KR20180132233A - Method for Content Security Distribution Using Executable Secure Container with Sandbox - Google Patents

Abstract

The present invention relates to a content security distribution method using an executable security container to which a sandbox is applied, and more particularly, to a content security distribution method using an executable security container, capable of improving security by controlling an access to a content and tracking a distribution path through the authentication of a manager server for accessing the content of the security container and denying an external access to a resource in the sandbox by setting the security container to designate a specific region in a hard disk in a content access process and to use and access the resource only for the region.

Description

Method for distributing content security using executable security container with sandbox [

The present invention relates to a content security distribution method using an executable security container to which a sandbox is applied. More specifically, in order to access contents of a security container, access to content is controlled by authentication of a manager server, The security container sets a specific area as a sandbox in the process of accessing the content and sets the access and use of the resource only for this area to deny external access to the resources in the sandbox, And more particularly, to a content security distribution method using a security container that increases security of content.

In contemporary society, information and technology related to the business or research are shared among experts or members of each field under the premise of maintaining security in designing a business for profit making or conducting various researches. Information and technologies may be temporarily released to a third party to be developed into more advanced information and technologies.

The disclosure of contents such as the above information and technology on the assumption of security maintenance can be performed through various media, but sharing through computer communication is common.

The sharing of the contents through the computer communication is performed by transmitting the data containing the contents to another computer through on-line communication, and since the content sharers are in a state of prohibiting the outflow of the corresponding information among the contents sharers when sharing the contents, The system and security transmission method is focused on the direction of preventing hacking or reading by unauthorized persons during the reception of the corresponding data because the content is not leaked by the content sharer.

However, the information sharer promising security for the information may leak out the information to the outside through a computer communication by mistake or malicious intention. In the conventional security transmission system and the security transmission method, There was a problem that was not being contrasted.

In addition to the existing security transmission system and security transmission method, in order to prevent the risk of information leakage, it is necessary to strengthen monitoring of access rights to contents, There was a need for a method.

In order to access the contents of the security container, the content is accessed by a manager server to control access to the content and track the distribution route. In the process of accessing the content, And a content security distribution method using a security container that improves security by refusing external access to resources in a sandbox by setting a resource to be used and accessed only for this area.

According to an aspect of the present invention, there is provided a content security distribution method comprising: a security container execution authentication step of receiving a request for execution from a security container and confirming an authority and controlling execution of the security container; And a content open authentication step of allowing a manager server to receive a content open request from the security container and to check the rights and to control the content open. The security container is generated in the form of an executable file, A security management module for denying an external access by designating the content as a sandbox and isolating and storing the content, and checking access by checking the authority to access the content; And a content storage module in which the content is stored.

In the present invention, the content storage module may include: an original area in which original content is stored; And a virtual area in which the virtual content is stored.

In the present invention, the security management module may include: an encryption module for encrypting and decrypting data; An execution control module for controlling execution of each module for securing the security container; A device control module for collecting information of a device in which a security container is stored and controlling an operation of the device to prevent a content from being leaked; An anti-piracy module for preventing illegal copying of content and tampering of security container to prevent leakage of contents; A secure communication module for performing secure communication with the manager server; A remote control module for controlling the execution of each module of the security container under the control of the manager server; An authentication module that transmits information necessary for authentication to the manager server and receives control information according to the received control information to grant access right to contents; A document viewer module for opening a content stored in the content storage module and displaying the content to a user; And a sandbox implementation module that sandboxes specific areas of the hard disk and isolates and manages the content.

In the present invention, the sandbox implementing module may include: an unpackaging step of unpacking the original content and the virtual content by separating the original content and the virtual content into the original data area and the virtual data area, respectively, A virtual area operation step in which a content is requested to be performed only in a virtual data area when a work request is made for the content; And a virtual area correcting step of permanently deleting the data of the virtual data area at the end of the operation of the security container.

In the present invention, when an API for requesting a work for a content is called, the virtual area operation step may be performed in a virtual data area by calling and changing the access to the virtual content when the content is accessed.

In the present invention, the authentication module may include an on-line authentication module that transmits information required for on-line authentication to a manager server when the security container is in an on-line state, receives the control information of the manager server to perform authentication, and performs authentication; And an offline authentication module for generating a QR code including information necessary for authentication when the security container is in an offline state, receiving a security code generated after the manager server performs authentication based on the QR code, ; ≪ / RTI >

In the present invention, the security container execution authentication step may include: receiving security container information for receiving information about a security container, a device, and a user necessary for authentication; A security container DB inquiry step of inquiring management information and a security policy of a previously stored security container corresponding to the received information; Checking whether the use right is authorized based on the received information and information of a previously stored security container; And a security container execution control step of controlling execution of the security container based on whether or not the right of use is granted.

In the present invention, the content open authentication step may include: a content open information receiving step of receiving information on a security container, a device, a user and a content necessary for authentication; A content open DB inquiry step of inquiring management information and a security policy of a previously stored security container corresponding to the received information; A security policy compliance check step of checking compliance of the security policy necessary for opening the content based on the received information and the information of the previously stored security container; A content open control step of controlling the content opening of the security container based on whether the security policy is complied with; A content control step of performing control of contents including open restriction, open suspension, and deletion in order to protect contents of contents based on the security policy; And a DB updating step of updating management information and a security policy of the security container stored based on the control of the content.

According to an embodiment of the present invention, authentication of a user and / or a device is performed in order to access content through a security container, so that only a user and / Can be maintained.

According to an embodiment of the present invention, access to content through a security container prevents other applications or devices from accessing the content directly, and can maintain the security of the content.

According to an embodiment of the present invention, the security container implements a sandbox to isolate and store the content, thereby externally accessing the content and securing the security of the content.

