KR20140011547A - Service component using right management system and management method thereof - Google Patents

Service component using right management system and management method thereof Download PDF

Info

Publication number
KR20140011547A
KR20140011547A KR1020120073028A KR20120073028A KR20140011547A KR 20140011547 A KR20140011547 A KR 20140011547A KR 1020120073028 A KR1020120073028 A KR 1020120073028A KR 20120073028 A KR20120073028 A KR 20120073028A KR 20140011547 A KR20140011547 A KR 20140011547A
Authority
KR
South Korea
Prior art keywords
application
service component
authentication code
request
specific service
Prior art date
Application number
KR1020120073028A
Other languages
Korean (ko)
Other versions
KR102009650B1 (en
Inventor
이경옥
Original Assignee
에스케이플래닛 주식회사
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 에스케이플래닛 주식회사 filed Critical 에스케이플래닛 주식회사
Priority to KR1020120073028A priority Critical patent/KR102009650B1/en
Publication of KR20140011547A publication Critical patent/KR20140011547A/en
Application granted granted Critical
Publication of KR102009650B1 publication Critical patent/KR102009650B1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • H04L63/0838Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Signal Processing (AREA)
  • Multimedia (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Technology Law (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The present invention discloses a service component usage right management system and a service component use right management method capable of further enhancing authentication for confirming whether an application has a use right when an application calls and uses a service component. The service component usage right management system of the present invention is characterized in that, when a use request for requesting use of a specific service component is received from a running application in an application using device, the service component usage right management system checks the authentication code included in the use request, Requesting retransmission with respect to the authentication code, and only when the authentication code included in the use request matches the authentication code received in response to the retransmission request, The rights management apparatus determines whether the application has the right to use the specific service component based on the application information having the usage right per stored service component in response to the confirmation request A configuration that includes a check.

Description

[0001] DESCRIPTION [0002] SERVICE COMPONENT USE RIGHT MANAGEMENT SYSTEM AND MANAGEMENT METHOD THEREOF [0003]

The present invention relates to a service component usage rights management system and a service management method. More particularly, the present invention relates to a service component usage right management system and a service management method, A component usage right management system and a management method, and a method of using a service component of an application using device and an application using device.

In general, an open API (hereinafter, referred to as a 'service component') technology provides service components for wired / wireless communication network capabilities such as wire / wireless telephone connection, short message, location information provision, Is a technology that provides an environment in which third-party service providers can develop a service developed through a consistent interface.

The capability of the communication network that can be utilized through the service component technology includes the functions of wire / wireless telephone connection, additional call processing capability, SMS / MMS transmission, location information provisioning, charging capability, PAM Presence And Availability) information, and so on.

However, at present, there is a problem in authentication that it is a legitimate application in the process of calling and using a service component in an application developed based on a service component.

That is, when an application that does not have a use right for a specific service component requests use of a specific service component by using identification information of another false application, for example, identification information of an application having a usage right for a specific service component, There was no way to verify.

Accordingly, the present invention proposes a method for enhancing authentication for checking whether an application has a use right when a service component is called and used in an application.

SUMMARY OF THE INVENTION The present invention has been made in view of the above circumstances, and it is an object of the present invention to provide a method and system for an application using apparatus, which, when a use request for requesting use of a specific service component is received from an executing application, And transmits the retransmission request to the application when the authentication code received in response to the retransmission request matches the authentication code included in the use request in the application using device The application is requested to confirm whether or not the application has a use right for the specific service component, and in the rights management device, the application, in response to the confirmation request, Specific service components A service component usage right management system and a management method for confirming whether or not a user has a right to use a service component and to strengthen authentication for checking whether the application has an access right when calling a service component in an application have.

Another object to be achieved by the present invention is to provide a method and system for receiving a use request for requesting use of a specific service component including an authentication code from an application, Requesting retransmission in response to the retransmission request, checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other, A method of using a service component of an application using device and an application using device for requesting confirmation whether the application has a use right for the specific service component only when the included authentication code matches, To use When you want it is to strengthen the authentication to determine whether the application with use rights.

