KR20200065573A - Location Authentication Method Using Block Chain - Google Patents

Abstract

Disclosed is a method capable of reliably authenticating a location of a user using a blockchain. According to the present invention, the user converts a random value received from multiple nodes and registers the random value in the blockchain, and then the nodes disclose the random value to the blockchain, so that the user can easily authenticate his/her location and the time at which he/she was at the location. As a result, by using the present invention, Fintech companies or online to offline (O2O) service providers can reliably authenticate and use both the location and time of the user.

Description

Location authentication method using block chain {Location Authentication Method Using Block Chain}

The present invention relates to a method for authenticating a user's location using a blockchain, and more specifically, based on random value information received from a plurality of nodes, a user registers an authentication value in the blockchain, and multiple It relates to a method by which nodes can authenticate a user's location by releasing random values to the blockchain later.

Location authentication using online systems is becoming more and more widely used in our lives. The school checks whether or not a particular lecture is attended, and the use of QR codes or OTP information is also increasing in the vicinity. In the case of such location authentication, it is essentially necessary to prove whether or not a particular location is present or justify whether a particular service target is valid by proving his/her location.

In particular, since the Fintech technology is widely used, the most secure authentication method exists in the location at the time when the user requesting the service in order to enhance the stability of the financial transaction against voice phishing or hacking in financial transactions such as payment. It is possible to reliably check whether it is present.

That is, in the prior art, the user's authentication was performed by using ARS reception of the mobile terminal or transmitting one time password to the user's mobile terminal, but this is difficult to confirm the user's place, so the user as in the present invention If it can be reliably authenticated by including both location and time information, it will significantly reduce the likelihood of multiple frauds.

Publication No. 10-2018-0098798, Method and apparatus for allocating resources to mobile terminals in edge cloud U.S. Patent Publication No. 2018/0174097, Tracking shipment with a local and remote blockchain

An object of the present invention for solving the above problems is to provide a method for authenticating a trusted user's location using a blockchain.

The present invention for achieving the above object, the plurality of reference nodes transmitting a random value that changes over time (S100), the user converts the random value received from the plurality of reference nodes, authentication Generating a value (S200); The user recording the authentication value on the blockchain (S300); The plurality of reference nodes is characterized in that it comprises a step (S400) of releasing the random value that was transmitted to the user after a certain time to the blockchain.

In addition, in the present invention, the plurality of reference nodes transmits a random value that changes over time (S100), and the user converts the random value received from the plurality of reference nodes to generate an authentication value. (S200), the user writes the authentication value to the blockchain (S300), and the user registers the blockchain by creating a transaction that pays a fee to reference nodes that disclose the random value. Step (S500), the plurality of reference nodes, in response to the transaction, characterized in that it comprises the step (S600) of releasing the random value that was sent to the user on the blockchain.

In addition, it is characterized in that a unidirectional conversion function is used to convert the random value.

In the case of using the user location authentication method using the block chain according to the present invention as described above, by simultaneously authenticating the user's time and location to various fintechs, it is possible to robustly and reliably provide the authentication method of the service target. have.

In addition, by providing a transaction for nodes that authenticate a user's location according to the present invention, it provides an effect of actively participating in the location authentication method of the present invention by providing nodes with location information.

In addition, the user location authentication method of the present invention is independent of a separate authentication system or an authentication authority, and can easily provide a location authentication service even by using a conventional blockchain system. Service can be introduced.

As a result, by easily authenticating both the user's location and time through the location authentication method of the present invention, there is an advantage in that it is possible to significantly reduce the possibility of various financial fraud or hacking problems that can easily occur in Fintech or O2O services. .

1 is a conceptual diagram of a conventional position measuring method
2 is a block diagram of the centralized block chain location authentication method of the present invention.
3 is a configuration diagram of a decentralized block chain location authentication method of the present invention.
4 is a flow chart of a centralized block chain location authentication method of the present invention.
5 is a flow chart of a decentralized block chain location authentication method of the present invention.

The terms used in this application are only used to describe specific embodiments, and are not intended to limit the present invention. Singular expressions include plural expressions unless the context clearly indicates otherwise. In this application, terms such as “include” or “have” are intended to indicate the presence of features, numbers, steps, actions, components, parts, or combinations thereof described in the specification, one or more other features. It should be understood that the existence or addition possibilities of fields or numbers, steps, operations, components, parts or combinations thereof are not excluded in advance.

Unless otherwise defined, all terms used herein, including technical or scientific terms, have the same meaning as commonly understood by a person skilled in the art to which the present invention pertains. Terms, such as those defined in a commonly used dictionary, should be interpreted as having meanings consistent with meanings in the context of related technologies, and should not be interpreted as ideal or excessively formal meanings unless explicitly defined in the present application. Does not.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings.

1 is a description of an existing location measuring method using various reference nodes. The conventional position measurement method basically uses a method similar to triangulation, that is, a reference position that knows the position is used. For example, as shown in FIG. 1, when a reference node 1,2,3 transmits a signal to a user, the user receives the signal, and uses the strength or arrival time of the signal to estimate his position. .

