WO2017104899A1 - Système d'authentification de certificat sur la base d'une chaîne de blocs et procédé d'authentification l'utilisant - Google Patents

Système d'authentification de certificat sur la base d'une chaîne de blocs et procédé d'authentification l'utilisant Download PDF

Info

Publication number
WO2017104899A1
WO2017104899A1 PCT/KR2016/002227 KR2016002227W WO2017104899A1 WO 2017104899 A1 WO2017104899 A1 WO 2017104899A1 KR 2016002227 W KR2016002227 W KR 2016002227W WO 2017104899 A1 WO2017104899 A1 WO 2017104899A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
blockchain
certificate
user
transaction
Prior art date
Application number
PCT/KR2016/002227
Other languages
English (en)
Korean (ko)
Inventor
어준선
홍재우
송주한
Original Assignee
(주)코인플러그
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by (주)코인플러그 filed Critical (주)코인플러그
Publication of WO2017104899A1 publication Critical patent/WO2017104899A1/fr

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/02Banking, e.g. interest calculation or account maintenance
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials

Definitions

  • the blockchain in the case of a public key for a public certificate requiring maintenance, the blockchain is held through a peer-to-peer network (P2P) based distributed database, not a server operated by a CA.
  • P2P peer-to-peer network
  • Expenses for establishing an accredited certificate authentication system that is equipped with a high security system to prevent hacking as much as possible by means of storage management in the blockchain of the electronic wallet mounted on the servers, and operation of the established accredited certificate authentication system It is possible to monitor the illegality of the user who requested the certification without incurring maintenance and maintenance costs, and the user wants the PC security level through the means that guides the certification process even if ActiveX is not installed. It can be maintained at a high level, so it is not only resistant to dangerous environments such as hacking, but also has a simplified certification process.
  • the present invention relates to an accredited certificate authentication system based on a blockchain compatible with various web browsers and an authentication method using the same.
  • the accredited certificate is electronic information issued by a certification authority (CA) for the purpose of verifying the user's identity when using services in various industries, and for preventing the forgery and tampering of documents or the denial of transaction facts. It shows the seal certificate for cyber transaction.
  • CA certification authority
  • These certificates include certificate version, certificate serial number, certificate validity period, issuer, user digital signature verification information, user name, identity verification information, digital signature method.
  • PKI public key infrastructure
  • the public key infrastructure refers to a user authentication system that encrypts transmission and reception data using a public key composed of encryption and decryption keys, and verifies the identity of a trader using a password possessed by an Internet user.
  • the user's private key exists as a file in a standardized storage location due to soft token-based storage method, so it is easy to duplicate and automate the collection of the private key, resulting in financial damage and user There is also a risk of information theft.
  • CA certification authority
  • an accredited certificate must be installed in advance for the purpose of additional security when performing the user authentication process through a web browser.
  • ActiveX forcibly installed during the user authentication process, is a technology used to develop reusable, object-oriented software components developed by Microsoft, and applied to the World Wide Web by applying the component object model and object connection insertion (OLE). The content downloaded from the WWW). Most of the time, ActiveX is used to create plug-ins for Internet Explorer (IE).
  • OLE component object model and object connection insertion
  • ActiveX can be installed only by lowering the security level of the PC so that it can access resources such as files and registry of personal computers (hereinafter referred to as PCs). Due to the required ActiveX installed rather than lowering the user's PC security level, there is a problem that not only vulnerable to a dangerous environment such as hacking, but also complicated authentication process.
  • accredited certificates which are required for the installation of ActiveX, are required for security during the accreditation process, and are only available in Internet Explorer (IE) provided by Microsoft among various types of web browsers (Chrome, Safari). , Firefox, etc.) has a problem that the user itself is impossible.
  • IE Internet Explorer
  • a user connects to a server operated by a bank or a securities company through an internet-based web browser, and issues various certificates such as a resident registration copy by accessing a server operated by a financial institution such as bank transfer or stock trading or a government operated institution. If you want to use an accredited certificate for user authentication while using services in various industries, such as e-commerce services such as purchasing goods by connecting to a server that sells goods and civil services such as receiving, etc.
  • the service can be used because it is supported, but other web browsers do not support ActiveX.
  • Patent Document 1 Korean Patent Office Publication No. 10-0411448 (December 03, 2003), Issuing method and system for issuing an optical recording medium storing a private key and certificate of a public key infrastructure.
  • Non-Patent Literature 1 Active X-related content in Wikipedia (https://en.wikipedia.org/wiki/%EC%95%A1%ED%8B%B0%EB%B8% 8CX)
  • the purpose of the present invention is to provide a public key for a public certificate that requires maintenance, not through a server operated by a CA, but through a peer-to-peer network (P2P) based distributed database.
  • the electronic wallet mounted on the chain holding servers is controlled to be stored and managed, so that a high degree of security system is interlocked to prevent the hacking as much as possible. It is to provide an authorized certificate authentication system and authentication method based on a blockchain that can be monitored whether the user who requested authentication is illegal.
  • Another object of the present invention is to maintain the PC security level to the level desired by the user through the means for guiding the authentication process is performed even if ActiveX is not installed, it is not only strong against dangerous environments such as hacking, but also performs authentication.
  • the process is also simple and provides a certificate authentication system based on a blockchain compatible with various web browsers and a method of authenticating a certificate based on a blockchain using the same.
  • an authentication certificate authentication system based on a blockchain includes a user terminal for requesting blockchain-based authentication; A blockchain-based authorized certificate authentication request server which transmits designated user identification information of the corresponding user who operates the user terminal according to a blockchain-based authorized authentication request of the user terminal and relays a request for blockchain-based authorized authentication; Downloading public key recording transaction information and user verification transaction information by transmitting transaction ID information for public key recording and transaction ID information for user verification matching the designated user identification information transmitted from the blockchain-based public certificate authentication request server.
  • Blockchain-based authorized certificate management server for requesting;
  • the electronic wallet with a blockchain that authenticates the bitcoin payment by verifying the transmitted transaction information for the bitcoin payment and records the transaction information for the bitcoin payment according to the authentication is mounted.
  • the electronic wallet also records the transaction information for the user verification including the public key recording transaction information including the public key for the public certificate and the user verification hash information, which is transmitted from the blockchain-based public certificate management server Matching the public key recording transaction ID information and the user verification transaction ID information with the electronic wallet, the block chain for transmitting the matching public key recording transaction information and user verification transaction information to the blockchain-based authorized certificate management server Server; consisting of, the blockchain-based public certificate management server is the Public key for public certificate and user verification hash information are extracted from public key recording transaction information and user verification transaction information transmitted from lockchain holding server, and the extracted public key for public certificate and user verification hash information and
  • the certificate validation signal including the transaction ID information for recording the public key is transmitted to the blockchain-based public certificate authentication request server, and the blockchain-based public certificate authentication
  • Hashing the transaction ID information for public key recording among the information included in the certificate validation signal Compute and process the user verification hash information for preparation, and the hash value of the user verification hash information among the information included in the certificate validation signal transmitted from the blockchain-based certificate management server and the verification user verification hash for the preparation. If both hash values are calculated by calculating the hash value of the information, the public key for the public certificate among the information included in the certificate validation signal is transmitted to the user terminal, and the user terminal publicly transmits the public certificate for the public certificate. Perform public certification based on key.
  • a step of requesting blockchain-based authentication by accessing a blockchain-based authentication certificate request server from a user terminal is performed.
  • the blockchain-based public certificate authentication request server extracts the designated user identification information of the user operating the user terminal from the user identification information DB for each member according to the blockchain-based public authentication request, and manages the blockchain-based public certificate Transmitting to a server;
  • the public key recording transaction ID information and user verification transaction ID information matched by matching the designated user identification information transmitted from the blockchain-based authorized certificate management server with the transaction search keyword information DB for each user are transmitted to the blockchain holding server.
  • the transmitted public key recording transaction ID information and user verification transaction ID information are matched with an electronic wallet, and the matching public key recording transaction information and user verification transaction information are based on the blockchain.
  • the certificate validation signal including the public certificate for public certificate and the user verification hash information extracted from the transaction information and the public key record transaction ID information stored in the user-specific transaction search keyword information DB Transmitting to the blockchain-based authorized certificate authentication request server;
  • the identification information of the user is extracted from the user identification information DB for each member, and a hash processing operation is performed by hashing the extracted user identification information to operate the hash processing engine.
  • Hashing the public ID record transaction ID information among the processed user identification hash information and the information contained in the certificate validation signal transmitted from the blockchain-based accredited certificate request server Processing to prepare the user verification hash information for the preparation; In the hash processing engine of the blockchain-based public certificate authentication request server, the hash value of the user verification hash information among the information included in the certificate validation signal transmitted from the blockchain-based public certificate management server and the user verification for the preparation Computing hash values of the time information, respectively, and checking whether the calculated hash values are the same; The hash value of the user verification hash information and the hash value of the prepared user verification hash information are respectively calculated among the information included in the certificate validation signal transmitted from the blockchain-based authorized certificate management server, and the hash values of both sides are the same. If the blockchain-based public certificate authentication request server, transmitting a public key for public certificate among the information included in the certificate validation signal to the user terminal; In the user terminal, performing the public authentication based on the transmitted public key for the public certificate.
  • a certificate authentication system based on a blockchain includes a user terminal for requesting blockchain-based certificate authentication; According to the blockchain-based authorized authentication request of the user terminal, extract the identification information of the corresponding user from the user identification information DB for each member, hash processing the extracted identification information of the user and process it into the user identification hash information for preparation.
  • a blockchain-based authorized certificate authentication request server for transmitting the processed contrast user identification hash information and the designated user identification information of the user; The public key is received by matching the user identification hash information and the designated user identification information for the preparation from the blockchain-based authorized certificate authentication request server and matching the user identification information of the transmitted information with the transaction search keyword information DB for each user.
  • a blockchain-based authorized certificate management server for transmitting the transaction ID information for recording and the transaction ID information for user verification and requesting the download of the public key recording transaction information and the user verification transaction information;
  • the electronic wallet with a blockchain that authenticates the bitcoin payment by verifying the transmitted transaction information for the bitcoin payment and records the transaction information for the bitcoin payment according to the authentication is mounted.
  • the electronic wallet also records the transaction information for the user verification including the public key recording transaction information including the public key for the public certificate and the user verification hash information, which is transmitted from the blockchain-based public certificate management server Matching the public key recording transaction ID information and the user verification transaction ID information with the electronic wallet, the block chain for transmitting the matching public key recording transaction information and user verification transaction information to the blockchain-based authorized certificate management server Server; consisting of, the blockchain-based public certificate management server is the The public key for public authentication and the user verification hash information are extracted from the public key recording transaction information and the user verification transaction information transmitted from the lockchain holding server, and the prepared contrast user identification hash information and the transaction for each user are extracted.
  • the public key for the public certificate is transmitted to the user terminal, and the user terminal performs public authentication based on the public key for public certificate.
  • a step of requesting blockchain-based authentication from a user terminal is connected to a blockchain-based authentication certificate request server.
  • a blockchain-based authentication certificate request server extracts the identification information of the user from the user identification information DB for each member according to the blockchain-based public authentication request, and hash the extracted user identification information by operating a hash processing engine.
  • the blockchain in the case of a public key for a public certificate requiring maintenance, the blockchain is held through a peer-to-peer network (P2P) based distributed database, not a server operated by a CA.
  • P2P peer-to-peer network
  • Expenses for establishing an accredited certificate authentication system that is equipped with a high security system to prevent hacking as much as possible by means of storage management in the blockchain of the electronic wallet mounted on the servers, and operation of the established accredited certificate authentication system And even without maintenance costs, there is an effect that can be monitored even if the user's request for accredited certification.
  • the present invention can maintain the PC security level to the level desired by the user through the means for guiding the authentication process is performed even if ActiveX is not installed is not only resistant to dangerous environments, such as hacking, but also certified authentication process It also has a simple and compatible effect on various web browsers.
  • FIG. 1 is a block diagram showing a system for issuing an accredited certificate based on the blockchain of the present invention
  • FIG. 2 is a block diagram showing the detailed configuration of the user terminal of the configuration constituting the certificate issue system based on the blockchain of the present invention
  • Figure 3 is a block diagram showing the detailed configuration of the blockchain-based authorized certificate issuing request server of the configuration constituting the system for issuing a public certificate based on the blockchain of the present invention
  • Figure 4 is a block diagram showing the detailed configuration of the blockchain-based official certificate management server constituting the public certificate issuance system based on the blockchain of the present invention
  • FIG. 5 is a diagram illustrating a key generation guide screen showing an issuance process of a public key for a public certificate and a private key for a public certificate using a public certificate issuing system based on the blockchain of the present invention
  • FIG. 6 is a view schematically showing a data structure of various transaction information divided into input data and output data
  • FIG. 7 is a flowchart illustrating a process for issuing a blockchain-based public certificate using a public certificate issuing system based on the blockchain of the present invention
  • FIG. 8 is a block diagram showing a certificate authentication system based on the blockchain of the present invention.
  • Figure 9 is a block diagram showing the detailed configuration of the blockchain-based public certificate authentication request server of the configuration constituting the public certificate authentication system based on the blockchain of the present invention.
  • FIG. 10 is a block diagram showing the detailed configuration of the user terminal of the configuration constituting the certificate authentication system based on the blockchain of the present invention
  • FIG. 11 is a view illustrating a user authentication screen unit displaying a process of selecting a password and an image designated by a user in a user terminal using a certificate authentication system based on a blockchain of the present invention
