KR20120120021A - Access authentification for multiple devices and flatforms - Google Patents
Access authentification for multiple devices and flatforms Download PDFInfo
- Publication number
- KR20120120021A KR20120120021A KR1020120038885A KR20120038885A KR20120120021A KR 20120120021 A KR20120120021 A KR 20120120021A KR 1020120038885 A KR1020120038885 A KR 1020120038885A KR 20120038885 A KR20120038885 A KR 20120038885A KR 20120120021 A KR20120120021 A KR 20120120021A
- Authority
- KR
- South Korea
- Prior art keywords
- authentication
- account
- authentication key
- target device
- key
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
Abstract
Description
The present invention relates to a technology for enabling the connection of multiple devices without additional account registration or input of account related information, and more particularly, to a method for authenticating access for multiple devices and platforms.
In general, in the case of subscribing to a specific site using the Internet or purchasing an item using a shopping mall site, not only real name authentication but also various information about the user are required. Due to the development of the Internet, countless sites exist on the Internet, and hundreds of thousands of sites are created and disappeared in Korea alone. However, if an Internet user enters his / her real name and social security number every time he joins a new site, his / her personal information is leaked by various hacking programs flooded on the Internet, and the leaked personal information can be misused in various ways. There is this.
In order to prevent leakage of data, general server systems apply a security policy that allows only authenticated users to access the system. For example, a general server system grants ID and password (PW) for each user and requests authentication of the user by inputting ID and password from the user. That is, the user transmits the authentication information consisting of ID and password to the server using the terminal, and the server side authenticates the connection by comparing with information previously registered for authentication.
As the popularity of smartphones and tablet PCs increases, so does the tendency for users to own multiple devices. There are rarely any promises made regarding the access of a particular account between these devices. The user must enter a new ID and password and perform the authentication process, even though the user uses the same account each time they switch devices. In particular, as devices are diversified and platforms are diversified, when using a specific service on multiple devices and platforms, an additional account registration and access authentication are required.
In order to reduce such inconvenience, there is a method of storing personal information such as user ID and password in the form of cookie information for each device, but cookie information can be applied only within a specific application and there is a great risk of personal information leakage due to hacking. There is no way.
The technical problem to be achieved by the present invention is to register an account on a specific site in a specific device and then to register or log in separately from another device or another platform, the first account to be able to easily register and approve access using only the authentication key temporarily granted. It is to provide a connection authentication method for multiple devices and platforms that can easily avoid the risk of hacking personal information while easily performing the connection of multiple devices by only operating the source device registered.
In order to achieve the above technical problem, the access authentication method for a multi-device and platform according to an embodiment of the present invention, when a multi-access request is received at the source device registered the first user account on the registration site, Requesting an authentication key for a target device from a server; When the source device receives the authentication key generated when the server of the membership site requests the authentication key from the account authentication system from the account authentication system, the target device authenticates the connection with the authentication key from the source device. Receiving a request; Transmitting, by the target device, the authentication key to a server of the member registration site, causing the server of the member registration site to check the existence of the account authentication system and a registered user account and perform access authentication; And when the access authentication is completed, the target device receiving a connection authentication completion notification from a server of the subscription site.
In order to achieve the above technical problem, the access authentication method for multiple devices and platforms according to another embodiment of the present invention, if a multi-access request is received to the source device registered the first user account in the account authentication system, Requesting an authentication key for the target device; Receiving, by the secondary device, the authentication key from the account authentication system, and transmitting an access authentication request together with the authentication key to any one of the target devices registered with the auxiliary device; And sending, by the target device, the authentication key to the account authentication system, checking whether a registered user account exists and performing access authentication.
In another embodiment of the present invention, an access authentication method for multiple devices and platforms is provided with an authentication key for a target device in the account authentication system when a multiple access request is received from a source device that has registered an initial user account in an account authentication system. Requesting; Receiving, by the source device, the authentication key from the account authentication system, and transmitting a connection authentication request together with the authentication key to a target device connected to the source device; And sending, by the target device, the authentication key to the account authentication system, checking whether a registered user account exists and performing access authentication.
