KR20240026069A - Electronic device and method for performing user authentication in electronic device - Google Patents

Abstract

According to various embodiments, an electronic device includes: memory; and at least one processor connected to the memory. The at least one processor receives user credentials through a first authentication application running in the security area, and performs a user authentication procedure in the first authentication application in the security area based on the user credentials. You can control it to run. The at least one processor may control the first authentication application within the security area to issue an access token when the user authentication procedure is successfully completed in the first authentication application within the security area. The at least one processor may control transmission of the access token issued by the first authentication application in the security area to an external electronic device through a second authentication application running in the general area.

Description

{ELECTRONIC DEVICE AND METHOD FOR PERFORMING USER AUTHENTICATION IN ELECTRONIC DEVICE}

This disclosure relates to a method of performing user authentication in an electronic device.

With the development of digital technology, various types of electronic devices such as mobile communication terminals, smart phones, tablet personal computers (PCs), wearable devices, etc. are widely used.

Electronic devices can store various data to provide various user experiences. The electronic device may manage data of one or more applications, services and/or operating systems based on a database. For example, an electronic device may process data in a database based on the applications, services and/or operating system it is executing.

Meanwhile, electronic devices such as smartphones can handle user authentication functions. For example, when an electronic device runs an application that can provide services after user authentication, it can process user authentication functions such as keyboard input, iris recognition, and fingerprint recognition.

According to various embodiments, the means for solving the problem are not limited to the above-mentioned solution means, and solution methods not mentioned may be disclosed to those skilled in the art from this specification and the attached drawings. You will be able to understand it clearly.

According to various embodiments, an electronic device includes: memory; and at least one processor connected to the memory. The at least one processor receives user credentials through a first authentication application running in the security area, and performs a user authentication procedure in the first authentication application in the security area based on the user credentials. You can control it to run. The at least one processor may control the first authentication application within the security area to issue an access token when the user authentication procedure is successfully completed in the first authentication application within the security area. The at least one processor may control transmission of the access token issued by the first authentication application in the security area to an external electronic device through a second authentication application running in the general area.

According to various embodiments, a method of operating an electronic device may include obtaining a user credential corresponding to a user input through a first authentication application running in a security area. The method of operating the electronic device may include performing a user authentication procedure in the first authentication application within the security area based on the user credentials. The method of operating the electronic device may include issuing an access token from the first authentication application within the security area when the user authentication procedure is successfully completed in the first authentication application within the security area. You can. The method of operating the electronic device may include transmitting the access token issued by the first authentication application in the security area to an external electronic device through a second authentication application running in the general area.

According to one embodiment, a storage medium storing at least one computer-readable instruction may be provided. When executed by at least one processor, the at least one instruction may cause the electronic device to perform a plurality of operations. The plurality of operations may include obtaining user credentials corresponding to user input through a first authentication application running in the security area. The plurality of operations may include operations performed by a user authentication procedure in the first authentication application within the security area based on the user credentials. The plurality of operations may include issuing an access token from the first authentication application within the security area when the user authentication procedure is successfully completed in the first authentication application within the security area. . The plurality of operations may include transmitting the access token issued by the first authentication application in the security area to an external electronic device through a second authentication application running in the general area.

1 is a block diagram of an electronic device in a network environment according to embodiments of the present disclosure.
Figure 2 is a block diagram illustrating a program according to an embodiment of the present disclosure.
FIG. 3A shows an example of providing a sign in function in an electronic device according to an embodiment of the present disclosure.
Figure 3b shows an example of providing a sign in function through password-less authentication in an electronic device according to an embodiment of the present disclosure.
Figure 4 is a diagram for explaining a user authentication method according to an embodiment of the present disclosure.
Figure 5 is a diagram for explaining a system according to an embodiment of the present disclosure.
Figure 6 is a diagram showing the package structure of an authentication application according to an embodiment of the present disclosure.
FIG. 7 is a diagram illustrating a configuration within an electronic device in which a packaged authentication application is executed according to an embodiment of the present disclosure.
FIG. 8 is a diagram illustrating a data structure stored in an electronic device for credential user registration according to an embodiment of the present disclosure.
FIG. 9 is a diagram illustrating an example to explain an on-device user authentication method according to an embodiment of the present disclosure.
FIG. 10 is a diagram illustrating another example to explain an on-device user authentication method according to an embodiment of the present disclosure.
11 is a flowchart for explaining the operation of an electronic device according to an embodiment of the present disclosure.

1 is a block diagram of an electronic device in a network environment according to embodiments of the present disclosure.

Referring to FIG. 1, in the network environment 100, the electronic device 101 communicates with the electronic device 102 through a first network 198 (e.g., a short-range wireless communication network) or a second network 199. It is possible to communicate with at least one of the electronic device 104 or the server 108 through (e.g., a long-distance wireless communication network). According to one embodiment, the electronic device 101 may communicate with the electronic device 104 through the server 108. According to one embodiment, the electronic device 101 includes a processor 120, a memory 130, an input module 150, an audio output module 155, a display module 160, an audio module 170, and a sensor module ( 176), interface 177, connection terminal 178, haptic module 179, camera module 180, power management module 188, battery 189, communication module 190, subscriber identification module 196 , or may include an antenna module 197. In some embodiments, at least one of these components (eg, the connection terminal 178) may be omitted or one or more other components may be added to the electronic device 101. In some embodiments, some of these components (e.g., sensor module 176, camera module 180, or antenna module 197) are integrated into one component (e.g., display module 160). It can be.

The processor 120, for example, executes software (e.g., program 140) to operate at least one other component (e.g., hardware or software component) of the electronic device 101 connected to the processor 120. It can be controlled and various data processing or calculations can be performed. According to one embodiment, as at least part of data processing or computation, the processor 120 stores commands or data received from another component (e.g., sensor module 176 or communication module 190) in volatile memory 132. The commands or data stored in the volatile memory 132 can be processed, and the resulting data can be stored in the non-volatile memory 134. According to one embodiment, the processor 120 includes a main processor 121 (e.g., a central processing unit or an application processor) or an auxiliary processor 123 that can operate independently or together (e.g., a graphics processing unit, a neural network processing unit ( It may include a neural processing unit (NPU), an image signal processor, a sensor hub processor, or a communication processor). For example, if the electronic device 101 includes a main processor 121 and a secondary processor 123, the secondary processor 123 may be set to use lower power than the main processor 121 or be specialized for a designated function. You can. The auxiliary processor 123 may be implemented separately from the main processor 121 or as part of it.

