KR20160020850A - Method and server for issuing certificate and mandating digital signature - Google Patents

Abstract

A certificate can be used as a digital signature in a target document converted into an electronic file. A person who cannot perform the digital signature mandates the digital signature so as to allow a legal representative who is granted the delegated authority in law such as a real estate registration task or the like to carry out the digital signature using the certificate. A method for issuing a certificate for digital signature and a certificate issuance server receive a reference number and an authorized code from a terminal, generates a certificate the reference number and the authorized code, and output the generated certificate to the terminal. A method for mandating a digital signature and an electronic registration server receive a request of a digital signature for at least one target document from a terminal, and provide information of the at least one target document to the terminal, and thus the digital signature for the at least one target document that is provided to the terminal can be carried out.

Description

METHOD AND SERVER FOR ISSUING CERTIFICATE AND MANDATING DIGITAL SIGNATURE < RTI ID = 0.0 >

The technical field relates to an electronic registration system, and more particularly, to a method and a server for an electronic registration system in which an electronic signature is required.

As the Supreme Court Internet Registry is established and operated, a system may be needed to send and receive electronic documents between financial institutions and legal representatives in relation to Internet registry offices, and to support the work of digital signatures.

For example, in the case of the establishment of a munificent right, the electronic signature of the security provider is required in accordance with the real estate processing specification by the computer information processing organization in order to process the electronic registration. As another example, in the case of ownership transfer registration, the electronic signature of the seller and buyer is required.

Korean Patent Application No. 10-2007-0056270 (published on June 08, 2009) discloses an electronicization system of a real estate contract using an authorized electronic document repository and an electronic signature certificate that can secure the stability of real estate sales have.

The present invention discloses a method of managing an ASP (Application Service Provider), providing an electronic contract for sale of real estate using an ASP, activating an electronic signature algorithm of a seller's authorized certificate according to the contract contents of the electronic contract, To register electronic registration of the electronic contract and the corresponding real estate as an electronic document, and to register it. Exchange server for transferring registered real estate sale contract items to the terminal of the seller: In cooperation with the electronic office server, An authentication server for authenticating the signature; And a user terminal that is connected to the network server with networking servers and performs login and signing of the electronic contract through the connection login with the ASP, and receives the confirmation of the real estate purchase contract.

One embodiment may provide a method and apparatus for issuing a certificate.

One embodiment may provide a method and apparatus for performing digital signature on a document in the form of an electronic file using a certificate.

It is possible to provide a method and apparatus in which a digital signature is performed by delegating the execution of the digital signature together with the delegation of the writing and submission in writing to the qualified delegate of the registered business specified in the real estate registration law.

According to an aspect, a certificate issuing method for digital signature includes receiving a reference number and an authorization code from a terminal, generating the certificate based on the reference number and the authorization code, and transmitting the generated certificate to the terminal And outputting.

The certificate issuing method comprising the steps of: receiving, from a registration agency server, information on a delegator for delegating the digital signature; generating the reference number and the authorization code for generation of the certificate based on the information of the delegator; And outputting information on the electronic signature mandate for delegating the electronic signature including the reference number and the authorization code to the registration agency server.

Information about the digital signature mandate can be transmitted from the registration agency server to the terminal.

The step of receiving the reference number and the authorization code from the terminal may be performed after the step of outputting to the registrars agency server is performed.

The certificate may be used as the digital signature for the target document to be used for setting, changing or canceling the perimeter rights when setting, changing or canceling the perimeter rights for the delegator.

The step of receiving the reference number and the authorization code from the terminal may further comprise receiving a password for the certificate from the terminal.

The generated certificate may include information on the password.

The outputting to the terminal may include storing the certificate at a predetermined location in the storage space of the terminal.

The predetermined location may be a location different from the location where the standard public certificate is stored.

The stored certificate is encrypted and the information or event number of at least one target document for the certificate may be set as a key for decryption.

According to another aspect, an electronic signature delegation method includes receiving a request for an electronic signature for at least one subject document from a terminal, the at least one subject document being used for an electronic registration task, and the at least one subject And providing information of the document to the terminal, wherein an electronic signature is performed on the at least one target document provided to the terminal.

The digital signature may be performed using a certificate stored in the terminal.

The digital signature delegation method may further include controlling the terminal so that the certificate is displayed on the terminal.

The step of providing the information of the at least one target document to the terminal may provide the information of the at least one target document to the volatile memory of the terminal.

The information of the at least one target document may be provided to the volatile memory as a byte array stream.

The digital signature delegation method may further include receiving information of the at least one target document from the terminal, and storing information of the received at least one target document.

The digital signature may be performed using a certificate stored in the terminal.