  • 12 to 14 are flowcharts illustrating a process of authenticating a blockchain-based accredited certificate using an accredited certificate authentication system based on the blockchain of the present invention.
  • 15 to 17 are flowcharts illustrating a method for authenticating a certificate based on a blockchain according to another embodiment.
  • the present invention is largely divided into the issuance part of the public certificate based on the blockchain and the authentication part of the public certificate based on the blockchain.
  • 1 to 7 relate to a system and a method for issuing an accredited certificate based on the blockchain, which is an issuing part of the accredited certificate based on the blockchain.
  • the blockchain-based authorized certificate issuing system is largely a user terminal 100, a blockchain-based authorized certificate issuing request server 200, blockchain-based official certificate management server 300 And blockchain holding server 400.
  • the user terminal 100 generates a public key for the public certificate and a private key for the public certificate, and a blockchain consisting of the public key for the public certificate and the identification information of the user for issuing the blockchain-based public certificate among the generated keys. It is a terminal member that transmits the personal information for issuing the certificate-based public certificate to the blockchain-based public certificate issuing request server 200 to be described later.
  • the personal information for issuing a blockchain-based public certificate is information including a user name, a user's date of birth, a user's telephone number, and a user's email.
  • the user terminal 100 includes an information output unit 101 for outputting information, an information storage unit 102 for storing data or application programs, and an information input unit for generating an input signal of a user. And a control unit (not shown) for performing overall operation control of the user terminal 100 and a key generation engine 110 and an encryption / decryption engine 120.
  • the key generation engine 110, encryption and decryption engine 120 and the key generation guide screen to be described later is mounted in the form of an application program when the user terminal 100 is a desktop form such as a personal computer (PC),
  • the user terminal 100 is a mobile device such as a smart phone capable of accessing the Internet, it is provided to be installed in the form of a mobile-only app.
  • the user operating the user terminal 100 may identify the user with the blockchain-based public certificate issue request server 200. First, check the registration process.
  • the DB block 210 is mounted on the blockchain-based authorized certificate issuing request server 200 to be described later, and the identification information of the user who operates the user terminal 100 is mounted on the DB unit 210. It is stored, the user identification information DB 211 for each member is stored, the same user identification information is stored as the blockchain-based authorized certificate issuing personal information.
  • the user terminal 100 transmits the personal information for issuing the blockchain-based public certificate to the blockchain-based public certificate issuing request server 200 to request a blockchain-based public certificate, and requests for issuing a blockchain-based public certificate. If the matching information exists by matching the personal information for issuing the blockchain-based public certificate issuance with the user identification information DB 211 for each member (200), the public key for the public certificate and the private key for the public certificate are generated. A key generation guide signal for guiding is generated and transmitted to the user terminal 100.
  • the user terminal 100 When the user terminal 100 transmits a key generation guide signal from the blockchain-based authorized certificate issuing request server 200, the user terminal 100 operates the key generation engine 110 to generate a public key for the public certificate and a private key for the public certificate. In addition, the user terminal 100 controls the generation of the public key for the public certificate and the private key for the public certificate in a state where the network is blocked, thereby preventing external leakage of each key that may occur even in advance.
  • the user terminal 100 operates the encryption / decryption engine 120 to encrypt the private key for the public certificate based on a password and a picture image specified by the user and process the information storage unit in the state processed by the private key for the public certificate. 102 to be stored in.
  • the information storage unit 102 of the user terminal 100 is stored in the user terminal 100, the key generation guide screen that displays the process of issuing the public key for the public certificate and the private key for the public certificate.
  • the stored key generation guide screen unit is a user name input box 141a to input the user's name, the user's date of birth input box 141b, the user's phone number input box 141c, and the user's phone number is input, and Blocks the network connected to the user terminal 100 before generating the user identification information input screen 141, including the user's email input box 141d, the public key for the public certificate and the private key for the public certificate.
  • Network blocking guide screen 142 for guiding this, a network block display screen 143 indicating that the network of the user terminal 100 is blocked, and a password input box for inputting a password required for issuing a blockchain-based authorized certificate (Password input screen 144, including a 144a, and a plurality of images are displayed, the image line to be displayed selectively
  • Password input screen 144 including a 144a, and a plurality of images are displayed, the image line to be displayed selectively
  • the screen 145, the key generation guide screen 146 for guiding that the public key for the public certificate and the private key for the public certificate are generated, and the network blocked after the public key for the public certificate and the private key for the public certificate are generated.
  • Network connection display screen 147 indicating that is connected again, and issuance completion guide screen 148 indicating that the issuance of the blockchain-based authorized certificate is completed.
  • the blockchain-based official certificate issuing request server 200 receives a public key for a public certificate and personal information for issuing a blockchain-based public certificate from the user terminal 100 and hashes the personal information for issuing a blockchain-based public certificate.
  • Designated user corresponding to the predetermined user's identification information among the user's identification information that is processed into the user identification hash information, and constitutes the user identification hash information, the public key for the accredited certificate, and the personal information for issuing the blockchain-based accredited certificate. It collects the identification information is processed into a transaction creation request signal for public key recording, and transmits it to the block chain based public certificate management server 300 to be described later to transmit the server member.
  • the designated user identification information may use a telephone number of the user, in particular, a telephone number of the mobile communication terminal.
  • the blockchain-based public certificate issuing request server 200 is equipped with a hash processing engine 220.
  • the hash processing engine 220 mounted on the blockchain-based official certificate issuing request server 200 performs a function of hashing the blockchain-based official certificate issuing personal information and processing the user information into hash information.
  • the blockchain-based public certificate management server 300 records a public key including a public key for public certificate among information collected in a transaction creation request signal for public key recording transaction transmitted from the blockchain-based public certificate issuance request server 200.
  • Transaction information for public key recording used for retrieving the transaction information for the public key and the transaction information for the public key recording, and the transaction information for the public key recording among the generated information is transmitted for recording, and the public key recording.
  • the transaction ID information is stored and managed, and the user identification hash information and the transaction ID information for public key recording are hashed among the information collected in the transaction creation request signal for public key recording, and processed into user verification hash information.
  • User verification transaction information including processed user verification hash information and the user verification transaction information Generates transaction ID information for user verification, which is used as a key value for searching, transmits user verification transaction information for recording, stores and manages transaction ID information for user verification, and generates a transaction for public key recording.
  • the designated user identification information among the information collected in the request signal is a member for storing and managing.
  • the blockchain-based public certificate management server 300 includes a DB unit 310 having a transaction search keyword information DB 311 for each user, a transaction processing engine 320, and a hash processing engine 330. Include.
  • the transaction processing engine 320 stores designated user identification information in the transaction search keyword information DB 311 for each user, and public key recording transaction information including the public key for the public certificate and the public key recording transaction. Generates transaction ID information for public key recording that is used as a key value to retrieve information.
  • the hash processing engine 330 hashes the user identification hash information and the public key recording transaction ID information among the information collected in the public key recording transaction generation request signal, and processes the user identification hash information.
  • the transaction processing engine 320 transmits the transaction information for the public key recording to the blockchain holding server 400 for recording, and the transaction search keyword information DB 311 for each user in the case of the transaction ID information for the public key recording. ), And generate user verification transaction information including user verification hash information and transaction identification information for user verification used as a key value for retrieving transaction verification information for the user verification, and for user verification among the generated information.
  • the transaction information is transmitted to the blockchain holding server 400 for recording, and the transaction ID information for user verification is stored and managed in the user-specific transaction search keyword information DB 311.
  • the blockchain-based official certificate management server 300 performing such a function performs a public certification when using a service such as a server operated by a bank or a securities company, a server operated by a government agency, and a server operated by a shopping mall performing Internet commerce.
  • a service such as a server operated by a bank or a securities company, a server operated by a government agency, and a server operated by a shopping mall performing Internet commerce.
  • the vendor's server may be applied.
  • the bitcoin payment transaction information recorded in the blockchain provided in the electronic wallet of the blockchain holding server 400 to be described later with reference to Figure 6a which the sender holds through the previous Bitcoin payment transaction information Bitcoin necessary to determine the validity of previous Bitcoin payment transaction ID information, remitter's Bitcoin usage right information, and Bitcoin usage right information used to identify the Bitcoin storage location
  • the data includes a public key for payment, OP_DUP information for guiding a transaction for Bitcoin transactions, bitcoin amount remitted, and recipient identification information for identifying a recipient.
  • the previous Bitcoin payment transaction ID information is information used as a key value to retrieve the previous Bitcoin payment transaction information.
  • the sender's bitcoin usage authority information is the sender's digital signature information, and the sender corresponds to a user who remits bitcoin from previous transaction information for Bitcoin payment.
  • the bitcoin payment transaction information data structure is divided into input data (ID) and output data (OD), the input data (ID), the previous bitcoin payment transaction ID information, the remitter's bitcoin usage rights information And the public key for bitcoin payment is stored separately, and the OP_DUP information, the bitcoin amount and the recipient identification information are stored separately in the output data (OD).
  • the transaction information for the previously used bitcoin to be used among the amount of Bitcoin held by the remitter through the previous transaction information for bitcoin payment is used.
  • Bitcoin payment transaction ID information the transaction information for the previously used bitcoin to be used among the amount of Bitcoin held by the remitter through the previous transaction information for bitcoin payment is used.
  • Bitcoin payment transaction ID information the transaction information for the previously used bitcoin to be used among the amount of Bitcoin held by the remitter through the previous transaction information for bitcoin payment is used.
  • Bitcoin payment transaction ID information Bitcoin use authority information of the remitter
  • the public key of the public certificate for the certificate required for issuing a blockchain-based public certificate
  • Public key registration cost information which is a cost required for registration
  • OP_RETURN information for guiding that it is a transaction for information recording, not a transaction for bitcoin transactions, and data including the public key for the public certificate.
  • the public key recording transaction information is divided into input data ID1 and output data OD1.
  • the input data ID1 includes the previous Bitcoin payment transaction ID information and the remitter's authority to use Bitcoin.
  • the information and the bitcoin payment public key and public key registration cost information are stored separately, and the output data OD1 stores the OP_RETURN information and the public certificate public key.
  • the public key registration cost information is a cost that is paid to the miner involved in registering the public key recording transaction information in the blockchain provided in the electronic wallet of the blockchain holding servers 400, and requires approximately 0.0001 bitcoins. do.
  • the user verification hash registration cost information to be described later is a cost that is paid to the miner involved in enabling the user verification transaction information to be registered in the blockchain provided in the electronic wallet of the blockchain holding server 400.
  • the transaction information for user verification is described with reference to FIG. 6C, and used to identify a storage location of the scheduled Bitcoin to be used among the amount of Bitcoin held by the remitter through the previous transaction information for Bitcoin payment.
  • Registration of transaction ID information for Bitcoin payment, Bitcoin permission information of remitter, Bitcoin payment public key for determining validity of Bitcoin permission information, and user verification hash information for issuing blockchain-based public certificate
  • User verification hash registration cost information which is the cost required to block
  • blockchain-based authorized certificate destruction cost information which is the cost to be used to destroy the blockchain-based authentication information, which is a transaction for information recording, not a transaction for bitcoin transactions OP_RETURN information
  • transaction information for the user verification is blockchain
  • the blockchain-based authorized certificate discard reserve cost corresponding to the blockchain-based authorized certificate destruction reserve cost information is transferred to the designated Bitcoin address, bitcoin address for the reserve compared to the destruction and the corresponding blockchain
  • the data includes the blockchain-based certification certificate destruction information and user verification hash information including the information on the transfer of the destruction storage
  • the blockchain holding server 400 records the transaction verification information for the user and at the same time refers to the blockchain-based accredited certificate confirmation information, and reserves the blockchain-based accredited certificate at the bitcoin address for the reserve compared to the designated discard. It records the information that the cost information has been transferred and charged and provides it as data to confirm the destruction of the blockchain-based accredited certificate later.
  • the transaction information for user verification has a data structure divided into input data ID2 and output data OD2.
  • the input data ID2 includes previous transaction ID information for bitcoin payment, bitcoin usage right information of a remitter, and Bitcoin payment public key
  • blockchain-based accredited certificate destruction cost information and user verification hash registration cost information is stored separately
  • the output data (OD2) OP_RETURN information, blockchain-based accredited certificate destruction information and user verification Hash information is stored separately.
  • the blockchain holding servers 400 are devices forming a bitcoin network that performs bitcoin payment through authentication and recording of the bitcoin payment when the bitcoin payment is made.
  • Bitcoin is a digital currency that can be paid for in kind created by Satoshi Nakamoto in 2009, and has no structure for issuing and managing currency. Instead, Bitcoin's transactions are made through a peer-to-peer network (P2P) based distributed database, which performs transactions based on public key cryptography.
  • P2P peer-to-peer network
  • Bitcoin having a payment method can be used without information such as a card number or expiration date and CCV number required for credit card payment, and there is an advantage in using a low fee.
  • Bitcoin is stored in an electronic wallet, which is a file, and each electronic wallet is given a unique address (public address), and trading of Bitcoin is performed based on the address.
  • a bitcoin user subscribes to a bitcoin exchange (eg, www.coinplug.com) and charges KRW corresponding to the won while opening an electronic wallet.
  • a bitcoin exchange eg, www.coinplug.com
  • the blockchain holding server 400 may be a server operated by the bitcoin exchange side as one member.
  • an electronic wallet having a blockchain must be mounted on each blockchain holding server 400, and a bitcoin payment generated in accordance with general bitcoin payment on a blockchain by an electronic wallet of the blockchain holding server 400.
  • the bitcoin payment is authenticated by verifying the received transaction information of the bitcoin, and the transaction information for the bitcoin payment is recorded according to the authentication, and the blockchain holding server of the next stage designated ( 400 to propagate transaction information for Bitcoin payment.