According to a first aspect of the present invention, there is provided a service component usage right management system for managing a usage right for a service component using an authentication code included in the use request, Requesting the application to retransmit the authentication code in response to the retransmission request, and only when the authentication code received in response to the retransmission request matches the authentication code included in the use request, An application use device for requesting confirmation as to whether or not the user has the use right; And a rights management device for checking whether the application has a usage right for the specific service component based on application information having a usage right per stored service component in response to the confirmation request.

To achieve the above object, according to a second aspect of the present invention, there is provided an application using device including an application for transmitting a use request for requesting use of a specific service component, the application including an authentication code; A service component unit for requesting retransmission of the authentication code in response to the use request and checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other; And a control unit for requesting the application to confirm whether the application has a use right for the specific service component only when the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other.

Preferably, the authentication code includes an OTP (One Time Password), and the application stores the authentication code after transmitting the use request including the authentication code, and when the retransmission request is received, You can send one verification code.

Preferably, the control unit may request the rights management apparatus for managing application information having a usage right for each service component to confirm whether the application has a usage right for the specific service component.

Preferably, the service component unit receives a confirmation result indicating that the application has the right to use the specific service component in response to the confirmation request, and transmits the service component for using the specific service component to the application, Libraries can be provided.

According to a third aspect of the present invention, there is provided a method of managing a service component usage right according to the third aspect of the present invention, when a usage request for requesting use of a specific service component is received from an application being executed, Checking the included authentication code and requesting the application to retransmit the authentication code; Only when the authentication code included in the use request matches the authentication code received in response to the retransmission request in the application using device, requesting the application to confirm whether the application has the use right for the specific service component ; And confirming whether or not the application has the use right for the specific service component based on the application information having the usage right per stored service component, in response to the confirmation request, in the rights management device.

According to a fourth aspect of the present invention, there is provided a method of using a service component of an application using apparatus, the method comprising: receiving a use request including an authentication code from an application and requesting use of a specific service component; A matching check step of requesting the application to retransmit in association with the authentication code and checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request match; And an authentication request step of requesting the application to confirm whether the application has a use right for the specific service component only when the authentication code corresponding to the request for retransmission and the authentication code included in the use request coincide with each other .

Advantageously, the authentication code may include an OTP (One Time Password).

Preferably, the application may further include storing the authentication code after transmitting the use request including the authentication code, and transmitting the stored authentication code when the resend request is received.

Preferably, the confirmation request step may request the rights management apparatus for managing application information having a usage right for each service component to confirm whether the application has a usage right for the specific service component.

Preferably, the method further includes the step of providing a service component library for using the specific service component to the application upon receipt of a confirmation result indicating that the application has usage rights for the specific service component in response to the confirmation request can do.

According to the service component usage right management system and the management method of the present invention, the authentication code included in the binding request from the application and the authentication code received again by the retransmission request are identical through the separate authentication code, It is checked whether or not the application identified through the binding request matches the application requesting the actual binding. If the matching is found, it is determined whether the application has the use authority for the specific service component in response to the use request from the application. It is possible to prevent a problem that the service component library for using a specific service component can be bound to an unauthorized application.

Therefore, according to the service component usage right management system and the management method of the present invention, it is possible to obtain an effect of strengthening authentication for checking whether the application is an application having a usage right when a service component is called and used by an application.

1 is a configuration diagram illustrating a service component usage right management system according to a preferred embodiment of the present invention.
2 is a block diagram showing the configuration of an application using apparatus according to a preferred embodiment of the present invention.
FIG. 3 is a flowchart illustrating a flow of an integrated service component usage right management method according to a second embodiment of the present invention.
4 is a flowchart illustrating a method of using a service component of an application using apparatus according to a second exemplary embodiment of the present invention.

