KR20140011547A - Service component using right management system and management method thereof - Google Patents
Service component using right management system and management method thereof Download PDFInfo
- Publication number
- KR20140011547A KR20140011547A KR1020120073028A KR20120073028A KR20140011547A KR 20140011547 A KR20140011547 A KR 20140011547A KR 1020120073028 A KR1020120073028 A KR 1020120073028A KR 20120073028 A KR20120073028 A KR 20120073028A KR 20140011547 A KR20140011547 A KR 20140011547A
- Authority
- KR
- South Korea
- Prior art keywords
- application
- service component
- authentication code
- request
- specific service
- Prior art date
Links
- 238000007726 management method Methods 0.000 title abstract description 57
- 230000004044 response Effects 0.000 claims abstract description 46
- 238000012790 confirmation Methods 0.000 claims abstract description 43
- 238000000034 method Methods 0.000 claims description 35
- 230000002708 enhancing effect Effects 0.000 abstract description 3
- 238000005516 engineering process Methods 0.000 description 6
- 238000011161 development Methods 0.000 description 5
- 238000004891 communication Methods 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 230000000694 effects Effects 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 2
- 238000005728 strengthening Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H04L63/0838—Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Signal Processing (AREA)
- Multimedia (AREA)
- Computer Networks & Wireless Communication (AREA)
- Technology Law (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computing Systems (AREA)
- Storage Device Security (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The present invention discloses a service component usage right management system and a service component use right management method capable of further enhancing authentication for confirming whether an application has a use right when an application calls and uses a service component. The service component usage right management system of the present invention is characterized in that, when a use request for requesting use of a specific service component is received from a running application in an application using device, the service component usage right management system checks the authentication code included in the use request, Requesting retransmission with respect to the authentication code, and only when the authentication code included in the use request matches the authentication code received in response to the retransmission request, The rights management apparatus determines whether the application has the right to use the specific service component based on the application information having the usage right per stored service component in response to the confirmation request A configuration that includes a check.
Description
The present invention relates to a service component usage rights management system and a service management method. More particularly, the present invention relates to a service component usage right management system and a service management method, A component usage right management system and a management method, and a method of using a service component of an application using device and an application using device.
In general, an open API (hereinafter, referred to as a 'service component') technology provides service components for wired / wireless communication network capabilities such as wire / wireless telephone connection, short message, location information provision, Is a technology that provides an environment in which third-party service providers can develop a service developed through a consistent interface.
The capability of the communication network that can be utilized through the service component technology includes the functions of wire / wireless telephone connection, additional call processing capability, SMS / MMS transmission, location information provisioning, charging capability, PAM Presence And Availability) information, and so on.
However, at present, there is a problem in authentication that it is a legitimate application in the process of calling and using a service component in an application developed based on a service component.
That is, when an application that does not have a use right for a specific service component requests use of a specific service component by using identification information of another false application, for example, identification information of an application having a usage right for a specific service component, There was no way to verify.
Accordingly, the present invention proposes a method for enhancing authentication for checking whether an application has a use right when a service component is called and used in an application.
SUMMARY OF THE INVENTION The present invention has been made in view of the above circumstances, and it is an object of the present invention to provide a method and system for an application using apparatus, which, when a use request for requesting use of a specific service component is received from an executing application, And transmits the retransmission request to the application when the authentication code received in response to the retransmission request matches the authentication code included in the use request in the application using device The application is requested to confirm whether or not the application has a use right for the specific service component, and in the rights management device, the application, in response to the confirmation request, Specific service components A service component usage right management system and a management method for confirming whether or not a user has a right to use a service component and to strengthen authentication for checking whether the application has an access right when calling a service component in an application have.
Another object to be achieved by the present invention is to provide a method and system for receiving a use request for requesting use of a specific service component including an authentication code from an application, Requesting retransmission in response to the retransmission request, checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other, A method of using a service component of an application using device and an application using device for requesting confirmation whether the application has a use right for the specific service component only when the included authentication code matches, To use When you want it is to strengthen the authentication to determine whether the application with use rights.
According to a first aspect of the present invention, there is provided a service component usage right management system for managing a usage right for a service component using an authentication code included in the use request, Requesting the application to retransmit the authentication code in response to the retransmission request, and only when the authentication code received in response to the retransmission request matches the authentication code included in the use request, An application use device for requesting confirmation as to whether or not the user has the use right; And a rights management device for checking whether the application has a usage right for the specific service component based on application information having a usage right per stored service component in response to the confirmation request.
