KR20150023145A - Method for Processing Electronic Signature based on Universal Subscriber Identity Module at a Management Institution - Google Patents

Abstract

The present invention relates to a universal subscriber identity module (USIM) based electronic signature process method of a management company. According to the present invention, the USIM based electronic signature process method to be executed from a management server to perform communication with a financial company server includes the steps of: receiving the identification information and signature object data of a customer possession terminal from which the USIM having an authentication certificate applet is detached; encoding the decoded signature object data; and receiving the signature data encoded within the USIM according to a signature operation of the authentication certificate applet.

Description

[0001] The present invention relates to a method for processing an electronic signature of an administrator,

The present invention provides a secure USIM-based electronic signature by signing the signature target data in the Universal Subscriber Identity Module (USIM) of the wireless terminal to generate signature data and encrypting the signature data through a communication key in the USIM .

A USIM based electronic signature service is disclosed in which a customer certificate is stored in a USIM of a wireless terminal to provide a digital signature. The conventional USIM-based digital signature service is divided into a method of using a USIM as a storage token of a certificate and a method of using a USIM as a security token of a certificate.

Conventionally, a USIM-based electronic signature service using a USIM as a storage token of a certificate stores a customer certificate in a USIM, and a certificate program of the wireless terminal performs a digital signature procedure using a customer certificate stored in the USIM to generate a signature value And generates signature data including the signature data.

A USIM based electronic signature service using a USIM as a security token of a certificate conventionally stores a customer certificate in a USIM and then performs a digital signature through a customer certificate in the USIM, Value to generate signature data.

Such a conventional USIM-based digital signature service can be used either as a storage token for a USIM or as a security token for a USIM, a signature generated by performing an electronic signature procedure once a wireless terminal is hacked or a malicious code is installed Value is exposed as it is.

In order to solve the above problems, an object of the present invention is to sign signature data in a USIM of a wireless terminal to generate signature data in the form of a designated digital signature, and to generate signature data in a USIM When the signature data is encrypted and transmitted, the signature data encrypted with the signature and the communication key is decrypted in the USIM, and then re-encrypted through the key of the financial institution to be transmitted to the financial company server. Thus, And to provide a digital signature processing method.

A method for processing a wiggly-based digital signature according to the present invention is a method for processing a wiggly-based electronic signature of an administrator executed in a management server communicating with a financial company server, the method comprising the steps of: N) identification information for a customer-owned wireless terminal that is disconnected from a USIM (Universal Subscriber Identity Module) equipped with a certificate applet storing a customer certificate and a communication key from a financial company server and performing a designated signing operation; A second step of processing the encrypted signature target data to be decrypted through an nth financial key stored in a designated secure storage medium; (1 ≤ m ≤ M) correspondent to the identification information, and transmits the decrypted signature subject data A fourth step of transmitting the signature subject data encrypted with the mth communication company key to the mth communication company server; a third step of transmitting from the mth communication company server a certificate applet A fifth step of receiving signature data encrypted in the USIM through an m-th communication key generated using the signature target data and provided in the USIM according to a signature operation, A seventh step of re-encrypting the decrypted signature data through the nth financial key stored in the designated secure storage medium; a sixth step of decrypting the encrypted signature data through the nth financial key, And transmitting the data to the first financial institution server. Meanwhile, the designated signature operation receives the signature target data and the command, generates a signature value of the signature target data using a customer certificate according to the received command, and stores the generated signature value using the m provider key And encrypting the signature data.

According to the present invention, the worm-based digital signature processing method may further include storing N financial agent keys corresponding to N financial server servers in a designated security storage medium.

According to the present invention, the method may further include storing M communication key keys corresponding to M communication company servers in a designated secure storage medium.

According to another aspect of the present invention, there is provided a method of processing a password-based digital signature, comprising: confirming a command for causing a certificate applet provided in a USIM deviating from a customer-owned wireless terminal corresponding to the identification information to perform the specified signature operation And the fourth step may include transmitting the confirmed command to the mth communication company server.

According to the present invention, the signature data may include a signature value signed through at least one of the RSA algorithm and the ECDSA algorithm via the certificate applet of the USIM.

According to the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet of the USIM. In this case, the authentication procedure may further include verifying the validity of the signature verification key included in the signature data.

According to the present invention, the method of processing the ash-based digital signature may further include authenticating the validity of the USIM for generating and encrypting the signature data.

According to the present invention, the signature data encrypted through the communication company key is encrypted in the USIM using the communication company key as an encryption key, encrypted in the USIM through a cryptographic key generated using the communication company key, The key value exchanged between the USIM and the carrier server based on the carrier key is used as the encryption key and encrypted within the USIM or the key value exchanged between the USIM and the management server based on the carrier key is used as the encryption key, And at least one of those being encrypted.

According to the present invention, the signature data encrypted through the communication company key may include the integrity verification value of the encryption performed in the USIM using the communication company key. In this case, the worm-based digital signature processing method may further include authenticating the validity of the integrity verification value included in the signature data encrypted in the USIM through the communication company key.

According to the present invention, the signature data encrypted through the financial institution key may include an integrity verification value of encryption using the financial institution key.

According to another aspect of the present invention, there is provided a digital signature processing method comprising: generating an integrity authentication value of signature data for a process of encrypting signature data decrypted through an mth communication company key using an nth financial institution key; And further including an authentication value in the signature data encrypted through the nth financial institution key.

According to the present invention, signing data to be signed is signed in the USIM of the wireless terminal to generate signature data in the form of a designated digital signature, and the signature data is encrypted in the USIM through a communication company key provided in the USIM, It is advantageous to provide a secure USIM-based electronic signature service even when a wireless terminal is hacked or malicious code is installed.

According to the present invention, the signature target data generated in the USIM of the wireless terminal is encrypted in the USIM through the communication key, decrypted through the designated management server, and re-encrypted using the financial key, There is an advantage to provide a USIM based electronic signature service conveniently and safely without changing or recording each financial institution key in the USIM.

1 is a diagram showing a configuration of a USIM-based digital signature system of the present invention.
FIG. 2 is a diagram illustrating a configuration of a financial service server of a USIM-based electronic signature system according to an embodiment of the present invention.
FIG. 3 is a diagram illustrating a configuration of a management server of a USIM-based digital signature system according to an embodiment of the present invention.
4 is a diagram illustrating a configuration of a communication company server of a USIM-based digital signature system according to an embodiment of the present invention.
5 is a functional block diagram of a wireless terminal and a certificate program according to an embodiment of the present invention.
6 is a functional block diagram of a USIM according to an embodiment of the present invention.
7 is a diagram illustrating a USIM-based digital signature selection and request process according to an embodiment of the present invention.
8 is a diagram illustrating a process of relaying a USIM-based digital signature request according to an embodiment of the present invention.
9 is a diagram illustrating a USIM-based digital signature and encryption process according to an embodiment of the present invention.
FIG. 10 is a diagram illustrating a USIM-based digital signature authentication process according to an embodiment of the present invention.

The operation principle of the preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. It should be understood, however, that the drawings and the following detailed description are exemplary and explanatory and are intended to provide further explanation of the invention, and are not to be construed as limiting the present invention. For example, it is possible that a configuration unit provided on each server side is implemented on the terminal side, or conversely, a configuration unit provided on the terminal side is implemented on at least one server side.

In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. The terms used below are defined in consideration of the functions of the present invention, which may vary depending on the user, intention or custom of the operator. Therefore, the definition should be based on the contents throughout the present invention.

As a result, the technical idea of the present invention is determined by the claims, and the following embodiments are merely means for effectively explaining the technical idea of the present invention to a person having ordinary skill in the art to which the present invention belongs Only.

FIG. 1 is a diagram showing a configuration of a USIM-based digital signature system of the present invention.

1 is a block diagram of a mobile terminal 500 having a customer certificate and a communication key in a USIM 600 of a wireless terminal 500 and encrypted in a USIM 600 through a communication key, And signing data decrypted through the customer certificate in the USIM 600 to generate signature data and encrypting the signature data through the communication key inside the USIM 600. The USIM 600 encrypts the signature data, 1 is a block diagram illustrating a system configuration for securely protecting an electronic signature by the USIM-based electronic signature system 600. [ It will be appreciated that various implementations (e.g., some configurations may be omitted, or subdivided, or combined) may be inferred from the present invention, Comprised, including the exemplary method, to which the technical feature that is not limited to the exemplary method shown in the figure 1.

The USIM based electronic signature system of the present invention includes a USIM 600 detached from a financial company server 200, a management server 300, a communication company server 400, a wireless terminal 500 and a wireless terminal 500 The financial company server 200 encrypts the signature data through the financial institution key and / or is signed inside the USIM 600 and encrypted using a communication key inside the USIM 600, and then transmitted to the management server 300 Decrypts and decrypts the signature data encrypted with the financial key, and the management server 300 decrypts the encrypted signature data through the financial key, encrypts the encrypted signature data through the communication key, and / Decrypts the signature data encrypted with the communication company key in the USIM 600 and then encrypts the signature data through the financial company key, and the communication company server 400 encrypts the signature data encrypted using the communication company key The wireless terminal 500 provides the signature data encrypted to the wireless terminal 500 and / or signed within the USIM 600 and encrypted within the USIM 600 to the management server 300, The signing target data encrypted with the carrier key via the certificate program 515 may be injected into the USIM 600 and / or signed within the USIM 600 via the certificate program 515, Key, and transmits the encrypted signature data to the communication company server 400. The USIM 600 decrypts the signature subject data encrypted using the communication company key and / or decrypts the signature subject data decrypted through the customer certificate And signing data is generated, and at the same time, signature data is encrypted through a communication key.

According to a preferred embodiment of the present invention, the signing target data is encrypted in the financial company server 200 through the financial company key, decrypted through the management server 300, encrypted again through the communication company key, And transmitted to the USIM 600 detached from the wireless terminal 500 through a certificate program 515 provided in the wireless terminal 500. [ According to another embodiment of the present invention, the signing target data is transmitted from the customer terminal 100, which the customer uses for financing transactions, in addition to the customer wireless terminal 500 via the management server 300 and the communication company server 400, To the USIM 600 detached from the wireless terminal 500 through the certificate program 515 provided in the terminal 500. In this case, the signature target data is encrypted and managed through the client terminal 100 Or may be delivered to the management server 300 via the financial company server 200 from the customer terminal 100. [ According to yet another embodiment that is extensible from the present invention, the data to be signed may be transmitted from a wireless terminal 500 (e.g., an application that uses a certificate including a banking application, a payment application, etc.) To the USIM 600 detached from the wireless terminal 500 through the certificate program 515 provided in the wireless terminal 500. Meanwhile, the path through which the signature target data is transmitted by the USIM 600 is not limited to the above-described method, and various modifications may be made in combination with the above-described schemes. I will reveal.

According to the present invention, the USIM 600 has a function of generating signature data by signing the signature target data in the USIM 600 through the customer certificate and encrypting the generated signature data in the USIM 600 (Hereinafter referred to as " certificate applet 620 "). Signature data signed inside the USIM 600 and encrypted within the USIM 600 is transferred to the financial company server 200 via the designated path.

According to a preferred embodiment of the present invention, the signature data generated by signing the signature target data through the customer certificate in the USIM 600 is encrypted in the USIM 600 through a communication key provided in the USIM 600 . This is because the communication company manages the ISD (Issuer Security Domain) of the USIM 600. If the communication company opens the SD (Security Domain) of the USIM 600 as a policy, It can be encrypted with a different key instead of a key (of course, it is also valid to use the carrier key in this case as well). For example, if the SD of the USIM 600 is opened to an administrator operating the management server 300, the signature data signed within the USIM 600 may be encrypted within the USIM 600 through the administrator key. Or if the SD of the USIM 600 is open to the financial institution, the signed signature data within the USIM 600 may be encrypted within the USIM 600 via the financial key. Therefore, in the present invention, when the SD of the USIM 600 is opened, it is also possible to encrypt the signature data in the USIM 600 using various other keys instead of the communication company key. However, a preferred embodiment of the present invention will be described with reference to an embodiment in which signature data is encrypted through a communication key in the USIM 600. Particularly, in the case of passing through the communication company server 400 using the communication company key, a part of the security of the transmission channel can be guaranteed by the communication company.

According to a preferred embodiment of the present invention, the signed and encrypted signature data in the USIM 600 is transmitted to the financial server server (not shown) via the certificate program 515, the communication company server 400 and the management server 300 of the wireless terminal 500 200). Signed and encrypted signature data within the USIM 600 is transmitted from the certificate program 515 of the wireless terminal 500 via the management server 300 to the financial institution server 200 according to another embodiment that can be extended from the present invention . In this case, the signature data does not necessarily pass through the communication company server 400, or a part of the function of the communication company server 400 may be integrated into the management server 300. Signed and encrypted signature data within the USIM 600 may be transmitted from the certificate program 515 of the wireless terminal 500 to the financial institution server 200, according to another embodiment that is extensible from the present invention. In this case, the communication company server 400 and the management server 300 may be omitted, or a part of the functions may be integrated into the financial company server 200. Signed or encrypted within the USIM 600 may be transmitted from the certificate program 515 of the wireless terminal 500 to the financial company server 200 via the communication company server 400. [ In this case, a part of the function of the management server 300 may be integrated into the financial company server 200. [ The signature data transmitted to the financial company server 200 can be authenticated through the designated authentication server 105. The authentication function of the authentication server 105 may be integrated into the financial company server 200 according to an embodiment of the present invention.