  • the propagation of the transaction information for Bitcoin payment is promised by the communication protocol, and when the occurrence of the transaction information for Bitcoin payment, one node (here referred to as a blockchain holding server) is propagated to eight nodes designated. All blockchains equipped with an electronic wallet with a blockchain necessary to perform Bitcoin payments through pyramid propagation are repeatedly propagated to each of the eight designated nodes for each of the eight nodes receiving the transaction information for the Bitcoin payment. By propagating to the holding server 400, it is completed.
  • the blockchain holding server 400 is equipped with an electronic wallet having a blockchain, a server (or terminal) operated by a miner for mining Bitcoin, or a user terminal (for example, a PC for Bitcoin payment) Or smartphone) can also be made up of one member.
  • payments based on an electronic wallet equipped with a blockchain include Litecoin, Dark Coin, Namecoin, and Ceramic Coin. And ripple, etc., which may also be used as a substitute for performing a function such as bitcoin in the forgery verification of a certificate of a financial institution.
  • the transaction information that is generated during bitcoin payment includes OP_RETURN (Operation Code RETURN) information and transmits it
  • the electronic wallet of each blockchain holding server 400 is treated as private information instead of general bitcoin payment.
  • the OP return information is recorded in the transaction information for verifying the certificate, and used as an important configuration for determining the forgery prevention of digital content.
  • the OP_RETURN information reads the OP return message on the Bitcoin payment transaction information during the Bitcoin payment authentication in the electronic wallet of the blockchain holding server 400, the information that the OP return message is recorded Bitcoin transaction information It is used to inform that it is used as information to inform that it is an arbitrary 40 byte data value.
  • the process of issuing a blockchain-based accredited certificate using the accredited certificate issuing system based on the blockchain of the present invention is as follows.
  • the user terminal 100 When the user executes a mobile-only app (or a dedicated program) for guiding the issuance of the bitcoin-based official certificate installed in the user terminal 100, and accesses the blockchain-based official certificate issuing request server 200, the user terminal 100
  • the mobile-only app (hereinafter, described as being controlled by the user terminal for convenience of description) is operated by extracting the user identification information input screen 141 stored in the information storage unit 102 and outputting it to the information output unit 101. do.
  • the user inputs the user's name input box 141a to input the user's name on the output user identification information input screen 141, the user's date of birth input box 141b to input the user's birth date, and the user's telephone number input box to input the user's phone number. 141c and the user's e-mail input box 141d into which the user's e-mail is input, input information according to an input form and request transmission.
  • the user terminal 100 collects the input information such as the user name, the date of birth of the user, the user's telephone number, and the user's e-mail to process the personal information for issuing the blockchain-based certificate, and then processes the personal information for issuing the processed blockchain-based certificate. Transmits the blockchain-based official certificate issuance request server 200 to request a blockchain-based official certificate issuance (S100).
  • the blockchain-based authorized certificate issuing request server 200 matches the personal information for issuing the blockchain-based authorized certificate with the user identification information DB 211 for each member and checks whether there is matching information (S110), which is matched. If there is no information, a message (S111) for issuing a blockchain-based authorized certificate is transmitted to the user terminal 100.
  • the blockchain-based public certificate issuing request server 200 generates a key generation guide signal for guiding the generation of the public key for the public certificate and the private key for the public certificate when the matching information exists, and transmits it to the user terminal 100. (S120).
  • the user terminal 100 When the key generation guide signal is transmitted, the user terminal 100 extracts the network blocking guide screen 142 from the information storage unit 102 and outputs it to the information output unit 101.
  • the user terminal 100 When the user clicks a menu requesting network setting after viewing the output blocking guide screen 142, the user terminal 100 extracts the network blocking display screen 143 stored in the information storage unit 102 and outputs the information. Output to the unit 101. Thereafter, the user blocks the connected network such as Wi-Fi on the output network block display screen 143.
  • the user terminal 100 extracts the password input screen 144 stored in the information storage unit 102 and outputs the password input screen 144 to the information output unit 101, the user enters the password input box 144a of the password input screen 144. Enter the password and click the OK menu.
  • the user terminal 100 extracts an image selection screen 145 stored in the information storage unit 102 and outputs the image selection screen 145 to the information output unit 101. Thereafter, the user selects a desired image among a plurality of images displayed on the output image selection screen 145.
  • the user terminal 100 operates the key generation engine 110 to control the public key for the public certificate and the private key for the public certificate to be generated.
  • the key generation guide screen 146 stored in the information storage unit is output. It guides the user to recognize that the public key for public certificate and private key for public certificate are generated.
  • the encryption / decryption engine 120 is operated to encrypt and encrypt the private key for the public certificate based on a password and a picture image specified by the user.
  • the data is stored in the information storage unit 102 in a state of processing with a private key for a public certificate.
  • the user terminal 100 stores the private key for encryption authentication certificate, the user terminal outputs a message to connect the network again, and the user connects the network.
  • the user terminal 100 outputs a network connection guide screen 147 stored in the information storage unit 102 to guide that the network is connected again.
  • the user terminal 100 transmits the public key for the public certificate to the blockchain-based public certificate issue request server 200 (S130).
  • the blockchain-based public certificate issuance request server 200 When the blockchain-based public certificate issuance request server 200 receives the public key for the public certificate, it operates a hash processing engine 220 to hash the personal information for issuing the blockchain-based public certificate to process the user identification hash information.
  • the public key record is collected by collecting the specified user identification information corresponding to the predetermined user identification information among the user identification information that forms the user identification hash information, the public key for the certificate, and the personal information for issuing the blockchain-based certificate. Process the transaction creation request signal for the blockchain-based official certificate management server 300 and transmits (S140).
  • the blockchain-based authorized certificate management server 300 operates the transaction processing engine 320 to search the user-specific transaction search keyword information DB (user-specific information) among the information collected in the transaction creation request signal for public key recording transmitted. 311) and generate public key recording transaction information including the public key for the public certificate and public key recording transaction ID information used as a key value to retrieve the public key recording transaction information (S150).
  • the transaction processing engine 320 searches the user-specific transaction search keyword information DB (user-specific information) among the information collected in the transaction creation request signal for public key recording transmitted. 311) and generate public key recording transaction information including the public key for the public certificate and public key recording transaction ID information used as a key value to retrieve the public key recording transaction information (S150).
  • the blockchain-based authorized certificate management server 300 operates the hash processing engine 330 to hash user identification hash information and transaction ID information for public key recording among information collected in the transaction creation request signal for public key recording. Compute and process the user verification hash information (S160).
  • the blockchain-based authorized certificate management server 300 operates the transaction processing engine 320 to transmit the transaction information for the public key recording to the blockchain holding server 400 for recording, and transmits the public key recording transaction.
  • the user-specific transaction search keyword information DB 311 is stored in the user verification transaction ID including the user verification hash information and the user verification transaction ID used as a key value for searching the user verification transaction information.
  • Management (S170) is stored in the user verification transaction ID including the user verification hash information and the user verification transaction ID used as a key value for searching the user verification transaction information.
  • the blockchain holding server 400 completes the issuance of the blockchain-based authorized certificate by recording the transmitted public key recording transaction information and user verification transaction information in the blockchain (S180).
  • the blockchain-based official certificate management server 300 completes the issuance of the blockchain-based official certificate (S180), the blockchain-based official certificate issuance completion notification is notified to the user terminal 100 (S190).
  • the user terminal 100 outputs the issue completion guide screen 148 stored in the information storage unit 102 through the information output unit 101 so that the user can recognize it.
  • the blockchain-based public certificate authentication system of the present invention includes a user terminal 100, a blockchain-based public certificate authentication request server 500, a blockchain-based public certificate management server 300, It consists of a blockchain holding server (400).
  • the user terminal 100 is a terminal member for requesting blockchain based authentication.
  • the blockchain-based authorized certificate authentication request server 500 transmits the designated user identification information of the corresponding user who operates the user terminal 100 according to the blockchain-based authorized authentication request of the user terminal 100 to blockchain-based authorized authentication.
  • the server member relays the request.
  • the blockchain-based public certificate authentication request server 500 includes a DB unit 510, and the included DB unit 510 stores identification information of a user who operates the user terminal 100.
  • the user identification information that is identical to the personal information for issuing the blockchain-based public certificate that is used when issuing the blockchain-based public certificate and the user identification information corresponding to the predetermined user identification information among the user information It has a member-specific user identification information DB (511) stored.
  • the blockchain-based authorized certificate authentication request server 500 designates a corresponding user who operates the user terminal 100 in the user identification information DB 511 according to the blockchain-based authorized authentication request of the user terminal 100. Extracts user identification information and transmits it to the blockchain-based authorized certificate management server 300.
  • the blockchain-based official certificate management server 300 transmits transaction ID information for public key recording and transaction ID information for user verification matching with the designated user identification information transmitted from the blockchain-based official certificate authentication request server 500. Server member for requesting the download of the transaction information for public key recording and transaction information for user verification.
  • the blockchain-based official certificate management server 300 the DB unit 310 is mounted
  • the mounted DB unit 310 is a blockchain consisting of the user identification information used when issuing a blockchain-based official certificate Among the identification information of the same user as the personal information for issuing the public certificate, the designated user identification information corresponding to the predetermined user identification information, the transaction ID information for the public key recording used as a key value for retrieving the transaction information for the public key recording, and the user It has a user-specific transaction search keyword information DB 311 that stores transaction verification ID information used as a key value for retrieving verification transaction information.
  • the transaction information for user verification if the blockchain-based official certificate destruction cost information and the corresponding user verification transaction information, which is the cost to be used to destroy the blockchain-based authorized certificate is recorded in the blockchain of the blockchain holding server 400
  • the amount of the Bitcoin address for stockpile and the corresponding blockchain-based accredited certificate stockpile expenditure cost are displayed so that the blockchain-based accredited certificate discard stock cost corresponding to the blockchain-based accredited certificate discard stock cost information is transferred to the designated bitcoin address. Includes information on transfer of waste reserves.
  • the transaction processing engine 320 of the blockchain-based certificate management server 300 extracts the bitcoin address for stockpile compared to the discarded stocking cost transfer information among the information included in the user verification transaction information, Generates a blockchain-based accredited certificate confirmation request signal that inquires whether the blockchain-based accredited certificate destruction cost has been transferred to the bitcoin amount charged to the bitcoin address for stockpile compared to the extracted discarded data.
  • the blockchain holding server 400 is transmitted.
  • the blockchain-based official certificate destruction confirmation request signal may be sent to a plurality of blockchain holding server 400 or to a predetermined blockchain holding server 400 in advance.
  • the blockchain holding server 400 charges the Bitcoin address for the stockpile in comparison with the blockchain by matching the blockchain with the discarded bitcoin address included in the transmitted blockchain-based authorized certificate confirmation request signal.
  • the blockchain-based authorized certificate destruction guide signal for guiding whether or not the transfer of the blockchain-based accredited certificate storage reserve costs is transmitted to the blockchain-based accredited certificate management server (300).
  • the transaction processing engine 320 of the blockchain-based certificate management server 300 transfers the blockchain-based certificate certificate storage cost charged to the bitcoin address for stockpiling compared to destruction by referring to the blockchain-based certificate destruction guide signal. If it is, it performs a function of controlling to be notified to the user terminal 100 a message that the blockchain-based authentication process has been rejected.
  • the blockchain-based authorized certificate management server 300 matches the designated user identification information with the transaction search keyword information DB 311 for each user, extracts the transaction ID information for the public key recording and the transaction ID information for the user verification, and transmits the transaction.
  • the processing engine 320 By operating the processing engine 320, the public key recording transaction information and the user verification transaction information to perform the function of controlling to extract the public key for authentication certificate and the user verification hash information.
  • the blockchain holding server 400 authenticates Bitcoin payment by verifying the transmitted Bitcoin payment transaction information when the transaction information for bitcoin payment is transmitted, and records the transaction information for Bitcoin payment according to the authentication
  • An electronic wallet having a block chain is mounted, and the electronic wallet also records transaction information for user verification including public key recording transaction information including a public key for public certificate and user verification hash information.
  • the public key recording transaction ID information and the user verification transaction ID information transmitted from the chain-based public certificate management server 300 are matched with the electronic wallet to match the public key recording transaction information and the user verification transaction information with the block. It is a member transmitting the chain-based official certificate management server 300.
  • the blockchain-based public certificate management server 300 is publicly available for public certificates in the public key record transaction information and user verification transaction information transmitted from the blockchain-based public certificate management server 300
  • Block chain-based certificate authentication request server extracts the key and user verification hash information, and the certificate validation signal including the extracted public key for public certificate and user verification hash information and transaction ID information for public key recording. Send to 500.
  • the blockchain-based public certificate authentication request server 500 extracts the identification information of the user from the user identification information DB 511 for each member, and operates the hash processing engine 520, the identification information of the extracted user Hashing to process and process the user identification hash information for the preparation, and the processed user identification hash information of the processed and the information contained in the certificate validation signal transmitted from the block chain-based public certificate management server 300 Hashing the transaction ID information for the public key recording and processing it into the user verification hash information for preparation, and user verification hash information among the information included in the certificate validation signal transmitted from the blockchain-based certificate management server 300 If the hash value of the user and the hash value of the user verification hash information for the preparation are respectively calculated and both hash values are the same, the information stored in the certificate validation signal And it transmits the public key for the certificate to the user terminal 100.
  • the user terminal 100 performs the public authentication based on the public key for the public certificate transmitted.
  • the user terminal 100 has an information storage unit 102 and an encryption / decryption engine 120 stored in a private key state for encryption authentication certificate encrypted based on a password and a picture image set by the user for the authentication certificate. Include.