According to an embodiment of the present invention, authentication is performed through a manager server in order to access content through a security container, and a manager server controls opening of content or the like to comply with predetermined security policies and the like, It is possible to maintain the security of the content by controlling access to the content, stopping the browsing, deleting the content, and the like.

According to an embodiment of the present invention, the authentication is performed through the manager server every time the content is accessed through the security container, thereby enabling the manager server to track the distribution channel of the content.

1 is a diagram schematically showing a content security distribution method according to an embodiment of the present invention.
FIG. 2 is a view schematically showing internal components of a manager server of a content security distribution method according to an embodiment of the present invention. Referring to FIG.
FIG. 3 is a block diagram schematically illustrating internal components of a security control server of a content security distribution method according to an exemplary embodiment of the present invention. Referring to FIG.
4 is a block diagram schematically illustrating internal components of a security container of a content security distribution method according to an embodiment of the present invention.
5 is a diagram schematically showing a process of filling a resource with a resource according to the presence or absence of a sandbox.
6 is a flowchart schematically showing detailed steps of a content export approval step and a security container export step of a content security distribution method according to an embodiment of the present invention.
FIG. 7 is a flowchart schematically illustrating detailed steps of a security container execution authentication step and a content open authentication step of a content security distribution method according to an embodiment of the present invention.
FIG. 8 is a view schematically showing detailed steps of a security container execution authentication step of an online authentication module of a content security distribution method according to an embodiment of the present invention.
9 is a view schematically showing detailed steps of a security container execution authentication step of an offline authentication module of a content security distribution method according to an embodiment of the present invention.
10 is a view schematically showing detailed steps of a content open authentication step of a content security distribution method according to an embodiment of the present invention.
11 is a view schematically showing a file structure of a security container of a content security distribution method according to an embodiment of the present invention.
12 is a view schematically showing detailed steps of a sandbox implementation process of a sandbox implementation module of a content security distribution method according to an embodiment of the present invention.

In the following, various embodiments and / or aspects are now described with reference to the drawings. In the following description, for purposes of explanation, numerous specific details are set forth in order to provide a thorough understanding of one or more aspects. However, it will also be appreciated by those of ordinary skill in the art that such aspect (s) may be practiced without these specific details. The following description and the annexed drawings set forth in detail certain illustrative aspects of one or more aspects. It is to be understood, however, that such aspects are illustrative and that some of the various ways of practicing various aspects of the principles of various aspects may be utilized, and that the description set forth is intended to include all such aspects and their equivalents.

In addition, various aspects and features will be presented by a system that may include multiple devices, components and / or modules, and so forth. It should be understood that the various systems may include additional devices, components and / or modules, etc., and / or may not include all of the devices, components, modules, etc. discussed in connection with the drawings Must be understood and understood.

As used herein, the terms "an embodiment," "an embodiment," " an embodiment, "" an embodiment ", etc. are intended to indicate that any aspect or design described is better or worse than other aspects or designs. . The terms 'component', 'module', 'system', 'interface', etc. used in the following generally refer to a computer-related entity, And a combination of software and software.

It is also to be understood that the term " comprises "and / or" comprising " means that the feature and / or component is present, but does not exclude the presence or addition of one or more other features, components and / It should be understood that it does not.

Also, terms including ordinal numbers such as first, second, etc. may be used to describe various elements, but the elements are not limited to these terms. The terms are used only for the purpose of distinguishing one component from another. For example, without departing from the scope of the present invention, the first component may be referred to as a second component, and similarly, the second component may also be referred to as a first component. And / or < / RTI > includes any combination of a plurality of related listed items or any of a plurality of related listed items.

Furthermore, in the embodiments of the present invention, all terms used herein, including technical or scientific terms, unless otherwise defined, are intended to be inclusive in a manner that is generally understood by those of ordinary skill in the art to which this invention belongs. Have the same meaning. Terms such as those defined in commonly used dictionaries are to be interpreted as having a meaning consistent with the contextual meaning of the related art and, unless explicitly defined in the embodiments of the present invention, are intended to mean ideal or overly formal .

1 is a diagram schematically showing a content security distribution method according to an embodiment of the present invention.

Referring to FIG. 1, the sender 2000 receives approval from the manager server 1000 to transmit the content to the receiver 3000, and the receiver 3000 authenticates the manager server 1000 to access the received content. Receive. The manager server 1000 may be implemented as a server configured by one or more processors, one or more memories, and a network device, for example.

The sender 2000 uploads the content to be transferred to the manager server 1000 and requests permission to export the content. The manager server 1000 approves or rejects the export for such a request, and when the export is approved, the manager server 1000 generates the security container 100 and transmits the security container 100 to the sender 2000.

More specifically, the manager server 1000 receives and stores the content from the sender 2000, sets a security policy necessary for carrying out the content, and determines whether the content is appropriate or not based on the contents of the content and the security policy The security container of the security container in the form of an executable file for containing the content and protecting the content, if the approval of the export is approved, And transmits the generated security container to the sender 2000 so that the security container can be exported to the outside.

The sender 2000 transmits the received security container 100 to the receiver 3000 through various methods and mediums such as Internet, e-mail, FTP, cloud, and USB.

The receiver 3000 receiving the security container 100 sends an authentication request to the manager server 1000 in order to obtain the access right to the content through the security container 100 and the manager server 1000 transmits the authentication request And the receiver 3000 transmits the control result according to the authentication result.

More specifically, the manager server 1000 receives information on the security container, the device of the receiver 3000, and the receiver 3000 required for authentication from the receiver 3000, and stores the previously stored security corresponding to the received information Inquires the management information and the security policy of the container, confirms whether or not the use right is granted based on the received information and information of the previously stored security container, and controls the execution of the security container based on whether or not the right is used.