The USIM 600 is a general term of a module including an SIM storage area for storing subscriber information of the wireless terminal 500 and an IC chip 605 mounted on or removed from the wireless terminal 500. The size and format . Preferably, the USIM 600 is a SIM card of ISO-IEC 7810: 2003, ID-1 standard, a mini SIM card of ISO / IEC 7810: 2003, ID-000 standard, ETSI TS 102 221 V9.0.0, Mini- UICC-compliant micro SIM card, ETSI TS 102 221 V11.0.0 nano SIM card, JEDEC Design Guide 4.8, SON-8 compliant terminal-embedded SIM card, and any future USIM 600).

According to an embodiment of the present invention, the USIM 600 records a customer certificate, records a communication key for encryption / decryption, receives signature data and a command, and transmits the signature There is provided a certificate applet 620 that performs an operation of generating a signature value of object data and encrypting signature data including the generated signature value using a communication party key. The certificate applet 620 may decrypt the data to be signed encrypted using the communication key when the data to be signed is encrypted.

The wireless terminal 500 is a general term of a portable terminal having a wireless communication function in which the USIM 600 is mounted or detached, and may preferably include a mobile phone, a smart phone, a tablet PC, and the like.

According to an embodiment of the present invention, the wireless terminal 500 includes a certificate program 515 for injecting signature target data and commands into the USIM 600, and for receiving signed and encrypted signature data from the USIM 600, Respectively. The certificate program 515 may be integrated with the USIM 600 management program provided in the wireless terminal 500 or may be implemented in a separate program form so that the present invention is not limited thereto. The certificate program 515 transmits signed and encrypted signature data within the USIM 600 through a designated path.

The communication company server 400 is a general term of a server that is involved in utilization of a USIM based certificate according to the present invention among the servers operated by a communication company to which the wireless terminal 500 is subscribed, and includes a USIM 600 authentication function, A security function of a communication channel between the certificate program 515 of the wireless terminal 500 and the management server 300,

The management server 300 collectively refers to a server that manages the use of a USIM-based certificate by relaying M (M? 1) communication company servers 400 and N (N? 1) ), Decrypts the signature data encrypted with the m (1? M? M) communication key and then re-encrypts the encrypted signature data through the nth (1? N? N) And performs the function of transmitting. If the signature object data provided to the USIM 600 is encrypted through the nth financial key, the management server 300 decrypts the signature subject data encrypted with the nth financial key, And transmits the encrypted data to the mth communication company server 400. [

The financial company server 200 is a general term of a server for establishing a transaction requested by a customer using signature data signed through a customer certificate in a USIM 600 mounted or detached from the headquarters owned wireless terminal 500, Signature data (or part of the signature data) signed through the customer certificate within the USIM 600 may be authenticated via the designated authentication server 105. According to an embodiment of the present invention, the financial company server 200 can encrypt the signature data through the financial company key and transmit the encrypted data to the management server 300.

The customer terminal 100 includes a wireless terminal such as a computer, a wired terminal such as a notebook computer, a mobile phone, a smart phone, and a tablet PC as a collective term of a terminal used by a customer for a transaction using a customer certificate provided in the USIM 600 In particular, the customer-owned wireless terminal 500 in which the USIM 600 is detached may also belong to the customer terminal 100.

FIG. 2 is a diagram illustrating a configuration of a financial institution server 200 of a USIM-based electronic signature system according to an embodiment of the present invention.

In more detail, FIG. 2 illustrates a method of encrypting data to be signed through a financial institution key, signing in the USIM 600, encrypting the data in the USIM 600 using a communication key, decrypting the data in the management server 300, The present invention is not limited to the above-described embodiments, but may be modified and changed without departing from the spirit and scope of the present invention. It will be appreciated that various implementations (e.g., some of the components may be omitted, or subdivided, or combined) may be inferred from the configuration of the apparatus 200, but the present invention includes all of the above- The technical features thereof are not limited only by the method shown in FIG.

Referring to FIG. 2, the financial company server 200 includes a wireless terminal 500 in which a USIM 600 having a certificate applet 620 storing a customer certificate and a communication key and performing a designated signature operation is detached And an information storage unit 205 for storing customer information for identifying a customer to use. Preferably, the designated signature operation includes receiving signature data and an instruction, generating a signature value of the signature target data using a customer certificate according to a received command, and transmitting the generated signature value using a communication key And encrypting the included signature data.

The certificate program 515 of the customer-possessed wireless terminal 500 may transmit the customer certificate to the designated area of the USIM 600 that is detached from the wireless terminal 500 according to the designated certificate issuing procedure or the roaming procedure of the issued certificate , And the WEF under DF [F300] of the IC chip 605 provided in the USIM 600).

The carrier key of the USIM 600 may be recorded in the USIM 600 via a key value registered at the time of issuing the USIM 600 or via a designated OTA. Preferably, the communication company key recorded in the USIM 600 is managed through the communication company server 400.

The certificate applet 620 may be manufactured or issued as provided in the USIM 600, or may be written to the USIM 600 via a specified OTA.

The financial company server 200 stores customer information for a customer using a financial transaction in a designated DB. The information storage unit 205 stores a customer certificate issuing procedure, a roaming procedure, an OTA of a communication key or a certificate applet 620, And confirms the customer information using the wireless terminal 500 which is disconnected from the USIM 600 having the certificate applet 620 storing the customer certificate and the communication company key and performing the designated signature operation, And stores the identification information for identifying the wireless terminal 500 in which the USIM 600 is detached. The identification information includes a telephone number, a communication number assigned to the wireless terminal 500, a serial number stored in the memory unit or SE of the wireless terminal 500, a key value, an identification value for identifying the certificate program 515, The management server 300, the communication server, and the financial company server 200. In this case,

Referring to FIG. 2, the financial company server 200 includes a signature verification unit (not shown) for verifying signed data to be signed using a customer certificate provided in the USIM 600 detached from the customer-owned wireless terminal 500, A signature object encryption unit for encrypting the verified signature object data using the financial company key, an identification unit for identifying the customer-owned wireless terminal 500 deviating from the USIM 600 using the customer information, And a signature target transmission unit (235) for transmitting the encrypted signature target data and the identification information to the designated management server (300), wherein the signature process unit And a signature authentication procedure unit 250 for performing an authentication procedure for signing using the USIM 600 detached from the wireless terminal 500. [

The transaction procedure unit 220 is configured to perform a transaction procedure requested by a customer in cooperation with an application provided in a customer terminal 100 used by a customer or a customer-owned wireless terminal 500 detached from the USIM 600 As a collective term, preferably, the transaction procedure provides a financial transaction or payment requiring signing with a customer certificate. The transaction procedure unit 220 may be implemented in the form of a separate transaction server linked to the financial company server 200 shown in FIG.

The signature verification unit 225 is connected to the USIM 600 which is detached from the customer-owned wireless terminal 500 to establish the transaction procedure in conjunction with the transaction procedure performed by the transaction procedure unit 220 Identify the signature target data to be signed using the customer certificate. For example, the signature subject data may include account transfer details that require a customer's electronic signature while performing account transfer.

According to an embodiment of the present invention, the signature authentication processing unit 250 generates financial institution authentication information for allowing the certificate applet 620 of the USIM 600 to authenticate the financial institution server 200, The financial institution authentication information can be included in the object data. Or the signature authentication procedure unit 250 transmits the certificate to the USIM 600 through the certificate program 515 of the management server 300, the communication company server 400 and the wireless terminal 500 via a separate communication channel, So that the USIM 600 can process the financial institution server 200 to be authenticated.

The signature subject cipher 230 processes the signature subject data confirmed by the signature subject confirmation unit 225 to be encrypted through a financial transaction key managed by the financial institution.

According to the embodiment of the present invention, the signature authentication processing unit 250 generates the financial institution authentication information for allowing the certificate applet 620 of the USIM 600 to authenticate the financial institution server 200, The financial institution authentication information may be included in the signature subject data.

According to an embodiment of the present invention, the financial company server 200 includes a secure storage medium 215 (e.g., a Secure Application Module (SAM), a Hardware Security Module (HSM), and a Trusted Service Manager And an encryption / decryption module 210 for encrypting or decrypting the designated data according to a specified algorithm using a financial transaction key provided in the secure storage medium 215 can do. The signing object cipher unit 230 can transmit the signature object data confirmed by the signature object verification unit 225 to the encryption decryption module 210 and process it so as to be encrypted according to the algorithm specified by the private key . Meanwhile, the secure storage medium 215 and the encryption / decryption module 210 may be integrated into the signature subject encryption unit 230.

The signature object transmission unit 235 stores the customer certificate and the communication key from the customer information stored by the information storage unit 205 and the USIM 600 having the certificate applet 620 for performing the designated signature operation And confirms the identification information identifying the customer-owned wireless terminal 500 to be connected.

The signature object transmission unit 235 transmits the signature object data encrypted with the financial key through the signing object cipher unit 230 and the identification information about the customer-owned wireless terminal 500 deviating from the USIM 600, To the server (300).

According to another embodiment of the present invention, the signature verification unit 225, the signature subject encryption unit 230 and the signature subject transmission unit 235 may be provided in the customer terminal 100, Lt; RTI ID = 0.0 > 500 < / RTI > When the signature object confirmation unit 225, the signature subject encryption unit 230 and the signature object transmission unit 235 are provided in the customer terminal 100, the signature subject data encrypted by the financial company key is transmitted to the financial institution server 200, Or may be directly provided to the management server 300 from the customer terminal 100. When the signature verification unit 225, the signature subject encryption unit 230 and the signature subject transmission unit 235 are included in the application of the wireless terminal 500 having the USIM 600, The encrypted signature target data may be transmitted to the management server 300 via the financial company server 200 or may be provided directly to the management server 300 from the wireless terminal 500 or may be provided directly to the management server 300 via the communication company server 400. [ (Not shown). According to another embodiment of the present invention, the signature verification unit 225 may be included in an application of the customer-owned wireless terminal 500. In this case, the signature target data may include an application and a certificate program 515 to the certificate program 515. In this case, the signature target data need not be encrypted, and may be encrypted with the communication key according to the method of execution.

The management server 300 includes a secure storage medium 215 (e.g., at least one of SAM, HSM, and TSM) for storing and managing a financial transaction key provided from the financial company server 200 according to a designated key exchange procedure And an encryption / decryption module 210 for encrypting or decrypting designated data using a financial transaction key provided in the secure storage medium 215 according to a specified algorithm. The encryption / decryption module 210 And decrypts the signature subject data encrypted and transmitted by the financial company server 200 through the financial company key. The management server 300 is configured to store at least one of a security storage medium 315 (e.g., SAM, HSM, TSM) for storing and managing a communication key provided from the communication company server 400 (or USIM 600) And an encryption / decryption module 310 for encrypting or decrypting the designated data using a communication key provided in the secure storage medium 315 according to a specified algorithm, And encrypts the decrypted signature target data with the communication decryption key using the encryption decryption module 310 through the encryption decryption module 210. [ The management server 300 provides the signature data encrypted with the communication key through the encryption / decryption module 310 to the communication company server 400.

The communication company server 400 provides the signature target data encrypted with the communication company key to the certificate program 515 of the wireless terminal 500 and the certificate program 515 of the wireless terminal 500 transmits the certificate And inserts the encrypted signature subject data into the USIM 600.

The USIM 600 includes an encryption / decryption module 615 for encrypting or decrypting data designated through the communication key according to a specified algorithm. When the injected signature subject data is encrypted using a communication key, The certificate applet 620 of the USIM 600 decrypts the signature target data encrypted with the communication party key via the encryption decryption module 615. [

The certificate applet 620 of the USIM 600 may sign the signature target data using an algorithm (for example, an RSA digital signature algorithm or an ECDSA digital signature algorithm) through a customer certificate provided in the USIM 600, . Preferably, the signature data is preferably generated in an electronic signature format such as [PKCS7], [RFC2630] or the like.

The certificate applet 620 of the USIM 600 encrypts the generated signature data with the communication party key through the encryption decryption module 615 at the same time that the signature data is generated and transmits the certificate program 515 ). The signature data encrypted through the communication company key is encrypted in the USIM 600 using the communication company key as an encryption key or encrypted in the USIM 600 through a cryptographic key generated using the communication company key, A key value exchanged between the USIM 600 and the communication company server 400 based on the communication company key is encrypted in the USIM 600 using the key value as an encryption key or the USIM 600 and the management server 400 300 may be encrypted using at least one of those encrypted within the USIM 600 using the exchanged key value as an encryption key.

The certificate program 515 of the wireless terminal 500 transmits the signature data signed in the USIM 600 and encrypted using the communication key to the communication company server 400. The communication company server 400 transmits, And transmits the encrypted signature data to the management server 300. [

The management server 300 decrypts the signature data encrypted with the communication party key through the encryption / decryption module 310. [ The management server 300 again encrypts the decrypted signature data with the financial key through the encryption decryption module 310 and transmits the encrypted signature data to the financial company server 200 through the financial key.

