, the web page provided to the client terminal 190 includes the tag. It is preferably generated by combining a string (or a combination of tag strings).

According to another exemplary embodiment of the present invention, a web page source included in the web page operation data may include a web document source file corresponding to a web page to be provided from the web server 100 to the client terminal 190 (for example, , A web document source file including one or more tag strings and scripts and information contents corresponding to the web page contents. In this case, the web pages provided to the client terminal 190 may include one or more web pages. Document source files (e.g., web pages without frames, one web document source file, or, for web pages consisting of two or more frames, one frame web document source file and two or more web document sources corresponding to each frame). File).

In addition, when the web content included in the webpage operation data includes a tag string linking one or more contents (for example, text content, image content, sound content, and multimedia content) among tag strings included in the webpage. And one or more text contents, image contents, sound contents, and multimedia contents corresponding to a tag string linking the contents.

According to the exemplary embodiment of the present invention, the user information included in the user registration data may include one or more ID information, alias information, name information, and unique number information of a user registered in the web server 100. In addition, the web server 100 preferably includes all information that can uniquely identify the user.

In addition, the user input information included in the user registration data may include string information input by the user through the information registration interface in the client terminal 190 and one or more contents (eg, images and sounds) associated with the string. , Multimedia).

According to the present invention, the web server 100 includes a user authentication information registered in the user registration process and a user authentication D / B 180 for linking and storing user member information, or interworking through a network. Characterized in that.

Here, the user authentication information, preferably comprises one or more ID information, password, ID / PW information of the user registered in the web server 100, the web server 100 supports the login of the certificate In this case, it is preferable that the user authentication information further comprises an authorized certificate password.

As such, it is apparent that the user authentication information is not limited to the above-described user ID or password, but includes all kinds of information capable of authenticating the user on the web. The authentication information is characterized by including all kinds of user authentication information that can be inferred by those skilled in the art.

The user member information may include at least one of a user's name, social security number, address, and contact information corresponding to the user authentication information.

According to the exemplary embodiment of the present invention, the user information included in the user registration data may include information uniquely identifying the user among the information included in the user authentication information or the user member information.

Referring to FIG. 1, the web server 100 provides a web page to the client terminal 190 using an HTTP compatible protocol corresponding to the communication network, or based on a web page provided to the client terminal 190. And a web interface unit 105 for connecting and managing a web interface for receiving (or selecting) various types of information input from the client terminal 190 in a GET / POST method.

According to an embodiment of the present invention, when the client terminal 190 is a wired terminal to which a communication channel is connected through a TCP / IP based wired communication network, the web interface unit 105 may communicate with the client terminal 190 and TCP / A communication channel is connected and managed through an IP-based HTTP protocol, and a Hyper-Text Markup Language (HTML) compatible document (eg, * .htm, * .asp, * .xml) is connected to the client terminal 190 through the communication channel. It is preferable to interface so that a web page of a form of) is provided or to receive information input from the client terminal 190 in a GET / POST manner.

According to another exemplary embodiment of the present invention, when the client terminal 190 is a wireless terminal in which a communication channel is connected through a CDMA / WCDMA based wireless communication network, the web interface unit 105 is connected to the client terminal 190 and CDMA. Connect and manage a communication channel through an HTTP compatible protocol (eg, WAP (Wireless Application Protocol), or ME (Mobile Explorer), etc.) corresponding to the WCDMA-based wireless Internet protocol, and the client terminal 190 through the communication channel. It is preferable to interface so that a web page in the form of an HTML compatible document (eg, * .wml, * .htm) is provided, or the information input from the client terminal 190 is received in a GET / POST method. .

According to another exemplary embodiment of the present invention, when the client terminal 190 is a wireless terminal in which a communication channel is connected through an IEEE 802.16 based wireless communication network, the web interface unit 105 is connected to the client terminal 190 and the IEEE. A communication channel is connected and managed through an HTTP compatible protocol corresponding to an 802.16x based wireless Internet protocol, and an HTML compatible document (eg, * .htm, * .asp, *. xml) interface to provide a web page, or interface so that the information input from the client terminal 190 is received in a GET / POST method.

Referring to FIG. 1, when the web server 100 accesses the web server 100 from the client terminal 190 through the web interface unit 105, the client terminal is based on the webpage operation data. Web page operation unit 110 (or web page operation means) for generating a web page to be provided to (190) (or extracted from the DBMS), and the web generated (or extracted) through the web page operation unit 110 And an interface providing unit 115 (or interface providing means) including a user authentication interface for authenticating the user in a page, and the web page operation unit 110 includes the web interface unit 105. And the generated (or extracted) web page to be provided to the client terminal 190.

When the client terminal 190 accesses the web server 100 through the web interface unit 105, the web page operation unit 110 corresponds to the web server 100 connection to the client terminal 190. Confirm a web page link to be provided), identify a web page source and web content for generating (or extracting) a web page corresponding to the identified web page link from the web page operation data, and verify the web A web page to be provided to the client terminal 190 is generated (or extracted) using a page source and web content.

When the web page operation unit 110 generates (or extracts) a web page to be provided to the client terminal 190, when the generated web page is a web page for providing the user authentication, The interface providing unit 115 generates a user authentication interface for inputting the user authentication information (or extracts from the DBMS), and the generated (or extracted) user authentication interface through the webpage operation unit 110. It is characterized in that the processing to be provided to the client terminal 190 including the generated (or extracted) web page.

According to an embodiment of the present invention, the user authentication interface preferably comprises a user interface for inputting (or selecting) user authentication information through one or more form forms.

According to an embodiment of the present invention, a user interface for inputting the user authentication information in the user authentication interface includes an edit control for inputting two or more key data constituting the user authentication information. It is preferable to make.

According to another embodiment of the present invention, the user interface for inputting the user authentication information in the user authentication interface, and displays two or more key data buttons (or icons) constituting the user authentication information on the screen, Button control or custom control that inputs two or more key data buttons (or icons) displayed on the screen by clicking (eg, pressing the left button of the mouse input device) through a pointer input device (eg, mouse input device). Custom Control) is preferably included.

According to another exemplary embodiment of the present invention, when the screen output unit provides a touch screen type key input interface, a user interface for inputting the user authentication information in the user authentication interface may include the user authentication information. It includes a button control or a custom control that displays two or more key data buttons (or icons) to be configured on the screen, and clicks and inputs two or more key data buttons (or icons) displayed on the screen. It is preferable to make it.

If a person having ordinary knowledge in the technical field to which the present invention belongs, a form for inputting (or selecting) the user authentication information from the client terminal 190 based on the information attribute of the user authentication information for the user authentication Since you will be familiar with the technical features of the form, a detailed description of the form form corresponding to the user authentication interface in FIG. 1 will be omitted for convenience.

According to another exemplary embodiment of the present invention, the user authentication interface may include input duration information of each key data constituting the user authentication information input through the user interface for checking a user right sharer through the keystroke clustering. Confirm keystroke information including one or more input interval information and pressure information, process the identified keystroke information according to a preset keystroke processing method, and link the processed keystroke information with the user authentication information; It is possible to further comprise a keystroke module for transmitting the generated keystroke-based user authentication information to the web server (100).

Here, the keystroke module is preferably included in the web page in the form of a script (or plug-in) associated with the user authentication interface.

The client terminal 190 provided with the web page including the user authentication interface inputs (or selects) user authentication information for the user authentication through the user authentication interface and transmits the web server through a GET / POST method. 100) characterized in that the transmission.

If the keystroke module is provided in the user authentication interface, the client terminal 190 receives one or more key data constituting the user authentication information, and inputs to each key data constituting the user authentication information. Keystroke information including at least one of duration information, input interval information, and pressure information is processed according to a check and preset keystroke processing method, and then the keystroke-based user is associated with the processed keystroke information and the user authentication information. When the authentication information is generated, it is possible to transmit the keystroke based user authentication information to the web server 100 through a GET / POST method, thereby the present invention is not limited.

Referring to FIG. 1, when the client terminal 190 transmits the user authentication information, the web server 100 may be connected to the web interface unit 105 to receive the user authentication information. 120 (or information receiving means) and the user authentication unit 135 (or user authentication means for authenticating the user by comparing the received user authentication information and the user authentication information stored in the user authentication D / B 180) It is characterized by consisting of).

When the client terminal 190 transmits the user authentication information input through the user authentication interface, the information receiver 120 may receive the user authentication information in association with the web interface unit 105. .

According to another exemplary embodiment of the present invention, input duration information, input interval information, and pressure for user authentication information input through the user authentication interface and at least one key data constituting the user authentication information are input from the client terminal 190. When the keystroke-based user authentication information including keystroke information including one or more information is transmitted, the information receiver 120 receives the keystroke-based user authentication information in association with the web interface unit 105. It is possible.

When the user authentication information is received through the information receiving unit 120, the user authentication unit 135 compares the received user authentication information with user authentication information stored in the user authentication D / B 180 and the user. Characterized in that the authentication.

When the keystroke-based user authentication information is received through the information receiving unit 120 according to an embodiment of the present invention, the information extraction unit 130 to be described later is a key for the user authentication information from the keystroke-based user authentication information. The stroke information is extracted, and the user authentication unit 135 compares the extracted keystroke information with keystroke pattern information (not shown) associated with the user authentication information or sets the extracted keystroke information in advance. The keystroke pattern for keystroke information on one or more key data constituting the user authentication information is substituted by applying the pattern calculation formula, applying to a predetermined pattern calculation rule, or performing geometric calculation processing. It is possible to further comprise authenticating the car, thereby limiting the present invention Not.