According to an embodiment of the present invention, the security container 100 is in the form of an executable file, and includes a security management module for maintaining security by checking access to the content and an attempt to access the content, Metadata, and the like.

The sender 2000 and the receiver 3000 may be connected to a smart phone or a tablet personal computer (PC) to transmit and receive the secure container 100. [ A mobile phone, a video phone, an e-book reader, a desktop PC, a laptop PC, a netbook PC, a personal digital assistant (PDA) A portable multimedia player (PMP), an MP3 player, a mobile medical device, a camera, a wearable device, (E.g., a head-mounted device (HMD), an electronic garment, an electronic bracelet, an electronic necklace, an electronic app apparel, an electronic tattoo, or a smart watch smart watch) can be used.

FIG. 2 is a view schematically showing internal components of a manager server of a content security distribution method according to an embodiment of the present invention. Referring to FIG.

2, the manager server 1000 according to an exemplary embodiment of the present invention includes a security control server 1100, a DB server 1200, and a web server 1300.

The security control server 1100 receives the content of the sender 2000 and verifies the appropriateness of the export of the content, and creates and exports the security container 100 for protecting the content when the export is approved.

In addition, when the receiver 3000 accesses the content through the security container 100, the access authority of the receiver 3000 is confirmed, and access is controlled to maintain security of the content.

The DB server 1200 stores the management information and the security policy for tracking the distribution path of the security container 100 and confirming the access right of the contents. The management information and the security policy are stored in the DB server 1200 at the same time that the security control server 1100 generates the security container 100 and is managed by the receiver 3000 Is updated every time it accesses the content of the secure container 100. [ The information on the distribution path such as the recipient 3000 and the recipient's device information, which receives the security container 100 and attempts to access the security container 100, is stored through the updated management information and the security policy. And updates the security policy such as the time limit to control the access to the contents of the receiver 3000.

The web server 1300 receives an authentication request from the security container 100 via the smartphone 3100 or the like when the device of the receiver 3000 in which the security container 100 is stored is offline and transmits the authentication request to the security control server 1100 The security control server 1100 receives the security execution control information, generates a security code, and transmits the security code to the smartphone 3100 so that the security container 100 of the receiver 3000 can perform the authentication procedure .

FIG. 3 is a block diagram schematically illustrating internal components of a security control server of a content security distribution method according to an exemplary embodiment of the present invention. Referring to FIG.

Referring to FIG. 3, the security control server 1100 according to an embodiment of the present invention includes an export approval module 1110, a security container creation module 1120, and an authority control module 1130.

The export approval module 1110 receives and stores the content from the sender 2000, sets a security policy necessary for carrying out the content, confirms whether or not the export is proper based on the contents of the content and the security policy, .

According to an embodiment of the present invention, whether the export is appropriate may be determined by the export approval module 1110 on its own based on the export policy previously stored in the export approval module 1110, And the approval of the export approval from the approval authority of the exporting party connected with the export approval authority.

The secure container creation module 1120 creates security containers in the form of executable files containing the content and protects the content, and manages the distribution channel of the secure container and management information for confirming the access right of the content, Stores the security policy in the DB server 1200, and transmits the generated security container to the sender and exports the security container to the outside.

The security container 100 is executable in the form of an executable file and can operate itself without any separate programs and applications to control access from the outside. Preferably, the security container 100 encrypts data in order to protect stored contents, performs illegal copying of contents, confirms tampering of the security container, performs secure communication with the manager server, It enhances access protection to contents by performing security, granting access privileges to contents, and incorporating a viewer for opening and displaying contents.

The authority control module 1130 controls the devices and environments of the receiver 3000 and the receiver 3000 through the authentication process for executing the security container 100 and opening the content from the security container 100, If the security policy is complied with, the security container 100 is executed and the content is controlled to be opened. In order to control the security container 100 as described above, the rights control module 1130 can inquire the previously stored management information and the security policy from the DB server 1200. Also, when the security container 100 is opened and the content is opened, information on the execution result may be stored in the DB server 1200 to update the management information and the security policy of the DB server 1200.

4 is a block diagram schematically illustrating internal components of a security container of a content security distribution method according to an embodiment of the present invention.

4, the security container 100 according to an exemplary embodiment of the present invention includes an encryption module 110, an execution control module 120, a device control module 130, a piracy prevention module 140, A remote viewer module 150, a remote control module 160, an online authentication module 171, an offline authentication module 172, a document viewer module 180, a sandbox implementation module 190, and a content storage module 200 .

The encryption module 110 encrypts and decrypts the data. According to an embodiment of the present invention, the content is encrypted and stored through the encryption module 110, and decrypted through the encryption module 110 to access the encrypted content. In addition, if encryption or decryption of data is required for security, the encryption module 110 can encrypt or decrypt the data.

The execution control module 120 controls the execution of each module to maintain the security of the security container 100. The execution control module 120 can send and receive data with each module of the security container 100 and generates a control command based on the received data.

The device control module 130 collects information on the device in which the security container 100 is stored, and controls the operation of the device to prevent the leakage of the content. When the security container 100 is executed, the device control module 130 collects information such as an IP address and a MAC address of the device in which the security container 100 is stored, and the like, To control the operation of the device. According to an embodiment of the present invention, the device control module 130 may prevent a device from acquiring a screen shot of open content, prevent input of a keyboard capable of copying the content of the content, Thereby preventing the leakage of the content.