The digital signature delegation method may further comprise associating information of the at least one subject document and information about the certificate.

The associating step may associate the information of the at least one subject document and the information about the certificate based on an OID (Object IDentifier) included in the information of the at least one subject document and the information of the certificate, respectively .

The digital signature delegation method may further include receiving information on an electronic signature delegation for delegation of the electronic signature from a registration agency server and transmitting information about the digital signature delegation authority to the terminal.

The information about the electronic signature mandate may include a reference number and an authorization code used for issuing a certificate used for the digital signature.

The digital signature delegation method may further include controlling the terminal so that information of at least one target document on which the digital signature is performed is transmitted to an Internet registry server.

According to another aspect of the present invention, a certificate issuing server includes a communication unit for receiving a reference number and an authorization code from a terminal, outputting the generated certificate to the terminal, and a processor for generating the certificate based on the reference number and the authorization code .

According to another aspect, in an electronic registration server, there is provided an electronic registration server, comprising: a request for a digital signature for at least one subject document from a terminal, the at least one subject document being used for electronic registration tasks; A communication unit for providing information of a document to the terminal, and a storage unit for storing information of the at least one target document, and an electronic signature is performed on the at least one target document provided to the terminal.

According to yet another aspect, a certificate issuing method and an electronic signature delegation method include the steps of: a certificate issuing server receiving information of a delegator for delegation of an electronic signature from a registration agency server, the certificate issuing server receiving, based on the information of the delegator, Generating a reference number and an authorization code for the generation of the certificate; and transmitting, by the certificate issuing server, information about an electronic signature mandate for delegating the digital signature including the reference number and the authorization code, Receiving an information about a power of attorney of the digital signature signed by the delegator from the registration agency server, and transmitting information about the digital signature mandate to the terminal; Wherein the terminal is a terminal of the authorized user delegated to perform the digital signature, Wherein the certificate issuing server receives the reference number and the authorization code from the terminal, the certificate issuing server generates the certificate based on the reference number and the authorization code, the certificate issuing server transmits the generated certificate To the terminal, receiving a request for an electronic signature for at least one subject document from the terminal, the at least one subject document being used for an electronic registration task, And providing the information to the terminal, wherein the digital signature is performed using the certificate for the at least one subject document provided to the terminal.

There is provided a method and apparatus for delegating the execution of an electronic signature to a legal representative in connection with electronic registration to perform electronic signature.

There is provided a method and apparatus for a registrar agency to act on behalf of a digital signature through a legal representative for a person who can not perform a digital signature.

FIG. 1 illustrates a certificate issuing and digital signature delegation system according to an example.
2 shows a configuration diagram of a server according to an embodiment.
FIG. 3 shows a configuration diagram of an authorized certification authority server according to an embodiment.
4 shows a configuration diagram of an electronic registration server according to an embodiment.
5 is a flow diagram of a method for performing an electronic signature using an issued certificate according to an example.
6 is a flow diagram of a method for issuing an electronic signature mandate according to an example.
7 is a flow diagram of a method for issuing a certificate according to an embodiment.
8 is a flowchart of a method of storing information of an object document according to an example.
9 is a flowchart of a method of performing an electronic signature according to an example.
FIG. 10 is a flowchart of a method in which a mandator is issued a certificate and delegates a digital signature.

In the following, embodiments will be described in detail with reference to the accompanying drawings. Like reference symbols in the drawings denote like elements.

Various modifications may be made to the embodiments described below. It is to be understood that the embodiments described below are not intended to limit the embodiments, but include all modifications, equivalents, and alternatives to them.

The terms used in the examples are used only to illustrate specific embodiments and are not intended to limit the embodiments. The singular expressions include plural expressions unless the context clearly dictates otherwise. In this specification, the terms "comprises" or "having" and the like refer to the presence of stated features, integers, steps, operations, elements, components, or combinations thereof, But do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, or combinations thereof.

Unless defined otherwise, all terms used herein, including technical or scientific terms, have the same meaning as commonly understood by one of ordinary skill in the art to which this embodiment belongs. Terms such as those defined in commonly used dictionaries are to be interpreted as having a meaning consistent with the contextual meaning of the related art and are to be interpreted as either ideal or overly formal in the sense of the present application Do not.

In the following description of the present invention with reference to the accompanying drawings, the same components are denoted by the same reference numerals regardless of the reference numerals, and redundant explanations thereof will be omitted. In the following description of the embodiments, a detailed description of related arts will be omitted if it is determined that the gist of the embodiments may be unnecessarily blurred.