Hereinafter, preferred embodiments of the present invention will be described with reference to the accompanying drawings.

FIG. 1 is a diagram illustrating a service component usage right management system according to a preferred embodiment of the present invention.

As shown in FIG. 1, when a use request for requesting use of a specific service component is received from a running application, the service component usage right management system according to the present invention checks an authentication code included in the use request Only when the application requests a retransmission in association with the authentication code and the authentication code included in the use request matches the authentication code received in response to the retransmission request, (100) for confirming whether or not the application has usage right for the specific service component based on application information having a usage right per stored service component corresponding to the confirmation request Authority to check It comprises 200.

Preferably, the application executed in the application utilizing apparatus 100 is an application developed based on a specific service component.

For example, in a development device (not shown), a development program supporting development of an application using a specific service component is downloaded and installed according to a developer's operation for developing the application, whereby an application Can be developed.

Accordingly, an application developed / manufactured so that a specific service component (i.e., an open API) can be used in a development device (not shown) and normally approved for use in accordance with an approval procedure is registered on a specific application providing server for selling / It is managed so that the user can download it for free or for a fee.

Thus, the application utilizing apparatus 100 can hold applications developed based on a specific service component by downloading and installing the applications registered in the specific application providing server.

The application using device 100 may be a device capable of executing an application developed based on a specific service component, and may include a mobile terminal device such as a smart phone, a mobile phone, etc., and may be a fixed terminal device such as a PC .

The rights management device (200) stores / manages application information having usage rights per service component.

For example, as described above, in the process of being normally used and approved according to an approval procedure for an application developed by a developer on the basis of a specific service component as described above, the rights management apparatus 200 can identify identification information of a specific service component used at the time of development, And stores and manages application information having usage rights for each service component as a result.

Herein, the process of normally using and approving the developed application according to the approval procedure will not be described in detail in the present invention.

In the application utilizing apparatus 100, an application developed based on a specific service component as described above can be executed.

Thus, the application using apparatus 100 can receive a use request for calling and using a specific service component from an executing application. For example, the application using apparatus 100 may receive a binding request for using a specific service component from an application as a use request.

At this time, the use request received from the application, that is, the binding request, may include application identification information (e.g., an application package name) and an authentication code.

In this case, the application using device 100 confirms the authentication code included in the use request, and then requests the application to retransmit the authentication code.

Accordingly, if the application that transmitted the use request for using a specific service component is a normal application, the same authentication code as the authentication code included in the use request in response to the above-mentioned retransmission request will be transmitted again.

Accordingly, the application utilizing apparatus 100 confirms whether the received authentication code and the authentication code included in the use request coincide with each other in response to the retransmission request, and only when the two authentication codes match, To request whether the application has usage rights for a specific service component.

At this time, the usage right confirmation request transmitted from the application using device 100 to the rights management device 200 includes identification information (e.g., an application package name) of an application and identification information (e.g., a component package name) of a specific service component can do.

In response to the confirmation request from the application using device 100, the rights management device 200 determines whether or not the application has the right to use the corresponding specific service component based on the application information having the usage right per stored service component And provides the confirmation result to the application using apparatus 100. [

That is, when the information in which the identification information of the application is mapped is identified in the identification information of the specific service component according to the confirmation request of the use right in the application information having the usage right for each service component, If the information indicating that the identification information of the application is mapped to the identification information of the specific service component according to the confirmation request for the use right is not confirmed, It is possible to provide the application using apparatus 100 with an acknowledgment result that it does not have the use authority for the service component.

If it is determined that the application has the right to use the specific service component based on the returned confirmation result, the application using device 100 transmits the service component for using the specific service component to the application requesting use of the specific service component Libraries can be provided.

That is, the application using apparatus 100 can approve the application that requested use of the specific service component to bind the service component library for using the specific service component.