To achieve the above object, according to a second aspect of the present invention, there is provided an application using device including an application for transmitting a use request for requesting use of a specific service component, the application including an authentication code; A service component unit for requesting retransmission of the authentication code in response to the use request and checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other; And a control unit for requesting the application to confirm whether the application has a use right for the specific service component only when the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other.
Preferably, the authentication code includes an OTP (One Time Password), and the application stores the authentication code after transmitting the use request including the authentication code, and when the retransmission request is received, You can send one verification code.
Preferably, the control unit may request the rights management apparatus for managing application information having a usage right for each service component to confirm whether the application has a usage right for the specific service component.
Preferably, the service component unit receives a confirmation result indicating that the application has the right to use the specific service component in response to the confirmation request, and transmits the service component for using the specific service component to the application, Libraries can be provided.
According to a third aspect of the present invention, there is provided a method of managing a service component usage right according to the third aspect of the present invention, when a usage request for requesting use of a specific service component is received from an application being executed, Checking the included authentication code and requesting the application to retransmit the authentication code; Only when the authentication code included in the use request matches the authentication code received in response to the retransmission request in the application using device, requesting the application to confirm whether the application has the use right for the specific service component ; And confirming whether or not the application has the use right for the specific service component based on the application information having the usage right per stored service component, in response to the confirmation request, in the rights management device.
According to a fourth aspect of the present invention, there is provided a method of using a service component of an application using apparatus, the method comprising: receiving a use request including an authentication code from an application and requesting use of a specific service component; A matching check step of requesting the application to retransmit in association with the authentication code and checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request match; And an authentication request step of requesting the application to confirm whether the application has a use right for the specific service component only when the authentication code corresponding to the request for retransmission and the authentication code included in the use request coincide with each other .
Advantageously, the authentication code may include an OTP (One Time Password).
Preferably, the application may further include storing the authentication code after transmitting the use request including the authentication code, and transmitting the stored authentication code when the resend request is received.
Preferably, the confirmation request step may request the rights management apparatus for managing application information having a usage right for each service component to confirm whether the application has a usage right for the specific service component.
Preferably, the method further includes the step of providing a service component library for using the specific service component to the application upon receipt of a confirmation result indicating that the application has usage rights for the specific service component in response to the confirmation request can do.
According to the service component usage right management system and the management method of the present invention, the authentication code included in the binding request from the application and the authentication code received again by the retransmission request are identical through the separate authentication code, It is checked whether or not the application identified through the binding request matches the application requesting the actual binding. If the matching is found, it is determined whether the application has the use authority for the specific service component in response to the use request from the application. It is possible to prevent a problem that the service component library for using a specific service component can be bound to an unauthorized application.
Therefore, according to the service component usage right management system and the management method of the present invention, it is possible to obtain an effect of strengthening authentication for checking whether the application is an application having a usage right when a service component is called and used by an application.
1 is a configuration diagram illustrating a service component usage right management system according to a preferred embodiment of the present invention.
2 is a block diagram showing the configuration of an application using apparatus according to a preferred embodiment of the present invention.
FIG. 3 is a flowchart illustrating a flow of an integrated service component usage right management method according to a second embodiment of the present invention.
4 is a flowchart illustrating a method of using a service component of an application using apparatus according to a second exemplary embodiment of the present invention.
Hereinafter, preferred embodiments of the present invention will be described with reference to the accompanying drawings.
FIG. 1 is a diagram illustrating a service component usage right management system according to a preferred embodiment of the present invention.
As shown in FIG. 1, when a use request for requesting use of a specific service component is received from a running application, the service component usage right management system according to the present invention checks an authentication code included in the use request Only when the application requests a retransmission in association with the authentication code and the authentication code included in the use request matches the authentication code received in response to the retransmission request, (100) for confirming whether or not the application has usage right for the specific service component based on application information having a usage right per stored service component corresponding to the confirmation request Authority to check It comprises 200.
Preferably, the application executed in the
For example, in a development device (not shown), a development program supporting development of an application using a specific service component is downloaded and installed according to a developer's operation for developing the application, whereby an application Can be developed.
Accordingly, an application developed / manufactured so that a specific service component (i.e., an open API) can be used in a development device (not shown) and normally approved for use in accordance with an approval procedure is registered on a specific application providing server for selling / It is managed so that the user can download it for free or for a fee.