The auxiliary processor 123 may, for example, act on behalf of the main processor 121 while the main processor 121 is in an inactive (e.g., sleep) state, or while the main processor 121 is in an active (e.g., application execution) state. ), together with the main processor 121, at least one of the components of the electronic device 101 (e.g., the display module 160, the sensor module 176, or the communication module 190) At least some of the functions or states related to can be controlled. According to one embodiment, co-processor 123 (e.g., image signal processor or communication processor) may be implemented as part of another functionally related component (e.g., camera module 180 or communication module 190). there is. According to one embodiment, the auxiliary processor 123 (eg, neural network processing unit) may include a hardware structure specialized for processing artificial intelligence models. Artificial intelligence models can be created through machine learning. For example, such learning may be performed in the electronic device 101 itself on which the artificial intelligence model is performed, or may be performed through a separate server (e.g., server 108). Learning algorithms may include, for example, supervised learning, unsupervised learning, semi-supervised learning, or reinforcement learning, but It is not limited. An artificial intelligence model may include multiple artificial neural network layers. Artificial neural networks include deep neural network (DNN), convolutional neural network (CNN), recurrent neural network (RNN), restricted boltzmann machine (RBM), belief deep network (DBN), bidirectional recurrent deep neural network (BRDNN), It may be one of deep Q-networks or a combination of two or more of the above, but is not limited to the examples described above. In addition to hardware structures, artificial intelligence models may additionally or alternatively include software structures.

The memory 130 may store various data used by at least one component (eg, the processor 120 or the sensor module 176) of the electronic device 101. Data may include, for example, input data or output data for software (e.g., program 140) and instructions related thereto. Memory 130 may include volatile memory 132 or non-volatile memory 134.

The program 140 may be stored as software in the memory 130 and may include, for example, an operating system 142, middleware 144, or application 146.

The input module 150 may receive commands or data to be used in a component of the electronic device 101 (e.g., the processor 120) from outside the electronic device 101 (e.g., a user). The input module 150 may include, for example, a microphone, mouse, keyboard, keys (eg, buttons), or digital pen (eg, stylus pen).

The sound output module 155 may output sound signals to the outside of the electronic device 101. The sound output module 155 may include, for example, a speaker or a receiver. Speakers can be used for general purposes such as multimedia playback or recording playback. The receiver can be used to receive incoming calls. According to one embodiment, the receiver may be implemented separately from the speaker or as part of it.

The display module 160 can visually provide information to the outside of the electronic device 101 (eg, a user). The display module 160 may include, for example, a display, a hologram device, or a projector, and a control circuit for controlling the device. According to one embodiment, the display module 160 may include a touch sensor configured to detect a touch, or a pressure sensor configured to measure the intensity of force generated by the touch.

The audio module 170 can convert sound into an electrical signal or, conversely, convert an electrical signal into sound. According to one embodiment, the audio module 170 acquires sound through the input module 150, the sound output module 155, or an external electronic device (e.g., directly or wirelessly connected to the electronic device 101). Sound may be output through the electronic device 102 (e.g., speaker or headphone).

The sensor module 176 detects the operating state (e.g., power or temperature) of the electronic device 101 or the external environmental state (e.g., user state) and generates an electrical signal or data value corresponding to the detected state. can do. According to one embodiment, the sensor module 176 includes, for example, a gesture sensor, a gyro sensor, an air pressure sensor, a magnetic sensor, an acceleration sensor, a grip sensor, a proximity sensor, a color sensor, an IR (infrared) sensor, a biometric sensor, It may include a temperature sensor, humidity sensor, or light sensor.

The interface 177 may support one or more designated protocols that can be used to connect the electronic device 101 directly or wirelessly with an external electronic device (eg, the electronic device 102). According to one embodiment, the interface 177 may include, for example, a high definition multimedia interface (HDMI), a universal serial bus (USB) interface, an SD card interface, or an audio interface.

The connection terminal 178 may include a connector through which the electronic device 101 can be physically connected to an external electronic device (eg, the electronic device 102). According to one embodiment, the connection terminal 178 may include, for example, an HDMI connector, a USB connector, an SD card connector, or an audio connector (eg, a headphone connector).

The haptic module 179 can convert electrical signals into mechanical stimulation (e.g., vibration or movement) or electrical stimulation that the user can perceive through tactile or kinesthetic senses. According to one embodiment, the haptic module 179 may include, for example, a motor, a piezoelectric element, or an electrical stimulation device.

The camera module 180 can capture still images and moving images. According to one embodiment, the camera module 180 may include one or more lenses, image sensors, image signal processors, or flashes.

The power management module 188 can manage power supplied to the electronic device 101. According to one embodiment, the power management module 188 may be implemented as at least a part of, for example, a power management integrated circuit (PMIC).

The battery 189 may supply power to at least one component of the electronic device 101. According to one embodiment, the battery 189 may include, for example, a non-rechargeable primary battery, a rechargeable secondary battery, or a fuel cell.

Communication module 190 is configured to provide a direct (e.g., wired) communication channel or wireless communication channel between electronic device 101 and an external electronic device (e.g., electronic device 102, electronic device 104, or server 108). It can support establishment and communication through established communication channels. Communication module 190 operates independently of processor 120 (e.g., an application processor) and may include one or more communication processors that support direct (e.g., wired) communication or wireless communication. According to one embodiment, the communication module 190 is a wireless communication module 192 (e.g., a cellular communication module, a short-range wireless communication module, or a global navigation satellite system (GNSS) communication module) or a wired communication module 194 (e.g., : LAN (local area network) communication module, or power line communication module) may be included. Among these communication modules, the corresponding communication module is a first network 198 (e.g., a short-range communication network such as Bluetooth, wireless fidelity (WiFi) direct, or infrared data association (IrDA)) or a second network 199 (e.g., legacy It may communicate with an external electronic device 104 through a telecommunication network such as a cellular network, a 5G network, a next-generation communication network, the Internet, or a computer network (e.g., LAN or WAN). These various types of communication modules may be integrated into one component (e.g., a single chip) or may be implemented as a plurality of separate components (e.g., multiple chips). The wireless communication module 192 uses subscriber information (e.g., International Mobile Subscriber Identifier (IMSI)) stored in the subscriber identification module 196 within a communication network such as the first network 198 or the second network 199. The electronic device 101 can be confirmed or authenticated.