  • the blockchain-based public certificate authentication request server 500 transmits the public key for the public certificate for the encrypted public certificate for the encrypted public certificate based on a user confirmation request message requiring input of a password and a picture image set by the user. do.
  • the user terminal 100 transmits the public key for encryption certification, the user extracts the password input screen 151 for performing authentication stored in the information storage unit 102 and outputs the information through the information output unit 101. Enter the registered password in the password input box (151a).
  • the user terminal 100 extracts the image selection screen 152 for authentication performance stored in the information storage unit 102 and outputs the image through the information output unit 101. Choose.
  • the user terminal 100 decrypts the private key for the encrypted public certificate stored in the information storage unit 102 by referring to the public key for the encrypted public certificate transmitted by operating the encryption / decryption engine 120, and the user inputs it. If a password and a picture image is correct, the user verification authentication signal performs a function of controlling to be transmitted to the blockchain-based official certificate authentication request server 500.
  • the user can block the blockchain-based official certificate management server 300 corresponding to the remitter is issued blockchain-based official certificate.
  • the transaction processing engine 320 is operated to perform a transaction search keyword information DB 311 for each user. Extract the transaction ID information for user verification, and transmit it to the blockchain holding server (400).
  • the blockchain holding server 400 transmits the user verification transaction information extracted by matching the transmitted user verification transaction ID information with the blockchain of the electronic wallet to the blockchain-based authorized certificate management server 300.
  • the transaction processing engine 320 of the blockchain-based authorized certificate management server 300 receives transaction information for user verification, and transaction information for user verification is recorded when the transaction information for destroying the corresponding certificate is recorded in the blockchain holding server 400.
  • Blockchain-based accredited certificate charged to the Bitcoin address for stockpiling for destruction, referring to the output data of OD2.
  • Input data including the Bitcoin payment public key required to determine the validity of the multi-bitcoin usage rights information, including the right to use the blockchain-based authorized certificate destruction cost charged in the ( Blockchain-based accredited certificate charged to ID3) and Bitcoin address for stockpiling Generate the transaction information for destroying the certificate, which is divided into the output data (OD3) including the bitcoin address of the depositor to which the savings cost is remitted and the discarding cost collector identification information identifying the payee, and the blockchain holding server 400 To send).
  • OD3 including the Bitcoin address of the depositor to which the savings cost is remitted and the discarding cost collector identification information identifying the payee, and the blockchain holding server 400 To send.
  • the blockchain holding server 400 records the transaction information for destroying the transmitted public certificate on the blockchain to destroy the user's blockchain-based public certificate.
  • the blockchain-based public certificate management server 300 requests a digital signature by transmitting the generated transaction information for the public certificate destruction to the user terminal 100, if a certificate destruction signal is generated in the user terminal 100.
  • the user terminal 100 operates the transaction signature engine 130 to transmit the electronic signature to the transaction information for discarding the public certificate to be transmitted to the blockchain-based public certificate management server 300.
  • the blockchain-based official certificate management server 300 performs a function of controlling the transaction information for destroying the electronic certificate signed by the user transmitted from the user terminal 100 to the blockchain holding server 400. do.
  • the electronic signature of the remitter corresponding to the blockchain-based official certificate management server 300 is operated by operating the transaction processing engine 320. It performs the function of controlling the discarded transaction information, so that the transaction information for discarding the authorized certificate digitally signed by the remitter is transmitted to the blockchain holding server 400.
  • the authentication process of the blockchain-based accredited certificate using the accredited certificate authentication system based on the blockchain of the present invention is as follows.
  • the user terminal 100 accesses the blockchain-based official certificate authentication request server 500 and requests a blockchain-based official authentication (S300).
  • the blockchain-based authorized certificate authentication request server 500 identifies the designated user of the corresponding user who operates the user terminal 100 in the user identification information DB 511 for each member according to the blockchain-based authorized authentication request of the user terminal 100. Extract the information, and transmits it to the blockchain-based public certificate management server 300 (S310).
  • the blockchain-based public certificate management server 300 matches the designated user identification information transmitted with the user-specific transaction search keyword information DB 311 to match the transaction ID information for public key recording and the transaction ID information for user verification. Transmission to the holding server 400 requests the download of the public key recording transaction information and user verification transaction information (S320).
  • the blockchain holding server 400 matches the transmitted public ID recording transaction ID information and the user verification transaction ID information with the electronic wallet, thereby matching the public key recording transaction information and the user verification transaction information with blockchain-based authentication.
  • the certificate management server 300 transmits (S330).
  • the blockchain-based authorized certificate management server 300 operates a transaction processing engine 320 to extract bitcoin addresses for stockpiling versus discarding from discarding stock cost transfer information included in the transmitted user verification transaction information, and Generates a blockchain-based accredited certificate confirmation request signal that inquires whether the blockchain-based accredited certificate destruction cost has been transferred to the bitcoin amount charged to the reserved bitcoin address compared to the extracted discarded block. It transmits to the chain holding server 400 (S340).
  • the blockchain holding server 400 matches a blockchain with a bitcoin address for discarding stock stored in the blockchain-based accredited certificate request confirmation signal transmitted to the blockchain corresponding to the corresponding bitcoin stockpile for discarding.
  • the blockchain-based official certificate destruction information guide signal that guides the transfer of the chain-based official certificate destruction reserve cost is transmitted to the blockchain-based official certificate management server 300 (S350).
  • the transaction processing engine 320 of the blockchain-based official certificate management server 300 refers to a blockchain-based official certificate destruction guide signal sent to blockchain-based official certificate discarding cost charged for storing the bitcoin address for disposal. Check whether the transfer is carried out (S360). First, if the blockchain-based accredited certificate discard cost stored in the Bitcoin address for the reserve compared to the destruction, the message that the blockchain-based accredited authentication process is denied to the user terminal 100 is rejected. Public information recording and transaction information for the public key transmitted by operating the transaction processing engine 320 when the control to be notified (S361), and the blockchain-based authorized certificate discard cost stored in the bitcoin address for the reserve compared to the destruction is not transferred. The public key for the public certificate and the user verification hash information are extracted from the transaction information for verification (S370).
  • the blockchain-based public certificate management server 300 includes a certificate validity including the extracted public key for public certificate and user verification hash information and transaction ID information for public key recording stored in the user-specific transaction search keyword information DB 311.
  • the confirmation signal is transmitted to the blockchain-based official certificate authentication request server 500 (S380).
  • the identification information of the user is extracted from the user identification information DB 511 for each member, and the hash processing engine 520 is operated to hash the extracted user identification information. Calculate and process the processed user identification hash information, and disclose the processed user identification hash information and the information included in the certificate validation signal transmitted from the blockchain-based authorized certificate authentication request server 500. Hashing the transaction ID information for key recording to process the user verification hash information for preparation (S390).
  • the hash processing engine 520 of the blockchain-based certificate authentication request server 500 hashes the user verification hash information among the information included in the certificate validation signal transmitted from the blockchain-based certificate management server 300. Compute the hash value of the user verification hash information for the value and contrast, respectively, and check whether the hash values of both sides are the same (S400). First, if the hash values of both sides are not the same, the authentication of the block chain based on the user terminal 100 A message indicating that the execution process is denied is controlled (S401).
  • the blockchain-based public certificate authentication request server 500 calculates the hash value of the user verification hash information and the hash value of the contrasting user verification hash information, respectively, and the certificate validity when both of the calculated hash values are the same.
  • the public key for the public certificate among the information included in the confirmation signal is transmitted to the user terminal 100 (S410).
  • the user terminal 100 transmits the generated certificate destruction signal to the blockchain-based authorized certificate management server 300 (S450). )do.
  • the blockchain-based authorized certificate management server 300 extracts transaction ID information for user verification by matching the certificate destruction signal transmitted by operating the transaction processing engine 320 with the transaction search keyword information DB 311 for each user.
  • the blockchain holding server 400 is transmitted (S460).
  • the blockchain holding server 400 transmits the user verification transaction information extracted by matching the transmitted user verification transaction ID information with the blockchain of the electronic wallet to the blockchain-based authorized certificate management server 300 (S470).
  • the transaction processing engine 320 of the blockchain-based certificate management server 300 receives the transaction information for user verification, and the transaction information for destroying the certificate is recorded in the blockchain holding server 400 for user verification.
  • Blockchain-based accredited certificate charged to the Bitcoin address for stockpiling for destruction by referring to the output data (OD2) of transaction information.
  • Input containing multi-bitcoin authorization information including the right to use the blockchain-based authorized certificate destruction cost charged in the coin address, and the public key for bitcoin payment required to determine the validity of the multi-bitcoin usage authorization information
  • Blockchain-based accredited person charged with data (ID3) and Bitcoin address for stocks to destroy Proof of destroying the certificate generates transaction information for destroying the certificate, which is divided into the output data (OD3) including the bitcoin address of the payee to which the remittance and remittance cost of the payee are identified, and the user terminal 100 Request the digital signature by transmitting to (S480).
  • the user terminal 100 operates the transaction signature engine 130 and transmits the electronic signature to the transaction information for destroying the certificate, which is transmitted to the blockchain-based certificate management server 300 (S490).
  • the blockchain-based authorized certificate management server 300 transmits 500 transaction information for destroying the electronic certificate signed by the user to be transmitted to the blockchain holding server 400.
  • the blockchain holding server 400 records the transaction information for destroying the electronic certificate signed by the transmitted user in the blockchain (S510) and destroys the user's blockchain-based authorized certificate.
  • a certificate destruction signal is generated requesting the destruction of the blockchain-based certificate is generated in the process of checking whether the user terminal 100 and the blockchain-based public certificate management server 300 is generated in (S440)
  • the certificate destruction signal requesting the destruction of the base certificate is generated in the blockchain-based certificate management server 300
  • the blockchain-based certificate management server 300 operates a transaction processing engine 320 to perform transaction information for user verification.
  • the blockchain holding server 400 records the transaction information for destroying the electronic certificate signed by the remitter transmitted (S442) in the blockchain to destroy the user's blockchain-based authorized certificate.
  • Figures 15 to 17 is a view showing a method of authenticating a certificate based on a blockchain according to another embodiment, which is different from the operation relationship with the certificate certification system based on the aforementioned blockchain. Since the same is true, the drawings related to the authentication system are omitted.
  • the difference between the certificate system and the method based on the blockchain according to another embodiment is different from the certificate system and the method based on the above-mentioned blockchain. Whether to perform the calculation and determination of each hash value of the user verification hash information for the information and the contrast in the blockchain-based public certificate authentication request server 500 or in the blockchain-based public certificate management server 300 to be dumped.
  • a user terminal 100 requesting a blockchain-based certificate authentication and a user for each member according to a blockchain-based certificate request of the user terminal 100
  • Identification information of the corresponding user is extracted from the identification information DB 511, and the extracted identification information of the user is hashed to be processed into contrast user identification hash information, and the processed contrast user identification hash information.
  • the blockchain-based authorized certificate management server 300 and the bitcoin payment transaction information are transmitted by transmitting the ID information and the transaction ID information for user verification by requesting the download of the transaction information for the public key recording and the transaction information for the user verification.
  • the Bitcoin payment is authenticated by verifying the transmitted bitcoin payment transaction information, and an electronic wallet having a blockchain in which the transaction information for bitcoin payment is recorded is mounted, and the electronic wallet is used for a certificate.
  • Public key recording transaction information including the public key and user verification transaction information including the user verification hash information are also recorded.
  • the transaction ID information for the public key recording transmitted from the blockchain-based certificate management server 300 is also recorded.
  • Block chain holding server 400 for transmitting the option information and transaction verification information for the user verification to the block chain-based authorized certificate management server 300; but the block chain-based authorized certificate management server 300 is a block chain holding server ( Extract the public key for public certificate and user verification hash from the public key recording transaction information and user verification transaction information transmitted from 400), and transmit the prepared user identification hash information and transaction search keyword information by user DB. Hashing the transaction ID information for public key recording stored in 311 to process the processed user verification hash information, and to compare the hash value of the extracted user verification hash information with the processed user verification hash information.
  • the extracted public key for the public certificate and the designated user identification information of the user are based on blockchain.
  • the authentication certificate authentication request server 500 is transmitted, and the blockchain-based certificate authentication request server 500 transmits the public key for the authentication certificate transmitted by referring to the designated user identification information among the transmitted information to the user terminal 100.
  • the user terminal 100 is made of a configuration for performing the public certification based on the public key for the public certificate transmitted.
  • the authentication method authentication method based on the blockchain is connected to the blockchain-based authorized certificate authentication request server 500 in the user terminal 100 to request a blockchain-based authorized authentication
  • the blockchain-based public certificate authentication request server 500 in accordance with the blockchain-based public authentication request extracts the identification information of the user from the user identification information DB 511 for each member, the hash processing engine Operation 520 to process the extracted user identification information by hashing and processing the prepared user identification hash information, and block the processed user identification hash information for the processed comparison and the designated user identification information of the corresponding user.
  • the hash value of the extracted user verification hash information and the hash value of the processed user verification hash information are respectively calculated, and the hash values of the calculated both are the same. If the step (S690) and the hash value of the extracted user verification hash information and the hash value of the processed user verification hash information is the same, in the blockchain-based public certificate management server 300, the extracted public certificate Transmitting the public key and the designated user identification information of the user to the blockchain-based authorized certificate authentication request server 500 (S700), and the blockchain-based authorized certificate authentication request server 500, the designated user from the information sent Transmitting the public key for the public certificate transmitted by referring to the identification information to the user terminal 100 (S710), and in the user terminal 100, performing the public authentication based on the public key for public certificate transmitted Step S720 is made.
  • 141b User's date of birth input box 141c: User's phone number input box