In another embodiment of the present invention, an access authentication method for multiple devices and platforms may be performed by the account authentication system generating an authentication key when a source device that has registered an initial user account in an account authentication system requests an authentication key for a target device. Transmitting to either the source device or the auxiliary device; When the target device receiving the authentication key from the source device or the auxiliary device sends the authentication key to the account authentication system, confirming whether a registered user account corresponding to the authentication key exists; And when the registered user account is confirmed, transmitting, by the account authentication system, a notification of completion of access authentication to the target device.
According to embodiments of the present invention, a user possessing devices of various platforms avoids the risk of hacking personal information, and operates only the source device that registers the initial account without inputting personal information such as ID or password to another device. Connection can be performed easily.
1A illustrates a connection authentication system for multiple devices and platforms according to an embodiment of the present invention.
FIG. 1B is a signal flow diagram of a connection authentication method for multiple devices and platforms performed in the system of FIG. 1A.
FIG. 1C illustrates the flow chart of FIG. 1B in more detail.
2A illustrates a connection authentication system for multiple devices and platforms according to various embodiments of the present disclosure.
FIG. 2B is a signal flow diagram of a connection authentication method for multiple devices and platforms performed in the system of FIG. 2A.
3 illustrates a connection authentication system for multiple devices and platforms according to another embodiment of the present invention.
4 is a signal flow diagram of a connection authentication method for multiple devices and platforms performed in the system of FIG.
5 is a flowchart illustrating an internal operation of the account authentication system.
Hereinafter, preferred embodiments of the present invention will be described with reference to the drawings. However, embodiments of the present invention illustrated below may be modified in various other forms, and the scope of the present invention is not limited to the embodiments described below.
1A illustrates a connection authentication system for multiple devices and platforms according to an embodiment of the present invention.
The platform may refer to a type of OS such as Windows or Linux, or may mean a development environment of a device or software, in particular, an environment of a mobile device with limited resources. Different types of OSs and different environments often have different applications for accessing specific services, and different methods for inputting information. In this case, at least one account needs to be easily accessible to the user using any device or platform, and requiring an iterative procedure may be a significant disadvantage in the user experience.
The
When the
The
FIG. 1B is a signal flow diagram of a connection authentication method for multiple devices and platforms performed in the system of FIG. 1A.
First, when a multi-access request is received at a source device that has registered an initial user account at a subscription site, an authentication key for a target device is requested to a server of a subscription site at step S100.
Next, the server of the membership site requests the authentication key to the account authentication system (S110).
The
Next, the
Next, when the
The
The
When the access authentication is completed, the
Finally, the
FIG. 1C illustrates the flow chart of FIG. 1B in more detail.
In this embodiment, the
In the process of processing the authentication key verification request in the
2A illustrates a connection authentication system for multiple devices and platforms according to another embodiment of the present invention.
The
The
The
The
FIG. 2B is a signal flow diagram of a connection authentication method for multiple devices and platforms performed in the system of FIG. 2A.
First, when a multiple access request is received from the
Next, the
Next, an access authentication request is transmitted with an authentication key to any one of the
Finally, when the
3 illustrates a connection authentication system for multiple devices and platforms according to another embodiment of the present invention.
In FIG. 3, the
4 is a signal flow diagram of a connection authentication method for multiple devices and platforms performed in the system of FIG.
First, when a multiple access request is received at the
Next, the
The
Finally, when the
5 is a flowchart illustrating an internal operation of the account authentication system.
First, the
The
Next, the
Next, the
The
Finally, if the registered user account is confirmed, the
In order to enhance security, you may limit the number of times or the time of use of the authentication key. That is, the simultaneous access authentication of two or more target devices is performed with one authentication key, but if the target number of target devices succeeds in access authentication, a method of discarding the corresponding authentication key may be adopted.