The wireless communication module 192 may support 5G networks after 4G networks and next-generation communication technologies, for example, NR access technology (new radio access technology). NR access technology provides high-speed transmission of high-capacity data (eMBB (enhanced mobile broadband)), minimization of terminal power and access to multiple terminals (mMTC (massive machine type communications)), or high reliability and low latency (URLLC (ultra-reliable and low latency). -latency communications)) can be supported. The wireless communication module 192 may support high frequency bands (eg, mmWave bands), for example, to achieve high data rates. The wireless communication module 192 uses various technologies to secure performance in high frequency bands, for example, beamforming, massive array multiple-input and multiple-output (MIMO), and full-dimensional multiplexing. It can support technologies such as input/output (FD-MIMO: full dimensional MIMO), array antenna, analog beam-forming, or large scale antenna. The wireless communication module 192 may support various requirements specified in the electronic device 101, an external electronic device (e.g., electronic device 104), or a network system (e.g., second network 199). According to one embodiment, the wireless communication module 192 supports Peak data rate (e.g., 20 Gbps or more) for realizing eMBB, loss coverage (e.g., 164 dB or less) for realizing mmTC, or U-plane latency (e.g., 164 dB or less) for realizing URLLC. Example: Downlink (DL) and uplink (UL) each of 0.5 ms or less, or round trip 1 ms or less) can be supported.

The antenna module 197 may transmit or receive signals or power to or from the outside (eg, an external electronic device). According to one embodiment, the antenna module 197 may include an antenna including a radiator made of a conductor or a conductive pattern formed on a substrate (eg, PCB). According to one embodiment, the antenna module 197 may include a plurality of antennas (eg, an array antenna). In this case, at least one antenna suitable for a communication method used in a communication network such as the first network 198 or the second network 199 is connected to the plurality of antennas by, for example, the communication module 190. can be selected Signals or power may be transmitted or received between the communication module 190 and an external electronic device through the at least one selected antenna. According to some embodiments, in addition to the radiator, other components (eg, radio frequency integrated circuit (RFIC)) may be additionally formed as part of the antenna module 197.

According to various embodiments, the antenna module 197 may form a mmWave antenna module. According to one embodiment, a mmWave antenna module includes: a printed circuit board, an RFIC disposed on or adjacent to a first side (e.g., bottom side) of the printed circuit board and capable of supporting a designated high frequency band (e.g., mmWave band); And a plurality of antennas (e.g., array antennas) disposed on or adjacent to the second side (e.g., top or side) of the printed circuit board and capable of transmitting or receiving signals in the designated high frequency band. can do.

At least some of the components are connected to each other through a communication method between peripheral devices (e.g., bus, general purpose input and output (GPIO), serial peripheral interface (SPI), or mobile industry processor interface (MIPI)) and signal ( (e.g. commands or data) can be exchanged with each other.

According to one embodiment, commands or data may be transmitted or received between the electronic device 101 and the external electronic device 104 through the server 108 connected to the second network 199. Each of the external electronic devices 102 or 104 may be of the same or different type as the electronic device 101. According to one embodiment, all or part of the operations performed in the electronic device 101 may be executed in one or more of the external electronic devices 102, 104, or 108. For example, when the electronic device 101 needs to perform a certain function or service automatically or in response to a request from a user or another device, the electronic device 101 may perform the function or service instead of executing the function or service on its own. Alternatively, or additionally, one or more external electronic devices may be requested to perform at least part of the function or service. One or more external electronic devices that have received the request may execute at least part of the requested function or service, or an additional function or service related to the request, and transmit the result of the execution to the electronic device 101. The electronic device 101 may process the result as is or additionally and provide it as at least part of a response to the request. For this purpose, for example, cloud computing, distributed computing, mobile edge computing (MEC), or client-server computing technology can be used. The electronic device 101 may provide an ultra-low latency service using, for example, distributed computing or mobile edge computing. In another embodiment, the external electronic device 104 may include an Internet of Things (IoT) device. Server 108 may be an intelligent server using machine learning and/or neural networks. According to one embodiment, the external electronic device 104 or server 108 may be included in the second network 199. The electronic device 101 may be applied to intelligent services (e.g., smart home, smart city, smart car, or healthcare) based on 5G communication technology and IoT-related technology.

Electronic devices according to various embodiments disclosed in this document may be of various types. Electronic devices may include, for example, portable communication devices (e.g., smartphones), computer devices, portable multimedia devices, portable medical devices, cameras, wearable devices, or home appliances. Electronic devices according to embodiments of this document are not limited to the above-described devices.

The various embodiments of this document and the terms used herein are not intended to limit the technical features described in this document to specific embodiments, and should be understood to include various changes, equivalents, or replacements of the embodiments. In connection with the description of the drawings, similar reference numbers may be used for similar or related components. The singular form of a noun corresponding to an item may include one or more of the above items, unless the relevant context clearly indicates otherwise. As used herein, “A or B”, “at least one of A and B”, “at least one of A or B”, “A, B or C”, “at least one of A, B and C”, and “A Each of phrases such as “at least one of , B, or C” may include any one of the items listed together in the corresponding phrase, or any possible combination thereof. Terms such as "first", "second", or "first" or "second" may be used simply to distinguish one component from another, and to refer to that component in other respects (e.g., importance or order) is not limited. One (e.g., first) component is said to be “coupled” or “connected” to another (e.g., second) component, with or without the terms “functionally” or “communicatively.” When mentioned, it means that any of the components can be connected to the other components directly (e.g. wired), wirelessly, or through a third component.

The term “module” used in various embodiments of this document may include a unit implemented in hardware, software, or firmware, and is interchangeable with terms such as logic, logic block, component, or circuit, for example. It can be used as A module may be an integrated part or a minimum unit of the parts or a part thereof that performs one or more functions. For example, according to one embodiment, the module may be implemented in the form of an application-specific integrated circuit (ASIC).

Various embodiments of the present document are one or more instructions stored in a storage medium (e.g., built-in memory 136 or external memory 138) that can be read by a machine (e.g., electronic device 101). It may be implemented as software (e.g., program 140) including these. For example, a processor (e.g., processor 120) of a device (e.g., electronic device 101) may call at least one command among one or more commands stored from a storage medium and execute it. This allows the device to be operated to perform at least one function according to the at least one instruction called. The one or more instructions may include code generated by a compiler or code that can be executed by an interpreter. A storage medium that can be read by a device may be provided in the form of a non-transitory storage medium. Here, 'non-transitory' only means that the storage medium is a tangible device and does not contain signals (e.g. electromagnetic waves), and this term refers to cases where data is semi-permanently stored in the storage medium. There is no distinction between temporary storage cases.