As the Supreme Court Internet Registry is established and operated, a system may be needed to send and receive electronic documents between financial institutions and legal representatives in relation to Internet registry offices, and to support the work of digital signatures. Internet registries can operate Internet registry servers.

For example, in the case of the establishment of a munificent right, the electronic signature of the security provider is required in accordance with the real estate processing specification by the computer information processing organization in order to process the electronic registration.

As another example, in the case of ownership transfer registration, the electronic signature of the seller and buyer is required.

If a digital signature is required but the mortgage provider can not perform the digital signature, the financial business that causes the mortgage can not proceed. Or, it may be inconvenient because the business is processed by written registration, not electronic registration.

In order to solve this inconvenience, it is possible to delegate the task of digital signature together with the delegation of writing and submission in writing to the qualified delegate of registration duties specified in Real Estate Registration Act. Written documents that occur in the registration business may be documented.

The digital signature can be performed on the target document.

For example, a person authorized to register is a lawyer or a lawyer.

A method of processing a job for a digital signature delegated by using a certificate will be described in detail below with reference to Figs. 1 to 10.

FIG. 1 illustrates a certificate issuing and digital signature delegation system according to an example.

A mandate to delegate an electronic signature may visit the registration agency. The mandator may use the registration agency for financial services that cause electronic registration. For example, a financial service may be a loan, and an electronic registration service may be a setting, a change, or an expiration of a mere opportunity.

According to one aspect, the registration agency may be a financial institution such as a bank. The registration agency may be the agency that registers the certificate. For example, the certificate may be an authorized certificate. In another example, the certificate may be a certificate issued by an administrative or judicial authority. Certificates can be used for digital signatures.

If you want to set up a self-governing rights by using electronic registration, you may be required to sign an electronic document for the documents required for electronic registration. For example, in the case of the establishment of a municipal bond, the documents required for the electronic registration business may be a municipal bond contract and a registered power of attorney.

A certificate may be used as an electronic signature on a document to be used for setting, altering or canceling a matured authority when setting, changing or canceling a moodle over the mandator.

At present, face-to-face confirmation confirming actual face of mandate for certificate application of certificate registration is prescribed. The registration agency may confirm the face of the mandator and act as an agent for the certificate registration.

The registrar agency may request the legal representative to issue a certificate and to perform electronic signature using the certificate. The attorney representative may be someone authorized to issue certificates and digital signatures from the mandator.

The registration agency may operate the registration agency server 110.

The server 120 may include an authorized certification authority server and an electronic registration server for issuing a certificate. The server 120 will now be described in detail with reference to Figures 2 to 4 below.

The server 120 and the registration agency server 110 can transmit and receive information through software or a web page.

The terminal 130 may be a terminal of a legal representative.

The terminal 130 and the server 120 can transmit and receive information through software or a web page.

The server 120 may provide software to the registration agency server 110 and the terminal 130. In the following description, transmission and reception of information between servers and terminals can be understood to be performed through software or a web page.

According to one aspect, the mandator may delegate the issuance of the certificate and the execution of the electronic signature to the registrar. This case will be described in detail with reference to Figs. 2 to 9 below.

According to another aspect, the mandator may directly perform the issuance of the certificate and delegate the execution of the electronic signature to the registrar or legal representative. The user electronic device 140 may be used if the mandator is issued a certificate directly. This case will be described in detail with reference to Fig. 10 below.

Electronic registration can be performed by transmitting the target document on which the digital signature is performed to the Internet registry server 150. [ The Internet registry server 150 may be operated by the Supreme Court.

2 shows a configuration diagram of a server according to an embodiment.

The server 120 may include an authorized certification authority server 210 and an electronic registration server 220.

The authorized certification authority server 210 may be a server of an authority issuing a certificate.

The electronic registration server 220 may be a server of an institution that performs electronic registration.

The authorized certification authority server 210 and the electronic registration server 220 may each be a physically independent server.

In one aspect, the authorized certification authority server 210 and the electronic registration server 220 may be operated by the same operator.

In another aspect, the authorized certification authority server 210 and the electronic registration server 220 can be operated by different operators.

The authorized certification authority server 210 will be described in detail below with reference to FIG.

The electronic registration server 220 will be described in detail below with reference to Fig.

FIG. 3 shows a configuration diagram of an authorized certification authority server according to an embodiment.

The authorized certification authority server 210 may include a communication unit 310, a processing unit 320, and a storage unit 330.

The communication unit 310 may be connected to other servers and terminals.

The processing unit 320 may process the information received by the communication unit 310 and the information stored in the storage unit 330.

The storage unit 330 may store information received by the communication unit 310 and information processed by the processing unit 320. [

The communication unit 310, the processing unit 320, and the storage unit 330 will be described in detail below with reference to FIG. 5 to FIG.