The service component usage right management system of the present invention described above may further include a separate authentication code in a use request for an application to use a specific service component and request the application to retransmit the authentication code and then receive the authentication code again, Only when the included authentication code and the received authentication code are the same, confirms that the application has the use right for the specific service component in response to the use request from the application.

If an application requests use of a specific service component without a separate authentication code, it will immediately check whether the application has a use right for a specific service component in response to a use request from the application.

In this case, if an application that does not have a use right for a specific service component requests a use request, that is, a binding, using identification information of another false application, for example, identification information of an application having a usage right for a specific service component, There is a problem that a service component library for use of a specific service component is allowed to be bound to an application for which there is no use right.

In other words, there was currently no way to determine if an application identified through a binding request matches the application that actually requested the binding.

However, as described above, in the service component usage right management system of the present invention, by checking whether the authentication code included in the binding request from the application and the authentication code received again by the retransmission request are identical through the separate authentication code , It is checked whether or not the application identified through the binding request matches the application requesting the actual binding, and only if the application matches the usage request from the application, it is confirmed whether the application has the usage right for the specific service component. It is possible to prevent a problem that the service component library for using a specific service component can be bound to an application for which the user does not have the right to access the service.

As a result, the service component usage rights management system of the present invention can obtain the effect of strengthening the authentication for checking whether the application is an application having a use right when calling a service component in an application and using the service component.

Meanwhile, RFID (NFC service using Near Field Communication (NFC), which is a non-contact type short-range wireless communication module using a frequency band of 13.56 MHz as one of electronic tags, which is a next generation recognition technology that can manage information of various objects via IC chip and wireless .

Accordingly, considering a platform environment in which terminal / server libraries necessary for performing NFC service are made into a service component (OPEN API) and used for application development, the developed application 110 is used as an application- 0.0 > 100, < / RTI >

Hereinafter, the configuration of an application using apparatus according to the present invention will be described in more detail with reference to FIG.

2, an application using apparatus according to the present invention includes an application 110 including an authentication code and transmitting a use request for requesting use of a specific service component, A service component unit 120 for requesting retransmission of the authentication code in response to the authentication code and checking whether the authentication code received in response to the retransmission request and the authentication code included in the use request match with the authentication code 110, The control unit 130 requests the application 110 to confirm whether the application 110 has a use right for the specific service component only when the received authentication code and the authentication code included in the use request coincide with each other .

The application 110 is preferably an application developed based on a specific service component.

The application 110 may transmit a use request including the authentication code and requesting use of the specific service component to the service component 120.

For example, the application 110 may transmit a binding request for requesting use of a specific service component to the service component unit 120 as a use request, wherein the binding request includes application identification information (e.g., an application package name) And an authentication code.

At this time, the authentication code preferably includes an OTP (One Time Password).

That is, when the application 110 requests to use the specific service component, the application 110 generates an OTP code as an authentication code, and transmits a binding request including application identification information (for example, an application package name) Unit 120 of FIG.

Then, the application 110 preferably stores / retains the authentication code, that is, the OTP code, for a predetermined period of time. When the authentication code retransmission request is requested from the service component unit 120, the application 110 can transmit the authentication code, that is, the OTP code that was previously stored in the binding request, to the service component unit 120 have.

Upon receiving the use request from the application 110, the service component unit 120 requests the application 110 to transmit the authentication code with respect to the authentication code included in the use request.

That is, when the service component unit 120 receives a binding request for using a specific service component from the application 110, the service component unit 120 may request the application 110 to transmit the authentication code after confirming the authentication code in the binding request.

When the authentication code is transmitted again from the application 110 in response to the authentication code retransmission request, the service component unit 120 determines whether the received authentication code and the authentication code included in the usage request coincide with each other in response to the retransmission request .