Referring to FIG. 2, the financial company server 200 is generated from the management server 300 using the signature target data according to a designated signature operation of a certificate applet 620 included in the USIM 600, A signature data receiving unit 240 receiving the signature data encrypted in the USIM 600 through a communication company key provided in the USIM 600, decrypted by the management server 300 and encrypted using the financial key, A signature data decryption unit 245 for decrypting the encrypted signature data through a financial institution key, and a signature authentication procedure unit 250 for performing the authentication procedure of the decrypted signature data.

The signature data receiving unit 240 is signed from the management server 300 in the USIM 600 and encrypted in the USIM 600 through a communication key. The signature data is then decrypted by the management server 300, Lt; RTI ID = 0.0 > encrypted signature data.

The signature data decryption unit 245 decrypts the signature data encrypted with the financial transaction key through the encryption decryption module 210 through the financial company key.

According to an embodiment of the present invention, the signature data encrypted through the financial institution key in the management server 300 may include an integrity verification value included in the signature data encrypted through the financial institution key, The control unit 250 may perform a procedure for authenticating the validity of the integrity verification value included in the signature data encrypted through the financial institution key.

When the signature data encrypted through the financial institution key is decrypted, the signature authentication procedure unit 250 performs a procedure for authenticating the validity of the signature data decrypted through the signature data decryption unit 245. Preferably, the signature authentication processing unit 250 transmits the signature data (or a part of the signature data) to the designated authentication server 105, requests authentication of the signature data, and receives the authentication result.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The signature authentication procedure unit 250 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature procedure using the customer certificate is performed, and the signature authentication procedure unit 250 A procedure for authenticating the medium authentication value included in the signature data may be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, The procedure unit 250 compares the generated key value with the generated key according to the same algorithm and procedure as the code generation algorithm of the USIM 600, You can authenticate. Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the management server 300 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

According to the embodiment of the present invention, the signature data may include a server authentication value for authenticating the reliability of the management server 300, which decrypts the signature data and the encrypted signature data in the USIM 600, And the signature authentication procedure unit 250 may perform a procedure for authenticating a server authentication value included in the signature data. For example, the server authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm designated by the management server 300, The procedure unit 250 compares the generated key value with the key value in accordance with the same algorithm and procedure as the code generation algorithm of the management server 300, Can be authenticated. Meanwhile, the financial institution server 200 and the management server 300 exchange server certificates. The signature authentication procedure unit 250 uses the exchanged server certificates to determine the reliability of the management server 300 Can be authenticated. Meanwhile, the procedure for authenticating the reliability of the management server 300 may include a process of authenticating the reliability of the communication channel 300 formed between the management server 300 and the financial company server 200 before or after the signature data is received, And in this case, the process of authenticating the reliability of the management server 300 using the signature data may be omitted.

FIG. 3 is a diagram illustrating a configuration of a management server 300 of a USIM-based digital signature system according to an embodiment of the present invention.

In more detail, FIG. 3 illustrates a method of encrypting signature data encrypted with a financial institution key, then encrypting the signature data encrypted using a communication company key, signature data signed in the USIM 600 and encrypted using a communication company key in the USIM 600, And decrypts the decrypted data and then encrypts the decrypted data through the key of the financial institution. Hereinafter, a person skilled in the art will be able to refer to and / It will be appreciated that various implementations of the configuration of the management server 300 (e.g., some configuration portions may be omitted, or subdivided, or combined) may be inferred, but the present invention includes all of the above- And the technical features thereof are not limited only by the method shown in FIG.

The certificate program 515 of the customer-possessed wireless terminal 500 may transmit the customer certificate to the designated area of the USIM 600 that is detached from the wireless terminal 500 according to the designated certificate issuing procedure or the roaming procedure of the issued certificate , And the WEF under DF [F300] of the IC chip 605 provided in the USIM 600).

The carrier key of the USIM 600 may be recorded in the USIM 600 via a key value registered at the time of issuing the USIM 600 or via a designated OTA. Preferably, the communication company key recorded in the USIM 600 is managed through the communication company server 400.

The certificate applet 620 may be manufactured or issued as provided in the USIM 600, or may be written to the USIM 600 via a specified OTA.

The financial company server 200 stores customer information for a customer using a financial transaction in a designated DB, and interacts with the OTA procedure of the customer certificate issuing procedure, the roaming procedure, the communication company key or the certificate applet 620, The customer information using the wireless terminal 500 in which the USIM 600 having the certificate applet 620 storing the communication company key and performing the designated signature operation is detached is checked, And stores identification information for identifying the wireless terminal 500 from which the same USIM 600 is detached. The identification information includes a telephone number, a communication number assigned to the wireless terminal 500, a serial number stored in the memory unit or SE of the wireless terminal 500, a key value, an identification value for identifying the certificate program 515, The management server 300, the communication server, and the financial company server 200. In this case,

The financial company server 200 confirms the signature target data to be signed using the customer certificate provided in the USIM 600 detached from the customer-owned wireless terminal 500 in order to establish the transaction procedure in conjunction with the transaction procedure do. For example, the signature subject data may include account transfer details that require a customer's electronic signature while performing account transfer.

The financial company server 200 is provided with a certificate applet 620 that processes the verified signature object data to be encrypted through a financial institution key managed by the financial institution, stores a customer certificate and a communication company key, and performs a designated signature operation The identification information identifying the customer-owned wireless terminal 500 in which the USIM 600 is detached is identified.

The financial company server 200 transmits to the designated management server 300 the signature subject data encrypted with the financial company key and the identification information about the customer-owned wireless terminal 500 deviating from the USIM 600.

Referring to FIG. 3, the management server 300 stores a customer certificate and a communication key from an nth (1? N? N) financial company server 200 among N (N? 1) The signature information of the customer-owned wireless terminal 500 in which the USIM 600 equipped with the certificate applet 620 performing the specified signature operation is detached is compared with the identification information of the customer- And a signature target decryption unit 320 for decrypting the encrypted signature target data through an nth financial key stored in a designated secure storage medium 215. Preferably, Generates signatures of the data to be signed using the customer certificate according to the received command, and transmits the signature data including the generated signature values to the mobile terminal ≪ / RTI >

The management server 300 is capable of communicating with the N financial service servers 200. The signature receiving unit 305 receives the signature data from the nth financial server 200 transmitting the signature data among the N financial service servers 200, A customer-owned wireless terminal 500 that receives the encrypted signature target data via the financial agent key, the USIM 600 with the certificate applet 620 that stores the customer certificate and the carrier key, and performs the specified signature operation, Lt; / RTI >

The management server 300 transmits a secure storage medium 215 (for example, at least one of SAM, HSM, and TSM) for storing and managing a financial key provided from N financial server servers 200 according to a designated key exchange procedure And an encryption / decryption module 210 for encrypting or decrypting the designated data according to a specified algorithm by using N financial keys provided in the secure storage medium 215, The decryption unit 320 identifies the signature target data encrypted and transmitted through the nth financial institution key in the nth financial institution server 200 and transmits the signature data to the secure storage medium 215 using the encryption decryption module 210 And decrypts the encrypted signature subject data via the first financial institution key.

Referring to FIG. 3, the management server 300 identifies m (1? M? M) communication companies corresponding to the identification information among M (M? 1) communication companies, A signature subject re-encryption unit 325 for re-encrypting the decrypted signature subject data through the mth communication company key stored in the mth communication company server 400, And a signature object relay unit 335 for sending the certificate application 620 included in the USIM 600 deviating from the customer-owned wireless terminal 500 corresponding to the identification information to the designated signing operation The signing target relay unit 335 transmits the confirmed command to the mth communication company server 400. In this case, Meanwhile, the management server 300 may include an authentication processing unit 355 for performing at least one authentication procedure for relaying the signature data.

According to an embodiment of the present invention, the authentication processing unit 355 generates manager authentication information for allowing the certificate applet 620 of the USIM 600 to authenticate the management server 300, The management company authentication information may be included in the management company authentication information. Or the authentication processing unit 355 is a USIM 600 that is detached from the wireless terminal 500 via the certificate program 515 of the communication company server 400 and the wireless terminal 500 via a separate communication channel, By providing the authentication information, the USIM 600 can process the management server 300 to authenticate.

The management server 300 is configured to store at least one of a security storage medium 315 (e.g., SAM, HSM, TSM) for storing and managing a communication key provided from the communication company server 400 (or USIM 600) And an encryption / decryption module 310 for encrypting or decrypting the designated data using a communication key provided in the secure storage medium 315 according to a specified algorithm, The signee re-cipher unit 325 processes the decrypted signature target data through the encryption / decryption module 210 using the encryption / decryption module 310 to re-encrypt the data with the m-th communication key.

According to an embodiment of the present invention, the authentication processing unit 355 generates manager authentication information for allowing the certificate applet 620 of the USIM 600 to authenticate the management server 300, The manager data may include the manager authentication information.

The signature subject relay unit 335 transmits the signature subject data encrypted again with the mth communication subject key to the mth communication company server 400 through the signature subject rewriting unit 325. [

According to the embodiment of the present invention, the command checking unit 330 allows the certificate applet 620 included in the USIM 600, which is detached from the customer-owned wireless terminal 500 corresponding to the identification information, And the signature subject relay unit 335 may transmit the command to the mth communication company server 400 together with the encrypted signature subject data.

The communication company server 400 receives the encrypted subject data from the management server 300 through the mth communication company key and provides it to the certificate program 515 of the wireless terminal 500. [ Preferably, the communication company server 400 receives the command together with the signature target data encrypted with the mth communication company key from the management server 300, and provides the command word to the certificate program 515 of the wireless terminal 500 .

The certificate program 515 of the wireless terminal 500 receives the encrypted signature target data from the communication company server 400 via the mth communication company key and injects it into the USIM 600 detached from the wireless terminal 500 And injects a command to the USIM 600 to cause the certificate applet 620 provided in the USIM 600 to perform the specified signature operation. According to an embodiment of the present invention, the command may be received from the management server 300 via the communication company server 400, received from the communication company server 400, or internally verified by the certificate program 515 .

The USIM 600 includes an encryption / decryption module 615 for encrypting or decrypting the designated data through the mth communication company key according to a specified algorithm, and the injected signature data is encrypted The certificate applet 620 of the USIM 600 decrypts the signature target data encrypted with the mth communication party key via the encryption decryption module 615 based on the command.

The certificate applet 620 of the USIM 600 verifies the customer certificate included in the USIM 600 based on the command and performs an algorithm (e.g., an RSA digital signature algorithm or an ECDSA digital signature Algorithm) to generate signature data by performing an electronic signature procedure on the signature subject data. Preferably, the signature data is preferably generated in an electronic signature format such as [PKCS7], [RFC2630] or the like.

The certificate applet 620 of the USIM 600 encrypts the generated signature data with the mth communication company key through the encryption decryption module 615 at the same time that the signature data is generated, (515). The signature data encrypted with the mth communication company key is encrypted in the USIM 600 using the mth communication company key as a cryptographic key, or encrypted using the encryption key generated using the mth communication company key, Or encrypted in the USIM 600 using the key value exchanged between the USIM 600 and the communication company server 400 based on the mth communication carrier key as an encryption key, May be encrypted through at least one of those encrypted within the USIM 600 using the key value exchanged between the USIM 600 and the management server 300 as an encryption key.

The certificate program 515 of the wireless terminal 500 transmits the signature data signed in the USIM 600 and encrypted with the mth communication company key to the communication company server 400, And transmits the signature data encrypted through the mth communication company key to the management server 300. [

Referring to FIG. 3, the management server 300 generates (using) the signature target data according to a designated signature operation of a certificate applet 620 included in the USIM 600 from the mth communication company server 400 A signature data receiving unit 340 for receiving the signature data encrypted in the USIM 600 through an m-th communication key provided in the USIM 600, and a m- And a signature data re-encryption unit 350 for re-encrypting the decrypted signature data through the nth financial key stored in the designated secure storage medium 215. The signature data decryption unit 345 decrypts the decrypted signature data, And a signature data relay unit 360 for transmitting the signature data encrypted through the nth financial institution key to the nth financial institution server 200. The signature data relay unit 360 may include at least one authentication procedure for relaying the signature data Which may be provided with the authentication processing unit (355).

The signature data receiving unit 340 generates the signature data using the signature object data according to the signature operation of the certificate applet 620 included in the USIM 600 from the mth communication company server 400, The certificate program 515 of the wireless terminal 500 and the mth communication company server 400 encrypt the signature data in the USIM 600 through the mth communication company key provided in the wireless terminal 500. [

According to an embodiment of the present invention, the signature data encrypted through the mth communication company key in the USIM 600 may include an integrity verification value for the encrypted signature data, and the authentication processing unit 355 And authenticate the validity of the integrity verification value included in the signature data encrypted by the financial institution key.

The signature data decryption unit 345 checks the encrypted signature data in the USIM 600 through the mth communication company key and transmits the signature data to the USIM 600 via the mth communication company key using the encryption / 600 to decrypt the encrypted signature data.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The authentication processing unit 355 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature procedure using the customer certificate is performed, and the authentication processing unit 355 may include the signature A procedure for authenticating the medium authentication value included in the data can be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, The key generation unit 355 verifies and compares the exchanged key value according to the key exchange procedure or compares the generated value according to the same algorithm and procedure as the code generation algorithm of the USIM 600 with the key value to authenticate the validity . Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the communication company server 400 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

The signature data re-encryption unit 350 decrypts the encrypted signature data in the USIM 600 and re-encrypts the decrypted signature data via the n-th financial key through the encryption / decryption module 210 .