Thus, the
The
The rights management device (200) stores / manages application information having usage rights per service component.
For example, as described above, in the process of being normally used and approved according to an approval procedure for an application developed by a developer on the basis of a specific service component as described above, the
Herein, the process of normally using and approving the developed application according to the approval procedure will not be described in detail in the present invention.
In the
Thus, the
At this time, the use request received from the application, that is, the binding request, may include application identification information (e.g., an application package name) and an authentication code.
In this case, the
Accordingly, if the application that transmitted the use request for using a specific service component is a normal application, the same authentication code as the authentication code included in the use request in response to the above-mentioned retransmission request will be transmitted again.
Accordingly, the
At this time, the usage right confirmation request transmitted from the
In response to the confirmation request from the
That is, when the information in which the identification information of the application is mapped is identified in the identification information of the specific service component according to the confirmation request of the use right in the application information having the usage right for each service component, If the information indicating that the identification information of the application is mapped to the identification information of the specific service component according to the confirmation request for the use right is not confirmed, It is possible to provide the
If it is determined that the application has the right to use the specific service component based on the returned confirmation result, the
That is, the
The service component usage right management system of the present invention described above may further include a separate authentication code in a use request for an application to use a specific service component and request the application to retransmit the authentication code and then receive the authentication code again, Only when the included authentication code and the received authentication code are the same, confirms that the application has the use right for the specific service component in response to the use request from the application.
If an application requests use of a specific service component without a separate authentication code, it will immediately check whether the application has a use right for a specific service component in response to a use request from the application.
In this case, if an application that does not have a use right for a specific service component requests a use request, that is, a binding, using identification information of another false application, for example, identification information of an application having a usage right for a specific service component, There is a problem that a service component library for use of a specific service component is allowed to be bound to an application for which there is no use right.
In other words, there was currently no way to determine if an application identified through a binding request matches the application that actually requested the binding.
However, as described above, in the service component usage right management system of the present invention, by checking whether the authentication code included in the binding request from the application and the authentication code received again by the retransmission request are identical through the separate authentication code , It is checked whether or not the application identified through the binding request matches the application requesting the actual binding, and only if the application matches the usage request from the application, it is confirmed whether the application has the usage right for the specific service component. It is possible to prevent a problem that the service component library for using a specific service component can be bound to an application for which the user does not have the right to access the service.
As a result, the service component usage rights management system of the present invention can obtain the effect of strengthening the authentication for checking whether the application is an application having a use right when calling a service component in an application and using the service component.
Meanwhile, RFID (NFC service using Near Field Communication (NFC), which is a non-contact type short-range wireless communication module using a frequency band of 13.56 MHz as one of electronic tags, which is a next generation recognition technology that can manage information of various objects via IC chip and wireless .
Accordingly, considering a platform environment in which terminal / server libraries necessary for performing NFC service are made into a service component (OPEN API) and used for application development, the
Hereinafter, the configuration of an application using apparatus according to the present invention will be described in more detail with reference to FIG.
2, an application using apparatus according to the present invention includes an
The
The
For example, the
At this time, the authentication code preferably includes an OTP (One Time Password).
That is, when the
Then, the
Upon receiving the use request from the
That is, when the
When the authentication code is transmitted again from the
More specifically, when the authentication code included in the use request matches the authentication code received in response to the retransmission request, the
At this time, the use request or binding request transmitted from the
The
At this time, the
More specifically, when receiving a use request from the
At this time, the use right confirmation request transmitted from the
As described above, in response to the confirmation request from the
The
The
That is, the
Accordingly, the
The
Hereinafter, a service component usage right management method according to a preferred embodiment of the present invention will be described with reference to FIG. 2 to FIG. Here, for convenience of description, the components shown in FIGS. 1 and 2 will be described with reference to corresponding reference numerals.
First, a service component usage right management method according to an embodiment of the present invention will be described with reference to FIG.
The
The
The
The
When the authentication code retransmission request is requested from the
When the authentication code is transmitted again from the
More specifically, the
The use request or binding request transmitted from the
The
More specifically, the
At this time, the use right confirmation request transmitted from the
In response to the confirmation request from the
The
The
That is, the
Accordingly, the
Hereinafter, a method of using a service component of an application using apparatus according to a preferred embodiment of the present invention will be described with reference to FIG.
A method of using a service component of an application using apparatus according to the present invention may include receiving a use request for calling and using a specific service component from a running application when an application developed based on the specific service component is executed (S110) S120). For example, a method of using a service component of an application using apparatus according to the present invention may receive a binding request for using a specific service component from an application as a use request.