More specifically, when the authentication code included in the use request matches the authentication code received in response to the retransmission request, the service component unit 120 transmits a use request from the application 110, that is, a binding request to the control unit If the received authentication code and the authentication code included in the use request do not coincide with each other in response to the retransmission request, the use request, that is, the binding request from the application 110 is not transmitted to the control unit 130, And notify the application 110 of the unavailability of the requested specific service component.

At this time, the use request or binding request transmitted from the service component unit 120 to the controller 130 includes identification information (e.g., an application package name) of the application 110 and identification information of a specific service component ).

The control unit 130 determines whether the application 110 has a usage right for a specific service component only when the authentication code received in response to the request for retransmission and the authentication code included in the use request, that is, the binding request match, Can be requested.

At this time, the control unit 130 requests the rights management apparatus 220 managing the application information having usage rights for each service component to confirm whether or not the application 110 has the use right for the specific service component requested by the application 110 desirable.

More specifically, when receiving a use request from the application component 110, that is, a binding request, from the service component unit 120, the control unit 130 instructs the rights management apparatus 200 to transfer the application 110 to a specific service component A request to confirm whether or not the user has the right to use the transmission right can be transmitted.

At this time, the use right confirmation request transmitted from the control unit 130 to the rights management device 200 may include application identification information (e.g., an application package name) and identification information (e.g., a component package name) have.

As described above, in response to the confirmation request from the application using apparatus 100, the rights management apparatus 200, based on the application information having usage rights for each previously stored service component, It is determined whether or not the user has the use authority, and the confirmation result will be provided to the application using apparatus 100.

The control unit 130 transmits the received confirmation result to the service component unit 120 when the confirmation result is received from the rights management apparatus 200 in response to the request for confirmation of the use right.

The service component unit 120 receives a confirmation result indicating that the application 110 has a use right for a specific service component based on the result of the check, Provide libraries.

That is, the service component unit 120 can approve the application 110 requesting the use of the specific service component to bind the service component library for using the specific service component.

Accordingly, the application 110 will provide the corresponding service to the user by using a specific service component to bind and use the approved service component library.

The service component unit 120 and the control unit 130 described above can be installed in the application using apparatus 100 from an external server apparatus or application 1100 when the application is executed in the application using apparatus 100 .

Hereinafter, a service component usage right management method according to a preferred embodiment of the present invention will be described with reference to FIG. 2 to FIG. Here, for convenience of description, the components shown in FIGS. 1 and 2 will be described with reference to corresponding reference numerals.

First, a service component usage right management method according to an embodiment of the present invention will be described with reference to FIG.

The rights management apparatus 200 stores / manages application information having usage rights per service component (S5).

The application 110 of the application using apparatus 100 may transmit a use request for requesting use of a specific service component, that is, a binding request, including application identification information (e.g., an application package name) (Step S10).

The application 110 of the application using apparatus 100 preferably stores / retains an authentication code (e.g., OTP code) for a predetermined period of time.

The service component unit 120 of the application using device 100 may request the application 110 to retransmit the authentication code after confirming the authentication code included in the binding request when the binding request is received from the application 110 ).

When the authentication code retransmission request is requested from the service component unit 120, the application 110 of the application using apparatus 100 transmits the authentication code transmitted in the binding request, that is, the authentication code stored / (S30). ≪ / RTI >

When the authentication code is transmitted again from the application 110 in response to the authentication code retransmission request, the service component unit 120 of the application using device 100 adds the received authentication code and the usage request in response to the retransmission request (Step S50).

More specifically, the service component unit 120 of the application using device 100, when the received authentication code corresponding to the retransmission request matches the authentication code included in the use request, (S50). If the received authentication code and the authentication code included in the use request do not coincide with each other in response to the retransmission request, the use request from the application 110, that is, the binding request The control unit 130 may notify the application 110 of the unavailability of the requested specific service component (S45).

The use request or binding request transmitted from the service component unit 120 of the application using apparatus 100 to the control unit 130 includes identification information of the application 110 such as an application package name, Information (e.g., Component Package Name).