According to one embodiment, methods according to various embodiments disclosed in this document may be included and provided in a computer program product. Computer program products are commodities and can be traded between sellers and buyers. The computer program product may be distributed in the form of a machine-readable storage medium (e.g. compact disc read only memory (CD-ROM)) or via an application store (e.g. Play Store ^TM ) or on two user devices (e.g. It can be distributed (e.g. downloaded or uploaded) directly between smart phones) or online. In the case of online distribution, at least a portion of the computer program product may be at least temporarily stored or temporarily created in a machine-readable storage medium, such as the memory of a manufacturer's server, an application store's server, or a relay server.

According to various embodiments, each component (e.g., module or program) of the above-described components may include a single or plural entity, and some of the plurality of entities may be separately placed in other components. there is. According to various embodiments, one or more of the components or operations described above may be omitted, or one or more other components or operations may be added. Alternatively or additionally, multiple components (eg, modules or programs) may be integrated into a single component. In this case, the integrated component may perform one or more functions of each component of the plurality of components in the same or similar manner as those performed by the corresponding component of the plurality of components prior to the integration. . According to various embodiments, operations performed by a module, program, or other component may be executed sequentially, in parallel, iteratively, or heuristically, or one or more of the operations may be executed in a different order, or omitted. Alternatively, one or more other operations may be added.

Figure 2 is a block diagram illustrating a program according to an embodiment of the present disclosure.

According to one embodiment, the program 140 includes an operating system 142, middleware 144, or an application 146 executable on the operating system 142 for controlling one or more resources of the electronic device 101. It can be included. Operating system 142 may include, for example, Android ^TM , iOS ^TM , Windows ^TM , Symbian ^TM , Tizen ^TM , or Bada ^TM . At least some of the programs 140 are preloaded into the electronic device 101, for example, at the time of manufacture, or are stored in an external electronic device (e.g., the electronic device 102 or 104, or a server) when used by a user. It can be downloaded or updated from 108)).

The operating system 142 may control management (eg, allocation or retrieval) of one or more system resources (eg, process, memory, or power) of the electronic device 101 . Operating system 142 may additionally or alternatively operate on other hardware devices of electronic device 101, such as input module 150, audio output module 155, display module 160, and audio module 170. , sensor module 176, interface 177, haptic module 179, camera module 180, power management module 188, battery 189, communication module 190, subscriber identification module 196, or It may include one or more driver programs for driving the antenna module 197.

The middleware 144 may provide various functions to the application 146 so that functions or information provided from one or more resources of the electronic device 101 can be used by the application 146. The middleware 144 includes, for example, an application manager 201, a window manager 203, a multimedia manager 205, a resource manager 207, a power manager 209, a database manager 211, and a package manager 213. ), connectivity manager (215), notification manager (217), location manager (219), graphics manager (221), security manager (223), call manager (225), or voice recognition manager (227). You can.

The application manager 201 may, for example, manage the life cycle of the application 146. The window manager 203 may, for example, manage one or more GUI resources used on the screen. For example, the multimedia manager 205 identifies one or more formats required for playing media files, and encodes or decodes the corresponding media file using a codec suitable for the selected format. It can be done. The resource manager 207 may, for example, manage the source code of the application 146 or the memory space of the memory 130. The power manager 209 manages, for example, the capacity, temperature, or power of the battery 189, and may use this information to determine or provide related information necessary for the operation of the electronic device 101. . According to one embodiment, the power manager 209 may interface with a basic input/output system (BIOS) (not shown) of the electronic device 101.

Database manager 211 may create, search, or change a database to be used by application 146, for example. The package manager 213 may, for example, manage the installation or update of applications distributed in the form of package files. The connectivity manager 215 may manage, for example, a wireless connection or direct connection between the electronic device 101 and an external electronic device. For example, the notification manager 217 may provide a function for notifying the user of the occurrence of a designated event (eg, an incoming call, message, or alarm). The location manager 219 may, for example, manage location information of the electronic device 101. The graphics manager 221 may, for example, manage one or more graphic effects to be provided to the user or a user interface related thereto.

Security manager 223 may provide, for example, system security or user authentication. The telephony manager 225 may manage, for example, a voice call function or a video call function provided by the electronic device 101. For example, the voice recognition manager 227 transmits the user's voice data to the server 108 and provides a command corresponding to a function to be performed in the electronic device 101 based at least in part on the voice data, Alternatively, text data converted based at least in part on the voice data may be received from the server 108. According to one embodiment, the middleware 244 may dynamically delete some existing components or add new components. According to one embodiment, at least a portion of the middleware 144 may be included as part of the operating system 142 or may be implemented as separate software different from the operating system 142.

The application 146 includes, for example, home 251, dialer 253, SMS/MMS (255), instant message (IM) 257, browser 259, camera 261, and alarm 263. , Contacts (265), Voice Recognition (267), Email (269), Calendar (271), Media Player (273), Album (275), Watch (277), Health (279) (such as exercise amount or blood sugar) It may include applications that measure biometric information) or environmental information 281 (e.g., measure atmospheric pressure, humidity, or temperature information). According to one embodiment, the application 146 may further include an information exchange application (not shown) that can support information exchange between the electronic device 101 and an external electronic device. The information exchange application may include, for example, a notification relay application configured to deliver designated information (e.g., calls, messages, or alarms) to an external electronic device, or a device management application configured to manage the external electronic device. there is. The notification relay application, for example, transmits notification information corresponding to a specified event (e.g., mail reception) generated in another application (e.g., email application 269) of the electronic device 101 to an external electronic device. You can. Additionally or alternatively, the notification relay application may receive notification information from an external electronic device and provide it to the user of the electronic device 101.

The device management application, for example, controls the power (e.g., turn-on or turn-off) of an external electronic device or some component thereof (e.g., a display module or camera module of the external electronic device) that communicates with the electronic device 101. ) or functions (such as brightness, resolution, or focus). A device management application may additionally or alternatively support installation, deletion, or update of applications running on external electronic devices.

If an authentication service is provided by a server (e.g., an edge server), the server manages the user's credentials and/or the user's personal information and performs user authentication, so in the event of a server attack, the user's credentials ) and/or there is a risk that the user's personal information may be exposed. In the case of authentication technology without a password, the utility of the authentication service on the user device is limited because there is a risk of the authentication server being attacked by a software attack.

In the present disclosure, the user's credential information is protected inside the electronic device (e.g., the electronic device 101 of FIG. 1) rather than an external server (e.g., an edge server), and the credential is stored inside the electronic device. We propose a method to directly authenticate users using information.