The technical contents described above with reference to Figs. 1 and 2 can be applied as they are, so that a more detailed description will be omitted below.

4 shows a configuration diagram of an electronic registration server according to an embodiment.

The electronic registration server 220 may include a communication unit 410, a processing unit 420, and a storage unit 430.

The communication unit 410 may be connected to other servers, terminals, and the like.

The processing unit 420 may process information received by the communication unit 410 and information stored in the storage unit 430. [

The storage unit 430 may store information received by the communication unit 410 and information processed by the processing unit 420. [

The communication unit 410, the processing unit 420, and the storage unit 430 will be described below in detail with reference to FIG. 5 to FIG.

The technical contents described above with reference to Figs. 1 and 2 can be applied as they are, so that a more detailed description will be omitted below.

5 is a flow diagram of a method for performing an electronic signature using an issued certificate according to an example.

The following steps 510 to 530 may be a method in which an electronic signature is performed on an object document required for the electronic registration service.

In step 510, the authorized certification authority server 210 may issue an electronic signature mandate for the delegation of the electronic signature upon request of the registration agency server 110. [

Step 510 is described in detail below with reference to FIG.

In step 520, the authorized certification authority server 210 may issue a certificate. For example, the authorized certification authority server 210 may issue an authorized certificate. As another example, the authorized certification authority server 210 may issue a certificate set by an administrative or judicial authority.

Step 520 will now be described in detail with reference to Figures 7 and 8 below.

In step 530, the electronic registration server 220 and the terminal 130 can perform an electronic signature on the target document necessary for the electronic registration task.

Step 530 will be described in detail below with reference to FIG.

The technical contents described above with reference to Figs. 1 to 4 can be applied as they are, so that a more detailed description will be omitted below.

6 is a flow diagram of a method for issuing an electronic signature mandate according to an example.

The above-described step 510 may include the following steps 610 to 690.

In step 610, the registration agency server 110 may receive the information of the mandator.

For example, the delegator's information may include the delegate's name, address, social security number, telephone number, and event number. The case number may be an identifier assigned to the mandate's financial affairs.

At step 620, the registration agency server 110 may send the delegator's information to the authorized certification authority server 210. For example, the registration agency server 110 may transmit the information of the delegator to the server 210 by transmitting the information of the delegator's information including the delegator's information to the server 210.

The communication unit 310 can receive the information of the delegator from the registration agency server 110. [

In step 630, the processing unit 320 may store the information of the received delegator.

In step 640, the processing unit 320 may generate a reference number and an authorization code using the information of the mandator. The reference number and authorization code may be the information required to obtain or generate a certificate. Reference numbers and authorization codes may be non-reusable as disposable information. For example, the reference number and authorization code may be revoked if not used within 14 days.

The reference number and authorization code may include content of at least one of a use purpose, a use scope and a validity period of a certificate to be issued.

The processing unit 320 may generate an electronic signature mandate for delegation of the electronic signature including the reference number and the authorization code. For example, the generated electronic signature mandate may be an electronic file.

In step 650, the communication unit 310 may output information on the electronic signature mandate to the registration agency server 110. [ In other words, the communication unit 310 can transmit the information about the digital signature authority to the registration agency server 110.

At step 660, the registration agency server 110 may receive a mandatory signature from the mandator. For example, a method of receiving a mandatory signature can be performed electronically using a touch screen, a touch pen, or the like. As another example, if the delegator signature is recorded in writing, the registration agency server 110 may receive information about the electronic signature delegation in which the delegator signature is recorded. The information of the electronic signature mandate in which the mandatory signature is recorded may be the data of the electronic signature mandate scanned.

At step 670, the registration agency server 110 may generate an electronic signature mandate signed by the delegator by receiving the delegator signature.

In step 680, the registration agency server 110 may send the generated digital signature mandate to the electronic registration server 220. [

The communication unit 410 may receive the electronic signature mandate from the registration agency server 110. [

In step 690, the processing unit 420 may store the received digital signature mandate in the storage unit 430. [

Through the above steps 610 to 690, the above-described step 510 can be performed. That is, through steps 610 to 690, a power of attorney for the electronic signature can be issued.

The technical contents described above with reference to Figs. 1 to 5 may be applied as they are, so that a more detailed description will be omitted below.

7 is a flow diagram of a method for issuing a certificate according to an embodiment.

The above-described step 520 may be performed after step 690 is performed.

Step 520 may include the following steps 710 and 760. [

In step 710, the terminal 130 may receive an electronic signature mandate. For example, terminal 130 may receive an electronic signature mandate from electronic registration server 220.