According to the embodiment of the present invention, while the process of encrypting signature data decrypted through the mth communication company key by the signature data re-encryption unit 350 through the nth financial institution key is performed, the authentication processing unit 355, Generates the integrity authentication value of the signature data for the process of encrypting the signature data decrypted through the mth communication company key through the nth financial key, and transmits the integrity authentication value to the signature data .

The signature data relay unit 360 transmits the signature data encrypted by the signature data re-encryption unit 350 through the n-th financial institution key to the n-th financial institution server 200.

The financial company server 200 is signed from the management server 300 in the USIM 600 and encrypted in the USIM 600 through the mth communication company key and then decrypted by the management server 300, n Receives the encrypted signature data through the financial agent key.

The financial company server 200 decrypts the signature data encrypted by the management server 300 via the nth financial key through the encryption decryption module 210 through the financial key.

According to an embodiment of the present invention, the signature data encrypted through the nth financial key in the management server 300 may include an integrity verification value for the encrypted signature data, And authenticate the validity of the integrity verification value included in the signature data encrypted by the financial institution key.

When the signature data encrypted through the financial agent key is decrypted, the financial company server 200 performs a procedure for authenticating the validity of the decrypted signature data. Preferably, the financial company server 200 transmits the signature data (or a part of the signature data) to the designated authentication server 105, requests authentication of the signature data, and receives the authentication result.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The financial company server 200 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature process using the customer certificate is performed, A procedure for authenticating the medium authentication value included in the data can be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, (200) verifies and compares the exchanged key value according to the key exchange procedure or compares a value generated according to the same algorithm and procedure as the code generation algorithm of the USIM (600) with the key value to authenticate the validity . Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the management server 300 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

According to the embodiment of the present invention, the signature data is decrypted by the server 200, which decrypts the signed and encrypted signature data in the USIM 600, And the financial company server 200 may perform a procedure for authenticating a server authentication value included in the signature data. For example, the server authentication value may include at least one of a key value exchanged according to a designated key exchange procedure and a key value generated according to a code generation algorithm designated by the management server 300, (200) checks the exchanged key value according to the key exchange procedure or compares the generated value with the key value according to the same algorithm and procedure as the code generation algorithm of the management server (300) can do. Meanwhile, the financial company server 200 and the management server 300 exchange server certificates, and the financial company server 200 authenticates the reliability of the management server 300 using the exchanged server certificates can do. Meanwhile, the procedure for authenticating the reliability of the management server 300 may include a process of authenticating the reliability of the communication channel 300 formed between the management server 300 and the financial company server 200 before or after the signature data is received, And in this case, the process of authenticating the reliability of the management server 300 using the signature data may be omitted.

FIG. 4 is a diagram illustrating a configuration of a communication company server 400 of a USIM-based digital signature system according to an embodiment of the present invention.

In more detail, FIG. 4 illustrates a method of transmitting signature subject data encrypted with a communication company key to a certificate program 515 of a wireless terminal 500, signed in the USIM 600, And a person skilled in the art to which the present invention pertains, refer to FIG. 4 and / or the modified example of the communication server server 400 for transmitting the encrypted signature data to the management server 300 (For example, some of the constituent parts may be omitted, or a subdivided or combined method) may be inferred from the configuration of the communication company server 400. However, the present invention includes all of the above- And the technical features thereof are not limited only by the method shown in FIG.

The certificate program 515 of the customer-possessed wireless terminal 500 may transmit the customer certificate to the designated area of the USIM 600 that is detached from the wireless terminal 500 according to the designated certificate issuing procedure or the roaming procedure of the issued certificate , And the WEF under DF [F300] of the IC chip 605 provided in the USIM 600).

The carrier key of the USIM 600 may be recorded in the USIM 600 via a key value registered at the time of issuing the USIM 600 or via a designated OTA. Preferably, the communication company key recorded in the USIM 600 is managed through the communication company server 400.

The certificate applet 620 may be manufactured or issued as provided in the USIM 600, or may be written to the USIM 600 via a specified OTA.

The financial company server 200 stores customer information for a customer using a financial transaction in a designated DB, and interacts with the OTA procedure of the customer certificate issuing procedure, the roaming procedure, the communication company key or the certificate applet 620, The customer information using the wireless terminal 500 in which the USIM 600 having the certificate applet 620 storing the communication company key and performing the designated signature operation is detached is checked, And stores identification information for identifying the wireless terminal 500 from which the same USIM 600 is detached. The identification information includes a telephone number, a communication number assigned to the wireless terminal 500, a serial number stored in the memory unit or SE of the wireless terminal 500, a key value, an identification value for identifying the certificate program 515, The management server 300, the communication server, and the financial company server 200. In this case,

The financial company server 200 confirms the signature target data to be signed using the customer certificate provided in the USIM 600 detached from the customer-owned wireless terminal 500 in order to establish the transaction procedure in conjunction with the transaction procedure do. For example, the signature subject data may include account transfer details that require a customer's electronic signature while performing account transfer.

The financial company server 200 is provided with a certificate applet 620 that processes the verified signature object data to be encrypted through a financial institution key managed by the financial institution, stores a customer certificate and a communication company key, and performs a designated signature operation The identification information identifying the customer-owned wireless terminal 500 in which the USIM 600 is detached is identified.

The financial company server 200 transmits to the designated management server 300 the signature subject data encrypted with the financial company key and the identification information about the customer-owned wireless terminal 500 deviating from the USIM 600.

The management server 300 can communicate with N (N > = 1) financial company servers 200, and receives a signature encrypted with a financial company key from a financial company server 200 that has transmitted signature data among N financial server 200 And receives the identification information for the customer-owned wireless terminal 500, which receives the target data, stores the customer certificate and the communication key, and the USIM 600 equipped with the certificate applet 620 that performs the specified signature operation is detached .

The management server 300 transmits a secure storage medium 215 (for example, at least one of SAM, HSM, and TSM) for storing and managing a financial key provided from N financial server servers 200 according to a designated key exchange procedure And an encryption / decryption module 210 for encrypting or decrypting designated data using N financial keys provided in the secure storage medium 215 according to a designated algorithm, The encrypted signature object data is decrypted through the financial key provided in the secure storage medium 215 by using the encryption / decryption module 210, .

The management server 300 is configured to store at least one of a security storage medium 315 (e.g., SAM, HSM, TSM) for storing and managing a communication key provided from the communication company server 400 (or USIM 600) And an encryption / decryption module 310 for encrypting or decrypting the designated data using a communication key provided in the secure storage medium 315 according to a specified algorithm, The encryption / decryption module 310 encrypts the decrypted signature object data through the encryption / decryption module 210 using the communication key.

The management server 300 transmits the signature target data encrypted again with the communication company key to the communication company server 400. According to the embodiment of the present invention, the management server 300 allows the certificate applet 620 included in the USIM 600, which is detached from the customer-owned wireless terminal 500 corresponding to the identification information, And transmits the command to the communication company server 400 together with the encrypted signature target data.

Referring to FIG. 4, the communication company server 400 separates a USIM 600 having a certificate applet 620 storing a customer certificate and a communication key and performing a designated signature operation, and the certificate applet 620 (T > = 1) pieces of identification information for identifying a wireless terminal 500 having a certificate program 515 for causing the wireless terminal 500 to perform the designated signing operation. Preferably, the designated signature operation includes receiving signature data and an instruction, generating a signature value of the signature target data using a customer certificate according to a received command, and transmitting the generated signature value using a communication key And encrypting the included signature data.

As a result of the designated USIM 600 authentication procedure, the information management unit 410 stores a customer certificate and a communication key, and transmits the certificate to the wireless terminal 600, which is a detached USIM 600 having a certificate applet 620, (500). The USIM 600 authentication procedure may include an authentication procedure defined in a UICC (Universal Integrated Circuit Card) standard.

The information management unit 410 identifies the wireless terminal 500 having the certificate program 515 for allowing the certificate applet 620 included in the USIM 600 to perform the specified signature operation. The state of the certificate program 515 may be checked in conjunction with a server providing the certificate program 515 to the wireless terminal 500 or a server managing the certificate program 515.

The information management unit 410 separates a USIM 600 having a certificate applet 620 storing a customer certificate and a communication key and performing a designated signing operation, (T) identifying the wireless terminal (500) having the certificate program (515) for performing the authentication process.

4, the communication company server 400 is encrypted in the financial company server 200 through the financial transaction key provided in the financial company server 200 from the management server 300 and then transmitted to the management server 300 A signature object receiving unit 405 for receiving the signature object data decrypted by the public key and decrypted by the communication company key and the identification information for identifying the customer owned wireless terminal 500, (1? T? T) identification information belonging to T pieces of identification information; and an information authentication unit 415 for confirming whether or not the t-th identification information is received from the management server 300 And a signature target relay unit 420 for transmitting the encrypted signature target data to the certificate program 515 of the corresponding wireless terminal 500. The signature target receiving unit 405 receives the encrypted signature target data from the client- The USIM 600 detached from the USIM 600 The signature subject relay unit 420 receives an instruction to cause the certificate application applet 620 to perform a specified signature operation and transmits the certificate program 515 of the wireless terminal 500 corresponding to the t- Command can be transmitted.

The signing object receiving unit 405 is encrypted in the financial company server 200 through the financial transaction key provided in the financial company server 200 from the management server 300 and then decrypted by the management server 300, (600), which encrypts the generated signature data via a communication key, is generated by signing the signature subject data through the customer certificate, And receives identification information that identifies the wireless terminal 500.

The information authentication unit 415 checks whether the identification information received from the management server 300 is t identification information belonging to the T identification information stored by the information management unit 410. [ If the t-th identification information is received from the management server 300, the signing target relay unit 420 transmits the encrypted signature object 515 to the certificate program 515 of the wireless terminal 500 corresponding to the t- And transmits the data.

According to the embodiment of the present invention, the signing object receiving unit 405 receives a command for causing the certificate applet 620 included in the USIM 600 detached from the customer-owned wireless terminal 500 to perform a specified signature operation And the signature subject relay unit 420 may transmit the command to the certificate program 515 of the wireless terminal 500 corresponding to the t-th identification information. According to another embodiment of the present invention, the command may be transmitted to the certificate program 515 of the wireless terminal 500 identified by the communication company server 400 and corresponding to the t-th identification information. According to another embodiment of the present invention, the command may be determined through the certificate program 515 of the wireless terminal 500.

The certificate program 515 of the wireless terminal 500 receives the signature subject data encrypted with the communication company key from the communication company server 400 and injects it into the USIM 600 detached from the wireless terminal 500, At this time, the certificate applet 620 included in the USIM 600 injects a command to the USIM 600 to perform the designated signature operation. According to an embodiment of the present invention, the command may be received from the management server 300 via the communication company server 400, received from the communication company server 400, or internally verified by the certificate program 515 .

The USIM 600 includes an encryption / decryption module 615 for encrypting or decrypting data designated through the communication key according to a specified algorithm. When the injected signature subject data is encrypted using a communication key, The certificate applet 620 of the USIM 600 decrypts the signature target data encrypted with the communication party key via the encryption decryption module 615 based on the command.

The certificate applet 620 of the USIM 600 verifies the customer certificate included in the USIM 600 based on the command and performs an algorithm (e.g., an RSA digital signature algorithm or an ECDSA digital signature Algorithm) to generate signature data by performing an electronic signature procedure on the signature subject data. Preferably, the signature data is preferably generated in an electronic signature format such as [PKCS7], [RFC2630] or the like.

The certificate applet 620 of the USIM 600 encrypts the generated signature data with the communication party key through the encryption decryption module 615 at the same time that the signature data is generated and transmits the certificate program 515 ). The signature data encrypted through the communication company key is encrypted in the USIM 600 using the communication company key as an encryption key or encrypted in the USIM 600 through a cryptographic key generated using the communication company key, A key value exchanged between the USIM 600 and the communication company server 400 based on the communication company key is encrypted in the USIM 600 using the key value as an encryption key or the USIM 600 and the management server 400 300 may be encrypted using at least one of those encrypted within the USIM 600 using the exchanged key value as an encryption key.

The certificate program 515 of the wireless terminal 500 transmits the signature data signed in the USIM 600 and encrypted with the communication key to the communication company server 400.

4, the communication company server 400 receives a certificate application program 515 of the wireless terminal 500 corresponding to the t-th identification information from a certificate applet 515 included in the USIM 600 of the wireless terminal 500, A signature data receiving unit 425 which receives the signature data encrypted using the signature object data and receives the signature data encrypted in the USIM 600 through a communication key provided in the USIM 600, And a signature data relay unit 430 for transmitting the encrypted signature data to the management server 300.

The signature data receiving unit 425 receives from the certificate program 515 of the wireless terminal 500 corresponding to the t-th identification information a specified signature of the certificate applet 620 included in the USIM 600 of the wireless terminal 500 And receives the encrypted signature data in the USIM 600 through a communication key provided in the USIM 600. [

The signature data relay unit 430 generates the signature data using the signature object data in accordance with the designated signature operation of the certificate applet 620 included in the USIM 600 of the wireless terminal 500, And transmits the encrypted signature data to the management server 300 through the USIM 600 via the communication company key.

The management server 300 generates the signature data using the signature object data according to the designated signature operation of the certificate applet 620 included in the USIM 600 from the communication company server 400, The encrypted signature data in the USIM 600 is received via the certificate program 515 and the communication company server 400 of the wireless terminal 500 via the communication company key.