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Technology Law (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

L'invention concerne un système d'authentification de certificat et un procédé d'authentification l'utilisant. Par le biais d'un moyen stocké et géré dans une chaîne de blocs de portefeuilles électroniques intégrés sur des serveurs de rétention de chaîne de blocs par le biais d'une base de données distribuée sur la base d'un réseau de communication de couche inter-équivalent, un réseau de pairs (P2P), plutôt qu'un serveur actionné par une autorité de certificat (CA) dans le cas d'une clé publique pour un certificat nécessitant une maintenance, un coût de construction d'un système d'authentification de certificat, dans lequel un niveau élevé de système de sécurité est entrelacé afin de bloquer au maximum l'apparition de piratage et le coût de fonctionnement et de maintenance pour le système d'authentification de certificat construit ne sont pas produits, tandis qu'il est également possible de surveiller si un utilisateur, qui demande l'authentification, triche ou non et de maintenir un degré de sécurité de l'ordinateur personnel à un niveau souhaité par un utilisateur par le biais d'un moyen de guidage de l'exécution d'un processus d'authentification, même si ActiveX n'est pas installé. Ainsi, la présente invention concerne un système d'authentification de certificat sur la base d'une chaîne de blocs, qui est non seulement robuste dans un environnement de risques, tel qu'un piratage, mais qui présente également un processus de réalisation d'authentification de certificat simple et qui est compatible avec divers navigateurs Web, ainsi qu'un procédé d'authentification l'utilisant.
PCT/KR2016/002227 2015-12-16 2016-03-07 Système d'authentification de certificat sur la base d'une chaîne de blocs et procédé d'authentification l'utilisant WO2017104899A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR10-2015-0180266 2015-12-16
KR1020150180266A KR101661933B1 (ko) 2015-12-16 2015-12-16 블록체인을 기반으로 하는 공인인증서 인증시스템 및 이를 이용한 인증방법