The anti-piracy module 140 detects illegal copying of content and tampering of the security container to prevent leakage of the content. According to an embodiment of the present invention, the piracy prevention module 140 checks whether the content stored in the content storage module 200 is illegally copied to check whether the content is tampered or illegally copied, And prevents unauthorized access to the content using the modulated security container 100. [

The secure communication module 150 performs secure communication with the manager server 1000. In order for the security container 100 to access content, the manager server 1000 must be authenticated. At this time, in performing communication with the manager server 1000, secure communication is performed to prevent a third party from intercepting communication, Lt; / RTI > According to an exemplary embodiment of the present invention, the secure communication module 150 maintains security by performing communication using SSL (Secure Sockets Layer).

The remote control module 160 controls the execution of each module of the security container 100 under the control of the manager server 1000. According to an embodiment of the present invention, when the manager server 1000 determines that there is a security threat to the security container 100, the manager server 1000 controls the execution of each module of the security container to prevent the content from being leaked. For example, when the security container 100 is executed by an unauthenticated device and a user and requests an authentication to the manager server 1000, the manager server 1000 determines whether the security container 100 The content control module 130 controls the content control module 130 to delete content stored in the content storage module 200 to prevent the content from being leaked.

The online authentication module 171 and the offline authentication module 172 transmit information necessary for authentication to the manager server 1000 and receive control information according to the information, thereby granting access rights to contents. According to an embodiment of the present invention, when the security container 100 is on-line, the online authentication module 171 communicates directly with the manager server 1000 to perform authentication, and the offline authentication module 172 When the security container 100 is off-line, a QR code is generated. When the receiver 3000 scans the QR code using the smartphone 3100 or the like, the smartphone transmits information necessary for authentication to the manager server 1000 And receives the security code including the corresponding control information, and inputs the security code to the security container 100, thereby performing the authentication.

The document viewer module 180 opens the content stored in the content storage module 200 and displays the content to the user. The document viewer module 180 opens the stored content under the control of the execution control module 120 so that the user can access the content. Since the viewer capable of opening the content is included in the security container 100 as described above, it is possible to prevent the information of the contents from flowing out to the outside, and there is no need to install a separate viewer, .

The sandbox implementation module 190 specifies a specific area of the hard disk as a sandbox and isolates and manages the content. In general, sandboxes are programs that operate within a protected area, which is a security model that prevents adverse effects from external factors. In such a sandbox, a program received from the outside is put in a protected area and then operated. The protected area is isolated from other files or processes and is prohibited from manipulating the inside and outside. By using the characteristics of such a sandbox, it is possible to store contents requiring security in the inside and prohibit the operation of the inside from outside, thereby blocking access to the contents inside. The sandbox implementation module 190 implements such a sandbox to protect the contents stored in the security container 100.

The contents storage module 200 stores contents. The contents stored in the contents storage module 200 are preferably encrypted and stored by the encryption module 110. The recipient 3000 authenticated by the online authentication module 171 or the offline authentication module 172, Only the document viewer module 180 can access the document. For this, the content storage module 200 according to an exemplary embodiment of the present invention may store content in a sandbox implemented by the sandbox implementation module 190 to maintain security.

5 is a diagram schematically showing a process of filling a resource with a resource according to the presence or absence of a sandbox.

Referring to FIG. 5 (A), a black area filled with resources and a white area empty can be checked on the hard disk. We will compare sandboxed and non-sandboxed resources in the process of filling resources on the hard disk.

Referring to FIG. 5B, when a sandbox is not applied to a hard disk, an application that fills a resource can directly access the hard disk to fill a shadowed region of the resource. At this time, the application can access not only an empty white area of the hard disk but also a black area in which resources are already filled, so that, in FIG. 5 (A) as in row 4, column 1 and column 2 of FIG. May be damaged by an operation such as overwriting a resource in a region where the resource has been filled. Such a malicious application may damage a part of the OS or may damage information of another application.

Referring to FIG. 5C, when a sandbox is applied to a hard disk, an area indicated by a dotted line of the hard disk is designated as a sandbox, and an application is set to access and access resources only for the area indicated by the dotted line. Therefore, the application can not access the resources previously stored in the hard disk, and can protect the resources by using the resources only in the set areas.

By using this as the opposite concept, it is possible to protect the resources inside the sandbox from the outside by filling the resources to be protected inside the sandbox and blocking access to the internal resources from outside the sandbox.

The security container 100 according to an exemplary embodiment of the present invention performs security using a sandbox as described above. In this manner, an application outside the sandbox blocks access to an internal resource using the sandbox, By storing content that requires security inside the sandbox and refusing access from the outside, it is possible to protect the contents inside the sandbox.

6 is a flowchart schematically showing detailed steps of a content export approval step and a security container export step of a content security distribution method according to an embodiment of the present invention.

Referring to FIG. 6, the content export approval step S1000 according to an embodiment of the present invention includes a content receiving step S1100, a security policy setting step S1200, and an export appropriateness checking step S1300, The exporting step S2000 includes a security container creation step S2100, a security container information storage step S2200, and a security container transmission step S2300.

In the content receiving step S1100, the manager server 10000 receives the content from the sender 2000 and stores the received content. The content is stored in the export approval module 1110 of the security control server 1100.

Thereafter, in the security policy setting step S1200, a security policy necessary for carrying out the content is set. The security policy may be received from the sender 2000 or may be set directly by the manager server 1000 in accordance with the content or may be directly input by the approval approver connected to the manager server 1000 It is possible.

Then, in the export adequacy confirmation step (S1300), it is confirmed whether or not the export is proper based on the content and the security policy. Whether or not the export is proper may be determined by the export approval module 1110 itself based on the export policy previously stored in the export approval module 1110 or from the export approval approver connected with the export approval module 1110 It is possible to judge whether the export is proper or not.

If it is determined in step S1300 that the export is appropriate, the security container 100 in the form of an executable file for containing the content and protecting the content is created in the security container creation step S2100. If it is determined that the export is not appropriate, the export process will be terminated.