Referring to FIG. 1, the web server 100 accesses the web server 100 from the client terminal 190 via the web interface unit 105 and requests registration of user input information. Based on the web page operation unit 110 (or web page operation means) for generating a web page to be provided to the client terminal 190 (or extracted from the DBMS), and generated through the web page operation unit 110 (Or extracted) an interface providing unit 115 (or interface providing means) including an information registration interface for registering the user input information, characterized in that the web page operation unit 110 The processor may be configured to process the generated (or extracted) web page to be provided to the client terminal 190 in association with the web interface unit 105.

When the client terminal 190 requests the user input information registration by accessing the web server 100 through the web interface unit 105, the webpage operation unit 110 accesses the web server 100 to the user. A web page for checking a web page link to be provided to the client terminal 190 in response to an input information registration request, and for generating (or extracting) a web page corresponding to the checked web page link from the web page operation data. Identify the source and the web content, and generates (or extracts) a web page to be provided to the client terminal 190 by using the identified web page source and the web content.

When the web page operation unit 110 generates (or extracts) a web page to be provided to the client terminal 190, the generated web page is a web page for providing the user input information registration. In this case, the interface providing unit 115 generates (or extracts from the DBMS) an information registration interface including a keystroke module for checking user authority sharing through keystroke clustering of string information included in the user input information. And include the generated (or extracted) information registration interface in the web page generated (or extracted) through the web page operation unit 110 to provide the generated information registration interface to the client terminal 190. Use through keystroke clustering of character string information included in the user input information in the client terminal 190 When the program including the keystroke module for checking the right sharing is provided or is mounted in real time, the interface providing unit 115 includes the information registration interface including the keystroke module in the web page to the client. Processing to be provided to the terminal 190 may be omitted.

According to an embodiment of the present invention, the information registration interface preferably includes a user interface for inputting (or selecting) user input information through one or more form forms.

According to one embodiment of the invention, the user interface for inputting the user input information in the information registration interface, Edit control for inputting two or more key data constituting the string information included in the user input information (Edit Control) is preferably included.

According to another exemplary embodiment of the present invention, a user interface for inputting the user input information in the information registration interface may display two or more key data buttons (or icons) constituting character string information included in the user input information. A button control to display two or more key data buttons (or icons) displayed on the screen by clicking (for example, pressing a left button of a mouse input device) through a pointer input device (eg, a mouse input device). ) Or Custom Control.

According to another exemplary embodiment of the present invention, when the screen output unit provides a touch screen type key input interface, a user interface for inputting the user input information in the information registration interface is included in the user input information. Displays two or more key data buttons (or icons) constituting the generated string information on the screen, and clicks or enters two or more key data buttons (or icons) displayed on the screen. Control) is preferably included.

Those skilled in the art to which the present invention belongs, input (or select) the user input information in the client terminal 190 based on the information attribute of the user input information for registering the user input information. Since it will be familiar with the technical features of the form form for, the detailed description of the form form corresponding to the information registration interface in FIG. 1 will be omitted for convenience.

In addition, the information registration interface, each constituting the string information included in the user input information input through the user interface for checking the user authority sharing through keystroke clustering for the string information included in the user input information Confirm keystroke information including one or more input duration information, input interval information, and pressure information for key data, process the identified keystroke information according to a preset keystroke processing method, and process the processed keystrokes. And a keystroke module for transmitting the keystroke-based user input information generated in association with the information and the user input information to the web server 100.

Here, the keystroke module is preferably included in the web page in the form of a script (or plug-in) associated with the information registration interface.

The client terminal 190 provided with the web page including the information registration interface receives one or more key data constituting string information included in user input information for registering the user input information through the information registration interface. The keystroke information including one or more input duration information, input interval information, and pressure information for each key data constituting the character string information included in the user input information is processed according to a predetermined keystroke processing method. After the keystroke-based user input information is generated by linking the processed keystroke information with the user input information, the keystroke-based user input information is transmitted to the web server 100 through a GET / POST method. It is done.

According to another exemplary embodiment of the present invention, when the client terminal 190 includes a program including the keystroke module, the client terminal 190 transmits the generated keystroke-based user input information to the program and the web server. It is preferable to include in the keystroke based user input information data structure defined between (100) and transmit to the web server (100).

According to an exemplary embodiment of the present invention, the keystroke-based user input information is allocated to the client terminal 190 in order to easily check the terminal address information allocated to the client terminal 190 in the web server 100. It is preferable that the terminal address information is further included.

Referring to FIG. 1, when the client terminal 190 transmits the keystroke based user input information, the web server 100 links the keystroke based user input information with the web interface unit 105. A receiving information receiving unit 120 (or information receiving means), an information extracting unit 130 (or information extracting means) extracting the user input information and keystroke information from the received keystroke based user input information, A terminal address checking unit 140 (or terminal address checking unit) for checking terminal address information allocated to the client terminal 190 which has transmitted the keystroke-based user input information, and the user authentication D / B 180; Check the user information corresponding to the user input information by linking, and link the checked user information with the extracted user input information to the DBMS. User information storage section 125 for storing the registration data, including a (or information storage medium) is characterized in that formed.

Input duration information, input interval information, and pressure information for one or more key data constituting user input information input through the information registration interface and character string information included in the user input information in the client terminal 190 When the keystroke-based user input information including the keystroke information included above is transmitted, the information receiver 120 may receive the keystroke-based user input information in association with the web interface unit 105. .

When the keystroke based user input information is received through the information receiver 120, the information extractor 130 extracts the user input information from the keystroke based user input information and is included in the user input information. And extracting keystroke information including one or more input duration information, input interval information, and pressure information about one or more pieces of key data constituting character string information.

When the user input information and the keystroke information are extracted from the keystroke-based user input information, the information storage unit 125 associates with the user authentication D / B 180 to obtain user information corresponding to the user input information. And confirming and storing the checked user information and the extracted user input information in user registration data provided in the DBMS, wherein the user registration data is stored through the webpage operation unit 110. It is preferably provided to one or more other client terminals 190.

If the web server 100 is a search server and the user input information includes a search keyword, it may be omitted that the information storage unit 125 stores the user input information. In this case, the web server The search processing unit (not shown) provided in the 100 provides a search service provided to the client terminal 190 by checking the search result data through the search keyword.

When the keystroke-based user input information is received through the information receiving unit 120, the terminal address checking unit 140 receives the keystroke-based user input information from the communication channel in association with the web interface unit 105. Characterized in that the terminal address information assigned to the client terminal 190 transmitted.

When the keystroke-based user input information includes terminal address information allocated to the client terminal 190 according to an embodiment of the present invention, the terminal address verification unit 140 may be configured to generate the keystroke-based user input information from the keystroke-based user input information. It is possible to confirm the terminal address information assigned to the client terminal 190.

The terminal address information may include one or more IP address information and MAC address information allocated to the client terminal 190. The client terminal 190 which transmits the keystroke-based user input information may be configured to include the terminal address information. It performs the function of identifying identifier.

If the terminal address information includes MAC address information assigned to the client terminal 190 according to an embodiment of the present invention, the terminal address information performs an identifier function for uniquely identifying the client terminal 190. It is desirable to.

According to another exemplary embodiment of the present invention, when the terminal address information includes IP address information allocated to the client terminal 190, the terminal address information may include a fixed IP address or a dynamically allocated IP address. In order to confirm this, an IP address for the terminal address information is searched (for example, a WHOIS query). If the IP address is not managed by the ISP, the terminal address information is identified as a fixed IP address, and the IP address is When managed by an ISP, the terminal address information is confirmed to include a dynamically allocated IP address.

If the terminal address information is a fixed IP address, the terminal address information preferably performs an identifier function for uniquely identifying the client terminal 190.

On the other hand, if the terminal address information is a dynamically allocated IP address, the terminal address information is not easy to uniquely identify the client terminal 190. In this case, the terminal address verification unit 140 is the client terminal 190. It is preferable to uniquely identify the client terminal 190 using other terminal address information (eg, MAC address) or another identifier (eg, cookie) that uniquely identifies.

Referring to FIG. 1, the web server 100 extracts character string information included in the user input information through the information extracting unit 130 from the keystroke based user input information received through the information receiving unit 120. When keystroke information corresponding to one or more pieces of key data is extracted, one or more pieces of input duration information, input interval information, and pressure information of one or more pieces of key data constituting character string information included in the user input information are included. The keystroke information is stored in the storage medium 185 in association with the string information included in the user input information, and the terminal address information confirmed by the terminal address checking unit 140 is further linked to the storage medium 185. The same terminal of the keystroke information storage unit 150 (or keystroke information storage means) for storing and the character string information stored in the storage medium 185 N (N> 1) string information including the same word (or sentence or index word) stored in association with the information and stored for a predetermined number of times for a predetermined period of time, and N associated with the identified N string information The number of keystroke information, and among the identified N keystroke information, one or more pattern target information among input duration information, input interval information, and pressure information for each key data included in the keystroke information is distributed within a predetermined range. A keystroke cluster identification unit 145 (or keystroke cluster identification means) for identifying m (m> = 1) keystroke clusters containing n (n <= N) pattern target keystroke information And m keystrokes for m keystroke clusters using the n keystroke information included in each of the identified m keystroke clusters. A keystroke pattern information generation unit 155 for generating pattern information (or keystroke pattern information generation means) and a keystroke pattern information storage unit for storing the generated m keystroke pattern information in a storage medium 185 ( 160 (or keystroke pattern information storage means).