Publications (1)

Publication Number Publication Date
WO2017104899A1 true WO2017104899A1 (fr) 2017-06-22

Family

ID=57153709

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2016/002227 WO2017104899A1 (fr) 2015-12-16 2016-03-07 Système d'authentification de certificat sur la base d'une chaîne de blocs et procédé d'authentification l'utilisant

Country Status (2)

Country Link
KR (1) KR101661933B1 (fr)
WO (1) WO2017104899A1 (fr)

Cited By (32)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107508812A (zh) * 2017-08-29 2017-12-22 广东工业大学 一种工控网络数据存储方法、调用方法及系统
US10091180B1 (en) 2012-03-20 2018-10-02 United Services Automobile Association (Usaa) Behavioral profiling method and system to authenticate a user
CN108628942A (zh) * 2018-03-27 2018-10-09 深圳市网心科技有限公司 区块链节点设备、分布式数据库的数据读取及写入方法
CN108805570A (zh) * 2018-06-01 2018-11-13 腾讯科技(深圳)有限公司 数据处理方法、装置及存储介质
CN108921694A (zh) * 2018-06-21 2018-11-30 北京京东尚科信息技术有限公司 区块链管理方法和区块链节点以及计算机可读存储介质
CN108959457A (zh) * 2018-06-15 2018-12-07 北京文创园投资管理有限公司 一种证书的查询、验证方法和系统
US10164973B1 (en) 2015-12-02 2018-12-25 United Services Automobile Association (Usaa) Public authentication systems and methods
CN109274717A (zh) * 2018-08-22 2019-01-25 泰康保险集团股份有限公司 基于区块链的共享存储方法、装置、介质及电子设备
KR101968424B1 (ko) * 2017-12-08 2019-04-11 인제대학교 산학협력단 블록 체인 컨트롤러를 이용한 인증 시스템 및 방법
WO2019090344A1 (fr) * 2017-11-06 2019-05-09 Velo Holdings Limited Système de chaîne de blocs à portée limitée
CN109858914A (zh) * 2019-01-18 2019-06-07 深圳壹账通智能科技有限公司 区块链数据验证方法、装置、计算机设备及可读存储介质
CN110225068A (zh) * 2018-03-01 2019-09-10 广州鼎义计算机有限公司 区块链身份证照管理系统
CN110311883A (zh) * 2018-03-27 2019-10-08 华为技术有限公司 身份管理方法、设备、通信网络及存储介质
US10454677B1 (en) 2016-02-24 2019-10-22 United Services Automobile Associate (USAA) Cryptographic key generation from biometric data
CN111316303A (zh) * 2019-07-02 2020-06-19 阿里巴巴集团控股有限公司 用于基于区块链的交叉实体认证的系统和方法
CN111373430A (zh) * 2017-10-24 2020-07-03 大羚羊区块链金融科技股份有限公司 基于区块链的去销售平台的电子交易系统及其方法
US10762506B1 (en) 2017-05-11 2020-09-01 United Services Automobile Association Token device for distributed ledger based interchange
WO2020189801A1 (fr) * 2019-03-15 2020-09-24 라인플러스 주식회사 Procédé et système d'authentification de données générées dans une chaîne de blocs à l'aide d'un contrat pouvant être signé
US10805085B1 (en) 2017-08-24 2020-10-13 United Services Automobile Association (Usaa) PKI-based user authentication for web services using blockchain
CN111835520A (zh) * 2019-04-19 2020-10-27 株式会社理光 设备认证的方法、服务接入控制的方法、设备及存储介质
TWI714359B (zh) * 2018-12-26 2020-12-21 大陸商中國銀聯股份有限公司 一種電子憑證上傳的方法及裝置
US10937069B2 (en) * 2016-04-13 2021-03-02 Paypal, Inc. Public ledger authentication system
CN112512048A (zh) * 2020-11-27 2021-03-16 达闼机器人有限公司 移动网络接入系统、方法、存储介质及电子设备
CN112598411A (zh) * 2020-12-25 2021-04-02 杭州复杂美科技有限公司 可撤回的隐私授权转账方法、设备和存储介质
US10979410B1 (en) 2015-05-04 2021-04-13 United Services Automobile Association (Usaa) Systems and methods for utilizing cryptology with virtual ledgers in support of transactions and agreements
GB2592979A (en) * 2020-03-13 2021-09-15 Nchain Holdings Ltd Revoking access to a network
CN114268632A (zh) * 2021-11-08 2022-04-01 北京中合谷投资有限公司 一种服务广电网络的混合cdn业务构架和方法
US11403628B2 (en) 2017-10-20 2022-08-02 Hewlett Packard Enterprise Development Lp Authenticating and paying for services using blockchain
US11463241B2 (en) 2017-10-20 2022-10-04 Hewlett Packard Enterprise Development Lp Transmitting or receiving blockchain information
US11582040B2 (en) 2017-10-20 2023-02-14 Hewlett Packard Enterprise Development Lp Permissions from entities to access information
US11604890B2 (en) 2017-10-20 2023-03-14 Hewlett Packard Enterprise Development Lp Accessing information based on privileges
US11854011B1 (en) 2016-07-11 2023-12-26 United Services Automobile Association (Usaa) Identity management framework