Before the step 710 is performed, the terminal 130 may request the inquiry of the event generated in the electronic registration server 220. An electronic signature mandate can be transmitted to the terminal 130 by the terminal 130 inquiring the event.

The processing unit 420 may generate a list of generated events when an inquiry is requested. The communication unit 410 may transmit the generated list to the terminal 130.

The terminal 130 may select an event to receive a certificate among events in the list.

According to an aspect, after the event to receive the certificate is selected, step 720 may be performed.

In step 720, the terminal 130 may receive the reference number and authorization code necessary for issuing the certificate. For example, the terminal 130 may receive a reference number and an authorization code from the user of the terminal 130, i.e., the authorized user.

In step 730, the terminal 130 may transmit the reference number and authorization code to the authorized certification authority server 210.

The communication unit 310 can receive the reference number and the authorization code from the terminal 130.

The received reference number and authorization code may be the same as the reference number and authorization code generated in step 640.

In addition, the communication unit 310 may receive the password for the certificate to be generated from the terminal 130. [

At step 740, the processing unit 320 may verify the validity of the reference number and authorization code. If the validity of the reference number and authorization code is verified, the processing unit 320 may generate the certificate using the reference number and authorization code. For example, the certificate may be an authorized certificate. In another example, the certificate may be a certificate issued by an administrative or judicial authority.

The generated certificate may contain information about the password.

The generated certificate may be restricted for at least one of the use purpose, the use range, and the validity period. For example, a certificate can be used only for usage information.

Since the certificate may limit its use by specifying the event, the digital signature may be securely processed by the attorney in the scope of delegation to the mandator.

In step 750, the communication unit 310 may output the generated certificate to the terminal 130. [ For example, the communication unit 310 may output the certificate by storing the certificate in the terminal 130. [

At step 760, the processing unit 320 may store the certificate at a predetermined location in the storage space of the terminal 130. [ The predetermined position in the storage space may be a position different from a position where the standard authorized certificate is stored. For example, the location to store the standard public certificate may be the location specified by PKCS # 12. If the location specified by PKCS # 12 is a standard location, the given location may be a non-standard location.

The predetermined position may not be notified to the user of the terminal 130. In other words, the certificate may be hidden within the terminal 130.

The certificate stored in the terminal 130 may be encrypted. Encryption can be performed according to PKCS # 1.

For example, the usage information of the certificate can be set as a key of decryption. As another example, the information or event number of at least one target document for the certificate may be set as the key for decryption.

The usage information of the certificate may be an event that causes the digital signature to be required. For example, the usage information may be a per capita setting.

At step 760, the terminal 130 may store the certificate.

The technical contents described above with reference to Figs. 1 to 6 can be applied as they are, so that a more detailed description will be omitted below.

8 is a flowchart of a method of storing information of an object document according to an example.

The following steps 810 to 840 may be performed in parallel with steps 510 and 520 described above.

At step 810, according to an aspect, the terminal 130 may generate information of at least one target document required for an electronic registration task. That is, at least one target document may be used for electronic registration tasks. For example, if the electronic sign-up service is a self-governing entity, then at least one target document may be a mortgage contract and a registered power of attorney. The information of at least one target document may be an electronic file. For example, an electronic file can be in PDF format.

The terminal 130 may assign an identifier to at least one target document for identification of the corresponding electronic registration task. For example, the identifier to be granted may be the case number.

At step 820, the terminal 130 may send information of at least one target document to the electronic registration server 220. For example, step 820 may be a step of requesting electronic registration server 220 to generate an event requesting electronic registration.

The communication unit 410 can receive information of at least one target document from the terminal 130. [

In step 830, the processing unit 420 may encrypt and store information of at least one target document. For example, the processing unit 420 can store information of at least one target document by listing the events by using the storage unit 430. [ The processing unit 420 may store information of at least one target document using an identifier assigned for identification of an electronic registration service.

The storage unit 430 may be a database.

For example, step 830 may be to generate the requested electronic registration event.

After step 830 is performed, the above-described steps 710 to 740 may be performed.

In step 840, the processing unit 420 may associate the information of the certificate and the at least one subject document with each other.

Before the step 840 is performed, the communication unit 410 may receive information on the certificate from the terminal 130. [

The technical contents described with reference to Figs. 1 to 7 can be applied as they are, so that a more detailed description will be omitted below.

9 is a flowchart of a method of performing an electronic signature according to an example.

The above-described step 530 may include the following steps 910 to 960.

Step 910 may be performed after step 840 is performed.