From the keystroke-based user input information received through the information receiver 120, keystroke information corresponding to one or more key data constituting string information included in the user input information is extracted through the information extractor 130. The keystroke information storage unit 150 configures one or more key data for configuring string information included in the user input information to confirm sharing of user rights through keystroke clustering for the string information included in the user input information. And keystroke information including one or more input duration information, input interval information, and pressure information on the storage medium 185 in association with character string information included in the user input information.

If the terminal address information for uniquely identifying the client terminal 190 is confirmed by the terminal address verification unit 140, the keystroke information storage unit 150 stores the terminal address information in the storage medium 185. It is characterized in that to further save the connection.

After the extracted keystroke information is stored in the storage medium 185 in association with the string information included in the user input information by the keystroke information storage unit 150, the keystroke cluster identification unit 145 Confirm N (N> 1) string information including the same word (or sentence or index word) stored in association with the same terminal address information among the string information stored in the storage medium 185 and stored a predetermined number of times for a predetermined period of time. And identifying N keystroke information associated with the identified N string information.

Here, the predetermined period refers to a period up to a recent past predetermined point of time based on a current time point for identifying the keystroke cluster, and the predetermined number of times indicates the minimum number of keystroke information required to generate the keystroke pattern information. It is preferable to comprise.

If the N (N> 1) keystroke information stored more than a predetermined number of times during the predetermined period is confirmed from the storage medium 185, the keystroke cluster identification unit 145 may determine the key among the identified N keystroke information. Determining one or more pattern target information among input duration information, input interval information, and pressure information for each key data included in the stroke information. When the pattern target information is preset, the pattern target information is determined. May be omitted.

Here, the pattern object information preferably includes input duration information and input interval information, or preferably includes input duration information, input interval information, and pressure information.

Thereafter, the keystroke cluster identification unit 145 checks n (n <= N) pattern target keystroke information in which the determined (or predetermined) pattern target information is distributed within a predetermined range.

Here, the n (n <= N) pattern target keystroke information corresponds to one keystroke cluster, and the minimum number of keystroke information required for generating the keystroke pattern information is obtained. It is preferable to comprise.

According to the present invention, the keystroke cluster identification unit 145 may identify m (m> = 1) keystroke clusters including n pattern target keystroke information.

When the m keystroke clusters are identified by the keystroke cluster identification unit 145, the keystroke pattern information generation unit 155 may output the n keystroke information included in each of the identified m keystroke clusters. M keystroke pattern information corresponding to the m keystroke clusters is generated.

According to an exemplary embodiment of the present invention, the keystroke pattern information generation unit 155 may generate keys for m keystroke clusters by using each of n keystroke information included in the identified m keystroke clusters. It is preferable to generate m keystroke pattern information including a stroke average value and a variance value.

According to another exemplary embodiment of the present invention, the keystroke pattern information generation unit 155 substitutes each of the n keystroke information included in the identified m keystroke clusters into a preset pattern calculation formula, Alternatively, it is preferable to generate m keystroke pattern information by performing substitution / combination according to a preset pattern calculation rule or by processing a geometric operation using a preset graph. Here, the predetermined pattern calculation formula, pattern calculation rule, and geometric calculation may be performed by converting the n keystroke information into a variable (or a geometric graph) including a constant value and a threshold value determined by one of ordinary skill in the art of implementing the present invention. It is preferable to comprise processing.

According to another exemplary embodiment of the present invention, the keystroke pattern information generation unit 155 multiplies each of the n keystroke information included in the identified m keystroke clusters by each predetermined weight. It is preferable to generate m keystroke pattern information by substituting a predetermined pattern calculation formula, replacing / combining according to a predetermined pattern calculation law, or processing a geometric operation using a preset graph. In this case, the weight is preferably set by the person skilled in the art to set more weights to the information item that acts as an important factor in generating the keystroke pattern information, and the preset pattern calculation formula, pattern calculation rule and geometric calculation are described in the present invention. It is preferable to include processing the n keystroke information into a variable (or a geometric graph) including a constant value and a threshold value determined by a person skilled in the art.

When m keystroke pattern information is generated by the keystroke pattern information generation unit 155, the keystroke pattern information storage unit 160 stores the generated m keystroke pattern information on the storage medium 185. Characterized in that.

According to the exemplary embodiment of the present invention, the keystroke pattern information storage unit 160 stores the generated m keystroke pattern information on the storage medium 185 in association with the user input information, or the generated m The keystroke pattern information is preferably stored in the storage medium 185 in association with the n keystroke information included in the keystroke cluster used to generate the respective keystroke pattern information.

Referring to FIG. 1, when two or more keystroke pattern informations are generated by the keystroke pattern information generation unit 155, the web server 100 compares the generated two or more keystroke pattern informations. If the pattern similarity confirming unit 170 (or pattern similarity checking means) for checking the keystroke pattern similarity information with respect to the above keystroke pattern information and the checked keystroke pattern similarity information are equal to or greater than a preset sharing criterion similarity, The user authority (for example, the user terminal 190 which inputs user authentication information or user input information) by checking two or more comparison keystroke pattern information as one keystroke pattern information is performed by only one user. It is confirmed that it is used, and the checked keystroke pattern similarity information is preset. The client terminal 190 that checks the two or more comparison target keystroke pattern information as two or more different keystroke pattern information and inputs the user authority (eg, user authentication information or user input information). Share confirmation unit 175 (or sharing confirmation means) for confirming that the usage rights) are shared by two or more users, and a client terminal for inputting the user rights (for example, user authentication information or user input information). (190) characterized in that it comprises a share discrimination information storage unit 165 (sharing discrimination information storage means) for storing the share discrimination information for the use authority) in the storage medium 185 in association with the user input information. .

When two or more pieces of keystroke pattern information are generated by the keystroke pattern information generating unit 155, the pattern similarity checking unit 170 may generate the pattern similarity calculation formula (or a calculation rule or a geometrical operation). The keystroke pattern similarity information of the two or more keystroke pattern information is confirmed by comparing the generated two or more keystroke pattern information.

If the keystroke pattern similarity information is confirmed, the sharing check unit 175 determines that the two or more comparison target keystroke pattern information is one when the identified keystroke pattern similarity information is equal to or greater than a preset sharing determination criterion similarity. It is characterized in that the keystroke pattern information of the, and in this case, the sharing confirmation unit 175 is shared by the user authority (for example, the user terminal 190, the authority to use the user authentication information, or user input information input) It is desirable to make sure that it is being used by only one user.

In addition, when the identified keystroke pattern similarity information is determined to be equal to or less than a preset sharing criterion similarity, the sharing checker 175 identifies the two or more comparison target keystroke pattern information as two or more different keystroke pattern information. In this case, the sharing confirmation unit 175 is the user authority (for example, the user authentication information, or the user terminal 190 usage authority for inputting user input information) is shared by two or more users It is preferable to confirm that it is.

In addition, when only one keystroke pattern information is generated by the keystroke pattern information generation unit 155, the sharing confirmation unit 175 inputs the user authority (eg, user authentication information or user input information). It is desirable to confirm that the client terminal 190 usage rights) are not shared and are being used by only one user.

According to another exemplary embodiment of the present invention, the sharing confirmation unit 175 is a key identified by the keystroke cluster identification unit 145 regardless of the generation of keystroke pattern similarity information by the pattern similarity identification unit 170. When the number of stroke clusters or the number of keystroke pattern information generated by the keystroke pattern information generation unit 155 is two or more, the user authority (for example, a client terminal for inputting user authentication information or user input information) 190) it is possible to confirm that the right of use) is being shared by two or more users, by which the present invention is not limited.

When the sharing confirmation unit 175 confirms whether or not to share the user right (eg, user authentication information or a right to use the client terminal 190 to input user input information), the sharing determination information storage unit 165 ) Generates share determination information on the user's authority (eg, user authentication information or the authority to use the client terminal 190 for inputting user input information), and associates the generated share determination information with the user input information. The storage medium 185 is stored.

2 is a diagram illustrating a functional configuration of a keystroke module 200 for checking user authority sharing through keystroke clustering of string information included in user input information according to an embodiment of the present invention.

In more detail, FIG. 2 is included in an information registration interface provided from the web server shown in FIG. 1 to the client terminal for checking user authority sharing through keystroke clustering of character string information included in user input information. A keystroke module 200 provided to a client terminal or a program provided in the client terminal for checking user authority sharing through keystroke clustering for string information included in user input information and outputting an information registration interface. As for the functional configuration of the keystroke module 200, those skilled in the art to which the present invention pertains, the key to the string information contained in the user input information by referring to and / or modifying the present Figure 2 User Rights Sharing through Stroke Clustering Various implementation methods (eg, some components may be omitted, subdivided, or combined) for the functional configuration of the keystroke module 200 may be inferred, but the present invention may infer all the implementation methods inferred from the above. It is made, including, and the technical features are not limited only to the implementation method shown in FIG.