According to another embodiment of the present invention, after the
The invention can be implemented via software. Preferably, a program for executing a connection authentication method for a multi-device and a platform according to embodiments of the present invention may be provided by recording a program for executing in a computer on a computer-readable recording medium. When implemented in software, the constituent means of the present invention are code segments that perform the necessary work. The program or code segments may be stored on a processor readable medium or transmitted by a computer data signal coupled with a carrier on a transmission medium or network.
A computer-readable recording medium includes all kinds of recording apparatuses in which data that can be read by a computer system is stored. Examples of computer-readable recording devices include ROM, RAM, CD-ROM, DVD ± ROM, DVD-RAM, magnetic tape, floppy disk, hard disk, optical data storage, flash memory, memory card, etc. There is this. The computer readable recording medium can also be distributed over network coupled computer devices so that the computer readable code is stored and executed in a distributed fashion.
While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it will be understood by those skilled in the art that various changes and modifications may be made therein without departing from the scope of the present invention. And, such modifications should be considered to be within the technical protection scope of the present invention. Therefore, the true technical protection scope of the present invention will be defined by the technical spirit of the appended claims.
Claims (12)
When the source device receives the authentication key generated when the server of the membership site requests the authentication key from the account authentication system from the account authentication system, the target device authenticates the connection with the authentication key from the source device. Receiving a request;
Transmitting, by the target device, the authentication key to a server of the member registration site, causing the server of the member registration site to check the existence of the account authentication system and a registered user account and perform access authentication; And
Receiving the access authentication completion notification from the server of the membership site when the access authentication is completed;
Including, the connection authentication method for multiple devices and platforms.
Receiving an access authentication request with the authentication key from the source device
When the account authentication system receives the authentication key issuance request from the server of the member registration site, retrieving the access URL of the user stored in the database to verify the validity of the URL included in the authentication key issuance request A connection authentication method for multiple devices and platforms.
Receiving, by the secondary device, the authentication key from the account authentication system, and transmitting an access authentication request together with the authentication key to any one of the target devices registered with the auxiliary device; And
Transmitting, by the target device, the authentication key to the account authentication system, checking whether a registered user account exists and performing access authentication;
Including, the connection authentication method for multiple devices and platforms.
The authentication key is a random authentication key, characterized in that the connection authentication method for multiple devices and platforms.
The auxiliary device is connected to the target device through any one of the ad-hoc network, Wifi network, 3G network, ZigBee, Bluetooth, connection authentication method for multiple devices and platforms.
The auxiliary device
A mobile phone, a smart phone, a PDA, a PMP, an MP3 player, a notebook, a smart card, any one of a communication device with a built-in encryption module, connection authentication method for multiple devices and platforms.
The auxiliary device
Storing a list of target devices to receive the authentication key and an ID of the target device to receive the authentication key preferentially.
Receiving, by the source device, the authentication key from the account authentication system, and transmitting a connection authentication request together with the authentication key to a target device connected to the source device; And
Transmitting, by the target device, the authentication key to the account authentication system, checking whether a registered user account exists and performing access authentication;
Including, the connection authentication method for multiple devices and platforms.
The step of transmitting a connection authentication request with the authentication key to the target device connected to the source device
And establishing, by the source device, the connection with the target device through any one of an Ad-hoc network, a Wifi network, a 3G network, a ZigBee, and a Bluetooth.
When the target device receiving the authentication key from the source device or the auxiliary device sends the authentication key to the account authentication system, confirming whether a registered user account corresponding to the authentication key exists; And
If the registered user account is confirmed, transmitting, by the account authentication system, an access authentication completion notification to the target device;
Including, the connection authentication method for multiple devices and platforms.
The authentication key is a random authentication key, characterized in that the connection authentication method for multiple devices and platforms.
And after the account authentication system transmits the access authentication completion notification, processing the validity period of the authentication key as expired.