Families Citing this family (32)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101877333B1 (ko) * 2017-01-02 2018-08-09 주식회사 코인플러그 블록체인 기반의 모바일 아이디를 이용하여 사용자를 비대면 인증하는 방법, 단말 및 이를 이용한 서버
KR101816652B1 (ko) 2017-02-14 2018-01-09 주식회사 코인플러그 Utxo 기반 프로토콜에서 머클 트리 구조를 사용하여 서비스 제공 서버에 의하여 제공되는 서비스를 이용하기 위한 사용자의 로그인 요청에 대하여 pki 기반의 인증을 통해 로그인을 대행하는 방법 및 이를 이용한 서버
KR101816651B1 (ko) * 2017-02-14 2018-01-09 주식회사 코인플러그 Utxo 기반 프로토콜의 블록체인 데이터베이스를 사용하여 서비스 제공 서버에 의하여 제공되는 서비스를 이용하기 위한 사용자의 로그인 요청에 대하여 pki 기반의 인증을 통해 로그인을 대행하는 방법 및 이를 이용한 서버
KR101816653B1 (ko) * 2017-02-14 2018-02-21 주식회사 코인플러그 스마트 컨트랙트 및 블록체인 데이터베이스를 사용하여 서비스 제공 서버에 의하여 제공되는 서비스를 이용하기 위한 사용자의 로그인 요청에 대하여 pki 기반의 인증을 통해 로그인을 대행하는 방법 및 이를 이용한 서버
KR101952498B1 (ko) * 2017-04-05 2019-02-27 주식회사 케이뱅크은행 블록 체인을 이용한 대출 서비스 제공 방법 및 이를 실행하는 시스템
KR101841565B1 (ko) 2017-04-27 2018-03-26 주식회사 코인플러그 Utxo 기반으로 머클트리 구조를 사용하여 전자 바우처를 발행, 사용, 환불, 정산 및 파기하는 방법과 이를 이용한 서버
KR101841564B1 (ko) 2017-04-27 2018-05-04 주식회사 코인플러그 Utxo 기반으로 머클트리 구조를 사용하여 전자 바우처를 발행, 사용, 환불, 정산 및 파기하는 방법과 이를 이용한 서버
KR101841568B1 (ko) 2017-04-27 2018-05-04 주식회사 코인플러그 블록체인 내의 블록별로 발란스 데이터베이스를 관리하여 전자 바우처를 발행, 사용, 환불, 정산 및 파기하는 방법과 이를 이용한 서버
KR101841567B1 (ko) 2017-04-27 2018-05-04 주식회사 코인플러그 블록체인 내의 블록별로 발란스 데이터베이스를 관리하여 전자 바우처를 발행, 사용, 환불, 정산 및 파기하는 방법과 이를 이용한 서버
KR101841562B1 (ko) 2017-04-27 2018-05-04 주식회사 코인플러그 Utxo 기반 프로토콜을 사용하여 전자 바우처를 발행, 사용, 환불, 정산 및 파기하는 방법과 이를 이용한 서버
KR101841561B1 (ko) 2017-04-27 2018-05-04 주식회사 코인플러그 Utxo 기반 프로토콜을 사용하여 전자 바우처를 발행, 사용, 환불, 정산 및 파기하는 방법과 이를 이용한 서버
KR101919586B1 (ko) 2017-05-10 2018-11-16 주식회사 코인플러그 블록체인 기반의 사물 인터넷 기기에 대한 비용을 결제하는 방법, 이를 이용한 서버, 서비스 제공 단말, 및 사용자 전자 지갑
KR101919590B1 (ko) 2017-05-10 2019-02-08 주식회사 코인플러그 블록체인 데이터베이스 및 이와 연동하는 머클 트리 구조를 통해 사물 인터넷 기기에 대한 비용을 결제하는 방법, 이를 이용한 서버, 서비스 제공 단말, 및 사용자 전자 지갑
KR102016730B1 (ko) * 2017-05-24 2019-09-03 라온시큐어(주) 프로그래밍이 가능한 블록체인과 통합 아이디 기반의 사용자 인증 방법 및 시스템
CN107425981B (zh) * 2017-06-12 2020-11-03 湖南岳麓山数据科学与技术研究院有限公司 一种基于区块链的数字证书管理方法及系统
KR101837000B1 (ko) * 2017-07-05 2018-03-12 (주)지란지교시큐리티 이메일 수발신 증명 방법, 이를 구현하기 위한 프로그램이 저장된 기록매체 및 이를 구현하기 위해 기록매체에 저장된 프로그램
US10771459B2 (en) 2017-09-04 2020-09-08 Electronics And Telecommunications Research Institute Terminal apparatus, server apparatus, blockchain and method for FIDO universal authentication using the same
US11374754B2 (en) 2017-09-07 2022-06-28 Visa International Service Association System and method for generating trust tokens
KR102018277B1 (ko) * 2017-12-28 2019-09-05 주식회사 더봄에스 블록체인 기반의 개인인증서를 이용한 에스앤에스 핀테크 시스템 및 그 동작 방법
KR101936757B1 (ko) 2018-03-23 2019-01-11 주식회사 미탭스플러스 블록체인 기반의 공유경제를 위해 키를 생성하는 분산 원장 장치 및 분산 원장 방법
KR102181600B1 (ko) * 2018-03-30 2020-11-23 주식회사 코인플러그 블록체인 기반의 통합 로그인 방법, 단말 및 이를 이용한 서버
KR102192370B1 (ko) * 2018-03-30 2020-12-28 주식회사 코인플러그 블록체인 기반의 권한 인증 방법, 단말 및 이를 이용한 서버
KR102181601B1 (ko) * 2018-03-30 2020-11-23 주식회사 코인플러그 블록체인 기반의 통합 로그인 방법, 단말 및 이를 이용한 서버
KR102192382B1 (ko) * 2018-03-30 2020-12-17 주식회사 코인플러그 블록체인 기반의 권한 인증 방법, 단말 및 이를 이용한 서버
KR102179543B1 (ko) * 2018-05-08 2020-11-18 라온시큐어(주) 블록체인 기반 디지털 신분증 및 이의 발급과 신원확인 방법 및 시스템
KR102121930B1 (ko) * 2018-07-03 2020-06-11 네이버 주식회사 블록체인 기반의 개인 데이터 처리 방법 및 시스템
CN109067543B (zh) * 2018-07-24 2020-04-14 腾讯科技(深圳)有限公司 数字证书管理方法、装置、计算机设备和存储介质
KR20200034020A (ko) 2018-09-12 2020-03-31 삼성전자주식회사 전자 장치 및 그의 제어 방법
KR101962289B1 (ko) * 2018-12-31 2019-03-26 주식회사 미탭스플러스 블록체인 기반의 공유경제를 위해 비대칭키 방식으로 이용자를 식별하는 분산 원장 장치
KR101962290B1 (ko) * 2018-12-31 2019-03-26 주식회사 미탭스플러스 블록체인 기반의 공유경제를 위해 공유재화의 unlock 및 lock을 제어하는 분산 원장 장치
CA3057388C (fr) * 2019-03-04 2022-08-02 Alibaba Group Holding Limited Procedes et dispositifs de traitement de certificats dans un systeme de chaines de blocs
KR102182750B1 (ko) 2019-09-16 2020-11-25 주식회사 마크애니 블록체인을 이용한 데이터 유통 시스템 및 방법

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20050089802A (ko) * 2002-12-21 2005-09-08 인터내셔널 비지네스 머신즈 코포레이션 조건부 전자 서명의 생성 방법, 조건부 전자 서명의 검증방법, 상태 정보 배포 방법 및 이를 수행하는 데이터 처리장치 및 컴퓨터 프로그램
KR100870202B1 (ko) * 2007-11-22 2008-12-09 주식회사 오엘콥스 암호화된 이미지를 이용한 공인인증서 발급 방법 및 장치
KR20090000265A (ko) * 2007-02-09 2009-01-07 성균관대학교산학협력단 P3p를 위한 보안 시스템 및 그 보안 방법
US20140201057A1 (en) * 2013-01-11 2014-07-17 Brian Mark Shuster Medium of exchange based on right to use or access information
KR20140137098A (ko) * 2013-05-22 2014-12-02 주식회사 제로원시스템 데이터로 관리되는 무형화폐인 비트머니의 생성 방법과 제공서비스 시스템