In this disclosure, user credentials required for user login (or user authentication) can be safely stored and/or managed using hardware-based trusted execution environment (TEE) technology. You can. In this disclosure, the authentication method using user credentials is protected with hardware technology, and data sovereignty (self-sovereign identity) can be strengthened by directly controlling the authentication method by the user. The authentication method according to the present disclosure can provide an on-device authentication function that can protect against software attacks or phishing attacks.

FIG. 3A shows an example of providing a sign in function in an electronic device according to an embodiment of the present disclosure.

Referring to FIG. 3A, an electronic device (e.g., the electronic device 101 in FIG. 1) is connected to an electronic device (e.g., the electronic device 101 in FIG. 1) or an external electronic device (e.g., the electronic device 101 in FIG. 1). A user interface (UI) may be provided to perform a sign in function for the electronic device 102 or the electronic device 104.

Figure 3b shows an example of providing a sign in function through password-less authentication in an electronic device according to an embodiment of the present disclosure.

Referring to FIG. 3B, user credentials can be protected in an electronic device (e.g., the electronic device 101 of FIG. 1) using hardware-based trusted execution environment (TEE) technology without a password. According to one embodiment, the user credential may be a password, fingerprint, face, voice, iris, palm, or finger vein pattern that can identify the owner.

Figure 4 is a diagram for explaining a user authentication method according to an embodiment of the present disclosure.

Referring to FIG. 4, the system includes an electronic device 400 (e.g., electronic device 101 in FIG. 1), an account service server 410, and an application server 420. Includes. The account service server 410 manages user accounts for the electronic device 400 and can verify users using user credentials. The application server 420 is a server that can provide services and/or content to the electronic device 400, and upon receiving an authorization code from the electronic device 400, it receives a user account from the account service server 410. Information can be obtained.

The application 401 and the account service application 403 may be installed and/or executed in the electronic device 400. The application 401 may communicate with the application server 420 and transmit and receive data and/or information, and the account service application 403 may communicate with the account service server 410 and transmit and receive data and/or information.

The account service server 410 includes an authentication module (authentication) 411 for user authentication and an authorization code that issues an authorization code so that an external server (e.g., application server 420) can obtain user account information. ) module 413, and a resource server 415 that provides access tokens and/or user account information to an external server (e.g., application server 420).

The electronic device 400 may receive a user credential as input from the credential owner and transmit the input user credential to the account service server 410. The account service server 410, which has received the user credential, may perform user verification using the user credential and, when user verification is completed, transmit an authorization code for the user to the electronic device 400.

In operation S401, the application 401 in the electronic device 400 may request authorization by transmitting request authorization to the account service application 403. According to one embodiment, the request authorization may be implemented in the form of <response_type=code, client_id=CLIENT_ID, redirect_uri=CALLBACK_URL, scope=read>.

In operation S402, the account service application 403 may receive user credentials based on user input.

In operation S403, the account service application 403 may transmit an authorization request requesting authorization to the authorization module 413 in the account service server 410. According to one embodiment, the authorization request may include user credentials. According to one embodiment, the authorization request may be implemented in the form of <response_type=code, client_id=CLIENT_ID, redirect_uri=CALLBACK_URL, scope=read, User credential>.

In operation S404, the authentication module 411 and the authorization module 413 in the account service server 410 may exchange user verification-related messages (user verification). According to one embodiment, a user verification-related message (user verification) may include user credentials.

In operation S405, the authorization module 413 in the account service server 410 may transmit verified user authentication information to the account service application 403. In operation S406, the account service application 403 may receive a user authorization grant based on user input.

In operation S407, the account service application 403 may transmit a user authorization grant to the authorization module 413 in the account service server 410. In operation S408, the authorization module 413 in the account service server 410 may transmit a response message (reply with authorization code <authorization code>) including an authorization code to the account service application 403.

In operation S409, the account service application 403 may transmit an authorization code to the application 401. In operation S410, the application 401 may transmit an authorization code to the application server 420. In operation S411, the application server 420 may transmit an access token request <authorization code> including an authorization code to the authorization module 413 in the account service server 410.

In operation S412, the authorization module 413 in the account service server 410 may transmit an access token grant <access token> including an access token to the application server 420. In operation S413, the application server 420 may transmit a user information request (Request user info <Call API w/ access token>) including a Call API with an access token to the resource server 415. In operation S414, the resource server 415 may transmit user account information to the application server 420.

Figure 5 is a diagram for explaining a system according to an embodiment of the present disclosure.

Referring to FIG. 5, the system includes an electronic device 500 (e.g., electronic device 101 in FIG. 1), a server 560 (e.g., server 108 in FIG. 1), and a first external electronic device. It may include a device 570 (e.g., electronic device 102 of FIG. 1), and a second external electronic device 580 (e.g., electronic device 104 of FIG. 1). Unlike the electronic device 400 of FIG. 4 that performs user authentication through an external server (e.g., account service server 410), the electronic device 500 of FIG. 5 is provided with a plurality of modules inside. User authentication can be performed on its own.

The electronic device 500 has a security area (or Realm world; or Secure world) and a normal area (or Non-secure world; or normal world), each of which can independently execute applications and/or services (or application code). It can be included. According to one embodiment, the security area and the general area may be separate areas that are physically (or hardware-wise) separated within the electronic device 500. According to one embodiment, an application and/or service (or application code) that requires protection of user privacy (or personal information) may be executed within a security area. For example, the general area may be implemented in an Android environment (or rich execution environment (REE)), and the security area may be implemented in a trusted execution environment (TEE) that is physically isolated from Android.

The electronic device 500 includes an authentication application (authenticator App (Host Process)) 510 running for user authentication in the general area, and an authentication application (authenticator App (Realm VM)) running for user authentication in the security area (520). ), a remote monitoring and management (RMM) 530 implemented in the security area, a kernel 540 implemented in the general area, and a root 550 implemented in the general area. You can. In the present disclosure, authentication applications 510 and 520 for user authentication are executed in each of the general area and the security area within the electronic device 500, and the authentication application 520 is executed in a security area that is inaccessible to external devices. Protecting and/or using user credentials can enhance protection of privacy information.

The authentication application 510 running in the general area may include an authenticator agent 511. The authentication agent 511 includes an authentication application 520 and an external device (e.g., a server 560, a first external electronic device 570, and/or a second external electronic device 580) running in a secure area. It can mediate communication between people.