In step 910, the terminal 130 may send a request for an electronic signature to at least one target document to the electronic registration server 220. [ For example, when the terminal 130 is viewing an event generated in the electronic registration server 220, the terminal 130 selects at least one target document included in the opened event, To the registration server 220.

The communication unit 410 may receive a request for an electronic signature for at least one target document from the terminal 130. [

In step 920, the communication unit 410 may provide information on at least one target document to the terminal 130 when receiving the request for digital signature.

Information of at least one target document provided to the terminal 130 may be provided to the volatile memory of the terminal 130. [ Information of at least one target document may not be provided to the non-volatile memory of the terminal 130. [ That is, the information of at least one target document may be provisionally provided to the terminal 130 for performing the digital signature.

According to an aspect, the communication unit 410 may provide information of at least one target document to the terminal 130 as a byte array stream.

Information of at least one target document provided to the terminal 130 may be provided as a byte array object in the volatile memory of the terminal 130. [

In step 930, the communication unit 410 can control the terminal 130 so that the certificate output to the terminal 130, associated with the information of at least one target document, is displayed on the terminal 130. For example, the communication unit 410 may control the terminal 130 so that the certificate stored in a predetermined position (non-standard position) is displayed on the terminal 130 so that the user of the terminal 130 can select the certificate.

According to an aspect, the information and the certificate of at least one target document may be associated based on an object identifier (OID). For example, an OID value set for the task of setting a grace period may be related to each other by equally including the information and the certificate of at least one target document.

If the certificate is encrypted and stored in the terminal 130, the certificate may be decrypted and displayed on the terminal 130. For example, the key of decryption may be information and event number of at least one target document, and so on.

In step 940, the terminal 130 may perform a digital signature. For example, the terminal 130 may perform a digital signature on at least one target document by receiving a password for the certificate displayed on the terminal 130 from the terminal 130's user.

The terminal 130 can compare the received password with the password included in the certificate.

The terminal 130 can determine whether the received password matches the password of the certificate. If the passwords match, a digital signature can be performed.

According to an aspect, the terminal 130 may query the authorized certification authority server 210 whether the certificate is valid.

The communication unit 310 can receive from the terminal 130 a query as to whether the certificate is valid. The processing unit 320 may determine whether the certificate stored in the terminal 130 is valid. The communication unit 310 may transmit to the terminal 130 whether or not the certificate is valid.

The terminal 130 may perform digital signature when the certificate is valid.

The terminal 130 may generate information of at least one target document on which the digital signature is performed. The information of at least one target document on which the digital signature is performed may be an electronic file. For example, an electronic file can be in the form of a SIG extension.

According to an aspect, the terminal 130 may generate information of at least one target document on which a digital signature is performed, in a volatile memory. For example, the terminal 130 may generate information of at least one target document on which a digital signature is performed, as a byte array stream.

In operation 950, the terminal 130 may transmit information of at least one target document on which the digital signature is performed to the Internet registry server 150. For example, the terminal 130 may send information of at least one document that has been digitally signed to the Internet registry server 150 as a byte array stream.

In step 920 and step 950, the security of the digital signature can be increased since the information of at least one target document and the information of at least one target document on which the digital signature is performed are processed in the volatile memory.

The Internet registry server 150 may receive information of at least one target document that has been digitally signed from the terminal 130. [

In step 960, the Internet registry server 150 may store information of at least one target document on which the digital signature was performed.

As a result, the electronic registration server 220 can transmit the information of the at least one target document to the Internet registry server 150 via the terminal 130 via the steps 910 to 950.

According to one aspect, the communication unit 410 may execute a web browser of the terminal 130, and may transmit information of at least one target document on which an electronic signature has been performed to the Internet registry server 150 through an executed web browser .

After the digital signature is completed, the processing unit 320 may encrypt the certificate stored in the terminal 130 and store the certificate in the terminal 130.

After the electronic signature is completed, the terminal 130 may have to reuse the certificate due to a change in the loan amount of the mandator or a correction request for the registration authority. In this case, the communication unit 310 may receive the agreement for the certificate reuse from the registration agency server 110. [ When the communication unit 310 receives the agreement from the registration agency server 110, the processing unit 320 can change the setting for the certificate so that the terminal 130 can reuse the certificate. For example, the processing unit 320 may allow the terminal 130 to reuse the certificate by releasing the encryption set in the certificate.

The technical contents described above with reference to Figs. 1 to 8 can be applied as they are, so that a more detailed description will be omitted below.

FIG. 10 is a flowchart of a method in which a mandator is issued a certificate and delegates a digital signature.

The following steps 1010 through 1050 may correspond to step 520 described above. The steps 1010 to 1050 may be a method in which a delegator is directly issued a certificate, rather than a method in which a registration agency performs an issuance of a certificate.