The security container 100 is executable in the form of an executable file and can operate itself without any separate programs and applications to control access from the outside. Preferably, the security container 100 encrypts data in order to protect stored contents, performs illegal copying of contents, confirms tampering of the security container, performs secure communication with the manager server, It implements security, implements access to content, and has a built-in viewer to open and display content. It also protects access to content by designating a specific area of the hard disk as a sandbox and isolating the content.

Thereafter, the security container information storage step S2200 stores the management information and the security policy for tracking the distribution route of the security container 100 and confirming the access right of the content. The management information includes an identifier for identifying the security container 100 and a database for storing a distribution path of the security container 100. The security policy includes a user, A MAC address, a valid period in which the content can be accessed, and the number of times that the content can be accessed, and an open permission time of the content. According to an embodiment of the present invention, the management information and the security policy are stored in the DB server 1200 of the manager server 1000.

In the security container transmission step S2300, the generated security container 100 is transmitted to the sender 2000 and is exported to the outside. According to an embodiment of the present invention, the security container 100 is transmitted to the receiver 3000 through the sender 2000, but the present invention is not limited thereto. The manager server 1000 may transmit the security container 100 directly to the recipient 3000 when the contents are uploaded by designating the content container 3000.

The sender 2000 who wishes to export the content while maintaining the security of the content through the above process includes the content through the manager server 1000 and includes an executable file type security container 100 for protecting the content, And can forward it to the recipient 3000 that wants to receive the transmission.

FIG. 7 is a flowchart schematically illustrating detailed steps of a security container execution authentication step and a content open authentication step of a content security distribution method according to an embodiment of the present invention.

Referring to FIG. 7, the security container execution authentication step S3000 according to an exemplary embodiment of the present invention includes a security container information receiving step S3100, a security container DB inquiry step S3200, a use right confirmation step S3300, (Step S400). The content open authentication step S4000 includes a content open information receiving step S4100, a content open DB inquiry step S4200, a security policy compliance checking step S4300, A control step S4400, a content control step S4500, and a DB update step S4600.

Hereinafter, a process in which the receiver 3000 receives the security container 100 from the sender 2000 and opens the content through the security container will be described.

When the receiver 3000 executes the security container 100 and accesses the manager server 1000, in step S3100, the manager server 1000 receives the security container, Information is received. The information required for authentication includes information that can determine whether or not the user has access to the content according to a predetermined security policy. According to an embodiment of the present invention, in the security policy, a user ID, a password, an IP address and a MAC address of a computer capable of accessing contents are designated. In the security container information receiving step S3100, The user ID, the secret number, the IP address, and the MAC address of the computer. For this, the security container 100 identifies the IP and MAC address of the computer, receives the user ID and password from the receiver 3000, and transmits the user ID and password to the manager server 1000.

Thereafter, the security container DB inquiry step S3200 inquires management information and security policy of the previously stored security container corresponding to the received information. In accordance with an embodiment of the present invention, the manager server 1000 retrieves the management information and the security policy of the security container 100 using the serial number of the received security container 100.

Then, in the usage right confirmation step (S3300), it is determined whether or not the user right is granted based on the received information and information of the security container 100 previously stored. According to an embodiment of the present invention, the manager server 1000 checks whether the user ID and the password match with each other in the security policy retrieved in the security container DB inquiry step S3200, And confirms whether the IP address and the MAC address of the computer are an IP and a MAC address that are allowed access to contents in the security policy, and confirms whether or not the user is authorized to use the content.

If the authority of the receiver 3000 is confirmed in the usage right confirmation step S3300, the security container execution control step S3400 controls the execution of the security container 100 based on whether or not the usage right is granted. According to an embodiment of the present invention, when the rights of the receiver 3000 are confirmed, the manager server 1000 outputs a list of stored contents so that the user can access the stored contents, . If only a part of the contents stored by the user is accessible, a list of only some contents which can be accessed is displayed so that the user can access the contents.

If the usage right is not confirmed, the process proceeds to a content control step S4500, which will be described later, without going through the security container execution control step S3400.

In the content open information receiving step S4100, the manager server 1000 receives information about a security container, a device, a user, and contents necessary for authentication. After the authorization of the receiver 3000 executing the security container 100 through the secure container execution authentication step (S1000) is confirmed, authentication of each of the contents is required for the receiver 3000 to open the content. According to an embodiment of the present invention, the security policy for the content includes the validity period and the number of times that the content can be accessed, the open permission time of the content, and the like. Therefore, when the receiver 3000 opens each content, the security container 100 needs to know whether or not the content conforms to the security policy, so that the security container 100 can recognize the serial number of the security container 100, Time and other information to the manager server 1000.

Thereafter, in the content open DB inquiry step S4200, the management information and the security policy of the previously stored security container 100 corresponding to the received information are inquired. The management information and the security policy of the security container 100 are retrieved using the serial number of the security container 100 and the serial number of the content according to an embodiment of the present invention.

Thereafter, in the security policy compliance checking step (S4300), it is checked whether the security policy necessary for opening the content is complied with based on the received information and the previously stored security container information. According to an embodiment of the present invention, the management information of the security container 100 may include an open history of each content stored in the security container 100, and may be compared with a security policy of the content, And checks whether the access to the content conforms to the security policy by comparing the current time with the accessibility valid period of the content.

If the access to the content conforms to the security policy, the content open control step (S4400) controls the content open of the security container (100). At this time, the security container 100 can open the content using the document viewer module 180 included therein, so that the user can view the content without accessing the content by an external application or the like.

If the access to the content violates the security policy, the manager server 1000 proceeds to the content control step S4500, which will be described later, without going through the content open control step S4400.