According to an embodiment of the present invention, the client terminal outputs an information registration interface including a user interface for inputting user input information for checking user authority sharing through keystroke clustering of string information included in the user input information. A screen output unit 235 for processing, a key input unit 240 for key input processing of the user input information through the information registration interface, and a key generated based on a keystroke corresponding to the user input information And a communication processor 245 for transmitting stroke-based user input information to the web server, and if the person of ordinary skill in the art belongs to the present invention, a screen output unit provided in the client terminal. 235, the technical features of the key input unit 240 and the communication processing unit 245 Since you are read, a detailed description thereof will be omitted for convenience.

According to the exemplary embodiment of the present invention, the keystroke for the user input information input through the key input unit 240 may be expressed according to the wrist / finger joint characteristics of the user, the key input habit, and the key input speed. It is preferred to include a natural keystroke (Natural Keystroke) corresponding to the user's natural key input behavior pattern.

According to another exemplary embodiment of the present invention, the keystroke for the user input information input through the key input unit 240 is a key input behavior pattern artificially manipulated by the user irrespective of his or her natural key input behavior pattern. It is preferable to include an artificial keystroke (Artificial Keystroke) corresponding to the.

Referring to FIG. 2, the keystroke module 200 receives user input information for checking user authority sharing through keystroke clustering of character string information included in the user input information through the screen output unit 235. An interface output unit 205 for outputting an information registration interface including an input user interface, and two or more key data input based on a user interface included in the information registration interface through the key input unit 240; When the information input unit 210 for input processing of the user input information, and the information input unit 210 input processing one or more key data constituting the character string information included in the user input information through the key input unit 240, When input continues for each key data constituting character string information included in the user input information A keystroke information checking unit 215 for checking keystroke information including one or more of duration information, input interval information, and pressure information; and a predetermined keystroke based on the checked keystroke information. Keystroke information processing unit 220 for processing according to the processing method, and keystroke-based user input information for generating keystroke-based user input information to be transmitted to the web server in connection with the processed keystroke information to the user input information And a generating unit 225 and an information transmitting unit 230 for transmitting the generated keystroke-based user input information to the web server through the communication processing unit 245.

The interface output unit 205 inputs user input information for checking user authority sharing through keystroke clustering of character string information included in the user input information through the screen output unit 235 provided in the client terminal. And outputting an information registration interface including a user interface.

According to an embodiment of the present invention, the information registration interface, in addition to the user interface for inputting the user input information, general input required for checking the user authority sharing through keystroke clustering on the string information included in the user input information. It is also possible to further comprise a user interface for inputting information (eg, input information not included in keystroke based user input information), thereby making it clear that the present invention is not limited.

According to one embodiment of the invention, the user interface for inputting the user input information in the information registration interface, Edit control for inputting two or more key data constituting the string information included in the user input information (Edit Control) is preferably included.

According to another exemplary embodiment of the present invention, a user interface for inputting the user input information in the information registration interface may display two or more key data buttons (or icons) constituting character string information included in the user input information. And a button control for inputting two or more key data buttons (or icons) displayed on the screen by clicking (eg, pressing a left button of a mouse input device) through a pointer input device (eg, a mouse input device). ) Or Custom Control.

According to another exemplary embodiment of the present invention, when the screen output unit 235 provides a touch screen type key input interface, the user interface for inputting the user input information in the information registration interface is the user. Button control that displays two or more key data buttons (or icons) constituting character string information included in the input information, and clicks and inputs two or more key data buttons (or icons) displayed on the screen. Or it is preferably made to include a custom control (Custom Control).

When the information registration interface is displayed on the screen through the interface output unit 205, the information input unit 210 uses a key input unit 240 provided in the client terminal to provide a key for string information included in the user input information. Characterized in that the input processing of one or more key data constituting the character string information included in the user input information for confirming the user authority sharing through stroke clustering.

According to an embodiment of the present invention, general input information (eg, not included in keystroke-based user input information) necessary for confirming user authority sharing through keystroke clustering of string information included in the user input information in the information registration interface is provided. In the case where the user interface is further included, the information input unit 210 may further process one or more key data corresponding to the general input information through the key input unit 240.

When the information input unit 210 inputs one or more key data constituting character string information included in the user input information through the key input unit 240, the keystroke information check unit 215 may execute the key input unit ( In operation 240, keystroke information including one or more input duration information, input interval information, and pressure information for each key data constituting the character string information included in the user input information may be identified.

The input duration information may include time interval information that is maintained in a state in which each key corresponding to each key data constituting character string information included in the user input information is pressed.

According to the exemplary embodiment of the present invention, the input duration information includes a time when a key corresponding to each key data constituting character string information included in the user input information is down from a time when the corresponding key is up. It is preferable that the time difference information is included.

For example, when the time when the key corresponding to the specific key data is down is called T_down, when the time when the key corresponding to the key data is down is called T_up and when the input duration is called T_duration, input duration information, It is calculated through a formula such as "T_duration = T_up-T_down".

According to the exemplary embodiment of the present invention, the key data constituting the character string information included in the user input information must be keyed down after the key is down, so that the input duration information always has a positive number.

The input interval information is a key corresponding to the previous key data constituting the string information included in the user input information when a key corresponding to the second or more key data constituting the string information included in the user input information is pressed. It is characterized in that it comprises the time interval information from the time after the pressing until the key corresponding to the next key data is pressed.

According to an embodiment of the present invention, the input interval information is configured to configure string information included in the user input information when a key corresponding to the second or more key data constituting the string information included in the user input information is pressed. It is preferable to include the time difference information from the time when the key corresponding to the previous key data is down after the up time to the time when the next key is down.

For example, among two or more pieces of key data constituting the character string information included in the user input information, a time at which a key corresponding to the previous key data is up is called T (n-1) _up, and a key corresponding to the next key data is When the down time is called T (n) _down and the input interval information is called T_interval, the input interval information is calculated through a calculation formula such as "T_interval = T (n) _down-T (n-1) _up". do.

According to an exemplary embodiment of the present invention, when the key corresponding to the previous key data is up and the key corresponding to the next key data is down among two or more key data constituting the character string information included in the user input information, Preferably, the input interval information has positive interval information including a positive number.

According to another embodiment of the present invention, among the two or more key data constituting the string information included in the user input information according to the wrist / finger joint characteristics, key input habits, key input speed of the user corresponding to the previous key data If the key corresponding to the next key data is down before the up key is up after being down, and the key corresponding to the next key data is down before the key corresponding to the previous key data is up, the input The interval information preferably has negative interval information including negative numbers.

Here, the negative interval information includes time interval information in which a key corresponding to the previous key data and a key corresponding to the next key data are simultaneously pressed among two or more key data constituting the character string information included in the user input information. It is preferable to comprise, and it is possible to continue two or more times.

If a third key of the three or more pieces of key data constituting the character string information included in the user input information is down before the first key and the second key are both down, the input interval between the first key and the second key Preferably, the information includes negative interval information from the first key up until the second key is down, and the input interval information between the second key and the third key is the third key after the second key is up. It is preferable to include the negative interval information until the down.

According to another exemplary embodiment of the present invention, among two or more pieces of key data constituting the character string information included in the user input information, the time corresponding to the previous key data is down and then up corresponds to the next key data. The time at which the key is down may be processed at the same time within a predetermined reference time range. In this case, the input interval information may have a zero number (= Zero Interval).

When the pressure information is provided with a pressure sensor on each key button constituting a key input device provided in the client terminal for inputting each key data constituting character string information included in the user input information, the user In the process of inputting each key corresponding to each key data constituting the character string information included in the input information, key pressure information sensed by the pressure sensor is preferably included.

According to an exemplary embodiment of the present invention, the pressure information may include maximum peak pressure information for an input duration of pressing of each key corresponding to each key data constituting character string information included in the user input information. desirable.

According to another exemplary embodiment of the present invention, the pressure information is a pressure sensed by a predetermined reference time unit for an input duration in which each key corresponding to each key data constituting character string information included in the user input information is pressed. It is preferred to include the average pressure value for the information.

According to another exemplary embodiment of the present invention, the pressure information is sensed by a predetermined reference time unit for each input key pressed time corresponding to each key data constituting character string information included in the user input information. It is preferable that the pressure information calculated by substituting a plurality of pieces of pressure information into a preset pressure calculation formula (for example, an integral formula) is included.

According to an embodiment of the present invention, general input information (eg, not included in keystroke-based user input information) necessary for confirming user authority sharing through keystroke clustering of string information included in the user input information in the information registration interface is provided. If not included, the keystroke information check unit 215 reads the control information assigned to the caret on the information registration interface to input the information based on the information registration interface. The user input information is checked among a plurality of pieces of information input through the unit 210, and input duration information, input interval information, and pressure information for each key data constituting character string information included in the user input information are one. It is desirable to check the keystroke information included above. Do.

When keystroke information including one or more input duration information, input interval information, and pressure information for each key data constituting the character string information included in the user input information is confirmed through the keystroke information checking unit 215, The keystroke information processing unit 220 presets keystroke information including one or more input duration information, input interval information, and pressure information for each key data constituting the character string information included in the user input information. It is characterized by processing according to the processing method.

According to the exemplary embodiment of the present invention, the keystroke information processing unit 220 may process the input duration information and the input interval information of the checked keystroke information in millisecond units, wherein the time unit is Various modifications can be made according to the intention of those skilled in the art, and the present invention is characterized by including all the modified methods described above.