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020120038885A KR20120120021A (en) | 2011-04-20 | 2012-04-16 | Access authentification for multiple devices and flatforms |
PCT/KR2012/003055 WO2012144849A2 (en) | 2011-04-20 | 2012-04-20 | Access authentication method for multiple devices and platforms |
US13/452,702 US9071422B2 (en) | 2011-04-20 | 2012-04-20 | Access authentication method for multiple devices and platforms |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020110036467 | 2011-04-20 | ||
KR1020120038885A KR20120120021A (en) | 2011-04-20 | 2012-04-16 | Access authentification for multiple devices and flatforms |
Related Child Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR20140072679A Division KR101479903B1 (en) | 2011-04-20 | 2014-06-16 | Access authentification for multiple devices and flatforms |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20120120021A true KR20120120021A (en) | 2012-11-01 |
Family
ID=47507071
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020120038885A KR20120120021A (en) | 2011-04-20 | 2012-04-16 | Access authentification for multiple devices and flatforms |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20120120021A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2015160775A1 (en) * | 2014-04-15 | 2015-10-22 | Google Inc. | Auto-user registration and unlocking of a computing device |
-
2012
- 2012-04-16 KR KR1020120038885A patent/KR20120120021A/en not_active Application Discontinuation
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2015160775A1 (en) * | 2014-04-15 | 2015-10-22 | Google Inc. | Auto-user registration and unlocking of a computing device |
US9276914B2 (en) | 2014-04-15 | 2016-03-01 | Google Inc. | Auto-user registration and unlocking of a computing device |
KR20160137648A (en) * | 2014-04-15 | 2016-11-30 | 구글 인코포레이티드 | Auto-user registration and unlocking of a computing device |
US9882895B2 (en) | 2014-04-15 | 2018-01-30 | Google Llc | Auto-user registration and unlocking of a computing device |
US10848484B2 (en) | 2014-04-15 | 2020-11-24 | Google Llc | Auto-user registration and unlocking of a computing device |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10412575B2 (en) | System and method for virtual SIM card | |
US9071422B2 (en) | Access authentication method for multiple devices and platforms | |
US9537661B2 (en) | Password-less authentication service | |
US9529985B2 (en) | Global authentication service using a global user identifier | |
US10728244B2 (en) | Method and system for credential management | |
US9680841B2 (en) | Network authentication method for secure user identity verification using user positioning information | |
US11044604B2 (en) | Method and system for protecting and utilizing internet identity, using smartphone | |
US9178874B2 (en) | Method, device and system for logging in through a browser application at a client terminal | |
KR20150124933A (en) | Secure user two factor authentication method from Personal infomation leaking and smishing | |
EP3937040B1 (en) | Systems and methods for securing login access | |
CN105612731A (en) | Roaming internet-accessible application state across trusted and untrusted platforms | |
KR20240023589A (en) | Cross authentication method and system between online service server and client | |
US20190238532A1 (en) | Authentication system utilizing secondary connection | |
US9906516B2 (en) | Security system for preventing further access to a service after initial access to the service has been permitted | |
KR101479903B1 (en) | Access authentification for multiple devices and flatforms | |
US11475139B2 (en) | System and method for providing secure data access | |
KR20120120021A (en) | Access authentification for multiple devices and flatforms | |
KR101879842B1 (en) | User authentication method and system using one time password | |
KR20130005635A (en) | System for providing secure card payment system using mobile terminal and method thereof | |
KR20140042222A (en) | User identity authentication method using mobile terminal | |
US10798574B1 (en) | Mobile communication device certification framework | |
WO2023283542A1 (en) | User authentication | |
KR20140007984A (en) | Method for login with instant message |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
E902 | Notification of reason for refusal | ||
AMND | Amendment | ||
E601 | Decision to refuse application | ||
AMND | Amendment | ||
E801 | Decision on dismissal of amendment | ||
A107 | Divisional application of patent | ||
WITB | Written withdrawal of application |