In the content control step S4500, control of contents including open restriction, open suspension, and deletion is performed in order to protect contents based on the security policy. According to an embodiment of the present invention, even if the content is normally opened, if the open time of the content is set in the security policy, the security container 100 closes the content after the open time has passed, . If the security policy violation is found in the usage right check step S3300 and the security policy compliance checking step S4300 and the content control step S4500 is entered, the security of the content storage module 200 is enhanced, The access to the contents is blocked through a method of stopping the execution of the program 100 or the like. Preferably, if a serious security policy violation is found, the content is deleted to maintain security for the content.

Thereafter, in the DB updating step (S4600), the management information and the security policy of the security container 100 stored are updated based on the control of the content. According to an embodiment of the present invention, when the content is normally opened, the security container 100 transmits the open execution result of the content to the manager server 1000, and adds the open history of the content to the management information of the security container 100 Lt; / RTI > If a security policy violation is detected and security matters such as security of contents or deletion of contents are generated, the security container 100 transmits it to the manager server 1000 and records it in the DB server 1200 DB to be updated.

In order to access the contents of the security container 100 through the process described above, the receiver 3000 receiving the security container 100 accesses the content through the authentication of the manager server 1000 so that only the authenticated recipient 3000 can access the content And the management information such as the access history is recorded in the DB server 1200 of the manager server 1000 so that the distribution process of the security container 100 can be confirmed.

If the rights to the content are confirmed through the content open authentication step S4000 as described above, the security container 100 designates a specific area of the hard disk of the stored hard disk as a sandbox, isolates and stores the content, And executes a security container execution step of controlling access by confirming the authority to access the content.

FIG. 8 is a view schematically showing detailed steps of a security container execution authentication step (S3000) of an online authentication module 171 of a content security distribution method according to an embodiment of the present invention.

Referring to FIG. 8, the online authentication module 171 of the security container 100 according to an embodiment of the present invention is connected to the security control server 1100 to perform online authentication.

First, when the security container 100 is executed by the receiver 3000, the security container 100 receives the ID and the password of the receiver and performs authentication (S3010). According to an embodiment of the present invention, the security container 100 itself can perform authentication based on the ID and the password of the receiver. According to another embodiment of the present invention, the ID and the password of the receiver can be transmitted to the manager server 1000 To the security control server 1100 of the security control server 1100 to perform authentication.

Thereafter, the security container 100 includes a security container 100, which can confirm whether or not the user has the right to use according to the security policy, including the result of performing the authentication or inputting information in step S3010, To the server 1100 (S3100).

Then, the security control server 1100 inquires management information and security policy of the previously stored security container corresponding to the received information. According to an embodiment of the present invention, the security control server 1100 inquires of the DB server 1200 about the management information and the security policy of the security container 100 using the serial number of the received security container 100 S3200), the DB server 1200 transmits the inquiry result to the security control server 1100 (S3210).

Thereafter, the security control server 1100 confirms whether or not the use right is authorized based on the DB inquiry result, and transmits the security execution control information corresponding thereto to the security container 1000 (S3400), and controls execution of the security container 100 (S3450).

In this way, the online authentication module 171 directly connects with the security control server 1100 to transmit information required for authentication, receives the security execution control information, and performs authentication required to execute the security container 100.

FIG. 9 is a view schematically showing detailed steps of a security container execution authentication step (S3000) of an offline authentication module 172 of a content security distribution method according to an embodiment of the present invention.

9, the offline authentication module 172 of the security container 100 according to an exemplary embodiment of the present invention includes a smart phone 3100 and a web server 1300 for performing authentication in the security control server 1100 And is connected to the security control server 1100 to perform offline authentication.

First, when the security container 100 is executed by the receiver 3000, the security container 100 receives the ID and the password of the receiver and performs authentication (S3010). According to an embodiment of the present invention, the security container 100 itself can perform authentication based on the ID and the password of the receiver. According to another embodiment of the present invention, the ID and the password of the receiver can be transmitted to the manager server 1000 To the security control server 1100 of the security control server 1100 to perform authentication. However, since there is a risk of security leakage in the case of offline authentication, preferably, when the offline authentication is performed, the security container 100 itself performs authentication.

Thereafter, the security container 100 transmits the information about the device and the user, and the security container 100, which can confirm the use right according to the result of performing the authentication in the step S3010 or inputted information and the security policy. Generates a QR code including the address of the web server 1300 of the manager server 1000 (S3020).

Then, the receiver 3000 recognizes the QR code generated using the smartphone 3100 or the like (S3110).

Then, the smartphone 3100 accesses the web server 1300 using the information included in the recognized QR code, and transmits the information included in the QR code to the web server 1300 (S3120). As described above, the QR code includes information about the security container 100, device, and user, which can confirm whether or not the user has the right to use according to the result of performing the authentication in step S3010 or the received information and the security policy.

Then, the web server 1300 transmits information about the security container 100, the device, and the user to the security control server 100, which can confirm whether or not the usage right is checked according to the result of performing the authentication in the received S3010, (Step S3130).

Then, the security control server 1100 inquires management information and security policy of the previously stored security container corresponding to the received information. According to an embodiment of the present invention, the security control server 1100 inquires of the DB server 1200 about the management information and the security policy of the security container 100 using the serial number of the received security container 100 S3200), the DB server 1200 transmits the inquiry result to the security control server 1100 (S3210).

Thereafter, the security control server 1100 confirms whether or not the usage right is authorized based on the DB inquiry result, and transmits the security execution control information to the web server 1300 (S3400).

Thereafter, the web server 1300 generates a security code including the received security execution control information (S3410). It is preferable that the security code can be protected even if it is encrypted and leaked.