At this time, the use request received from the application, that is, the binding request, may include application identification information (e.g., an application package name) and an authentication code.
In this case, the service using method of the application using apparatus according to the present invention checks the authentication code included in the use request, and then requests the application to retransmit the authentication code and receives the authentication code (S130).
Accordingly, if the application that transmitted the use request for using a specific service component is a normal application, the same authentication code as the authentication code included in the use request in response to the above-mentioned retransmission request will be transmitted again.
Accordingly, in the method of using the service component of the application using device according to the present invention, it is checked whether the received authentication code and the authentication code included in the use request coincide with each other in response to the retransmission request (S140) , The
If it is confirmed that the application has the right to use the specific service component based on the returned confirmation result (Yes in S160), the method of using the service component of the application using device according to the present invention may request the use of the specific service component The service component library for using a specific service component can be provided to the application (S170).
That is, the method of using a service component of an application using apparatus according to the present invention may allow a service component library for using a specific service component to be bound to an application that requests use of the specific service component.
On the other hand, when the result of the check is that the two authentication codes do not coincide with each other in step S140 or that they do not have the use right in step S160, the service component using method of the application using device according to the present invention is not available (S180).
As described above, in the service component usage right management method of the present invention, the authentication code included in the binding request from the application and the authentication code received again by the retransmission request are identical through a separate authentication code, It is checked whether or not the application identified through the binding request matches the application requesting the actual binding. If the matching is found, it is determined whether the application has the use authority for the specific service component in response to the use request from the application. It is possible to prevent a problem that the service component library for using a specific service component can be bound to an unauthorized application.
As a result, the service component usage right management method of the present invention can obtain an effect of enhancing authentication for confirming whether or not the application is an application having a use right when a service component is called and used by an application.
The service component usage right management method and the service component usage method of the application using device according to an embodiment of the present invention can be implemented in the form of a program command that can be executed through various computer means and recorded in a computer readable medium. The computer-readable medium may include program instructions, data files, data structures, and the like, alone or in combination. The program instructions recorded on the medium may be those specially designed and constructed for the present invention or may be available to those skilled in the art of computer software. Examples of computer-readable media include magnetic media such as hard disks, floppy disks and magnetic tape; optical media such as CD-ROMs and DVDs; magnetic media such as floppy disks; Magneto-optical media, and hardware devices specifically configured to store and execute program instructions such as ROM, RAM, flash memory, and the like. Examples of program instructions include machine language code such as those produced by a compiler, as well as high-level language code that can be executed by a computer using an interpreter or the like. The hardware devices described above may be configured to operate as one or more software modules to perform the operations of the present invention, and vice versa.
While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, but, on the contrary, It will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.
According to the service component use right management system and the service component use right management method according to the present invention, authentication for confirming whether or not the application is an application having a use right when the service component is called by the application can be further strengthened , It is an invention that is industrially applicable since it is possible to carry out not only the use of the related technology but also the possibility of commercialization or operation of the applied device as well as the actual application of the technology.
100: Application using device 200: Rights management device
Claims (11)
And a rights management device for checking whether the application has a usage right for the specific service component based on application information having usage rights per previously stored service component in response to the confirmation request, Access right management system.
A service component unit for requesting retransmission of the authentication code in response to the use request and checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other; And
And a control unit for requesting the application to confirm whether the application has a use right for the specific service component only when the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other An application using device.
The authentication code includes an OTP (One Time Password)
The application comprises:
Stores the authentication code after transmitting the use request including the authentication code, and transmits the stored authentication code when the resend request is received.
Wherein,
Wherein the application execution unit requests the rights management apparatus that manages application information having a usage right for each service component to confirm whether the application has usage right for the specific service component.
The service component unit,
Wherein the controller provides a service component library for use of the specific service component to the application upon receipt of a confirmation result indicating that the application has a use right for the specific service component in response to the confirmation request by the control unit Usage device.
Only when the authentication code included in the use request matches the authentication code received in response to the retransmission request in the application using device, requesting the application to confirm whether the application has the use right for the specific service component ; And
And a step of checking, in response to the confirmation request, whether or not the application has a use right for the specific service component based on the application information having the use right per stored service component, in the authority management apparatus A method for managing a service component usage right.