Step 1010 may be performed after step 660 described above is performed.

At step 1010, the user electronic device 140 may receive a reference number and an authorization code. The user electronic device 140 may be a terminal used by a mandator.

According to an aspect, the user electronic device 140 may receive the reference number and authorization code from the registration agency server 110.

According to another aspect, the user electronic device 140 may receive the reference number and authorization code from the mandator.

The user electronic device 140 may transmit the received reference number and authorization code to the authorized certification authority server 210.

In addition, the user electronic device 140 may send to the accredited certification authority server 210 the information or event number of the authorized user who is entrusted with the electronic signature for the purpose of delegating the electronic signature.

The communication unit 310 may receive the reference number and authorization code from the user electronic device 140.

In addition, the communication unit 310 may receive the information or event number of the authorized user from the user electronic device 140. [

The processing unit 420 may set the electronic signature of at least one target document to be delegated to the authorized person when the information or the case number of the authorized person is received.

At step 1020, the processing unit 320 may generate a certificate using the reference number and authorization code.

Step 1020 may correspond to step 740 described above. That is, the description of step 740 may be replaced with the description of step 1020. [

In step 1030, the communication unit 310 may output the certificate to the user electronic device 140. [

User electronic device 140 may receive a certificate from authorized certification authority server 210. [

At step 1040, the user electronic device 140 may encrypt the certificate.

At step 1050, the user electronic device 140 may send the encrypted certificate to the electronic registration server 220. [ The communication unit 410 may receive the encrypted certificate from the user electronic device 140. [

At step 1060, the processing unit 420 may store the encrypted certificate in the storage unit 430.

After step 1060 is performed, step 710 described above may be performed.

Steps 710 to 750 may be performed to output the certificate to the terminal 130.

The technical contents described with reference to FIGS. 1 to 9 can be applied as they are, so that a more detailed description will be omitted below.

The apparatus described above may be implemented as a hardware component, a software component, and / or a combination of hardware components and software components. For example, the apparatus and components described in the embodiments may be implemented within a computer system, such as, for example, a processor, a controller, an arithmetic logic unit (ALU), a digital signal processor, a microcomputer, a field programmable array (FPA) A programmable logic unit (PLU), a microprocessor, or any other device capable of executing and responding to instructions. The processing device may execute an operating system (OS) and one or more software applications running on the operating system. The processing device may also access, store, manipulate, process, and generate data in response to execution of the software. For ease of understanding, the processing apparatus may be described as being used singly, but those skilled in the art will recognize that the processing apparatus may have a plurality of processing elements and / As shown in FIG. For example, the processing unit may comprise a plurality of processors or one processor and one controller. Other processing configurations are also possible, such as a parallel processor.

The method according to an embodiment may be implemented in the form of a program command that can be executed through various computer means and recorded in a computer-readable medium. The computer-readable medium may include program instructions, data files, data structures, and the like, alone or in combination. The program instructions to be recorded on the medium may be those specially designed and configured for the embodiments or may be available to those skilled in the art of computer software. Examples of computer-readable media include magnetic media such as hard disks, floppy disks and magnetic tape; optical media such as CD-ROMs and DVDs; magnetic media such as floppy disks; Magneto-optical media, and hardware devices specifically configured to store and execute program instructions such as ROM, RAM, flash memory, and the like. Examples of program instructions include machine language code such as those produced by a compiler, as well as high-level language code that can be executed by a computer using an interpreter or the like. The hardware devices described above may be configured to operate as one or more software modules to perform the operations of the embodiments, and vice versa.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments. For example, it is to be understood that the techniques described may be performed in a different order than the described methods, and / or that components of the described systems, structures, devices, circuits, Lt; / RTI > or equivalents, even if it is replaced or replaced.

110: Registration agency server
120: Server
130: terminal
140: user electronic device
150: Internet registry server
210: Authorized certification authority server
220: Electronic registration server

Claims (21)