Thereafter, the web server 1300 transmits the generated security code to the smartphone 3100 (S3420).

Then, the receiver 3000 inputs the security code received by the smartphone 3100 to the security container 100 (S3430).

Thereafter, the security container 100 decrypts the security execution control information included in the received security code, and controls execution according to the security execution control information (S3450).

The offline authentication module 172 indirectly connects with the security control server 1100 through the smart phone 3100 and the web server 1300 to transmit information required for authentication through the QR code and to transmit the security execution control information And performs authentication required for execution of the security container 100 by receiving it through the security code.

FIG. 10 is a view schematically showing detailed steps of a content open authentication step (S4000) of a content security distribution method according to an embodiment of the present invention.

Referring to FIG. 10, the security container 100 according to an exemplary embodiment of the present invention is connected to the security control server 1100 to perform authentication.

First, the security container 100 performs a content open authentication step (S4000) to open the content when the usage right is confirmed through the security container execution authentication step (S3000).

When the receiver 3000 opens the content of the security container 100, the security container 100 transmits a content open request including information on security containers, devices, users, and contents necessary for authentication to the security control server 1100 Information is transmitted (S4100).

Then, the security control server 1100 inquires of the DB server the management information and the security policy of the security container corresponding to the received content open information. According to an embodiment of the present invention, the security control server 1100 inquires of the DB server 1200 about the management information and the security policy of the security container 100 using the serial number of the received security container 100 S4200), the DB server 1200 transmits the inquiry result to the security control server 1100 (S4210).

Thereafter, the security control server 1100 checks whether the content access is compliant with the security policy based on the DB inquiry result, and transmits the content open control information to the secure container 100 (S4400).

Then, the security container 100 performs open control of the content based on the content open control information (S4410). If the security policy is complied with, the content is opened through the document viewer module 180 based on the content open control information. If the content is in violation of the security policy, the content is protected without opening the content based on the content open control information.

Then, the security container 100 transmits the result of performing the content open control to the security control server 1100 (S4420).

After receiving the result of the content open control, the security container 100 transmits content control information for controlling the content to the security container 100 (S4500). The content control information includes control of the content including open restriction, open suspension, and deletion for protecting the content based on the security policy. According to an embodiment of the present invention, even if the content is normally opened, if the open time of the content is set in the security policy, the security container 100 closes the content after the open time has passed, . Or if the content is protected in violation of the security policy, the access to the content is blocked by stopping execution of the security container 100 or the like. Preferably, if a serious security policy violation is found, the content is deleted to maintain security for the content.

Thereafter, the security container 100 receiving the content control information performs control of the content according to the content control information (S4510).

Thereafter, the security container 100 transmits the content control execution result according to the content control information to the security control server 1100 (S4520).

Thereafter, the security control server 1100 updates management information and security policy of the security container 100 stored in the DB server based on the received content control execution result (S4600). According to an embodiment of the present invention, when the content is normally opened, the security container 100 transmits the open result of the content to the security control server 1100, and transmits the management information of the security container 100 stored in the DB server And updates the management information by adding the open execution result to the open history of the content. If a security policy violation is detected and security matters such as security of contents or deletion of contents are generated, the security container 100 transmits it to the security control server 1100 and records it in the DB server 1200 So that the DB can be updated.

Thereafter, the DB server 1200 transmits the DB update result to the security control server 1100 (S4610). In this manner, it is possible to check whether the update has been successfully performed through the feedback on the update result, and to exhibit the effect of blocking errors that may occur.

The recipient 3000 who has been authorized to use the content through the security container 100 accesses the content again through the authentication of the manager server 1000 so that the recipient 300 can access the content only if he / And the management information such as the contents access history may be recorded in the DB server 1200 of the manager server 1000 so that the distribution process of the security container 100 and the like can be confirmed.

11 is a view schematically showing a file structure of a security container of a content security distribution method according to an embodiment of the present invention.

Referring to FIG. 11, a structure of one executable file generated by the security container 100 according to an exemplary embodiment of the present invention can be confirmed.

The security container 100 includes various headers, a text section, a data section, and SFX data, and the SFX data is divided into an original data area and a virtual data area.

The text section is an area containing an executable code of the program, the data section is an area for allocating a variable of the program, and the SFX data is a data area stored in the form of a self-extracting compressed file.

When the manager server 1000 creates the security container 100, the source content area and the virtual content area are created by separating the original content file and the area in which the virtual content files are stored from the SFX data, . Thereafter, a security policy is set to refer to the virtual content when a work request for original content is made, a file stream to be created into a single file is encrypted by encrypting the source file and the virtual file separated from the agent embedded in the security policy, .

Referring to FIG. 11, the detailed structure of the SFX data can be confirmed. The SFX data is largely classified into an extractor for extracting and an encrypted data, and the encrypted data includes a setup information block, a header block, and a data block.

The security container 100 according to an embodiment of the present invention divides SFX data into an original data area and a virtual data area, stores the content, stores the original content in the original data area, and stores the original content in the virtual data area Virtualized virtual content is stored, and when the content is accessed, only the virtual content of the virtual data area is accessed, thereby protecting the original content.

12 is a view schematically showing detailed steps of a sandbox implementation process of a sandbox implementation module of a content security distribution method according to an embodiment of the present invention.

Referring to FIG. 12, the sandbox implementation module 190 according to an embodiment of the present invention includes a unpackaging step S100, a virtual area operation step S200, and a virtual area organizing step S300 Implement a sandbox.

First, in the unpackaging step (SlOO), the original content and the virtual content are separated into the original data area and the virtual data area, respectively, when the contents are opened.

When the recipient 3000 opens the content through the authentication process, the sandbox implementation module 190 decompresses the original content to the original data area and the virtual content to the virtual data area in the encrypted and compressed content So that the recipient 3000 can access it.