The control unit 130 of the application using device 100 can only determine that the application 110 has received the authentication code included in the binding request and the authentication code received in response to the retransmission request, The user may be asked to confirm whether or not the user has the authority to use the service.

More specifically, the control unit 130 of the application using apparatus 100 transmits the use request, that is, the binding request, from the application component unit 120 to the rights management apparatus 200, (Step S60). In step S60, the control unit 110 transmits a request for confirmation of whether or not the user 110 has a usage right for a specific service component.

At this time, the use right confirmation request transmitted from the control unit 130 of the application using apparatus 100 to the rights management apparatus 200 includes application identification information (e.g., Application Package Name) and identification information of a specific service component Package Name).

In response to the confirmation request from the application using device 100, the rights management device 200 determines whether or not the application has the right to use the corresponding specific service component based on the application information having the usage right per stored service component (S70), and provides the confirmation result to the application using apparatus 100 (S80).

The control unit 130 of the application using apparatus 100 transmits the received confirmation result to the service component unit 120 when the confirmation result is received from the rights management apparatus 200 in response to the request for confirmation of use right (S80) (s85).

The service component unit 120 of the application using apparatus 100 receives the confirmation result indicating that the application 110 has the use right for the specific service component based on the result of the check, And provides a service component library for using the service component (S90).

That is, the service component unit 120 of the application using apparatus 100 can approve the application 110 requesting use of the specific service component to bind the service component library for using the specific service component.

Accordingly, the application 110 of the application using apparatus 100 will provide the corresponding service to the user by using a specific service component to bind and use the approved service component library.

Hereinafter, a method of using a service component of an application using apparatus according to a preferred embodiment of the present invention will be described with reference to FIG.

A method of using a service component of an application using apparatus according to the present invention may include receiving a use request for calling and using a specific service component from a running application when an application developed based on the specific service component is executed (S110) S120). For example, a method of using a service component of an application using apparatus according to the present invention may receive a binding request for using a specific service component from an application as a use request.

At this time, the use request received from the application, that is, the binding request, may include application identification information (e.g., an application package name) and an authentication code.

In this case, the service using method of the application using apparatus according to the present invention checks the authentication code included in the use request, and then requests the application to retransmit the authentication code and receives the authentication code (S130).

Accordingly, if the application that transmitted the use request for using a specific service component is a normal application, the same authentication code as the authentication code included in the use request in response to the above-mentioned retransmission request will be transmitted again.

Accordingly, in the method of using the service component of the application using device according to the present invention, it is checked whether the received authentication code and the authentication code included in the use request coincide with each other in response to the retransmission request (S140) , The rights management apparatus 200 may request the application to confirm whether or not the application has the usage right for the specific service component and receive the confirmation result in response to the request (S150).

If it is confirmed that the application has the right to use the specific service component based on the returned confirmation result (Yes in S160), the method of using the service component of the application using device according to the present invention may request the use of the specific service component The service component library for using a specific service component can be provided to the application (S170).

That is, the method of using a service component of an application using apparatus according to the present invention may allow a service component library for using a specific service component to be bound to an application that requests use of the specific service component.

On the other hand, when the result of the check is that the two authentication codes do not coincide with each other in step S140 or that they do not have the use right in step S160, the service component using method of the application using device according to the present invention is not available (S180).

As described above, in the service component usage right management method of the present invention, the authentication code included in the binding request from the application and the authentication code received again by the retransmission request are identical through a separate authentication code, It is checked whether or not the application identified through the binding request matches the application requesting the actual binding. If the matching is found, it is determined whether the application has the use authority for the specific service component in response to the use request from the application. It is possible to prevent a problem that the service component library for using a specific service component can be bound to an unauthorized application.

As a result, the service component usage right management method of the present invention can obtain an effect of enhancing authentication for confirming whether or not the application is an application having a use right when a service component is called and used by an application.