For example, when the user input information includes a number such as "1234", the input duration information of "1" is 500ms, the input duration information of "2" is 450ms, and the input duration information of "3" is 400ms. , Input duration information of "4" is processed in the form of 500ms, input interval information of "1" and "2" is 300ms, input interval information of "2" and "3" is 500ms, "3" And input interval information of " 4 " is preferably processed into a form such as 400 ms.

According to another exemplary embodiment of the present invention, the keystroke information processing unit 220 may process the input duration information and the input interval information of the checked keystroke information into a predetermined number of reference unit times, where Preferably, the reference unit time includes a minimum key repetition time, and according to the intention of the person skilled in the art, the reference unit time may be modified in various ways, and the present invention includes all the modified methods. It is characterized by.

For example, when the user input information includes a number such as "1234" and the reference unit time information is 10 ms, 50 pieces of input duration information of "1" are 45 pieces of input duration information of "2". The input duration information of "3" is processed into 40 pieces, the input duration information of "4" into 50 pieces, and the input interval information of "1" and "2" is 30 pieces, "2" and 50 pieces of input interval information of "3" and 40 pieces of input interval information of "3" and "4" are preferably processed.

According to another exemplary embodiment of the present invention, the keystroke information processing unit 220 preferably processes the input duration information and the input interval information of the checked keystroke information into a preset threshold time interval value. Here, the threshold time and the number of critical time intervals can be variously modified according to the intention of those skilled in the art, and the present invention is characterized by including all the modified implementation method.

For example, the user input information includes a number such as "1234", and the threshold time interval value is "0" which is 299 ms or less, 399 to 300 ms "1", 400 to 499 ms "2", 500 ms to 599 ms "3", 699 ms to 600 ms to "4", 700 ms to 799 ms to "5", 800 ms to 899 ms to "6", 900 ms to 999 ms to "7", 1000 ms to "8" or more The input duration information is '3', the input duration information of '2' is '2', the input duration information of '3' is '2', and the input duration information of '4' is '3'. And the input interval information of "1" and "2" is' 1 ', the input interval information of "2" and "3" is' 3', and the input interval information of "3" and "4" is' It is preferable to process in the form like 2 '.

According to the exemplary embodiment of the present invention, the keystroke information processing unit 220 preferably processes the sensor-specific sensing data sensed by the pressure sensor into one unified pressure unit (eg, Pascal).

When the identified keystroke information is processed by the keystroke information processing unit 220 according to a preset keystroke processing method, the keystroke based user input information generation unit 225 may generate the processed keystroke information and the keystroke information. The keystroke-based user input information to be transmitted to the web server may be generated by linking the user input information input through the information input unit 210.

According to an embodiment of the present invention, when the client terminal and the web server are connected to a communication channel through a Hyper-Text Transfer Protocol (HTTP) compatible protocol, the keystroke-based user input information may be generated by the generation unit of the user input information and keystrokes. It is preferable to generate (or combine) keystroke based user input information for transmitting information to the web server in a GET / POST method by combining (or combining) information according to a preset combination (or combination) method.

Here, the combination (or combination) of the user input information and the keystroke information can be implemented in various modifications according to the intention of those skilled in the art, and it is apparent that the present invention includes all the inferred implementation methods. It is.

For example, the user input information includes a number such as "1234", the keystroke information includes input duration information and input interval information in milliseconds, and the input duration information of "1" is 500ms, "2". Input duration information of "450ms", input duration information of "3" is 400ms, input duration information of "4" is 500ms, input interval information of "1" and "2" is 300ms, "2" And input interval information of "3" is 500ms, and input interval information of "3" and "4" is 400ms. The keystroke-based user input information may be generated as "1234 & 500.450.400.500: 300.500.400". The keystroke-based user input information may be generated in various forms. In addition, the keystroke-based user input information may be generated in various forms, for example, "1234 & 500 (300). 450 (500). 400 (400).

According to another embodiment of the present invention, when the client terminal and the web server are connected to the communication channel according to the communication protocol defined by the web server, the keystroke-based user input information generation unit generates the user input information and keystroke information It is preferable to generate keystroke based user input information for transmission to the web server by being included in the keystroke based user input information data structure defined in the communication protocol.

For example, the keystroke-based user input information data structure defined in the web server includes a structured data structure such as "struct data {char character; int duration; int interval; int pressure};" The input duration information of "1" is 500ms and the input duration information of "2" includes a number such as "1234", and the keystroke information includes input duration information and input interval information in milliseconds. 450ms, input duration information of "3" is 400ms, input duration information of "4" is 500ms, input interval information of "1" and "2" is 300ms, input interval of "2" and "3" If the information is 500ms, and the input interval information of "3" and "4" is 400ms, the input duration information and the input interval in data.character, data.duration, data.interval, data.pressure of the structured data structure To transfer the information to the web server And the stroke-based user input information can be generated, in addition it is possible that the key stroke-based input user information is generated by the data structures of various types.

For example, the keystroke-based user input information data structure defined in the web server may be the same as "1234 & 500.450.400.500: 300.500.400" or "1234 & 500 (300) .450 (500) .400 (400) .500". It may also include a data structure, whereby the present invention is not limited.

According to another exemplary embodiment of the present invention, the keystroke-based user input information may include a keystroke-based user separated by the generation unit to transmit the user input information and the processed keystroke information to the web server through a separate protocol. It is possible to generate input information, by which the present invention is not limited.

When the keystroke-based user input information to be transmitted to the web server is generated through the keystroke-based user input information generator 225, the information transmitter 230 may communicate with the communication processor 245 provided in the client terminal. The generated keystroke based user input information is transmitted to the web server.

According to an exemplary embodiment of the present invention, when an encryption module (not shown) is provided in the client terminal, the information transmitter 230 receives the generated keystroke based user input information through the encryption module (not shown). It is possible to encrypt and transmit to a web server, whereby the present invention is not limited.

3 is a diagram illustrating a user authentication process for registering user input information according to an embodiment of the present invention.

In more detail, FIG. 3 illustrates a request for a user authentication interface for user authentication for registering user input information by accessing a web server shown in FIG. 1 using an HTTP-compatible protocol from a client terminal having one or more browser programs. Correspondingly, the web server provided from the web server to the client terminal is provided to the client terminal including the user authentication interface, and correspondingly, the user terminal inputs user authentication information through the user authentication interface (or If a user having ordinary knowledge in the technical field to which the present invention pertains, the present invention relates to a process of authenticating whether the user can register the user input information in the web server. By referring to and / or modifying Figure 3 Various implementation methods for the user authentication process for registering the user input information may be inferred, but the present invention includes all the implementation methods inferred and is not limited to the implementation method shown in FIG.

For example, if the web server shown in FIG. 1 does not undergo user authentication to register the user input information, the user authentication process shown in FIG. 3 may be omitted, and the present invention is not limited thereto.

In the following figure 3, the client terminal shown in FIG. 1 is referred to as " terminal "

Referring to FIG. 3, the terminal accesses the web server through a communication network to connect a communication channel through an HTTP compatible protocol (300), and transmits a web page link to the web server through the communication channel to transmit one or more webs. A page is requested (305), and in response, the web server generates (or extracts) a web page corresponding to the web page link (310).

When the web page is generated (or extracted), if the user authentication interface for user authentication for registering user input information is provided to the terminal through the web page (315), the web server is generated (or extracted). The web page is transmitted to the terminal through the communication channel and output (320), and the terminal then selects (or clicks) any one or more web page links included in the web page to transmit to the web server. Repeat the process.

On the other hand, when generating (or extracting) the web page, if the user authentication interface for user authentication for registering user input information through the web page is provided to the terminal (315), the web server is generated (or extracted). A web page is processed to include a user authentication interface for user authentication for registering the user input information (325), and a web page including the user authentication interface is transmitted to the terminal through the communication channel and output (330). ).

According to an embodiment of the present invention, the user authentication interface preferably comprises a user interface for inputting (or selecting) user authentication information through one or more form forms.

According to an embodiment of the present invention, a user interface for inputting the user authentication information in the user authentication interface includes an edit control for inputting two or more key data constituting the user authentication information. It is preferable to make.

According to another embodiment of the present invention, the user interface for inputting the user authentication information in the user authentication interface, and displays two or more key data buttons (or icons) constituting the user authentication information on the screen, Button control or custom control that inputs two or more key data buttons (or icons) displayed on the screen by clicking (eg, pressing the left button of the mouse input device) through a pointer input device (eg, mouse input device). Custom Control) is preferably included.

According to another exemplary embodiment of the present invention, when the screen output unit 235 provides a touch screen type key input interface, the user interface for inputting the user authentication information in the user authentication interface is the user. Display two or more key data buttons (or icons) constituting authentication information on a screen, and click or enter two or more key data buttons (or icons) displayed on the screen to control buttons or custom controls. It is preferable to comprise).

If one of ordinary skill in the art to which the present invention belongs, the technical description of the form form for inputting (or selecting) the user authentication information in the terminal based on the information attribute of the user authentication information for the user authentication Since it will be familiar with the features, a detailed description of the form form corresponding to the user authentication interface in FIG. 3 will be omitted for convenience.