Then, in the virtual area operation step (S200), it is performed only in the virtual data area when the operation is requested for the content.

When the recipient 3000 requests a work for the content and the API is called for a work request for the content, the sandbox implementing module 190 transmits an API to the sandbox implementation module 190 so that the API accesses the content. So that the job is performed in the virtual data area. In this way, access to the original content is blocked, and the original content is protected by changing the access to the virtual content.

Then, in the virtual area periodical step S300, the data of the virtual data area is permanently deleted at the end of the operation of the security container 100. [

When the recipient 3000 finishes the work on the content, the API for closing the file is called. In this case, the API is changed by accessing the API to access the content, and the virtual content is terminated by calling the API. In addition, after the data is permanently deleted in the virtual data area after the end of the job, the virtual contents can be prevented from being leaked to protect the contents.

In this way, the sandbox implementing module 190 protects the original content by separating the original content and the virtual content, blocks access to the original content, and changes the access to the virtual content. When the virtual content is stored By permanently erasing the data in the virtual data area, the contents are protected by preventing the leakage of the virtual contents.

According to an embodiment of the present invention, authentication of a user and / or a device is performed in order to access content through a security container, so that only a user and / Can be maintained.

According to an embodiment of the present invention, access to content through a security container prevents other applications or devices from accessing the content directly, and can maintain the security of the content.

According to an embodiment of the present invention, the security container implements a sandbox to isolate and store the content, thereby externally accessing the content and securing the security of the content.

According to an embodiment of the present invention, authentication is performed through a manager server in order to access content through a security container, and a manager server controls opening of content or the like to comply with predetermined security policies and the like, It is possible to maintain the security of the content by controlling access to the content, stopping the browsing, deleting the content, and the like.

According to an embodiment of the present invention, the authentication is performed through the manager server every time the content is accessed through the security container, thereby enabling the manager server to track the distribution channel of the content.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments. For example, it is to be understood that the techniques described may be performed in a different order than the described methods, and / or that components of the described systems, structures, devices, circuits, Lt; / RTI > or equivalents, even if it is replaced or replaced. Therefore, other implementations, other embodiments, and equivalents to the claims are also within the scope of the following claims.

Claims (8)

As a content security distribution method,
A security container execution authentication step of the manager server receiving the execution request of the security container from the user terminal to confirm the authority and controlling the execution of the security container;
A content open authentication step of allowing the manager server to receive an open request for a content stored in the security container from the user terminal to check the rights of the content and to control the content open; And
When the right of the content is confirmed in the content open authentication step, the security container of the user terminal designates a specific area of the hard disk of the user terminal as a sandbox, isolates and stores the content, And a security container execution step of controlling access by checking authority to access the content,
Wherein the secure container is in the form of an executable file, and the secure container stores content.
The method according to claim 1,
The security container includes:
A source area in which the original content is stored; And
And a virtual area in which the virtual content is stored.
The method of claim 2,
The security container includes:
An encryption module for encrypting and decrypting data;
An execution control module for controlling execution of each module for securing the security container;
A device control module for collecting information of a device in which a security container is stored and controlling an operation of the device to prevent a content from being leaked;
An anti-piracy module for preventing illegal copying of content and tampering of security container to prevent leakage of contents;
A secure communication module for performing secure communication with the manager server;
A remote control module for controlling the execution of each module of the security container under the control of the manager server;
An authentication module that transmits information necessary for authentication to the manager server and receives control information according to the received control information to grant access right to contents;
A document viewer module for opening a content stored in the content storage module and displaying the content to a user; And
A sandbox implementation module that sandboxes a specific area of the hard disk and isolates and manages the content.
The method of claim 3,
The sandbox implementation module comprises:
An unpackaging step of unpacking the original content and the virtual content by separating the original content and the virtual content into the original data area and the virtual data area, respectively;
A virtual area operation step in which a content is requested to be performed only in a virtual data area when a work request is made for the content; And
And a virtual area clean-up step of permanently deleting data in the virtual data area at the end of the operation of the security container, wherein the sandbox is implemented.
The method of claim 4,
The virtual region operation step includes:
Wherein when an API for requesting an operation for a content is called, the operation is performed in the virtual data area by changing the virtual content to be accessed when accessing the content.
The method of claim 4,
The authentication module includes:
An online authentication module that transmits information necessary for authentication to a manager server when the security container is on-line, receives authentication information of the manager server according to the information, and performs authentication; And
An offline authentication module for generating a QR code including information necessary for authentication when the security container is in an offline state, receiving a security code generated after the manager server performs authentication based on the QR code, and performing authentication by receiving the generated security code; And the content security distribution method.
The method of claim 6,
The security container execution authentication step includes:
A security container information receiving step of receiving information about a security container, a device and a user necessary for authentication;
A security container DB inquiry step of inquiring management information and a security policy of a previously stored security container corresponding to the received information;
Checking whether the use right is authorized based on the received information and information of a previously stored security container; And
And a security container execution control step of controlling execution of the security container based on whether or not the use right is granted.
The method of claim 6,
The content open authentication step comprises:
A content open information receiving step of receiving information on a security container, a device, a user and a content necessary for authentication;
A content open DB inquiry step of inquiring management information and a security policy of a previously stored security container corresponding to the received information;
A security policy compliance check step of checking compliance of the security policy necessary for opening the content based on the received information and the information of the previously stored security container;
A content open control step of controlling the content opening of the security container based on whether the security policy is complied with;
A content control step of performing control of contents including open restriction, open suspension, and deletion in order to protect contents of contents based on the security policy; And
And updating the management information and the security policy of the security container stored based on the control of the content.

Images