The authentication application 520 running in the security area includes an App UI module 521 that provides a UI, an authentication module 522 to perform user verification, and a token generation module that issues an access token. generation; 523), an authorization module (524), and a resource server module (resource server; 525) that can provide user information and/or access tokens to an external server. The authentication application 520 running in the security area provides information about the integrity measurement value 526, the service provider's public key 527 of the service provider 561, and the public key of a certified authority (CA). May include a certificate chain for CA's public key (528).

The RMM 530 is firmware that operates in the security area, and can manage the stage page table for the security area and manage the CPU context of the realm. According to one embodiment, realm may refer to a software (SW) program that operates at exception level 0 or 1 on the RMM 530. According to one embodiment, the realm may include all ART, shim, and application.

The server 560 may also be referred to as a remote server and may be implemented as a cloud server or edge server that provides services and/or content to the electronic device 500. The server 560 may include a service provider 561 that provides services and/or content to the electronic device 500 .

The first external electronic device 570 may be an electronic device (eg, TV) on which a relating application 571 is installed. The relaying application 571 may request user authentication from the electronic device 500, receive an access token from the electronic device 500, and transmit the access token to the server 560. According to one embodiment, the relaying application 571 may be installed and/or executed on the electronic device 500 rather than the first external electronic device 570. The second external electronic device 580 may be an electronic device (eg, a Wi-Fi router) that includes a service registry 581.

Figure 6 is a diagram showing the package structure of an authentication application according to an embodiment of the present disclosure.

The package 600 of the authentication application is packaged by a service provider (e.g., the service provider 561 in FIG. 5), and the packaged application is uploaded to the app market and distributed to users ( deployment). A credential owner may download an authentication application package on an electronic device (eg, a smartphone).

Referring to FIG. 6, the authentication application package 600 includes an App UI module 601, an authentication module 602, a token generation module 603, an authorization module 604, and a resource server module. (resource server; 605), and an authentication agent (authenticator agent; 605). According to one embodiment, the package 600 of the authentication application may further include a runtime image module (runtime image) 607. According to one embodiment, the authentication application package 600 may further include an OS/kernel image module (OS/Kernel image) 608.

The package 600 of the authentication application includes a certificate signed by the service provider's public key (608) (e.g., service provider 561 in FIG. 5), and the certificate 608 may include an integrity measurement value (609). The package 600 of the authentication application includes a certificate signed by a certified authority (CA) 610, and the certificate 610 includes a service provider's public key 611. You can. According to one embodiment, the package 600 of the authentication application may further include a certificate chain for CA's public key (612).

A service provider (eg, service provider 561 in FIG. 5) may package the authenticator application into a virtual machine image. A service provider (eg, service provider 561 in FIG. 5) may have metadata and package images. According to one embodiment, the service provider (e.g., service provider 561 in Figure 5) includes an App UI module 601, an authentication module 602, a token creation module 603, and an authorization module 604. A certificate 608 containing an integrity measurement value 609 of a virtual machine image for execution in a security zone may be provided (or packaged). According to one embodiment, the service provider may provide (or package) a runtime image 607 and an OS/kernel image 608. According to one embodiment, the service provider may provide (or package) a certificate containing the provider's public key signed with the private key of a certified authority (CA). According to one embodiment, a service provider may have (or package) a certificate chain 612 that can be used to obtain and validate the CA's public key.

According to one embodiment, the virtual machine image may be signed with the private key of the service provider (eg, service provider 561 in FIG. 5). According to one embodiment, an application packaged by a service provider (eg, service provider 561 in FIG. 5) may be uploaded to an app market. A credential owner may download an authentication application package on an electronic device (eg, a smartphone). The integrity of the image for execution in the secure area can be verified using a certificate 908 containing an integrity measurement value 609. According to one embodiment, a relating application may request a certificate and certificate chain as well as an authentication application for remote attestation. The validity of the certificate 608 containing the integrity measure 609 may be verified using the certificate chain. The integrity measurement value 609 is then compared to the remote certification, and the authenticator's integrity can be verified in the relating application.

FIG. 7 is a diagram illustrating a configuration within an electronic device in which a packaged authentication application is executed according to an embodiment of the present disclosure.

When an authentication application package created by a service provider (e.g., service provider 561 in FIG. 5) is downloaded on an electronic device (e.g., electronic device 500 in FIG. 5), the authentication application is It can be implemented in the form of a software stack (or SW stack).

Referring to FIG. 7, the SW stack 700 of the authentication application includes an authentication application 710 that can be executed in the general area, and the authentication application 710 may include an authentication agent (authenticator agent) 711. . The authentication agent 711 includes an authentication application 720 and an external device (e.g., a server 560, a first external electronic device 570, and/or a second external electronic device 580) running in a secure area. It can mediate communication between people.

The SW stack 700 of the authentication application includes an authentication application 720 that can be executed in the security area, and the authentication application 720 includes an App UI module 721, an authentication module 722, and a token generation module. generation; 723), authorization module (authorization; 724), resource server module (resource server; 725), and runtime image module (runtime image; 726). According to one embodiment, the authentication application 720 that can be executed in the security area may further include an OS/kernel image module (OS/Kernel image) 727.

The database (or storage) 730 in the electronic device is a SW stack 700 including SW binaries, a certificate signed by the public key of the service provider (e.g., the service provider 561 in FIG. 5). It may include the service provider's public key; 731), and a certificate signed by a CA (certified authority) (certificate signed by CA; 733). According to one embodiment, the database (or storage) 730 may further include a certificate chain for CA's public key (733). According to one embodiment, the certificate 731 signed with the public key of the service provider (e.g., service provider 561 in FIG. 5) may include an integrity measurement value 732. According to one embodiment, the CA-signed certificate 733 may include the service provider's public key 734.

When registering as a credential-owner, the credential owner can sign up in advance and subscribe to the service. The initial sign-up process may be identical to the original online registration process for the Service. According to one embodiment, after initial registration, the credential owner may first need to download necessary user data to an electronic device (e.g., smartphone).

The credential owner can launch the authenticator app. The UI and trusted I/O allow the credential owner to have the authenticator application initiate initial provisioning.

In the general area (or Non-secure world; or normal world), the authentication agent 711 may connect to a remote server of a service provider. Remote attestation and verification are carried out, and the authentication application 720 and the remote server in the security area (or Realm world; or Secure world) are securely connected (via the authentication agent 711 in the general area). You can.

FIG. 8 is a diagram illustrating a data structure stored in an electronic device for credential user registration according to an embodiment of the present disclosure.