According to another exemplary embodiment of the present invention, the user authentication interface may include input duration information of each key data constituting the user authentication information input through the user interface for checking a user right sharer through the keystroke clustering. Confirm keystroke information including one or more input interval information and pressure information, process the identified keystroke information according to a preset keystroke processing method, and link the processed keystroke information with the user authentication information; It is possible to further comprise a keystroke module 200 for transmitting the generated keystroke-based user authentication information to the web server.

Here, the keystroke module 200 is preferably included in the web page in the form of a script (or plug-in) associated with the user authentication interface.

Thereafter, the terminal determines whether user authentication information for user authentication for registering the user input information is input (or selected) through the user authentication interface included in the web page (335).

If the user authentication information for user authentication for registering the user input information is not input (or selected) in the terminal (340), the terminal selects one of one or more web page links included in the web page ( Or click) to repeat the transmission to the web server.

On the other hand, when the user authentication information for user authentication for registering the user input information is input (or selected) in the terminal (340), the terminal communicates the user authentication information input (or selected) through the user authentication interface. The channel is transmitted to the web server through a channel (345).

If the keystroke module 200 is provided in the user authentication interface, the terminal inputs one or more key data constituting the user authentication information, and continues inputting each key data constituting the user authentication information. Keystroke information including at least one of time information, input interval information, and pressure information is confirmed and processed according to a predetermined keystroke processing method, and then keystroke based user authentication is performed by linking the processed keystroke information with the user authentication information. When the information is generated, it is possible to transmit the keystroke based user authentication information to the web server through a GET / POST method, thereby the present invention is not limited.

Thereafter, the web server compares the received user authentication information with user authentication information stored in the user authentication D / B to authenticate the user (350).

When the keystroke-based user authentication information is received through the information receiving unit according to an embodiment of the present invention, the information extraction unit described later extracts keystroke information on the user authentication information from the keystroke-based user authentication information. The web server compares the extracted keystroke information with keystroke pattern information (not shown) associated with the user authentication information, or substitutes the extracted keystroke information into the predetermined pattern calculation formula, or preset pattern. It is possible to further comprise the second authentication of the user by applying a keystroke pattern for the keystroke information for the one or more key data constituting the user authentication information by applying to the operation law, or geometric calculation processing The present invention is not limited thereby.

If the user is authenticated through the received user authentication information (355), the web server may perform a process of registering user input information.

4 is a diagram illustrating a process of transmitting and receiving keystroke-based user input information to confirm user authority sharing through keystroke clustering of string information included in user input information according to an embodiment of the present invention.

In more detail, FIG. 4 illustrates a method of registering user input information in the web server when a client terminal having one or more browser programs requests access to user input information by accessing the web server shown in FIG. 1 using an HTTP-compatible protocol. A keystroke module 200 for checking user authority sharing through keystroke clustering of string information included in user input information in an information registration interface included in a web page provided to the client terminal for the client terminal. If provided, corresponding duration information of two or more pieces of key data constituting string information included in user input information input through the information registration interface through the keystroke module 200 in response to the input, Interval information, pressure information Identifying keystroke information including one or more, and the process for generating and transmitting the keystroke-based user input information including the keystroke information, if the person of ordinary skill in the art to which the present invention belongs By referring to and / or modifying FIG. 4, various implementation methods for transmitting and receiving keystroke-based user input information to confirm user authority sharing through keystroke clustering of string information included in the user input information can be inferred. It will be appreciated that the present invention includes all implementation methods inferred above and is not limited to the implementation method illustrated in FIG.

In the following figure 4, the client terminal shown in FIG. 1 will be referred to as " terminal "

Referring to FIG. 4, the terminal accesses the web server through a communication network to connect a communication channel through an HTTP compatible protocol (400), and transmits a web page link to the web server through the communication channel to transmit one or more webs. A page is requested (405), and in response, the web server generates (or extracts) a webpage corresponding to the webpage link (410).

If the web page is not generated (or extracted), the web server does not provide an information registration interface for registering user input information through the web page (415). After transmitting to the terminal through a communication channel and outputting (420), the terminal repeats the process of selecting (or clicking) any one or more web page links included in the web page to the web server. .

On the other hand, when generating (or extracting) the web page, if the terminal provides an information registration interface for registering user input information through the web page (415), the web server may be configured for the character string information included in the user input information. Generate (or extract) an information registration interface including a keystroke module 200 for checking user authority sharing through keystroke clustering (425) and generate the generated (or extracted) information registration interface (425). Or it is included in the extracted) web page process to be provided to the terminal (430).

According to an embodiment of the present invention, the information registration interface preferably includes a user interface for inputting (or selecting) user input information through one or more form forms.

According to one embodiment of the invention, the user interface for inputting the user input information in the information registration interface, Edit control for inputting two or more key data constituting the string information included in the user input information (Edit Control) is preferably included.

According to another exemplary embodiment of the present invention, a user interface for inputting the user input information in the information registration interface may display two or more key data buttons (or icons) constituting character string information included in the user input information. And a button control for inputting two or more key data buttons (or icons) displayed on the screen by clicking (eg, pressing a left button of a mouse input device) through a pointer input device (eg, a mouse input device). ) Or Custom Control.

According to another exemplary embodiment of the present invention, when the screen output unit 235 provides a touch screen type key input interface, a user interface for inputting the user input information in the information registration interface may include: Button control that displays two or more key data buttons (or icons) constituting character string information included in the user input information, and clicks and inputs two or more key data buttons (or icons) displayed on the screen. Or it is preferably made to include a custom control (Custom Control).

If a person of ordinary skill in the art of the present invention belongs, form form for inputting (or selecting) the user input information in the client terminal based on the information attribute of the user input information for registering the user input information Since it will be familiar with the technical features of, the detailed description of the form form corresponding to the information registration interface in the Figure 4 will be omitted for convenience.

In addition, the information registration interface, each constituting the string information included in the user input information input through the user interface for checking the user authority sharing through the keystroke clustering for the string information included in the user input information Confirm keystroke information including one or more input duration information, input interval information, and pressure information for key data, process the identified keystroke information according to a preset keystroke processing method, and process the processed keystrokes. And a keystroke module 200 for transmitting the keystroke-based user input information generated in association with the information and the user input information to the web server.

Here, the keystroke module 200 is preferably included in the web page in the form of a script (or plug-in) associated with the information registration interface.

Thereafter, the terminal determines whether the user input information is input (or selected) through the information registration interface included in the web page (435).

If the user input information is not input (or selected) at the terminal (440), the terminal selects (or clicks) any one or more web page links included in the web page and transmits the same to the web server. Repeat the process.

On the other hand, if the user input information is input (or selected) in the terminal (440), the terminal is included in the input (or selected) user input information through the keystroke module 200 included in the information registration interface Keystroke information including one or more input duration information, input interval information, and pressure information for each key data constituting the character string information is checked (445).

The input duration information may include time interval information that is maintained in a state in which each key corresponding to each key data constituting character string information included in the user input information is pressed.

According to the exemplary embodiment of the present invention, the input duration information includes a time when a key corresponding to each key data constituting character string information included in the user input information is down from a time when the corresponding key is up. It is preferable that the time difference information is included.

For example, when the time when the key corresponding to the specific key data is down is called T_down, when the time when the key corresponding to the key data is down is called T_up and when the input duration is called T_duration, input duration information, It is calculated through a formula such as "T_duration = T_up-T_down".

According to the exemplary embodiment of the present invention, the key data constituting the character string information included in the user input information must be keyed down after the key is down, so that the input duration information always has a positive number.

The input interval information is a key corresponding to the previous key data constituting the string information included in the user input information when a key corresponding to the second or more key data constituting the string information included in the user input information is pressed. It is characterized in that it comprises the time interval information from the time after the pressing until the key corresponding to the next key data is pressed.

According to an embodiment of the present invention, the input interval information is configured to configure string information included in the user input information when a key corresponding to the second or more key data constituting the string information included in the user input information is pressed. It is preferable to include the time difference information from the time when the key corresponding to the previous key data is down after the up time to the time when the next key is down.

For example, among two or more pieces of key data constituting the character string information included in the user input information, a time at which a key corresponding to the previous key data is up is called T (n-1) _up, and a key corresponding to the next key data is When the down time is called T (n) _down and the input interval information is called T_interval, the input interval information is calculated through a calculation formula such as "T_interval = T (n) _down-T (n-1) _up". do.

According to an exemplary embodiment of the present invention, when the key corresponding to the previous key data is up and the key corresponding to the next key data is down among two or more key data constituting the character string information included in the user input information, Preferably, the input interval information has positive interval information including a positive number.

According to another embodiment of the present invention, among the two or more key data constituting the string information included in the user input information according to the wrist / finger joint characteristics, key input habits, key input speed of the user corresponding to the previous key data If the key corresponding to the next key data is down before the up key is up after being down, and the key corresponding to the next key data is down before the key corresponding to the previous key data is up, the input The interval information preferably has negative interval information including negative numbers.

Here, the negative interval information includes time interval information in which a key corresponding to the previous key data and a key corresponding to the next key data are simultaneously pressed among two or more key data constituting the character string information included in the user input information. It is preferable to comprise, and it is possible to continue two or more times.

If a third key of the three or more pieces of key data constituting the character string information included in the user input information is down before the first key and the second key are both down, the input interval between the first key and the second key Preferably, the information includes negative interval information from the first key up until the second key is down, and the input interval information between the second key and the third key is the third key after the second key is up. It is preferable to include the negative interval information until the down.