The service component usage right management method and the service component usage method of the application using device according to an embodiment of the present invention can be implemented in the form of a program command that can be executed through various computer means and recorded in a computer readable medium. The computer-readable medium may include program instructions, data files, data structures, and the like, alone or in combination. The program instructions recorded on the medium may be those specially designed and constructed for the present invention or may be available to those skilled in the art of computer software. Examples of computer-readable media include magnetic media such as hard disks, floppy disks and magnetic tape; optical media such as CD-ROMs and DVDs; magnetic media such as floppy disks; Magneto-optical media, and hardware devices specifically configured to store and execute program instructions such as ROM, RAM, flash memory, and the like. Examples of program instructions include machine language code such as those produced by a compiler, as well as high-level language code that can be executed by a computer using an interpreter or the like. The hardware devices described above may be configured to operate as one or more software modules to perform the operations of the present invention, and vice versa.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, but, on the contrary, It will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.

According to the service component use right management system and the service component use right management method according to the present invention, authentication for confirming whether or not the application is an application having a use right when the service component is called by the application can be further strengthened , It is an invention that is industrially applicable since it is possible to carry out not only the use of the related technology but also the possibility of commercialization or operation of the applied device as well as the actual application of the technology.

100: Application using device 200: Rights management device

Claims (11)

When receiving a use request for requesting use of a specific service component from a running application, requesting retransmission of the request in association with the authentication code after confirming the authentication code included in the use request, An application use device for requesting the application to confirm whether or not the application has a use right for the specific service component only when the received authentication code and the authentication code included in the use request coincide with each other; And
And a rights management device for checking whether the application has a usage right for the specific service component based on application information having usage rights per previously stored service component in response to the confirmation request, Access right management system.
An application that includes an authentication code and that forwards a usage request that requests use of a particular service component;
A service component unit for requesting retransmission of the authentication code in response to the use request and checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other; And
And a control unit for requesting the application to confirm whether the application has a use right for the specific service component only when the received authentication code corresponding to the retransmission request and the authentication code included in the use request coincide with each other An application using device.
3. The method of claim 2,
The authentication code includes an OTP (One Time Password)
The application comprises:
Stores the authentication code after transmitting the use request including the authentication code, and transmits the stored authentication code when the resend request is received.
3. The method of claim 2,
Wherein,
Wherein the application execution unit requests the rights management apparatus that manages application information having a usage right for each service component to confirm whether the application has usage right for the specific service component.
3. The method of claim 2,
The service component unit,
Wherein the controller provides a service component library for use of the specific service component to the application upon receipt of a confirmation result indicating that the application has a use right for the specific service component in response to the confirmation request by the control unit Usage device.
When receiving a use request for requesting use of a specific service component from an application in use by the application using device, requesting the application to retransmit the authentication code in response to the authentication code included in the use request;
Only when the authentication code included in the use request matches the authentication code received in response to the retransmission request in the application using device, requesting the application to confirm whether the application has the use right for the specific service component ; And
And a step of checking, in response to the confirmation request, whether or not the application has a use right for the specific service component based on the application information having the use right per stored service component, in the authority management apparatus A method for managing a service component usage right.
Receiving a usage request from an application that includes an authentication code and requests use of a particular service component;
A matching check step of requesting the application to retransmit in association with the authentication code and checking whether the received authentication code corresponding to the retransmission request and the authentication code included in the use request match;
And a confirmation requesting step of requesting the application to confirm whether or not the application has a use right for the specific service component only when the received authentication code corresponding to the retransmission request matches the authentication code included in the use request And a service component usage method of the application using device.
8. The method of claim 7,
Wherein the authentication code includes an OTP (One Time Password).
9. The method of claim 8,
Further comprising the step of storing the authentication code after the application transmits the use request including the authentication code and transmitting the stored authentication code upon receiving the resend request, How to use service components.
8. The method of claim 7,
Wherein the confirmation request step comprises:
Wherein the rights management device for managing application information having a usage right for each service component requests to confirm whether the application has usage right for the specific service component.
8. The method of claim 7,
And providing a service component library for using the specific service component to the application upon receipt of a confirmation result indicating that the application has a usage right for the specific service component in response to the confirmation request, A method of using a service component of an application using device.
KR1020120073028A 2012-07-04 2012-07-04 Service component using right management system and management method thereof KR102009650B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020120073028A KR102009650B1 (en) 2012-07-04 2012-07-04 Service component using right management system and management method thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020120073028A KR102009650B1 (en) 2012-07-04 2012-07-04 Service component using right management system and management method thereof