According to an embodiment of the present invention, the signature data encrypted through the communication key in the USIM 600 may include an integrity verification value for the encrypted signature data, A procedure for authenticating the validity of the integrity verification value included in the signature data encrypted by the key can be performed.

The management server 300 confirms the encrypted signature data in the USIM 600 through the communication key and transmits the encrypted signature data to the management server 300 through the encryption decryption module 310, And processes the signature data to decrypt it.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The management server 300 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature process using the customer certificate is performed, A procedure for authenticating the medium authentication value included in the data can be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, (300) confirms the exchanged key value according to the key exchange procedure or compares the generated value according to the same algorithm and procedure as the code generation algorithm of the USIM (600) with the key value to authenticate the validity . Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the communication company server 400 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

The management server 300 decrypts the encrypted signature data in the USIM 600 and processes the decrypted signature data again through the encryption decryption module 210 through the financial key.

According to the method of the present invention, while the process of encrypting the decrypted signature data through the financial key is performed, the management server 300 encrypts the decrypted signature data through the financial key And the integrity authentication value may be included in the signature data encrypted through the financial key.

The management server 300 transmits the signature data encrypted through the financial institution key to the financial company server 200. The financial company server 200 is signed from the management server 300 in the USIM 600 and encrypted in the USIM 600 through the communication company key, and decrypted by the management server 300, And receives the encrypted signature data.

The financial company server 200 decrypts the signature data encrypted by the management server 300 through the encryption decryption module 210 through the financial company key.

According to an embodiment of the present invention, the signature data encrypted through the financial agent key in the management server 300 may include an integrity verification value for the encrypted signature data, A procedure for authenticating the validity of the integrity verification value included in the signature data encrypted by the key can be performed.

When the signature data encrypted through the financial agent key is decrypted, the financial company server 200 performs a procedure for authenticating the validity of the decrypted signature data. Preferably, the financial company server 200 transmits the signature data (or a part of the signature data) to the designated authentication server 105, requests authentication of the signature data, and receives the authentication result.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The financial company server 200 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature process using the customer certificate is performed, A procedure for authenticating the medium authentication value included in the data can be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, (200) verifies and compares the exchanged key value according to the key exchange procedure or compares a value generated according to the same algorithm and procedure as the code generation algorithm of the USIM (600) with the key value to authenticate the validity . Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the management server 300 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

According to the embodiment of the present invention, the signature data may include a server authentication value for authenticating the reliability of the management server 300, which decrypts the signature data and the encrypted signature data in the USIM 600, And the financial company server 200 may perform a procedure for authenticating a server authentication value included in the signature data. For example, the server authentication value may include at least one of a key value exchanged according to a designated key exchange procedure and a key value generated according to a code generation algorithm designated by the management server 300, (200) checks the exchanged key value according to the key exchange procedure or compares the generated value with the key value according to the same algorithm and procedure as the code generation algorithm of the management server (300) can do. Meanwhile, the financial company server 200 and the management server 300 exchange server certificates, and the financial company server 200 authenticates the reliability of the management server 300 using the exchanged server certificates can do. Meanwhile, the procedure for authenticating the reliability of the management server 300 may include a process of authenticating the reliability of the communication channel 300 formed between the management server 300 and the financial company server 200 before or after the signature data is received, And in this case, the process of authenticating the reliability of the management server 300 using the signature data may be omitted.

FIG. 5 is a diagram illustrating a functional configuration of a wireless terminal 500 and a certificate program 515 according to an embodiment of the present invention.

5, signature data to be signed is signed through a customer certificate provided in the USIM 600, and signature data signed through a communication company key provided in the USIM 600 is encrypted. Then, Which shows the certificate program 515 and the configuration of the wireless terminal 500 corresponding to a program configuration for transmitting signed and encrypted signature data in a specified transmission channel within the wireless terminal 600, It will be appreciated that the various embodiments of the functionality of the wireless terminal 500 may be referred to and / or modified by reference to FIG. 5. However, the present invention includes all of the above- The technical features thereof are not limited only by the method shown in FIG. Preferably, the wireless terminal 500 of FIG. 5 may include at least one of various smart phones capable of wireless communication, various tablet PCs, various PDAs, and various mobile phones.

5, the wireless terminal 500 includes a control unit 501, a memory unit 511, a screen output unit 502, a key input unit 503, a sound output unit 504, a sound input unit 505, And a USIM reader 510 in which the wireless network communication unit 508 and the near wireless communication unit 507 and the proximity wireless communication unit 509 and the USIM 600 are separated from each other and a battery 506 for power supply is provided do.

The control unit 501 is a general term for controlling the operation of the wireless terminal 500. The control unit 501 includes at least one processor and an execution memory, BUS). According to the present invention, the control unit 501 loads at least one program code included in the wireless terminal 500 into the execution memory through the processor, and outputs the result through at least one configuration And controls the operation of the mobile terminal 500. [ Hereinafter, the configuration of the certificate program 515 of the present invention implemented in the form of program code will be described in the control unit 501 for convenience.

The memory unit 511 is a general term of a nonvolatile memory corresponding to a storage resource of the wireless terminal 500 and includes at least one program code executed through the control unit 501 and at least one Save and maintain the dataset. The memory unit 511 basically comprises a system program code and a system data set corresponding to the operating system of the wireless terminal 500, a communication program code and a communication data set for processing a wireless communication connection of the wireless terminal 500, And stores the application code and the application data set, and the program code and data set corresponding to the certificate program 515 of the present invention are also stored in the memory unit 511.

The screen output unit 502 includes a screen output device (e.g., a liquid crystal display (LCD)) corresponding to the output resource of the wireless terminal 500 and a driving module for driving the screen output device. And outputs the calculation result corresponding to the screen output among the various calculation results of the controller 501 to the screen output device.

The key input unit 503 may include at least one user input device corresponding to the input resource of the wireless terminal 500 such as a button, a keypad, a touch pad, a touch screen linked to the screen output unit 502, And inputs a command for instructing various operations of the control unit 501 in cooperation with the control unit 501 or inputs data necessary for the operation of the control unit 501. [

The sound output unit 504 includes a speaker corresponding to the output resource of the wireless terminal 500 and a drive module for driving the speaker. The sound output unit 504 is connected to the control unit 501, And outputs an operation result corresponding to the output through the speaker. The driving module decodes sound data to be outputted through the speaker and converts the sound data into a sound signal.

The sound input unit 505 includes a microphone corresponding to the input resource of the wireless terminal 500 and a drive module for driving the microphone and transmits the sound data input through the microphone to the controller 501. The driving module encodes and encodes a sound signal input through the microphone.

The wireless network communication unit 508 and the short-range wireless communication unit 507 are collectively referred to as communication resources for connecting the wireless terminal 500 to a designated communication network. Preferably, the wireless terminal 500 may include a wireless network communication unit 508 as a basic communication resource, and may include one or more short-range wireless communication units 507.

The wireless network communication unit 508 collectively refers to a communication resource for connecting the wireless terminal 500 to a wireless communication network via a base station. The wireless communication unit 508 includes an antenna, an RF module, a baseband module, And at least one processing module. The control unit 501 is connected to the control unit 501 and transmits the calculation result corresponding to the wireless communication among the various calculation results of the control unit 501 through the wireless communication network or receives data through the wireless communication network To the control unit 501, and performs the connection, registration, communication, and handoff procedures of the wireless communication. According to the present invention, the wireless network communication unit 508 can connect the wireless terminal 500 to a telephone communication network including a communication channel and a data channel via the exchange, and in some cases, May be connected to a data network providing communication-based wireless network data communication (e.g., the Internet).

According to an embodiment of the present invention, the wireless network communication unit 508 is a mobile communication unit that performs at least one connection, a location registration, a call processing, a call connection, a data communication, and a handoff to a mobile communication network according to the CDMA / WCDMA / ≪ / RTI > Meanwhile, according to the intention of the person skilled in the art, the wireless network communication unit 508 may further include a portable internet communication configuration for performing at least one of connection to the portable Internet, location registration, data communication and handoff according to the IEEE 802.16 standard, It is evident that the present invention is not limited by the wireless communication configuration provided by the wireless network communication unit 508. [ That is, the wireless network communication unit 508 is a general term for a configuration unit that connects to a wireless communication network through a cell-based base station irrespective of a frequency band of a wireless section, a type of a communication network, or a protocol.

The short-range wireless communication unit 507 is a generic name of communication resources connecting a communication session using a radio frequency signal within a predetermined distance (for example, 10 m) as a communication medium and connecting the wireless terminal 500 to the communication network based on the communication session , The wireless terminal 500 may be connected to the communication network through at least one of Wi-Fi communication, Bluetooth communication, public wireless communication, and UWB. According to an embodiment of the present invention, the short-range wireless communication unit 507 may be integrated with or separated from the wireless network communication unit 508. According to the present invention, the short-range wireless communication unit 507 connects the wireless terminal 500 to a data network providing packet-based short-range wireless data communication through a wireless AP.

The proximity wireless communication unit 509 is a communication unit that processes one or more proximity wireless communication among a bidirectional proximity wireless communication, a full-duplex proximity wireless communication, and a half-duplex proximity wireless communication using a radio frequency signal as a communication medium at a close distance (e.g., As a collective term of resources, it is possible to process the proximity wireless communication according to the NFC (Near Field Communication) standard of the 13.56 Mz frequency band. Alternatively, the proximity wireless communication unit 509 may process the proximity wireless communication of the ISO 18000 series standard, and in this case, may process the proximity wireless communication for the frequency band other than the 13.56 Mz frequency band. For example, the proximity wireless communication unit 509 can operate in a reader mode, a tag mode, or a bidirectional communication mode. Meanwhile, the proximity wireless communication unit 509 may be included in a communication resource for connecting the wireless terminal 500 to a communication network according to an object to be communicated nearby.

The USIM reader 510 is a generic term of a configuration for exchanging at least one data set with a universal subscriber identity module that is mounted or detached from the wireless terminal 500 based on the ISO / IEC 7816 standard , And the data set is exchanged in a half duplex communication manner through an APDU (Application Protocol Data Unit).

The certificate program 515 of the present invention is downloaded from a program providing server (for example, an Apple AppStore or the like) through a data network to which the communication resource can be connected, and is stored in the memory unit 511. The downloaded certificate program 515 operates in conjunction with a designated server, and can be manually activated by a user, or can be activated (or activated) automatically after user confirmation or automatically by receiving a message. Meanwhile, a separate certificate program 515 may be running in advance for activating the certificate program 515 after user confirmation or automatically, and thus the present invention is not limited thereto.

5, the certificate program 515 of the wireless terminal 500 includes a certificate recording unit 520 for recording a customer certificate in the USIM 600 detached from the wireless terminal 500, And a certificate applet 620 that performs a signature operation assigned to the USIM 600 detached from the wireless terminal 500. The certificate issuer 620 records the communication key in the USIM 600 detached from the wireless terminal 500, And an applet recording unit 530 that records the applet recording unit 530. Preferably, the designated signature operation includes receiving signature data and an instruction, generating a signature value of the signature target data using a customer certificate according to a received command, and transmitting the generated signature value using a communication key And encrypting the included signature data.

The certificate recording unit 520 may transmit a customer certificate to a designated area (e.g., USIM 600) of the USIM 600 detached from the wireless terminal 500 according to a designated certificate issuing procedure or a roaming procedure of a certificate issued To the WEF under DF [F300] of the IC chip 605).

The communication company key recording unit 525 sets the key value registered at the time of issuing the USIM 600 to be used for encryption or decryption in the USIM 600 or transmits the communication company key to the USIM 600 via the designated OTA Can be recorded.

The applet recording unit 530 may set the applet recorded in the USIM 600 at the time of manufacture or at the time of the USIM 600 to be used as the digital signature procedure inside the USIM 600 and the certificate applet 620 for encryption or decryption , Or write the certificate applet 620 to the USIM 600 via the designated OTA.

The financial company server 200 stores customer information for a customer using a financial transaction in a designated DB, and interacts with the OTA procedure of the customer certificate issuing procedure, the roaming procedure, the communication company key or the certificate applet 620, The customer information using the wireless terminal 500 in which the USIM 600 having the certificate applet 620 storing the communication company key and performing the designated signature operation is detached is checked, And stores identification information for identifying the wireless terminal 500 from which the same USIM 600 is detached. The identification information identifies a telephone number, a communication number assigned to the wireless terminal 500, a serial number stored in the memory unit 511 or the SE of the wireless terminal 500, a key value, and the certificate program 515 The identification value, the identification value uniquely assigned by the server of at least one of the management server 300, the communication server, and the financial service server 200. [

The financial company server 200 confirms the signature target data to be signed using the customer certificate provided in the USIM 600 detached from the customer-owned wireless terminal 500 in order to establish the transaction procedure in conjunction with the transaction procedure do. For example, the signature subject data may include account transfer details that require a customer's electronic signature while performing account transfer.

The financial company server 200 is provided with a certificate applet 620 that processes the verified signature object data to be encrypted through a financial institution key managed by the financial institution, stores a customer certificate and a communication company key, and performs a designated signature operation The identification information identifying the customer-owned wireless terminal 500 in which the USIM 600 is detached is identified.