According to another exemplary embodiment of the present invention, among two or more pieces of key data constituting the character string information included in the user input information, the time corresponding to the previous key data is down and then up corresponds to the next key data. The time at which the key is down may be processed at the same time within a predetermined reference time range. In this case, the input interval information may have a zero number (= Zero Interval).

When the pressure information is provided with a pressure sensor on each key button constituting a key input device provided in the terminal for inputting each key data constituting character string information included in the user input information, the user input In the process of inputting each key corresponding to each key data constituting character string information included in the information, the key pressure information sensed by the pressure sensor is preferably included.

According to an exemplary embodiment of the present invention, the pressure information may include maximum peak pressure information for an input duration of pressing of each key corresponding to each key data constituting character string information included in the user input information. desirable.

According to another exemplary embodiment of the present invention, the pressure information is sensed by a preset reference time unit for each input key pressed time corresponding to each key data constituting character string information included in the user input information. It is preferred to include the average pressure value for the pressure information.

According to another exemplary embodiment of the present invention, the pressure information is sensed by a predetermined reference time unit for each input key pressed time corresponding to each key data constituting character string information included in the user input information. It is preferable that the pressure information calculated by substituting a plurality of pieces of pressure information into a preset pressure calculation formula (for example, an integral formula) is included.

If the keystroke information including one or more input duration information, input interval information, and pressure information for each key data constituting the character string information included in the user input information is checked (450), the terminal determines the keystroke. Through the module 200, the keystroke information including one or more input duration information, input interval information, and pressure information for each key data constituting the character string information included in the user input information is processed according to a preset processing method. (455).

According to an exemplary embodiment of the present invention, the terminal preferably processes the input duration information and the input interval information of the checked keystroke information in millisecond units, wherein the time unit is variously changed according to the intention of those skilled in the art. It is possible to carry out by modification, and the present invention is characterized in that it comprises all of the modified implementation method.

For example, when the user input information includes a number such as "1234", the input duration information of "1" is 500ms, the input duration information of "2" is 450ms, and the input duration information of "3" is 400ms. , Input duration information of "4" is processed in the form of 500ms, input interval information of "1" and "2" is 300ms, input interval information of "2" and "3" is 500ms, "3" And input interval information of " 4 " is preferably processed into a form such as 400 ms.

According to another exemplary embodiment of the present invention, the terminal preferably processes the input duration information and the input interval information of the checked keystroke information into a predetermined number of reference unit times, wherein the reference unit time is a minimum key. It is preferable to include a repetition time, the reference unit time can be carried out in a variety of modifications according to the intention of those skilled in the art, the present invention is characterized in that it comprises all the modified implementation method.

For example, when the user input information includes a number such as "1234" and the reference unit time information is 10 ms, 50 pieces of input duration information of "1" are 45 pieces of input duration information of "2". The input duration information of "3" is processed into 40 pieces, the input duration information of "4" into 50 pieces, and the input interval information of "1" and "2" is 30 pieces, "2" and 50 pieces of input interval information of "3" and 40 pieces of input interval information of "3" and "4" are preferably processed.

According to another exemplary embodiment of the present invention, the terminal preferably processes the input duration information and the input interval information of the checked keystroke information into a preset threshold time interval value, wherein the threshold time and the threshold time The number of sections can be variously modified and implemented according to the intention of those skilled in the art, and the present invention is characterized by including all the modified method described above.

For example, the user input information includes a number such as "1234", and the threshold time interval value is "0" which is 299 ms or less, 399 to 300 ms "1", 400 to 499 ms "2", 500 ms to 599 ms "3", 699 ms to 600 ms to "4", 700 ms to 799 ms to "5", 800 ms to 899 ms to "6", 900 ms to 999 ms to "7", 1000 ms to "8" or more The input duration information is '3', the input duration information of '2' is '2', the input duration information of '3' is '2', and the input duration information of '4' is '3'. And the input interval information of "1" and "2" is' 1 ', the input interval information of "2" and "3" is' 3', and the input interval information of "3" and "4" is' It is preferable to process in the form like 2 '.

According to an embodiment of the present invention, the terminal preferably processes the sensor-specific sensing data sensed by the pressure sensor into one unified pressure unit (eg, Pascal).

Thereafter, the terminal generates keystroke-based user input information by linking the processed keystroke information with the input (or selected) user input information through the keystroke module 200 (460).

According to an embodiment of the present invention, the terminal combines (or combines) the user input information and keystroke information according to a preset combination (or combination) scheme and transmits the keystrokes to the web server in a GET / POST scheme. It is desirable to generate the base user input information.

Here, the combination (or combination) of the user input information and the keystroke information can be implemented in various modifications according to the intention of those skilled in the art, and it is apparent that the present invention includes all the inferred implementation methods. It is.

For example, the user input information includes a number such as "1234", the keystroke information includes input duration information and input interval information in milliseconds, and the input duration information of "1" is 500ms, "2". Input duration information of "450ms", input duration information of "3" is 400ms, input duration information of "4" is 500ms, input interval information of "1" and "2" is 300ms, "2" And input interval information of "3" is 500ms, and input interval information of "3" and "4" is 400ms. The keystroke-based user input information may be generated as "1234 & 500.450.400.500: 300.500.400". The keystroke-based user input information may be generated in various forms. In addition, the keystroke-based user input information may be generated in various forms, for example, "1234 & 500 (300). 450 (500). 400 (400).

Thereafter, the terminal transmits the generated keystroke based user input information to the web server through the communication channel through the keystroke module 200 (465).

According to an embodiment of the present invention, if the terminal is provided with an encryption module (not shown), the terminal encrypts the generated keystroke-based user input information through the encryption module (not shown) and transmits it to a web server. The present invention is not limited thereto.

5 is a process for storing keystroke information included in keystroke-based user input information in a storage medium for checking user authority sharing through keystroke clustering of string information included in user input information according to an embodiment of the present invention. Figure is a diagram.

In more detail, in FIG. 5, when the keystroke-based user input information is transmitted from the client terminal through the process illustrated in FIG. 4, the key is obtained from the keystroke-based user input information in the web server shown in FIG. 1. Extract stroke information and user input information, and store the extracted user input information in user registration data provided in a DBMS in association with user information, and perform a keystroke clustering on character string information included in the user input information. Regarding the process of storing the extracted keystroke information in a storage medium in association with the user input information to confirm the right sharing, a person having ordinary skill in the art to which the present invention pertains may refer to FIG. String information contained in the user input information However, various implementation methods for storing keystroke information included in keystroke-based user input information in a storage medium may be inferred to confirm user authority sharing through keystroke clustering. It includes an implementation method and is not limited to the implementation method shown in FIG.

In the following, the client terminal shown in FIG. 1 is referred to as " terminal "

Referring to FIG. 5, when the keystroke-based user input information is transmitted from the terminal through the process illustrated in FIG. 4, the web server receives the keystroke-based user input information through a communication channel (500). At least one input duration information, input interval information, and pressure information of the user input information from the received keystroke-based user input information and at least one key data constituting character string information included in the user input information. The keystroke information is extracted (505).

If the user input information and the keystroke information are extracted from the keystroke based user input information (510), the web server stores the extracted user input information in user registration data provided in a DBMS in association with user information. (515).

If the extracted user input information is stored in the user registration data provided in the DBMS in association with the user information (520), the web server checks the terminal address information assigned to the terminal that has transmitted the keystroke based user input information. (525).

According to one embodiment of the invention, the web server preferably checks the terminal address information assigned to the terminal transmitting the keystroke-based user input information from the communication channel connected to the terminal.

According to another exemplary embodiment of the present invention, when the keystroke-based user input information includes the terminal address information allocated to the terminal, the web server determines the terminal address information allocated to the terminal from the keystroke-based user input information. It is possible to check.

The terminal address information may include at least one of IP address information and MAC address information allocated to the terminal, and performs an identifier function for identifying a terminal transmitting the keystroke based user input information.

According to an embodiment of the present invention, when the terminal address information includes MAC address information allocated to the terminal, the terminal address information preferably performs an identifier function for uniquely identifying the terminal.

According to another exemplary embodiment of the present invention, when the terminal address information includes IP address information allocated to the terminal, the terminal address information may include a fixed IP address or a dynamically allocated IP address. Inquiry of the IP address for the terminal address information (for example, WHOIS query), if the IP address is not managed by the ISP, the terminal address information is identified as a fixed IP address, the IP address is managed by the ISP In this case, the terminal address information is confirmed to include a dynamic allocation IP address.

If the terminal address information is a fixed IP address, the terminal address information preferably performs an identifier function for uniquely identifying the terminal.

On the other hand, if the terminal address information is a dynamically allocated IP address, the terminal address information is not easy to uniquely identify the terminal, in which case the web server uniquely identifies other terminal address information (eg, MAC). Address) to another identifier (eg, a cookie) to uniquely identify the terminal.

If the terminal address information is confirmed (530), the web server configures the string information included in the user input information to confirm user authority sharing through keystroke clustering for the string information included in the user input information. Keystroke information including one or more input duration information, input interval information, and pressure information about one or more key data, the user input information, and the confirmed terminal address information are stored in a storage medium in association with each other (535). .

6 is a diagram illustrating a process of confirming a sharing state of a user right by reading a keystroke pattern according to an exemplary embodiment of the present invention.