A matching check step of requesting the application to retransmit in association with the authentication code and checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request match;
And a confirmation requesting step of requesting the application to confirm whether or not the application has a use right for the specific service component only when the received authentication code corresponding to the retransmission request matches the authentication code included in the use request And a service component usage method of the application using device.
Wherein the authentication code includes an OTP (One Time Password).
Further comprising the step of storing the authentication code after the application transmits the use request including the authentication code and transmitting the stored authentication code upon receiving the resend request, How to use service components.
Wherein the confirmation request step comprises:
Wherein the rights management device for managing application information having a usage right for each service component requests to confirm whether the application has usage right for the specific service component.
And providing a service component library for using the specific service component to the application upon receipt of a confirmation result indicating that the application has a usage right for the specific service component in response to the confirmation request, A method of using a service component of an application using device.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020120073028A KR102009650B1 (en) | 2012-07-04 | 2012-07-04 | Service component using right management system and management method thereof |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020120073028A KR102009650B1 (en) | 2012-07-04 | 2012-07-04 | Service component using right management system and management method thereof |
Publications (2)
Publication Number | Publication Date |
---|---|
KR20140011547A true KR20140011547A (en) | 2014-01-29 |
KR102009650B1 KR102009650B1 (en) | 2019-08-12 |
Family
ID=50143684
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020120073028A KR102009650B1 (en) | 2012-07-04 | 2012-07-04 | Service component using right management system and management method thereof |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR102009650B1 (en) |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20100069417A (en) * | 2008-12-16 | 2010-06-24 | 주식회사 모빌리언스 | Mobile t-money payment system for excuting online payment using mobile terminal and method thereof |
KR20120064292A (en) * | 2010-12-09 | 2012-06-19 | 에스케이플래닛 주식회사 | Application service authentication system and method thereof |
-
2012
- 2012-07-04 KR KR1020120073028A patent/KR102009650B1/en active IP Right Grant
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20100069417A (en) * | 2008-12-16 | 2010-06-24 | 주식회사 모빌리언스 | Mobile t-money payment system for excuting online payment using mobile terminal and method thereof |
KR20120064292A (en) * | 2010-12-09 | 2012-06-19 | 에스케이플래닛 주식회사 | Application service authentication system and method thereof |
Also Published As
Publication number | Publication date |
---|---|
KR102009650B1 (en) | 2019-08-12 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10387134B2 (en) | Method and device for downloading profile of operator | |
EP3429243B1 (en) | Remote management method and device | |
US10645568B2 (en) | Carrier configuration processing method, device and system, and computer storage medium | |
US20100058463A1 (en) | Method of exchanging data between two electronic entities | |
CN103455349B (en) | Application program accesses the method and apparatus of smart card | |
CN105009617A (en) | Method and apparatus for multisim devices with embedded SIM functionality | |
CN103744686A (en) | Control method and system for installing application in intelligent terminal | |
KR101869901B1 (en) | Installation package authorization method and device | |
KR20100029092A (en) | Method for processing application commands from physical channels using a portable electronic device and corresponding device and system | |
TW200541286A (en) | Execution of unverified programs in a wireless device operating environment | |
CN104822145A (en) | Method, apparatus and system for identifying a pseudo base-station short message | |
CN111510908B (en) | Card opening method, device, equipment and medium | |
JP2016533552A (en) | Security information interaction method used for electronic resource move | |
US9430638B2 (en) | Authentication method, authentication apparatus and authentication device | |
CN1661982B (en) | Method and system for automatically configuring access control | |
CN107305608A (en) | The management method and device of terminal device | |
US9253628B2 (en) | Method of exchanging data between two electronic entities | |
KR102009650B1 (en) | Service component using right management system and management method thereof | |
CN111064675B (en) | Access flow control method, device, network equipment and storage medium | |
CN114302404A (en) | Near field communication method, configuration method, NFC host and electronic equipment | |
KR20120125517A (en) | Method and device for obtaining real name register status, and terminal thereof | |
Dragoni et al. | Security-by-Contract (S x C) for Software and Services of Mobile Systems | |
CN112235784B (en) | vSIM-based code number management method, device and equipment | |
KR101883952B1 (en) | System for Providing Mobile Application | |
CN117062038B (en) | Equipment automatic binding method and device based on near field communication technology |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
AMND | Amendment | ||
E902 | Notification of reason for refusal | ||
AMND | Amendment | ||
E601 | Decision to refuse application | ||
AMND | Amendment | ||
X701 | Decision to grant (after re-examination) | ||
GRNT | Written decision to grant |