The financial company server 200 transmits to the designated management server 300 the signature subject data encrypted with the financial company key and the identification information about the customer-owned wireless terminal 500 deviating from the USIM 600.

The management server 300 can communicate with N (N > = 1) financial company servers 200, and receives a signature encrypted with a financial company key from a financial company server 200 that has transmitted signature data among N financial server 200 And receives the identification information for the customer-owned wireless terminal 500, which receives the target data, stores the customer certificate and the communication key, and the USIM 600 equipped with the certificate applet 620 that performs the specified signature operation is detached .

The management server 300 transmits a secure storage medium 215 (for example, at least one of SAM, HSM, and TSM) for storing and managing a financial key provided from N financial server servers 200 according to a designated key exchange procedure And an encryption / decryption module 210 for encrypting or decrypting designated data using N financial keys provided in the secure storage medium 215 according to a designated algorithm, The encrypted signature object data is decrypted through the financial key provided in the secure storage medium 215 by using the encryption / decryption module 210, .

The management server 300 is configured to store at least one of a security storage medium 315 (e.g., SAM, HSM, TSM) for storing and managing a communication key provided from the communication company server 400 (or USIM 600) And an encryption / decryption module 310 for encrypting or decrypting the designated data using a communication key provided in the secure storage medium 315 according to a specified algorithm, The encryption / decryption module 310 encrypts the decrypted signature object data through the encryption / decryption module 210 using the communication key.

The management server 300 transmits the signature target data encrypted again with the communication company key to the communication company server 400. According to the embodiment of the present invention, the management server 300 allows the certificate applet 620 included in the USIM 600, which is detached from the customer-owned wireless terminal 500 corresponding to the identification information, And transmits the command to the communication company server 400 together with the encrypted signature target data.

The communication company server 400 receives the encrypted subject data from the management server 300 via the communication company key and provides it to the certificate program 515 of the wireless terminal 500. Preferably, the communication company server 400 receives the command word together with the signature target data encrypted with the communication company key from the management server 300, and provides the command word to the certificate program 515 of the wireless terminal 500 .

5, the certificate program 515 of the wireless terminal 500 is encrypted in the financial company server 200 through a financial company key provided in the financial company server 200 from the communication company server 400, And a signing target receiving unit 535 for receiving the signing target data decrypted by the server 300 and encrypted using the communication company key. The USIM 600 detached from the wireless terminal 500 is provided with a customer certificate, And a USIM verification unit 540 for verifying whether a certificate applet 620 storing a key and performing a specified signature operation is provided.

The signing object receiving unit 535 receives the signing object from the communication company server 400 through at least one communication unit of the wireless network communication unit 508 and the short range wireless communication unit 507 through the financial transaction server 200 and decrypted by the management server 300 and receives the encrypted signature data via the communication key again. The signature object receiver 535 may receive a command for causing the certificate applet 620 included in the USIM 600 to perform a specified signature operation.

According to an aspect of the present invention, the signature subject receiver 535 may be configured to receive the encrypted signature subject data from the communication company server 400 via the wireless network communication unit 508. [

The USIM confirmation unit 540 stores the customer certificate and the communication key in the USIM 600 detached from the wireless terminal 500 at a predetermined time point before, A certificate applet 620 that performs a signature operation is provided. For example, the USIM identification unit 540 reads the ATR response by applying the RST signal to the USIM 600 through the USIM reader 510, stores the customer certificate and the communication company key in the USIM 600 And a certificate applet 620 that performs a specified signature operation is provided.

5, the certificate program 515 of the wireless terminal 500 includes a signature request unit 545 for injecting the received encrypted signature subject data into the USIM 600, (600) via the communication key provided in the USIM (600), using the signature object data in accordance with the designated signature operation of the certificate applet (620) provided in the USIM (600) A signature data receiver 550 for receiving the signature data and a signature data transmitter 555 for transmitting the encrypted signature data to the communication company server 400.

The signature requesting unit 545 transmits a command for causing the encrypted applet 620 included in the USIM 600 and the encrypted signature subject data received through the signature receiving unit 535 to perform a designated signature operation, USIM (600). The command may include at least one of an instruction confirmed through the communication company server 400, an instruction confirmed through the management server 300, and a command determined through the certificate program 515.

The USIM 600 includes an encryption / decryption module 615 for encrypting or decrypting data designated through the communication key according to a specified algorithm. When the injected signature subject data is encrypted using a communication key, The certificate applet 620 of the USIM 600 decrypts the signature target data encrypted with the communication party key via the encryption decryption module 615 based on the command.

The certificate applet 620 of the USIM 600 verifies the customer certificate included in the USIM 600 based on the command and performs an algorithm (e.g., an RSA digital signature algorithm or an ECDSA digital signature Algorithm) to generate signature data by performing an electronic signature procedure on the signature subject data. Preferably, the signature data is preferably generated in an electronic signature format such as [PKCS7], [RFC2630] or the like.

The certificate applet 620 of the USIM 600 encrypts the generated signature data with the communication party key through the encryption decryption module 615 at the same time that the signature data is generated and transmits the certificate program 515 ). The signature data encrypted through the communication company key is encrypted in the USIM 600 using the communication company key as an encryption key or encrypted in the USIM 600 through a cryptographic key generated using the communication company key, A key value exchanged between the USIM 600 and the communication company server 400 based on the communication company key is encrypted in the USIM 600 using the key value as an encryption key or the USIM 600 and the management server 400 300 may be encrypted using at least one of those encrypted within the USIM 600 using the exchanged key value as an encryption key.

The signature data receiving unit 550 receives signature data signed in the USIM 600 through the USIM reader 510 and encrypted using a communication key. The signature data transmission unit 555 transmits the signature data signed in the USIM 600 and encrypted with the communication company key to the communication company server 400. According to an aspect of the present invention, the signature data transmission unit 555 may be configured to transmit the encrypted signature data to the communication company server 400 via the wireless network communication unit 508. [

The communication company server 400 receives the encrypted signature data from the wireless terminal 500 and transmits the encrypted signature data to the management server 300.

The management server 300 generates the signature data using the signature object data according to the designated signature operation of the certificate applet 620 included in the USIM 600 from the communication company server 400, The encrypted signature data in the USIM 600 is received via the certificate program 515 and the communication company server 400 of the wireless terminal 500 via the communication company key.

According to an embodiment of the present invention, the signature data encrypted through the communication key in the USIM 600 may include an integrity verification value for the encrypted signature data, A procedure for authenticating the validity of the integrity verification value included in the signature data encrypted by the key can be performed.

The management server 300 confirms the encrypted signature data in the USIM 600 through the communication key and transmits the encrypted signature data to the management server 300 through the encryption decryption module 310, And processes the signature data to decrypt it.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The management server 300 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature process using the customer certificate is performed, A procedure for authenticating the medium authentication value included in the data can be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, (300) confirms the exchanged key value according to the key exchange procedure or compares the generated value according to the same algorithm and procedure as the code generation algorithm of the USIM (600) with the key value to authenticate the validity . Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the communication company server 400 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

The management server 300 decrypts the encrypted signature data in the USIM 600 and processes the decrypted signature data again through the encryption decryption module 210 through the financial key.

According to the method of the present invention, while the process of encrypting the decrypted signature data through the financial key is performed, the management server 300 encrypts the decrypted signature data through the financial key And the integrity authentication value may be included in the signature data encrypted through the financial key.

The management server 300 transmits the signature data encrypted through the financial institution key to the financial company server 200. The financial company server 200 is signed from the management server 300 in the USIM 600 and encrypted in the USIM 600 through the communication company key, and decrypted by the management server 300, And receives the encrypted signature data.

The financial company server 200 decrypts the signature data encrypted by the management server 300 through the encryption decryption module 210 through the financial company key.

According to an embodiment of the present invention, the signature data encrypted through the financial agent key in the management server 300 may include an integrity verification value for the encrypted signature data, A procedure for authenticating the validity of the integrity verification value included in the signature data encrypted by the key can be performed.

When the signature data encrypted through the financial agent key is decrypted, the financial company server 200 performs a procedure for authenticating the validity of the decrypted signature data. Preferably, the financial company server 200 transmits the signature data (or a part of the signature data) to the designated authentication server 105, requests authentication of the signature data, and receives the authentication result.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The financial company server 200 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature process using the customer certificate is performed, A procedure for authenticating the medium authentication value included in the data can be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, (200) verifies and compares the exchanged key value according to the key exchange procedure or compares a value generated according to the same algorithm and procedure as the code generation algorithm of the USIM (600) with the key value to authenticate the validity . Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the management server 300 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

According to the embodiment of the present invention, the signature data may include a server authentication value for authenticating the reliability of the management server 300, which decrypts the signature data and the encrypted signature data in the USIM 600, And the financial company server 200 may perform a procedure for authenticating a server authentication value included in the signature data. For example, the server authentication value may include at least one of a key value exchanged according to a designated key exchange procedure and a key value generated according to a code generation algorithm designated by the management server 300, (200) checks the exchanged key value according to the key exchange procedure or compares the generated value with the key value according to the same algorithm and procedure as the code generation algorithm of the management server (300) can do. Meanwhile, the financial company server 200 and the management server 300 exchange server certificates, and the financial company server 200 authenticates the reliability of the management server 300 using the exchanged server certificates can do. Meanwhile, the procedure for authenticating the reliability of the management server 300 may include a process of authenticating the reliability of the communication channel 300 formed between the management server 300 and the financial company server 200 before or after the signature data is received, And in this case, the process of authenticating the reliability of the management server 300 using the signature data may be omitted.

FIG. 6 is a functional block diagram of a USIM 600 according to an embodiment of the present invention.

More specifically, FIG. 6 illustrates a functional configuration of the USIM 600 that encrypts signed data signed by a communication key while signing data to be signed through a customer certificate. In the technical field of the present invention, Those skilled in the art will appreciate that various implementations of the functionality of the USIM 600 may be made with reference to and / or modified with respect to FIG. 6, but the present invention includes all such contemplated embodiments , The technical characteristics thereof are not limited only by the method shown in FIG.

The USIM 600 is an SIM type card having an IC chip 605 and includes an input / output interface 655 including at least one contact connected to the USIM reader 510 of the wireless terminal 500, A memory unit 660 for storing at least one program code and a data set for an IC chip, and a memory unit 660 connected to the input / output interface 655 for storing the program code for the IC chip in accordance with at least one command transmitted from the wireless terminal 500 Output interface 655. The certificate applet 620 for performing a signature operation designated in the present invention includes a program code for the IC chip, And stored in the memory unit 660 and calculated by the controller 610. Hereinafter, the functional configuration of the certificate applet 620 will be described in the control unit 610. FIG.

According to the present invention, the customer certificate is recorded in the WEF under DF [F300] of the memory unit 660. The communication party key may be stored in the designated WEF of the memory unit 660, or may be stored in the SIM area.

Referring to FIG. 6, the memory unit 660 includes a DF (Dedicated File) disposed under the MF (Master File) and a WEF (Working Element File) disposed under the DF. Preferably, the customer certificate may be stored in DF [F300]. The WEF, which is placed under DF [F300], is used to generate user information (WEF [F301]), type information (WEF [F302]), signature private key (WEF [F303] (WEF [F305]), and smart card identification information (WEF [F306]). The user information is defined as a 52-byte area used for recording user-related information, the type information is defined as a 12-byte area as the discriminator information of the card, and the signature private key is used for recording the user's private key information for signature And the signature certificate is defined as a 2080-byte area used for recording the signature certificate of the user. The random number for generating the identification number stores a random random number of 160 or more bits used for generating the identification number , And the smart card identification information can be defined as a 6-byte area.

Meanwhile, the communication company key may be stored in the WEF disposed under the DF [F400], or may be stored in a separate area according to the implementation method. May be stored in the secret key area for encryption in the case where the communication company key is placed under DF [F400], or may be stored by defining a separate WEF placed under DF [F400].

The financial company server 200 stores customer information for a customer using a financial transaction in a designated DB, and interacts with the OTA procedure of the customer certificate issuing procedure, the roaming procedure, the communication company key or the certificate applet 620, The customer information using the wireless terminal 500 in which the USIM 600 having the certificate applet 620 storing the communication company key and performing the designated signature operation is detached is checked, And stores identification information for identifying the wireless terminal 500 from which the same USIM 600 is detached. The identification information identifies a telephone number, a communication number assigned to the wireless terminal 500, a serial number stored in the memory unit 660 or the SE of the wireless terminal 500, a key value, and the certificate program 515 The identification value, the identification value uniquely assigned by the server of at least one of the management server 300, the communication server, and the financial service server 200. [

The financial company server 200 confirms the signature target data to be signed using the customer certificate provided in the USIM 600 detached from the customer-owned wireless terminal 500 in order to establish the transaction procedure in conjunction with the transaction procedure do. For example, the signature subject data may include account transfer details that require a customer's electronic signature while performing account transfer.

The financial company server 200 is provided with a certificate applet 620 that processes the verified signature object data to be encrypted through a financial institution key managed by the financial institution, stores a customer certificate and a communication company key, and performs a designated signature operation The identification information identifying the customer-owned wireless terminal 500 in which the USIM 600 is detached is identified.

The financial company server 200 transmits to the designated management server 300 the signature subject data encrypted with the financial company key and the identification information about the customer-owned wireless terminal 500 deviating from the USIM 600.