Referring to FIG. 8, the electronic device may include a storage 800 and a security enforced HW (security enforced HW) 830. The storage 800 may be implemented as persistent storage, and the security-enhanced HW 830 may be implemented as secure storage or a secure element.

The storage 800 within the electronic device is a certificate signed by the service provider's public key (810), and a certificate signed by a certified authority (CA). May include a signed certificate (certificate signed by CA; 812). According to one embodiment, storage 800 may further include a certificate chain for CA's public key (814). According to one embodiment, the certificate 810 signed with the public key of the service provider (e.g., service provider 561 in FIG. 5) may include an integrity measurement value 811. According to one embodiment, the CA-signed certificate 812 may include the service provider's public key 813.

The storage 800 within the electronic device may include data 820 to 823 encrypted by a sealing key 831 stored in the security-enhanced HW 830. Data (820-823) encrypted by the ceiling key (831) includes user credential (820), subscription status (821), user profile (822), and encryption key. ; 823). According to one embodiment, the authentication application within the secure area collects user data including user credentials, subscription status, user profile, and encryption key through a secure channel. You can download .

In this disclosure, user credential, subscription status, user profile, and encryption key may be defined as follows.

1) User credential

This could be a password, fingerprint, face, voice, iris, palm, or finger vein pattern that identifies the holder of the credential and may be provided to the account service provider during the initial registration process.

2) Subscription status

Information about subscriptions registered and paid for by the credential owner

3) User profile

Personal information such as user name, email address, and phone number

4) Encryption key

Secret information shared between the service provider's remote server and an authentication application created by the service provider for use in generating and validating access tokens. Each authentication token generated can be signed and verified by a shared secret.

According to one embodiment, the authentication application may seal provisioned data. According to one embodiment, the authentication application may securely store confidential data in persistent storage using standard techniques in the trusted computing field. According to one embodiment, user data may be encrypted with an encryption key directly generated by an authenticator, and then the key may be stored in hardware. Because the stored key can only be obtained by the authenticator, only the authenticator can decrypt user data.

The authenticator application can generate a sealing key to encrypt provisioned data. According to one embodiment, the sealing key may be a different encryption key than the one provisioned by the service provider. The authenticator application can encrypt provisioned user data using a sealing key generated for the user data.

The authenticator application can store encrypted user data in on-device persistent storage and store the sealing key in hardware enforced security. The sealing key can only be retrieved by the authenticator, so only the authenticator application can decrypt user data. Only the authenticator application can unseal user data.

According to one embodiment, the client secret registration procedure of the relating application may proceed as 1) to 3) below.

1) The credential owner can download the Relying application on another electronic device (or user device) that wants to use the service (after authenticating through the authenticator app).

2) The relaying application can connect to the server (or remote server) through a secure channel after remote attestation and verification.

3) The relaying application can download client secret information from the service provider's server (or remote server). According to one embodiment, the client secret information may be considered to have already been registered with the server for authentication purposes. According to one embodiment, operation 3) may be performed based on the client secret registration procedure of OAuth 2.0.

FIG. 9 is a diagram illustrating an example to explain an on-device user authentication method according to an embodiment of the present disclosure.

Referring to FIG. 9 , the system may include an electronic device 900, a server 930, and an external electronic device 940.

The electronic device 900 has a security area (or Realm world; or Secure world) and a normal area (or Non-secure world; or normal world), each of which can independently execute applications and/or services (or application code). It can be included. According to one embodiment, the security area and the general area may be separate areas that are physically (or hardware-wise) separated within the electronic device 900. According to one embodiment, an application and/or service (or application code) that requires protection of user privacy (or personal information) may be executed within a security area. For example, the general area may be implemented in an Android environment (or rich execution environment (REE)), and the security area may be implemented in a trusted execution environment (TEE) that is physically isolated from Android.

The electronic device 900 may include an authentication application (authenticator App (Host Process)) 910 running in a general area, and an authentication application (authenticator App) 920 running in a security area. The authentication application 910 running in the general area may include an authenticator agent 911. The authentication application 920 running in the security area may include an App UI module 921, an authentication module 922, and a token generation module 923.

The server 930 may also be referred to as a remote server or an app server, and is a cloud server or edge server that provides services and/or content to the electronic device 900. It can be implemented.

The external electronic device 940 may be an electronic device (eg, TV) on which a relating application 941 is installed. According to one embodiment, the relaying application 941 may be installed and/or executed within the electronic device 900 rather than the external electronic device 940.

Referring to FIG. 9, in operation S901, the relaying application 941 may transmit an authentication request message to the authentication agent 911. In operation 902, the App UI module 921 may receive a request for user credentials via a user interface (UI). In operation 903, the App UI module 921 may receive a user credential input by a credential owner.

In operation 904, the App UI module 921 may transmit user credentials via UI to the authentication module 922. In operation 905, the authentication module 922 may transmit a token generation request to the token generation module 923. In operation 906, the token creation module 923 may transmit an access token to the authentication module 922 in response to the token creation request. According to one embodiment, the authentication module 922 may deliver an access token to the authentication agent 911 in the general area.

In operation 907, the authentication agent 911 in the general area may transmit an access token to the relaying application 941 in the external electronic device 940. In operation 908, the relating application 941 may transmit an access token to the server 930.

FIG. 10 is a diagram illustrating another example to explain an on-device user authentication method according to an embodiment of the present disclosure.

Referring to FIG. 10 , the system may include an electronic device 1000 and a relaying application 1030. The electronic device 1000 has a security area (or Realm world; or Secure world) and a normal area (or Non-secure world; or normal world), each of which can independently execute applications and/or services (or application code). It can be included. According to one embodiment, the security area and the general area may be separate areas that are physically (or hardware-wise) separated within the electronic device 1000. According to one embodiment, an application and/or service (or application code) that requires protection of user privacy (or personal information) may be executed within a security area. For example, the general area may be implemented in an Android environment (or rich execution environment (REE)), and the security area may be implemented in a trusted execution environment (TEE) that is physically isolated from Android.

The electronic device 1000 may include an authentication application (authenticator App (Host Process)) 1010 running in a general area, and an authentication application (authenticator App) 1020 running in a security area. The authentication application 1010 running in the general area may include an authenticator agent 1011. The authentication application 1020 running in the security area may include an App UI module 1021, an authentication module 1022, a token generation module 1023, and a resource server 1024. .

The relaying application 1030 may be installed and/or executed within an external electronic device. According to one embodiment, the relaying application 1030 may be installed and/or executed within the electronic device 1000.