Publications (2)

Publication Number Publication Date
KR20140011547A true KR20140011547A (en) 2014-01-29
KR102009650B1 KR102009650B1 (en) 2019-08-12

Family

ID=50143684

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020120073028A KR102009650B1 (en) 2012-07-04 2012-07-04 Service component using right management system and management method thereof

Country Status (1)

Country Link
KR (1) KR102009650B1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20100069417A (en) * 2008-12-16 2010-06-24 주식회사 모빌리언스 Mobile t-money payment system for excuting online payment using mobile terminal and method thereof
KR20120064292A (en) * 2010-12-09 2012-06-19 에스케이플래닛 주식회사 Application service authentication system and method thereof

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20100069417A (en) * 2008-12-16 2010-06-24 주식회사 모빌리언스 Mobile t-money payment system for excuting online payment using mobile terminal and method thereof
KR20120064292A (en) * 2010-12-09 2012-06-19 에스케이플래닛 주식회사 Application service authentication system and method thereof

Also Published As

Publication number Publication date
KR102009650B1 (en) 2019-08-12

Similar Documents

Publication Publication Date Title
US10387134B2 (en) Method and device for downloading profile of operator
EP3429243B1 (en) Remote management method and device
US10645568B2 (en) Carrier configuration processing method, device and system, and computer storage medium
US20100058463A1 (en) Method of exchanging data between two electronic entities
CN103455349B (en) Application program accesses the method and apparatus of smart card
CN105009617A (en) Method and apparatus for multisim devices with embedded SIM functionality
CN103744686A (en) Control method and system for installing application in intelligent terminal
KR101869901B1 (en) Installation package authorization method and device
KR20100029092A (en) Method for processing application commands from physical channels using a portable electronic device and corresponding device and system
TW200541286A (en) Execution of unverified programs in a wireless device operating environment
CN104822145A (en) Method, apparatus and system for identifying a pseudo base-station short message
CN111510908B (en) Card opening method, device, equipment and medium
JP2016533552A (en) Security information interaction method used for electronic resource move
US9430638B2 (en) Authentication method, authentication apparatus and authentication device
CN1661982B (en) Method and system for automatically configuring access control
CN107305608A (en) The management method and device of terminal device
US9253628B2 (en) Method of exchanging data between two electronic entities
KR102009650B1 (en) Service component using right management system and management method thereof
CN111064675B (en) Access flow control method, device, network equipment and storage medium
CN114302404A (en) Near field communication method, configuration method, NFC host and electronic equipment
KR20120125517A (en) Method and device for obtaining real name register status, and terminal thereof
Dragoni et al. Security-by-Contract (S x C) for Software and Services of Mobile Systems
CN112235784B (en) vSIM-based code number management method, device and equipment
KR101883952B1 (en) System for Providing Mobile Application
CN117062038B (en) Equipment automatic binding method and device based on near field communication technology

Legal Events

Date Code Title Description
A201 Request for examination
AMND Amendment
E902 Notification of reason for refusal
AMND Amendment
E601 Decision to refuse application
AMND Amendment
X701 Decision to grant (after re-examination)
GRNT Written decision to grant