The management server 300 can communicate with N (N > = 1) financial company servers 200, and receives a signature encrypted with a financial company key from a financial company server 200 that has transmitted signature data among N financial server 200 And receives the identification information for the customer-owned wireless terminal 500, which receives the target data, stores the customer certificate and the communication key, and the USIM 600 equipped with the certificate applet 620 that performs the specified signature operation is detached .

The management server 300 transmits a secure storage medium 215 (for example, at least one of SAM, HSM, and TSM) for storing and managing a financial key provided from N financial server servers 200 according to a designated key exchange procedure And an encryption / decryption module 210 for encrypting or decrypting designated data using N financial keys provided in the secure storage medium 215 according to a designated algorithm, The encrypted signature object data is decrypted through the financial key provided in the secure storage medium 215 by using the encryption / decryption module 210, .

The management server 300 is configured to store at least one of a security storage medium 315 (e.g., SAM, HSM, TSM) for storing and managing a communication key provided from the communication company server 400 (or USIM 600) And an encryption / decryption module 310 for encrypting or decrypting the designated data using a communication key provided in the secure storage medium 315 according to a specified algorithm, The encryption / decryption module 310 processes the encrypted data to be decrypted through the encryption key using the communication key.

The management server 300 transmits the signature target data encrypted again with the communication company key to the communication company server 400. According to the embodiment of the present invention, the management server 300 allows the certificate applet 620 included in the USIM 600, which is detached from the customer-owned wireless terminal 500 corresponding to the identification information, And transmits the command to the communication company server 400 together with the encrypted signature target data.

The communication company server 400 receives the encrypted subject data from the management server 300 via the communication company key and provides it to the certificate program 515 of the wireless terminal 500. Preferably, the communication company server 400 receives the command word together with the signature target data encrypted with the communication company key from the management server 300, and provides the command word to the certificate program 515 of the wireless terminal 500 .

The certificate program 515 of the wireless terminal 500 receives the signature subject data encrypted with the communication company key from the communication company server 400 and injects it into the USIM 600. At this time, And injects into the USIM 600 an instruction to cause the certificate applet 620 to perform the specified signature operation.

The USIM 600 maintains a state in which a customer certificate, a communication key and a certificate applet 620 are recorded in a state where the USIM 600 is inserted into the USIM reader 510 of the wireless terminal 500.

Referring to FIG. 6, the USIM 600 includes an authentication procedure performing unit 625 that performs an authentication procedure for generating signature data through the customer certificate and encrypting the signature data through the communication company key, And may be omitted in accordance with the method of operation, integrated into a procedure for receiving or decoding signature data, or integrated into a procedure for generating or encrypting signature data.

The authentication procedure execution unit 625 generates signature data through the customer certificate and encrypts the PIN value from the certificate program 515 of the wireless terminal 500 to perform the operation of encrypting the signature data through the communication company key. And authenticate the validity of the received PIN value.

The authentication procedure execution unit 625 checks the financial institution authentication information for authenticating the financial institution server 200 through the certificate program 515 of the wireless terminal 500 and authenticates the financial institution through the financial institution authentication information can do. For example, the financial institution authentication information may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm designated by the financial company server 200, The performing unit 625 may verify the validated key value by comparing the key value with the key value according to the same algorithm and procedure as the code generation algorithm, or may verify the validity.

According to the embodiment of the present invention, the financial institution authentication information is transmitted from the financial company server 200 via a separate channel, received via the certificate program 515 of the wireless terminal 500, And may be received via the certificate program 515 of the wireless terminal 500. When the financial institution authentication information is included in the signature subject data, the authentication procedure performing unit 625 performs a process of receiving (or decrypting) the signature subject data from the certificate program 515 of the wireless terminal 500 The authentication procedure for the financial institution authentication information can be performed.

The authentication procedure performing unit 625 checks the management server authentication information for authenticating the management server 300 through the certificate program 515 of the wireless terminal 500, You can authenticate. For example, the manager authentication information may include at least one of a key value exchanged according to a designated key exchange procedure, and a key value generated according to a code generation algorithm designated by the management server 300, The performing unit 625 may verify the validated key value by comparing the key value with the key value according to the same algorithm and procedure as the code generation algorithm, or may verify the validity.

According to the embodiment of the present invention, the manager authentication information is transmitted from the management server 300 via a separate channel, and then received via the certificate program 515 of the wireless terminal 500, And may be received via the certificate program 515 of the wireless terminal 500. When the supervisor authentication information is included in the signature target data, the authentication procedure performing unit 625 performs a process of receiving (or decrypting) the signature target data from the certificate program 515 of the wireless terminal 500 The authentication procedure for the financial institution authentication information can be performed.

The authentication procedure performing unit 625 generates the signature data using the customer certificate, and transmits the USIM 600 having the certificate applet 620, which encrypts the signature data using the communication company key, And transmits the media authentication value to the certificate program 515 of the wireless terminal 500. The media authentication value is transmitted to the management server 300, Or may be transmitted to the financial company server 200 via the management server 300 and authenticated. Meanwhile, the medium authentication value may be included in the signature data and transmitted.

6, the USIM 600 includes a signature target receiving unit 630 that receives signature target data from the certificate program 515 of the wireless terminal 500, And a signature subject decryption unit 635 for decrypting the encrypted signature subject data using the communication company key.

The signature receiver 630 receives signature data to be signed through the client certificate from the certificate program 515 of the wireless terminal 500. According to the embodiment of the present invention, the signature receiver 630 generates a signature value of the signature data using the customer certificate from the certificate program 515 of the wireless terminal 500, And receives a command requesting to encrypt the signature data including the generated signature value.

According to an embodiment of the present invention, the signature target data is encrypted in the financial company server 200 through a financial company key provided in the specified financial company server 200, decrypted by the designated management server 300, Lt; / RTI > may include encrypted data via the Internet.

When the signature subject data received through the signature subject receiver 630 is encrypted, the signature subject decryption unit 635 decrypts the encrypted signature subject data using the communication subject key stored in the memory unit 660 . According to an embodiment of the present invention, the USIM 600 may include an encryption / decryption module 615 for encrypting or decrypting designated data using a communication key provided in the memory unit 660 according to a specified algorithm. And the signature subject decryption unit 635 may process the encrypted signature subject data to be decrypted through the encryption decryption module 615. [

Referring to FIG. 6, the USIM 600 includes a signature processing unit 640 for generating signature data for the signature target data through the customer certificate, a signature processing unit 640 for encrypting the generated signature data using the communication company key A signature data encryption unit 645 and a signature data transmission unit 650 for transmitting the encrypted signature data to the certificate program 515 of the wireless terminal 500.

The signature processing unit 640 checks the signature subject data received through the signature subject receiver 630 or the signature subject data decrypted through the signature subject decryption unit 635 and transmits the signature key corresponding to the customer certificate (E. G., An RSA algorithm or an ECDSA algorithm) to generate a signature value by signing the signature target data. Here, the signature value is a value generated by the digital signature algorithm.

The signature processing unit 640 may apply an option value for generating a signature value specified in the digital signature algorithm, and the signature value includes a signature verification key for authenticating the validity of the signature value according to the option value .

The signature processing unit 640 generates signature data including the signature value. If the signature value is generated in the form of a designated digital signature statement, the generated signature value may be signature data. On the other hand, when the generated signature value is not the designated digital signature type, the signature processing unit 640 can generate the signature data by processing the signature value into the designated digital signature type.

According to the method of the present invention, the signature data is transmitted to the USIM 600 in which the digital signature process using the customer certificate is performed while applying the designated digital signature type (e.g., [PKCS7], [RFC2630] A media authentication value for authentication may be included.

The signature data encryption unit 645 encrypts the generated signature data using a communication key stored in the memory unit 660. According to an embodiment of the present invention, the USIM 600 may include an encryption / decryption module 615 for encrypting or decrypting designated data using a communication key provided in the memory unit 660 according to a specified algorithm. And the signature data encryption unit 645 can process the signature data to be encrypted through the encryption / decryption module 615. [

The signature data transmission unit 650 transmits the encrypted signature data to the certificate program 515 of the wireless terminal 500. The encrypted signature data may be transmitted in a transport channel structure that can be transmitted to the designated communication company server 400 (or the management server 300) via the certificate program 515 of the wireless terminal 500. In this case, the certificate program 515 of the wireless terminal 500 may transmit the encrypted signature data to the designated communication company server 400 (or the management server 300) without processing the encrypted signature data into the transmission channel structure Lt; / RTI >

The certificate program 515 of the wireless terminal 500 receives the encrypted signature data from the USIM 600 and transmits it to the communication company server 400. The communication company server 400 receives the encrypted signature data from the wireless terminal 500 and transmits the encrypted signature data to the management server 300.

The management server 300 generates the signature data using the signature object data according to the designated signature operation of the certificate applet 620 included in the USIM 600 from the communication company server 400, The encrypted signature data in the USIM 600 is received via the certificate program 515 and the communication company server 400 of the wireless terminal 500 via the communication company key.

According to an embodiment of the present invention, the signature data encrypted through the communication key in the USIM 600 may include an integrity verification value for the encrypted signature data, A procedure for authenticating the validity of the integrity verification value included in the signature data encrypted by the key can be performed.

The management server 300 confirms the encrypted signature data in the USIM 600 through the communication key and transmits the encrypted signature data to the management server 300 through the encryption decryption module 310, And processes the signature data to decrypt it.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The management server 300 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature process using the customer certificate is performed, A procedure for authenticating the medium authentication value included in the data can be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, (300) confirms the exchanged key value according to the key exchange procedure or compares the generated value according to the same algorithm and procedure as the code generation algorithm of the USIM (600) with the key value to authenticate the validity . Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the communication company server 400 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

The management server 300 decrypts the encrypted signature data in the USIM 600 and processes the decrypted signature data again through the encryption decryption module 210 through the financial key.

According to the method of the present invention, while the process of encrypting the decrypted signature data through the financial key is performed, the management server 300 encrypts the decrypted signature data through the financial key And the integrity authentication value may be included in the signature data encrypted through the financial key.

The management server 300 transmits the signature data encrypted through the financial institution key to the financial company server 200. The financial company server 200 is signed from the management server 300 in the USIM 600 and encrypted in the USIM 600 through the communication company key, and decrypted by the management server 300, And receives the encrypted signature data.

The financial company server 200 decrypts the signature data encrypted by the management server 300 through the encryption decryption module 210 through the financial company key.

According to an embodiment of the present invention, the signature data encrypted through the financial agent key in the management server 300 may include an integrity verification value for the encrypted signature data, A procedure for authenticating the validity of the integrity verification value included in the signature data encrypted by the key can be performed.

When the signature data encrypted through the financial agent key is decrypted, the financial company server 200 performs a procedure for authenticating the validity of the decrypted signature data. Preferably, the financial company server 200 transmits the signature data (or a part of the signature data) to the designated authentication server 105, requests authentication of the signature data, and receives the authentication result.

According to an embodiment of the present invention, the signature data may include a signature verification key of the digital signature procedure performed through the certificate applet 620 of the USIM 600. [ For example, if 'INCLUDE_KEY_HASH' is applied to the option of the signature function called in the certificate applet 620, the signature data may include a signature verification key of the digital signature procedure performed within the USIM 600. The financial company server 200 may perform a procedure for authenticating the signature verification key included in the signature data.

According to the embodiment of the present invention, the signature data may include a medium authentication value for authenticating the validity of the USIM 600 in which the digital signature process using the customer certificate is performed, A procedure for authenticating the medium authentication value included in the data can be performed. For example, the media authentication value may include at least one of a key value exchanged according to a designated key exchange procedure, a key value generated according to a code generation algorithm specified in the USIM 600, (200) verifies and compares the exchanged key value according to the key exchange procedure or compares a value generated according to the same algorithm and procedure as the code generation algorithm of the USIM (600) with the key value to authenticate the validity . Meanwhile, the procedure for authenticating the authenticity of the USIM 600 may be authenticated through a communication channel via the management server 300 at a designated time point before or after the signature data is received without being associated with the signature data, In this case, the process of authenticating the validity of the USIM 600 using the signature data may be omitted.

According to the embodiment of the present invention, the signature data may include a server authentication value for authenticating the reliability of the management server 300, which decrypts the signature data and the encrypted signature data in the USIM 600, And the financial company server 200 may perform a procedure for authenticating a server authentication value included in the signature data. For example, the server authentication value may include at least one of a key value exchanged according to a designated key exchange procedure and a key value generated according to a code generation algorithm designated by the management server 300, (200) checks the exchanged key value according to the key exchange procedure or compares the generated value with the key value according to the same algorithm and procedure as the code generation algorithm of the management server (300) can do. Meanwhile, the financial company server 200 and the management server 300 exchange server certificates, and the financial company server 200 authenticates the reliability of the management server 300 using the exchanged server certificates can do. Meanwhile, the procedure for authenticating the reliability of the management server 300 may include a process of authenticating the reliability of the communication channel 300 formed between the management server 300 and the financial company server 200 before or after the signature data is received, And in this case, the process of authenticating the reliability of the management server 300 using the signature data may be omitted.

FIG. 7 is a diagram illustrating a USIM-based digital signature selection and request process according to an embodiment of the present invention.