Specifically, according to the method as shown in Figure 1, based on the on / off (On/Off) information based on whether or not the signals of specific reference nodes can be received or their position or signal strength or signal from the reference node There are methods to check your current location through triangulation based on the arrival time of.

More specifically, in the method as in (a) of FIG. 1, based on the presence or absence of receiving a signal of a reference node in which the user or the terminal knows the location in advance, the current one's location is a communication radius (eg, Bluetooth is confirmed to be within a distance of approximately 10 m and WLAN approximately 40 m). In addition, when a user receives a plurality of signals overlapping, it is possible to grasp the current position by intersecting the communication radius of each reference node. In addition, the methods of FIG. 1(b) using signal strength and arrival time have a problem in that accuracy varies according to a wireless environment.

Therefore, the present invention proposes a method for safely performing location authentication using reference nodes and a blockchain.

The location authentication method can be roughly divided into two types, one is a centralized location authentication method, and the other is a decentralized location authentication method.

Specifically, the centralized location authentication method is a method of directly constructing an infrastructure for trusted reference nodes and using information of the reference nodes.

On the other hand, the decentralized location authentication method does not directly configure or manage the reference node, and securely participates in the reference nodes through an incentive structure that provides a fee to the reference nodes that provide information to users and blockchain. It is a method to induce location authentication service.

First, the centralized location authentication method will be described in detail with reference to FIGS. 2 and 4. In addition, the use of a plurality of reference nodes for the location authentication of the user or the terminal is similar to that in FIG. 1, so a detailed description is omitted.

First, each reference node Ai transmits a random value Ri[t], which is a random value that changes every time, and the user/terminal converts a random value from several reference nodes and uses it as an authentication value for authenticating his location. .

Specifically, a unidirectional conversion function may be used to convert the random value.

More specifically, a hash function may be used as an embodiment of the unidirectional transform function described above.

More specifically, the hash function always has the same output (hash(x)) for a specific input (x), and it is sufficient to have a unidirectionality that is difficult to find an input value from the output value.

Further, in one embodiment, the unidirectional transform function may be implemented as a Merkle Hash Tree.

Next, the user/terminal records the authentication value on the blockchain, proving that the authentication value has been received at the corresponding time (block time). At this time, the reason for using the blockchain is that it is possible to easily prevent tampering and forgery of information based on the technical characteristics of the distributed ledger.

Finally, each reference node announces the random value Ri[t] that it has transmitted after a certain time (that is, after k block times, where k is an integer greater than 0) through the blockchain.

As a result, anyone checks the consistency of the authentication value by using the authentication value of the user/terminal that has already been published on the blockchain and the random value just published by the reference nodes. Prove that you were in.

The following is a detailed description of the centralized location authentication method described above in chronological order.

In the centralized location authentication method, as shown in FIG. 4, the plurality of reference nodes transmit random values that change over time (S100), and the user receives the random values received from the plurality of reference nodes. Converting, generating an authentication value (S200), the user writing the authentication value to the blockchain (S300), and the plurality of reference nodes block the random value that the user sent to the user after a certain time Disclosing the step (S400) will be performed.

Next, the decentralized location authentication method will be described in detail with reference to FIGS. 3 and 5.

Since the reference nodes transmit a random value, the user converts it, generates an authentication value, and then records or writes it to the blockchain, which is the same as the centralized location authentication method, so detailed description is omitted.

The decentralized location authentication method then proceeds in the following order.

That is, when Ri[t] is released after a certain time (after the k block time), the user creates a transaction that pays a certain amount of fees and registers it on the blockchain.

In a more specific embodiment, when using Bitcoin as the underlying blockchain, the Ri[t] value (i.e. h(Ri[t), which is a one-way conversion function (here, abbreviated as hash) is used to convert the random value. ])) Creates and registers a transaction that allows a person who presents a preimage (ie Ri[t]) to take a price, where the hash function is the one-way conversion function. A pre-image of a random value that has passed through a function has a feature that cannot be generated unless it is known, that is, only a reference node that transmits a random value can have a price.

In addition, as another specific embodiment, the blockchain may be an Ethereum-based blockchain, and in this case, smart may be paid by providing a random value in the form of a preimage of a unidirectional conversion function. You can create a transaction in the form of a smart contract.

In this case, if a random value, which is a pre-image, is not registered within a certain time, a time lock may be applied to recover the fee again.

In this case, a plurality of reference nodes that transmit a random value to the user disclose the Ri[t] value used in the block time when the authentication value is registered in order to receive their own fee (fee) to the blockchain and their own fee (fee ).

As such, after all (or sufficiently many) reference nodes disclose the Ri[t] value, the user's location authentication value can be sufficiently verified.

In addition, it is possible to securely authenticate the space and time where the user was located at once by using the blockchain.

In addition, with respect to the k block times described above, it is made to wait k block times so that the location authentication value registered by the user sufficiently secures the security by the blockchain. This is a concept similar to the confirmation of general blockchain transactions, and provides the effect of increasing the stability of user location/time authentication by the blockchain.