Referring to FIG. 10, in operation S1001, the relaying application 1030 may transmit an access token request to the authentication module 1022 in the security area through the authentication agent 1011 in the general area.

In operation S1002, the App UI module 1021 in the security area may request user credentials and permission via UI (user credentials & permission request via UI). In operation S1003, the App UI module 1021 may receive user credential input and permission input from the credential owner.

In operation S1004, the App UI module 1021 may transmit user credentials & permission via UI to the authentication module 1022. In operation S1005, the authentication module 1022 may transmit a token generation request to the token generation module 1023. In operation S1006, the token creation module 1023 may transmit an access token to the authentication module 1022 in response to the token creation request. In operation S1008, the resource server 1024 may transmit an access token to the relaying application 1030 through the authentication agent 1011.

11 is a flowchart for explaining the operation of an electronic device according to an embodiment of the present disclosure.

Referring to FIG. 11, in operation 1110, an electronic device (electronic device 101 in FIG. 1; electronic device 500 in FIG. 5) executes a first authentication application (authentication application 520 in FIG. 5) running in the security area. ), you can obtain user credentials corresponding to user input. In operation 1120, the electronic device may perform a user authentication procedure in the first authentication application within the security area based on the user credentials. In operation 1130, when the user authentication process is successfully completed in the first authentication application in the security area, the electronic device may issue an access token in the first authentication application in the security area. In operation 1140, the electronic device transmits the access token issued by the first authentication application in the security area to an external electronic device through a second authentication application (authentication application 510 in FIG. 5) running in the general area. Can be transmitted.

According to one embodiment, the general area may be implemented in a rich execution environment (REE), and the security area may be implemented in a trusted execution environment (TEE). According to one embodiment, the electronic device may receive an authentication request message from the external electronic device through the second authentication application in the general area.

According to one embodiment, the first authentication application in the security area includes an integrity measurement value, a public key of a service provider, and a public key of a certified authority (CA). It may include at least one from the certificate chain. According to one embodiment, the electronic device is implemented in the security area, manages a stage page table for the security area, and manages a CPU context of the realm. management) may be further included.

According to one embodiment, the memory may include first storage and second storage. The first storage may include a sealing key. The second storage may include user credentials, subscription status, user profile, and encryption key that are encrypted based on the sealing key.

According to one embodiment, the first authentication application within the security area includes an App UI module that provides a user interface (UI); An authentication module that performs the user authentication process; a token generation module that issues the access token; and a resource server module that transmits user information and the access token to an external server. According to one embodiment, the user credential may include at least one of a password, fingerprint, face, voice, iris, palm, or finger vein pattern that can identify the owner of the user credential.

Claims (16)

In an electronic device (electronic device 101 in FIG. 1; electronic device 500 in FIG. 5),
Memory (memory 130 in Figure 1); and
Includes at least one processor (processor 120 in FIG. 1) connected to the memory,
The at least one processor,
A user credential is input through a first authentication application (authentication application 520 in FIG. 5) running in the security area, and the user is authenticated in the first authentication application within the security area based on the user credential. Controlling that the authentication process is carried out,
When the user authentication process is successfully completed in the first authentication application in the security area, control the first authentication application in the security area to issue an access token,
An electronic device that controls to transmit the access token issued by the first authentication application in the security area to an external electronic device through a second authentication application (authentication application 510 in FIG. 5) running in the general area. The electronic device of claim 1, wherein the general area is implemented in a rich execution environment (REE) and the security area is implemented in a trusted execution environment (TEE). The method of any one of claims 1 to 2, wherein the at least one processor:
An electronic device that receives an authentication request message from the external electronic device through the second authentication application in the general area. The method of any one of claims 1 to 3, wherein the first authentication application in the security area is,
An electronic device, comprising at least one of an integrity measurement value, a public key of a service provider, and a certificate chain for the public key of a certified authority (CA). The method of any one of claims 1 to 4, wherein the electronic device:
The electronic device further includes a remote monitoring and management (RMM) implemented in the security area, managing a stage page table for the security area, and managing CPU context of the realm. The method of any one of claims 1 to 5, wherein the memory includes first storage and second storage,
The first storage includes a sealing key,
The second storage includes user credentials, subscription status, user profile, and encryption key that are encrypted based on the sealing key. The method of any one of claims 1 to 6, wherein the first authentication application in the security area is,
App UI module that provides a user interface (UI);
An authentication module that performs the user authentication process;
a token generation module that issues the access token; and
An electronic device comprising a resource server module that transmits user information and the access token to an external server. The method of any one of claims 1 to 7, wherein the user credential is:
An electronic device comprising at least one of a password, fingerprint, face, voice, iris, palm, or finger vein pattern capable of identifying the owner of the user credential. In a method of operating an electronic device (electronic device 101 in FIG. 1; electronic device 500 in FIG. 5),
Obtaining user credentials corresponding to user input through a first authentication application (authentication application 520 in FIG. 5) running in the security area;
Operations performed by a user authentication procedure in the first authentication application within the security area based on the user credentials;
issuing an access token from the first authentication application within the security area when the user authentication process is successfully completed in the first authentication application within the security area; and
A method comprising transmitting the access token issued by the first authentication application in the security area to an external electronic device through a second authentication application (authentication application 510 in FIG. 5) running in the general area. The method of claim 9, wherein the general area is implemented in a rich execution environment (REE) and the security area is implemented in a trusted execution environment (TEE). According to any one of claims 9 to 10,
The method further includes receiving an authentication request message from the external electronic device through the second authentication application in the general area. The method of any one of claims 9 to 11, wherein the first authentication application in the security area is,
A method comprising at least one of an integrity measurement value, a public key of a service provider, and a certificate chain for the public key of a certified authority (CA). The method of any one of claims 9 to 12, wherein the electronic device:
The method further includes a remote monitoring and management (RMM) implemented in the security area, managing a stage page table for the security area, and managing CPU context of the realm. 14. The method of any one of claims 9 to 13, wherein the memory includes first storage and second storage,
The first storage includes a sealing key,
The second storage includes user credentials, subscription status, user profile, and encryption key that are encrypted based on the sealing key. The method of any one of claims 9 to 14, wherein the first authentication application in the security area is,
App UI module that provides a user interface (UI);
An authentication module that performs the user authentication process;
a token generation module that issues the access token; and
A method comprising a resource server module transmitting user information and the access token to an external server. The method of any one of claims 9 to 15, wherein the user credential is:
A method comprising at least one of a password, fingerprint, face, voice, iris, palm, or finger vein pattern capable of identifying the owner of the user credential.

Images