A method for issuing a certificate for electronic signature,
Receiving a reference number and an authorization code from a terminal;
Generating the certificate based on the reference number and the authorization code; And
Outputting the generated certificate to the terminal
/ RTI >
How to issue certificates.
The method according to claim 1,
Receiving information of a delegator for delegation of the digital signature from a registration agency server;
Generating the reference number and the authorization code for generation of the certificate based on the information of the delegator; And
And outputting information on the electronic signature mandate for delegating the electronic signature including the reference number and the authorization code to the registration agency server
Further comprising:
The information about the digital signature mandate is transmitted from the registration agency server to the terminal,
Wherein the step of receiving the reference number and the authorization code from the terminal is performed after the step of outputting to the registrars agency server is performed,
How to issue certificates.
3. The method of claim 2,
Wherein said certificate is used as said digital signature for a document to be used for setting, changing or canceling said gated party rights when setting, changing or canceling the gated party for said delegator,
How to issue certificates.
The method according to claim 1,
Wherein the step of receiving the reference number and the authorization code from the terminal comprises:
Receiving a password for the certificate from the terminal
Further comprising:
Wherein the generated certificate includes information on the password,
How to issue certificates.
The method according to claim 1,
Wherein the step of outputting, to the terminal,
And storing the certificate at a predetermined location in the storage space of the terminal.
How to issue certificates.
6. The method of claim 5,
Wherein the predetermined location is a location different from a location for storing a standard public certificate,
How to issue certificates.
6. The method of claim 5,
Wherein the stored certificate is encrypted and the information or event number of at least one target document for the certificate is set as a key for decryption,
How to issue certificates.
Receiving a request for an electronic signature for at least one subject document from a terminal, the at least one subject document being used for an electronic registration task; And
Providing information of the at least one target document to the terminal
Lt; / RTI >
Wherein an electronic signature is performed on the at least one target document provided to the terminal,
How to delegate digital signatures.
9. The method of claim 8,
Wherein the digital signature is performed using a certificate stored in the terminal,
How to delegate digital signatures.
10. The method of claim 9,
Controlling the terminal to display the certificate on the terminal
≪ / RTI >
How to delegate digital signatures.
10. The method of claim 9,
Wherein providing the information of the at least one subject document to the terminal comprises providing information of the at least one subject document to the volatile memory of the terminal,
How to delegate digital signatures.
12. The method of claim 11,
Wherein the information of the at least one target document is provided to the volatile memory as a byte array stream,
How to delegate digital signatures.
9. The method of claim 8,
Receiving information of the at least one target document from the terminal; And
Storing information of the received at least one target document
≪ / RTI >
How to delegate digital signatures.
14. The method of claim 13,
Wherein the digital signature is performed using a certificate stored in the terminal,
Associating information of the at least one subject document and information about the certificate
≪ / RTI >
How to delegate digital signatures.
15. The method of claim 14,
Wherein the associating comprises associating information of the at least one subject document and information about the certificate based on an object identifier (OID) included in the information of the at least one subject document and the information of the certificate,
How to delegate digital signatures.
9. The method of claim 8,
Receiving information on an electronic signature mandate for the delegation of the digital signature from a registration agency server; And
Transmitting the information about the electronic signature mandate to the terminal
Further comprising:
Wherein the information about the electronic signature mandate includes a reference number and an authorization code used for issuing a certificate used for the digital signature,
How to delegate digital signatures.
9. The method of claim 8,
Controlling the terminal so that information of at least one target document on which the digital signature is performed is transmitted to an Internet registry server
≪ / RTI >
How to delegate digital signatures.
17. A computer-readable recording medium containing a program for performing the method of any one of claims 1 to 17.
A server for issuing a certificate,
A communication unit for receiving the reference number and the authorization code from the terminal and outputting the generated certificate to the terminal; And
A processor for generating the certificate based on the reference number and the authorization code,
/ RTI >
Certificate issuing server.
In an electronic registration server,
The method comprising: receiving a request for a digital signature for at least one target document from a terminal, the at least one target document being used for electronic registration, and providing the information of the at least one target document to the terminal; And
A storage unit for storing information of the at least one target document;
Lt; / RTI >
Wherein an electronic signature is performed on the at least one target document provided to the terminal,
Electronic registration server.
The certificate issuing server receiving the information of the mandator for delegation of the electronic signature from the registration agency server;
Generating a reference number and an authorization code for generating the certificate based on the information of the delegator;
Outputting, by the certificate issuance server, information on an electronic signature mandate for delegation of the electronic signature including the reference number and the authorization code to the registrars agency server;
Receiving, by the electronic registration server, information about a power of attorney signed by the delegator from the registration agency server;
Transmitting information about the digital signature mandate to the terminal, the terminal being a terminal of a veteran authorized to perform the digital signature;
The certificate issuing server receiving the reference number and the authorization code from the terminal;
The certificate issuing server generating the certificate based on the reference number and the authorization code;
The certificate issuing server outputting the generated certificate to the terminal;
Receiving a request for an electronic signature for at least one subject document from the terminal, the at least one subject document being used for an electronic registration task; And
Providing information of the at least one target document to the terminal
Lt; / RTI >
Wherein the electronic signature is performed using the certificate for the at least one subject document provided to the terminal,
How to issue certificates and delegate digital signatures.

Images