FIG. 7 is a flowchart illustrating the operation of the USIM 600 according to an exemplary embodiment of the present invention. Referring to FIG. 7, the USIM 600 is signed using a customer certificate provided in the USIM 600 detached from the customer- 7 is a flowchart illustrating a process of selecting and requesting a USIM-based digital signature of a method for encrypting signature data using a communication company key provided in the present invention. As a person skilled in the art, (E.g., omitting some steps or changing the order) of the USIM-based digital signature selection and request process, the present invention can be applied to all of the above- And the technical features thereof are not limited only by the method shown in FIG. For convenience, FIG. 7 illustrates various key exchange and authentication procedures to be performed in the financial company server 200 for the USIM-based electronic signature according to the present invention. I will explain. The authentication procedure omitted in FIG. 7 for convenience will be described with reference to FIGS. 2 to 6.

Referring to FIG. 7, a mobile terminal 500 having a customer terminal 100 or a USIM 600 requests a transaction (for example, financial transaction, payment settlement, etc.) requiring an electronic signature to the financial institution server 200 700), the financial company server 200 checks whether the digital signature procedure should be performed in order to establish the requested transaction while performing the requested transaction procedure (705). If a digital signature is required to establish the requested transaction, the financial company server 200 has a certificate to perform the digital signature procedure to the customer terminal 100 or the wireless terminal 500 equipped with the USIM 600 The mobile terminal 500 having the customer terminal 100 or the USIM 600 selects the certificate location (715).

The financial company server 200 determines whether the selected certificate location is a USIM 600 provided in the customer-owned wireless terminal 500 (operation 720). If the selected certificate location is not the USIM 600, the wireless terminal 500 having the customer terminal 100 or the USIM 600 performs an electronic signature procedure using the customer certificate stored at the selected certificate location (725).

Meanwhile, if the selected certificate location is confirmed by the USIM 600, the financial company server 200 checks the signature subject data to be signed through the USIM 600 in cooperation with the transaction procedure (730) (740), checks the identification information of the customer-owned wireless terminal (500) provided with the USIM (600) for processing the signature and encryption of the signature target data (740) 300) and the identification information of the customer-owned wireless terminal 500 (745).

FIG. 8 is a diagram illustrating a process of relaying a USIM-based digital signature request according to an embodiment of the present invention.

More specifically, in FIG. 8, the management server 300 receives and decrypts the signature target data encrypted by the nth financial institution key 200 from the nth financial company server 200 among the N financial server 200, When the customer-owned wireless terminal 500 having the USIM 600 re-encrypts the decrypted signature target data with the mth communication company key of the mth communication company to which the customer's owned wireless terminal 500 is subscribed and transmits the encrypted data to the communication company server 400, And transmits the encrypted signature target data to the customer-owned wireless terminal 500 having the USIM 600. Those skilled in the art will appreciate that FIG. It is possible to refer to and / or modify the various methods (for example, omitting some steps or changing the order) for the USIM-based digital signature request relay process, All the methods to be inferred are included, and the technical features thereof are not limited only by the method shown in FIG. For convenience, FIG. 8 illustrates a key exchange and authentication procedure to be performed in the management server 300 and / or the communication company server 400 for the USIM-based digital signature according to the present invention, The request relaying process will be mainly described and explained. The authentication procedure omitted in FIG. 8 will be described with reference to FIGS. 2 to 6.

Referring to FIG. 8, the management server 300 receives, from the n-th financial server 200 requesting the USIM-based digital signature through the process shown in FIG. 7 among the N financial server 200, The encrypted signature subject data and the identification information of the customer-owned wireless terminal 500 are received (800).

The management server 300 decrypts the encrypted signature subject data through the nth financial institution key (805). The management server 300 identifies an mth communication company corresponding to the identification information among M communication companies (810), and at the same time when the encrypted signature target data is decrypted, the management server 300 transmits the decrypted signature target data (815), confirms (820) a command for causing the USIM (600) of the wireless terminal (500) corresponding to the identification information to perform an operation of signing and encrypting the signature target data, (825) the signature subject data encrypted with the mth communication company key, the identification information of the wireless terminal 500, and an instruction (optional) for performing the operation, to the mth communication company server 400.

The communication company server 400 receives the signature subject data encrypted with the communication server key from the management server 300 and the identification information and the command (optional) of the wireless terminal 500 (830). Meanwhile, the command may be verified by the communication company server 400 according to the method of operation.

The communication company server 400 authenticates the validity of the USIM 600 to perform the digital signature procedure using the identification information and / or the validity of the wireless terminal 500 having the USIM 600 835). If the validity is not authenticated, the communication company server 400 transmits a USIM-based signature error to the management server 300 (845), and the management server 300 transmits the USIM-based signature error (850).

If the validity is not authenticated, the communication company server 400 transmits the encrypted signature data and the command (optional) to the wireless terminal 500 corresponding to the identification information (840).

FIG. 9 is a diagram illustrating a USIM-based digital signature and encryption process according to an embodiment of the present invention.

In more detail, FIG. 9 shows signature data to be signed through the customer certificate in the USIM 600 according to a request of the certificate program 515 of the wireless terminal 500 to generate signature data, 9 is a flowchart illustrating a process of encrypting and decrypting a digital signature according to an exemplary embodiment of the present invention. Referring to FIG. 9, The present invention may be embodied in all of the above-described embodiments, and the technical features of the present invention are not limited only by the method shown in FIG. For convenience, FIG. 9 shows a key exchange and authentication procedure to be performed in the communication company server 400, the wireless terminal 500, and the USIM 600 for the USIM-based digital signature according to the present invention, Based digital signature and encryption process will be mainly shown and explained. The authentication procedure omitted in FIG. 9 for convenience will be described with reference to FIGS. 2 to 6.

9, the certificate program 515 of the wireless terminal 500 receives (900) the encrypted signature data from the communication company server 400 through the process shown in FIG. 8 through the communication key, 600) receives an internal signature and encryption operation command (900), or internally determines (900) the command.

The certificate program 515 of the wireless terminal 500 determines whether the USIM 600 detached from the wireless terminal 500 can perform digital signature and encryption processing on the signature subject data based on the command And validates the validity of the USIM 600 (905).

If the validity of the USIM 600 is not authenticated, the certificate program 515 of the wireless terminal 500 transmits a USIM-based signature error to the communication company server 400 (910), and the communication company server 400 And receives the USIM-based signature error (910) and transmits it to the financial company server (200) via the management server (300).

Meanwhile, when the validity of the USIM 600 is authenticated, the certificate program 515 of the wireless terminal 500 injects (915) the signature target data and the command encrypted through the communication key into the USIM 600, The USIM 600 receives the encrypted signature data and the command from the certificate program 515 of the wireless terminal 500 via the communication company key in the USIM 600 (920).

The USIM 600 decrypts the encrypted signature target data through a communication key (925), generates signature data in the form of a designated digital signature statement by signing the decrypted signature target data using the customer certificate (930 ). The USIM 600 encrypts (935) the signature data via a communication key, and transmits the encrypted signature data via the communication key to the certificate program 515 of the wireless terminal 500 (940).

The certificate program 515 of the wireless terminal 500 receives the encrypted signature data from the USIM 600 through the communication key and transmits the encrypted signature data to the communication company server 400 in the USIM 600, And transmits the signature data signed through the certificate and encrypted through the communication key (950).

The communication company server 400 receives (955) the signature data encrypted in the USIM 600 through the customer certificate and encrypted using the communication company key, and transmits the signed and encrypted signature data in the USIM 600 to the management server (960).

FIG. 10 is a diagram illustrating a USIM-based digital signature authentication process according to an embodiment of the present invention.

In more detail, FIG. 10 illustrates a process of authenticating signature data that is signed by a customer certificate in the USIM 600 and encrypted using a communication company key, and a person skilled in the art , It may be possible to refer to and / or modify the FIG. 10 to various implementations of the USIM-based digital signature authentication process (e.g., omitting some steps or changing the order) All the methods to be inferred are included, and the technical features thereof are not limited only by the method shown in FIG. For convenience, FIG. 10 shows a key exchange and authentication procedure to be performed in the management server 300, the financial company server 200, and the like for the USIM-based digital signature according to the present invention, As shown in FIG. The authentication procedure omitted in FIG. 10 will be described with reference to FIGS. 2 to 6.

Referring to FIG. 10, the management server 300 receives, from the m-th communication company server 400 performing the process shown in FIG. 9, among M communication company servers 400, And receives the encrypted signature data through the issuer key (1000).

The management server 300 decrypts the encrypted signature data through the mth communication company key and re-encrypts the decrypted signature data through the nth financial company key (1010) And transmits the signature data encrypted by the key to the nth financial institution server 200 (1015).

The financial company server 200 corresponding to the nth financial institution receives the encrypted signature data from the management server 300 through the financial company key 1020, decrypts the encrypted signature data through the financial company key 1025, And performs an authentication procedure for the decrypted signature data (1030).

If the decrypted signature data is not authenticated, the financial company server 200 transmits a USIM-based signature error to the customer terminal 100 requesting the transaction or the wireless terminal 500 having the USIM 600 (1035) , The wireless terminal 500 having the customer terminal 100 or the USIM 600 receives and outputs the USIM-based signature error (1035).

Meanwhile, when the decrypted signature data is authenticated, the financial company server 200 authenticates that the transaction for the requested transaction procedure is established from the customer terminal 100 or the wireless terminal 500 having the USIM 600, The mobile terminal 500 having the customer terminal 100 or the USIM 600 requesting the transaction performs the remaining procedure of the established transaction procedure from the financial server 200 to the inside of the USIM 600 And receives and outputs the transaction result of performing the transaction procedure using the signed and encrypted signature data (1045).

100: customer terminal 200: financial company server
210: encryption / decryption module 215: secure storage medium
300: management server 305: signature subject receiver
310: An encryption / decryption module 315: a secure storage medium
320: signature target decryption unit 325:
330: command verification unit 335: signature subject relay unit
340: signature data receiver 345: signature data decoder
350: signature data re-encryption unit 355: authentication processing unit
360: signature data relay unit 400:
500: wireless terminal 600: USIM

Claims (14)

1. A method for processing an aspiration-based digital signature of an administrator running on a management server communicating with a financial company server,
A Universal Subscriber Identity Module (USIM) equipped with a certificate applet storing a customer certificate and a communication key from an nth (1? N? N) financial company server among N (N? 1) Comprising: a first step of receiving identification information about a customer-owned wireless terminal and data to be signed encrypted through a first financial key;
A second step of causing the encrypted signature target data to be decrypted through the nth financial key stored in the designated secure storage medium;
(1? M? M) corresponding to the identification information among the M (M? 1) communication companies, encrypts the decrypted signature target data again through the mth communication company key stored in the designated secure storage medium A third step of processing the data to be processed;
A fourth step of transmitting the signature subject data encrypted through the mth communication company key to the mth communication company server;
Receiving, from the mth communication company server, signature data that is generated using the signature subject data according to a specified signature operation of a certificate applet included in the USIM and encrypted data in the USIM through an mth communication key provided in the USIM Step 5;
A sixth step of decrypting the signature data encrypted by the m company key stored in the designated secure storage medium;
A seventh step of re-encrypting the decrypted signature data through a first financial key stored in a designated secure storage medium; And
And transmitting the signature data encrypted through the nth financial institution key to the nth financial institution server.
2. The method of claim 1,
Generating a signature value of the data to be signed using the customer certificate according to the received command and encrypting the signature data including the generated signature value using the mth communication key The method of claim 1, further comprising:
The method according to claim 1,
Further comprising storing N financial key keys corresponding to N financial server servers in a designated security storage medium.
The method according to claim 1,
Storing M communication carrier keys corresponding to M communication company servers in a designated security storage medium.
The method according to claim 1,
Further comprising the step of confirming a command to cause the certificate applet provided in the USIM deviating from the customer-owned wireless terminal corresponding to the identification information to perform the specified signature operation,
And the fourth step includes transmitting the confirmed command to the mth communication company server.
2. The method according to claim 1,
And a sign value signed by at least one of an RSA algorithm and an ECDSA algorithm through the certificate applet of the USIM.
2. The method according to claim 1,
And a signature verification key of an electronic signature procedure performed through the certificate applet of the USIM.
8. The method according to claim 7,
Further comprising the step of verifying the validity of the signature verification key included in the signature data.
The method according to claim 1,
Further comprising the step of authenticating the validity of the USIM for generating and encrypting the signature data.
2. The method according to claim 1, wherein the signature data encrypted through the communication company key includes:
Encrypted in the USIM using the communication company key as an encryption key,
Encrypted in the USIM through a cryptographic key generated using the communication company key,
A key value exchanged between the USIM and the communication company server based on the communication company key is used as an encryption key,
And a key value exchanged between the USIM and the management server based on the communication company key as an encryption key and encrypted in the USIM.
2. The method according to claim 1, wherein the signature data encrypted through the communication company key includes:
And an integrity verification value of the encryption performed in the USIM using the communication company key.
12. The method of claim 11,
Authenticating the validity of the integrity verification value included in the signature data encrypted in the USIM through the communication company key.
The method according to claim 1, wherein the signature data encrypted through the financial institution key includes:
And the integrity verification value of the encryption using the financial institution key.
The method according to claim 1,
Generating an integrity authentication value of the signature data for the process of encrypting the signature data decrypted through the mth communication company key through the nth financial key; And
And incorporating the integrity authentication value into the signature data encrypted through the nth financial institution key.

Images