The following is a detailed description of the decentralized location authentication method described above in chronological order.

The decentralized location authentication method is the same as that shown in FIG. 5, and some of the steps (S100-S300) are the same as the centralized location authentication method, so the description thereof will be omitted. In a subsequent step, the user creates a transaction that pays a fee to reference nodes that disclose the random value and registers it in the blockchain (S500). Subsequently, the plurality of reference nodes respond to the transaction, It characterized in that it further comprises the step (S600) of releasing the random value that was sent to the user to the blockchain. As a result, the reference nodes provide a random value, and then, instead of publishing it on the blockchain, they receive a price from the user, and trusted reference nodes participate in the location authentication method system like the present invention based on this price (incentive). Provide motivation to do so.

For reference, since the Ri[t] value is directly received through a wireless signal, it has a characteristic that cannot be intercepted, and it requires a lot of computing power and effort to hack or falsify/modulate it.

In addition, since the Ri[t] value released by the reference node itself contains information of the block time t, and is disclosed through the address of the reference node itself, false registration is performed if the secret key of the reference node is not known. It is characterized by being unable to.

In addition, in the decentralized location authentication method, if a malicious reference node gives up its own price as a kind of service attack and does not release a free image, it can be recovered again by a time lock.

In addition, when Ri[t] is received from N reference nodes to generate an authentication value, if it is determined that the number is sufficient, the user can check the authentication value even if only M Ri[t] values less than N are disclosed. It can also be implemented to provide.

As a result, service providers that provide O2O services, such as rentals based on fintech solution providers or vehicle locations, that want to simultaneously authenticate the user's location and time through the participation of these reference nodes. Providers) have the effect of easily including location authentication schemes in services.

The price used in the present invention may be in the form of a fee, but may also be in the form of cash, reward points for a specific service, or cryptocurrency.

The functions of individual or selectively combined components (user terminals, nodes, servers, etc.) constituting a location authentication method using a blockchain according to an embodiment of the present invention are stored in a storage medium for execution through combination with a computer. It can be implemented as a computer program.

In addition, the individual or selectively combined components constituting the location authentication method using the blockchain according to an embodiment of the present invention are implemented in the form of program instructions that can be executed through various computer means to be recorded in a computer-readable medium. Can be. The computer-readable medium may include program instructions, data files, data structures, or the like alone or in combination. The program instructions recorded on the medium may be specially designed and configured for the present invention, or may be known and available to those skilled in computer software. Examples of computer-readable recording media include magnetic media such as hard disks, floppy disks, and magnetic tapes, optical media such as CD-ROMs, DVDs, and magnetic media such as floptical disks. Includes hardware devices specifically configured to store and execute program instructions such as magneto-optical media, and ROM, RAM, flash memory, and solid state drives (SSDs). Examples of program instructions include high-level language code that can be executed by a computer using an interpreter, etc., as well as machine language codes produced by a compiler.

In addition, a configuration such as a computer or a computer program used in the present invention is modified in the form of a mobile communication terminal, such as a smartphone, and as computing power dramatically increases, in the same sense as an application executed in a smartphone or smartphone. Can be used.

Although described above with reference to preferred embodiments of the present invention, those skilled in the art variously modify and change the present invention without departing from the spirit and scope of the present invention as set forth in the claims below. You can understand that you can.

A1, A2… Ai: First reference node, second reference node... i-th reference node
Ri[t]: Random value generated at time t of i-th reference node
h(Ri[t]): unidirectional transform function to transform random values
S100: Transmitting a time random value
S200: Step of generating authentication value
S300: Step of recording the authentication value on the blockchain
S400: Step of releasing random values to the blockchain
S500: Step of creating a transaction and registering it on the blockchain
S600: Disclosing the random value to the blockchain in response to the transaction

Claims (4)

In the user location authentication method using a plurality of reference nodes and blockchain,
The location authentication method
The plurality of reference nodes transmitting a random value that changes over time (S100);
The user converting the random value received from the plurality of reference nodes to generate an authentication value (S200);
The user recording the authentication value on the blockchain (S300);
The plurality of reference nodes, the user location authentication method comprising the step of releasing a random value that was sent to the user after a certain time on the blockchain (S400).
In the user location authentication method using a plurality of reference nodes and blockchain,
The location authentication method
The plurality of reference nodes transmitting a random value that changes over time (S100);
The user converting the random value received from the plurality of reference nodes to generate an authentication value (S200);
The user recording the authentication value on the blockchain (S300);
The user creates a transaction that pays a fee to reference nodes that disclose the random value and registers it with the blockchain (S500);
The plurality of reference nodes in response to the transaction, the user location authentication method comprising the step of releasing the random value that was sent to the user on the blockchain (S600).
The method according to claim 1 or 2,
A user location authentication method, characterized in that a unidirectional conversion function is used to convert the random value.
A computer program that performs the method for authenticating a user location according to any one of claims 1 to 2 and stores it on a computer-readable recording medium.

Images