In more detail, FIG. 6 illustrates a method in which the keystroke information included in the keystroke-based user input information transmitted from the client terminal through the process shown in FIG. 4 is a predetermined number of times or more through the process shown in FIG. M (m> = 1) keys for N (N> 1) keystroke information stored at least a predetermined number of times for a predetermined period of time, among the keystroke information stored in the storage medium in the web server shown in FIG. Checking the stroke cluster and checking whether the user authority (for example, user authentication information or terminal use authority for inputting user input information) is shared by reading keystroke patterns for the m keystroke clusters. As those skilled in the art to which the present invention pertains, the present invention may be referred to and / or modified with reference to FIG. Although various implementation methods may be inferred for the process of confirming the sharing status of the user's authority by reading the keystroke pattern, the present invention includes all the implementation methods inferred and the implementation method illustrated in FIG. It is not limited to only.

Hereinafter, in FIG. 6, the client terminal shown in FIG. 1 is referred to as " terminal " for convenience.

Referring to FIG. 6, keystroke information included in keystroke-based user input information transmitted from the client terminal through the process illustrated in FIG. 4 is transmitted to the storage medium more than a predetermined number of times through the process illustrated in FIG. 5. When stored, the web server is stored in association with the same terminal address information among string information stored in the storage medium, and includes N (N> 1) pieces including the same word (or sentence or index word) stored for a predetermined number of times during a predetermined period. The string information is checked and the N keystroke information associated with the identified N string information is checked (600).

Here, the predetermined period refers to a period up to a recent past predetermined point of time based on a current time point for identifying the keystroke cluster, and the predetermined number of times indicates the minimum number of keystroke information required to generate the keystroke pattern information. It is preferable to comprise.

If the N keystroke information stored more than a predetermined number of times for a predetermined period from the storage medium is confirmed (605), the web server input duration for each key data included in the keystroke information among the identified N keystroke information. Identify m (m> = 1) keystroke clusters containing n (n <= N) pattern target keystroke information in which one or more pattern target information among information, input interval information, and pressure information are distributed within a predetermined range. 610.

If m keystroke clusters are identified from the N keystroke information stored in the storage medium (615), the web server uses the n keystroke information included in each of the identified m keystroke clusters. M keystroke pattern information corresponding to m keystroke clusters is generated (620), and the generated m keystroke pattern information is stored in a storage medium (625).

According to an exemplary embodiment of the present invention, the web server may use the keystroke average value and the variance value of m keystroke clusters by using the n keystroke information included in the identified m keystroke clusters. It is preferable to generate m keystroke pattern information including a.

According to another exemplary embodiment of the present invention, the web server substitutes each of the n keystroke information included in the identified m keystroke clusters into a preset pattern calculation formula or applies the preset pattern calculation rule. Accordingly, it is preferable to generate m keystroke pattern information by performing substitution / combination or by performing a geometric operation using a preset graph. Here, the preset pattern calculation formula, pattern calculation rule, and geometric calculation may be performed by converting the n keystroke information into a variable (or a geometric graph) including a constant value and a threshold value determined by those skilled in the art. It is preferable to comprise processing.

According to another exemplary embodiment of the present invention, the web server multiplies each of the n keystroke information included in the identified m keystroke clusters with respective preset weights, and then applies the predetermined pattern calculation formula. It is preferable to generate m keystroke pattern information by substituting a substitution, combining / combining according to a predetermined pattern calculation law, or processing a geometric operation using a preset graph. In this case, the weight is preferably set by the person skilled in the art to set more weights to the information item that acts as an important factor in generating the keystroke pattern information, and the preset pattern calculation formula, pattern calculation rule and geometric calculation are described in the present invention. It is preferable to include processing the n keystroke information into a variable (or a geometric graph) including a constant value and a threshold value determined by a person skilled in the art.

If only one keystroke pattern information is generated in the process of generating the keystroke pattern information (630), the web server is shared by the user authority (eg, user authentication information or terminal usage authority for inputting user input information). Rather, it is confirmed that it is being used by only one user (635).

On the other hand, if two or more keystroke pattern information is generated in the process of generating the keystroke pattern information (630), the web server compares the generated two or more keystroke pattern information keystroke pattern for the two or more keystroke pattern information Check the similarity information (640), and compares the identified keystroke pattern similarity information with the preset sharing determination criteria similarity to share the user authority (eg, user authentication information or terminal use authority for inputting user input information). It is determined whether or not (645).

If the identified keystroke pattern similarity information is determined to be equal to or greater than a predetermined sharing determination criterion similarity (650), the web server checks the two or more comparison target keystroke pattern information as one keystroke pattern information, and the user It is confirmed that the authority (eg, user authentication information or terminal usage authority for inputting user input information) is not shared and is being used by only one user (635).

On the other hand, if the identified keystroke pattern similarity information is determined to be equal to or less than a predetermined sharing determination criterion similarity (650), the web server checks the two or more comparison target keystroke pattern information as two or more different keystroke pattern information, The user right (eg, user authentication information or terminal usage right for inputting user input information) is confirmed to be shared by two or more users (655).

Thereafter, the web server generates sharing determination information on the user's authority (eg, user authentication information or a terminal use authority for inputting user input information), and associates the generated sharing determination information with the user input information. The storage medium is stored in the storage medium (660).

According to the present invention, a keystroke pattern for string information included in user input information that a user using an online service in a non-face-to-face state registers in a bulletin board, a comment, a blog, a mini homepage, or transmits to a web server for a search service. Analysis and keystroke clustering make it convenient to share the user rights (eg, user authentication information, or client terminal access rights for entering user input information) with other users without the need for additional devices at low cost. There is an advantage that can be determined accurately.

Claims (8)

Keystroke including one or more input duration information, input interval information, and pressure information about two or more key data constituting character string information included in the user input information with respect to user input information transmitted from a terminal used by the user. ) Processing to include the information; Checking terminal address information of the terminal, and storing the terminal address information, character string information included in the user input information, and keystroke information for each key data constituting the character string information in a storage medium; Input duration information, input interval information, included in N (N> 1) keystroke information corresponding to the same word (or sentence or index word) among string information stored a predetermined number of times during a predetermined period in association with the storage medium; Identifying m (m> = 1) keystroke clusters including n (n <= N) pattern target keystroke information in which at least one pattern target information of the pressure information is distributed within a predetermined range; And As a result of the check, when one keystroke cluster is confirmed, it is confirmed that the terminal use authority corresponding to the terminal address information is not shared. When two or more keystroke clusters are identified, the terminal use authority corresponding to the terminal address information is confirmed. Confirming that the sharing by two or more users; Permissions sharing confirmation method comprising a. The method of claim 1, Generating m keystroke pattern information through the n pattern target keystroke information included in the identified m keystroke clusters; identifying pattern similarity information for m keystroke pattern information; And If the pattern similarity information is equal to or less than the preset sharing determination criterion similarity, the terminal use authority corresponding to the terminal address information is determined not to be shared. If the pattern similarity information is equal to or greater than the preset sharing criterion similarity, the terminal address information And confirming that the terminal usage rights corresponding to are shared by two or more users. The method of claim 1, When the user input information is transmitted from the terminal used by the user authenticated user authentication information-including at least one of the user's ID information, password, ID / PW information, As a result of the check, when one keystroke cluster is identified, the user authentication information is not shared. When two or more keystroke clusters are identified, the user authentication information is confirmed to be shared by two or more users. The method of claim permission sharing characterized in that it further comprises a step. The method of claim 1, wherein the user input information, And at least one string information registered on the web by the user through the terminal and search keyword information transmitted from the terminal. A computer-readable recording medium having recorded thereon a program for executing the method of any one of claims 1 to 3. Keystroke including one or more input duration information, input interval information, and pressure information about two or more key data constituting character string information included in the user input information with respect to user input information transmitted from a terminal used by the user. Interface providing means for processing to include information; A key for confirming terminal address information of the terminal and storing the terminal address information, character string information included in the user input information, and keystroke information for each key data constituting the character string information in a storage medium; Stroke information storage means; Input duration information, input interval information, included in N (N> 1) keystroke information corresponding to the same word (or sentence or index word) among string information stored a predetermined number of times during a predetermined period in association with the storage medium; Keystroke for identifying m (m> = 1) keystroke clusters containing n (n <= N) pattern target keystroke information in which one or more pattern target information of the pressure information is distributed within a predetermined range. Cluster identification means; And As a result of the check, when one keystroke cluster is confirmed, it is confirmed that the terminal use authority corresponding to the terminal address information is not shared. When two or more keystroke clusters are identified, the terminal use authority corresponding to the terminal address information is confirmed. And sharing confirmation means for confirming that they are shared by two or more users. The method of claim 6, And a keystroke pattern information generating means for generating m keystroke pattern information through the n pattern target keystroke information included in the identified m keystroke clusters. . The method of claim 7, wherein the keystroke pattern information generating means, Generate keystroke pattern information including an average value and a variance value of the n keystroke information, or Substituting the n keystroke information into a predetermined pattern calculation formula, or replace / combine according to the predetermined pattern calculation law, or by performing a geometric operation using a predetermined graph to generate keystroke pattern information, or After multiplying the n keystroke information by a predetermined weight, it is substituted into a predetermined pattern calculation formula, substituted / combined according to a predetermined pattern calculation law, or a geometric operation using a preset graph is processed to perform a keystroke pattern. A permission sharing confirmation system, characterized in that for generating information.

Images