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20010008063A (ko) 2000-11-06 2001-02-05 황보열 컴팩트 디스크를 이용한 공개키 기반구조의 인증서, 인증서의 발급과 이용 방법 및 시스템
WO2008008245A2 (fr) * 2006-07-07 2008-01-17 Sandisk Corporation Systèmes et procédés destinés à vérifier des informations fournies par un dispositif de mémoire
KR101338323B1 (ko) * 2011-08-17 2014-01-02 경북대학교 산학협력단 사용자 인증 시스템 및 사용자 인증 방법
KR101525887B1 (ko) * 2014-12-16 2015-06-03 주식회사 비즈니스서비스그룹 내부 네트워크 환경에서 고유한 라이선스 정보를 이용하여 소프트웨어의 무단 설치 및 실행을 제한하는 라이선스 관리 방법 및 이를 수행하는 라이선스 관리 시스템

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20050089802A (ko) * 2002-12-21 2005-09-08 인터내셔널 비지네스 머신즈 코포레이션 조건부 전자 서명의 생성 방법, 조건부 전자 서명의 검증방법, 상태 정보 배포 방법 및 이를 수행하는 데이터 처리장치 및 컴퓨터 프로그램
KR20090000265A (ko) * 2007-02-09 2009-01-07 성균관대학교산학협력단 P3p를 위한 보안 시스템 및 그 보안 방법
KR100870202B1 (ko) * 2007-11-22 2008-12-09 주식회사 오엘콥스 암호화된 이미지를 이용한 공인인증서 발급 방법 및 장치
US20140201057A1 (en) * 2013-01-11 2014-07-17 Brian Mark Shuster Medium of exchange based on right to use or access information
KR20140137098A (ko) * 2013-05-22 2014-12-02 주식회사 제로원시스템 데이터로 관리되는 무형화폐인 비트머니의 생성 방법과 제공서비스 시스템

Cited By (57)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10091180B1 (en) 2012-03-20 2018-10-02 United Services Automobile Association (Usaa) Behavioral profiling method and system to authenticate a user
US10979410B1 (en) 2015-05-04 2021-04-13 United Services Automobile Association (Usaa) Systems and methods for utilizing cryptology with virtual ledgers in support of transactions and agreements
US11615386B1 (en) 2015-12-02 2023-03-28 United Services Automobile Association (Usaa) Block chain authentication systems and methods
US10601819B1 (en) 2015-12-02 2020-03-24 United Services Automobile Association (Usaa) Public authentication systems and methods
US11032286B1 (en) 2015-12-02 2021-06-08 United Services Automobile Association (Usaa) Block chain authentication systems and methods
US11765158B1 (en) 2015-12-02 2023-09-19 United Services Automobile Association (Usaa) Multi-factor authentication systems and methods
US10164973B1 (en) 2015-12-02 2018-12-25 United Services Automobile Association (Usaa) Public authentication systems and methods
US11722482B1 (en) 2015-12-02 2023-08-08 United Services Automobile Association (Usaa) Public authentication systems and methods
US11201862B1 (en) 2015-12-02 2021-12-14 United Services Automobile Association (Usaa) Public authentication systems and methods
US10263981B1 (en) 2015-12-02 2019-04-16 United Services Automobile Association (Usaa) Public authentication systems and methods
US10454677B1 (en) 2016-02-24 2019-10-22 United Services Automobile Associate (USAA) Cryptographic key generation from biometric data
US10880080B1 (en) 2016-02-24 2020-12-29 Unites Services Automobile Association (USAA) Cryptographic key generation from biometric data
US11861610B2 (en) 2016-04-13 2024-01-02 Paypal, Inc. Public ledger authentication system
US10937069B2 (en) * 2016-04-13 2021-03-02 Paypal, Inc. Public ledger authentication system
US11854011B1 (en) 2016-07-11 2023-12-26 United Services Automobile Association (Usaa) Identity management framework
US11373187B1 (en) 2017-05-11 2022-06-28 United Services Automobile Association (Usaa) Token device for distributed ledger based interchange
US11769154B1 (en) 2017-05-11 2023-09-26 United Services Automobile Association (Usaa) Token device for distributed ledger based interchange
US10762506B1 (en) 2017-05-11 2020-09-01 United Services Automobile Association Token device for distributed ledger based interchange
US10805085B1 (en) 2017-08-24 2020-10-13 United Services Automobile Association (Usaa) PKI-based user authentication for web services using blockchain
US11711219B1 (en) 2017-08-24 2023-07-25 United Services Automobile Association (Usaa) PKI-based user authentication for web services using blockchain
CN107508812A (zh) * 2017-08-29 2017-12-22 广东工业大学 一种工控网络数据存储方法、调用方法及系统
US11582040B2 (en) 2017-10-20 2023-02-14 Hewlett Packard Enterprise Development Lp Permissions from entities to access information
US12032716B2 (en) 2017-10-20 2024-07-09 Hewlett Packard Enterprise Development Lp Accessing information based on privileges
US11604890B2 (en) 2017-10-20 2023-03-14 Hewlett Packard Enterprise Development Lp Accessing information based on privileges
US11463241B2 (en) 2017-10-20 2022-10-04 Hewlett Packard Enterprise Development Lp Transmitting or receiving blockchain information
US11403628B2 (en) 2017-10-20 2022-08-02 Hewlett Packard Enterprise Development Lp Authenticating and paying for services using blockchain
CN111373430A (zh) * 2017-10-24 2020-07-03 大羚羊区块链金融科技股份有限公司 基于区块链的去销售平台的电子交易系统及其方法
WO2019090344A1 (fr) * 2017-11-06 2019-05-09 Velo Holdings Limited Système de chaîne de blocs à portée limitée
KR101968424B1 (ko) * 2017-12-08 2019-04-11 인제대학교 산학협력단 블록 체인 컨트롤러를 이용한 인증 시스템 및 방법
CN110225068A (zh) * 2018-03-01 2019-09-10 广州鼎义计算机有限公司 区块链身份证照管理系统
CN108628942B (zh) * 2018-03-27 2020-07-31 深圳市网心科技有限公司 区块链节点设备、分布式数据库的数据读取及写入方法
CN110311883B (zh) * 2018-03-27 2020-11-10 华为技术有限公司 身份管理方法、设备、通信网络及存储介质
CN108628942A (zh) * 2018-03-27 2018-10-09 深圳市网心科技有限公司 区块链节点设备、分布式数据库的数据读取及写入方法
US11784788B2 (en) 2018-03-27 2023-10-10 Huawei Technologies Co., Ltd. Identity management method, device, communications network, and storage medium
CN110311883A (zh) * 2018-03-27 2019-10-08 华为技术有限公司 身份管理方法、设备、通信网络及存储介质
CN108805570B (zh) * 2018-06-01 2021-05-25 腾讯科技(深圳)有限公司 数据处理方法、装置及存储介质
CN108805570A (zh) * 2018-06-01 2018-11-13 腾讯科技(深圳)有限公司 数据处理方法、装置及存储介质
CN108959457A (zh) * 2018-06-15 2018-12-07 北京文创园投资管理有限公司 一种证书的查询、验证方法和系统
CN108959457B (zh) * 2018-06-15 2020-11-13 北京文创园投资管理有限公司 一种证书的查询、验证方法和系统
CN108921694A (zh) * 2018-06-21 2018-11-30 北京京东尚科信息技术有限公司 区块链管理方法和区块链节点以及计算机可读存储介质
CN109274717A (zh) * 2018-08-22 2019-01-25 泰康保险集团股份有限公司 基于区块链的共享存储方法、装置、介质及电子设备
CN109274717B (zh) * 2018-08-22 2021-08-24 泰康保险集团股份有限公司 基于区块链的共享存储方法、装置、介质及电子设备
TWI714359B (zh) * 2018-12-26 2020-12-21 大陸商中國銀聯股份有限公司 一種電子憑證上傳的方法及裝置
CN109858914A (zh) * 2019-01-18 2019-06-07 深圳壹账通智能科技有限公司 区块链数据验证方法、装置、计算机设备及可读存储介质
KR102572834B1 (ko) 2019-03-15 2023-08-30 라인플러스 주식회사 서명 가능 컨트랙트를 이용하여 블록체인에서 생성된 데이터를 인증하는 방법 및 시스템
WO2020189801A1 (fr) * 2019-03-15 2020-09-24 라인플러스 주식회사 Procédé et système d'authentification de données générées dans une chaîne de blocs à l'aide d'un contrat pouvant être signé
KR20210096287A (ko) * 2019-03-15 2021-08-04 라인플러스 주식회사 서명 가능 컨트랙트를 이용하여 블록체인에서 생성된 데이터를 인증하는 방법 및 시스템
CN111835520B (zh) * 2019-04-19 2023-04-07 株式会社理光 设备认证的方法、服务接入控制的方法、设备及存储介质
CN111835520A (zh) * 2019-04-19 2020-10-27 株式会社理光 设备认证的方法、服务接入控制的方法、设备及存储介质
CN111316303B (zh) * 2019-07-02 2023-11-10 创新先进技术有限公司 用于基于区块链的交叉实体认证的系统和方法
CN111316303A (zh) * 2019-07-02 2020-06-19 阿里巴巴集团控股有限公司 用于基于区块链的交叉实体认证的系统和方法
GB2592979A (en) * 2020-03-13 2021-09-15 Nchain Holdings Ltd Revoking access to a network
CN112512048B (zh) * 2020-11-27 2022-07-12 达闼机器人股份有限公司 移动网络接入系统、方法、存储介质及电子设备
CN112512048A (zh) * 2020-11-27 2021-03-16 达闼机器人有限公司 移动网络接入系统、方法、存储介质及电子设备
CN112598411A (zh) * 2020-12-25 2021-04-02 杭州复杂美科技有限公司 可撤回的隐私授权转账方法、设备和存储介质
CN112598411B (zh) * 2020-12-25 2023-05-30 杭州复杂美科技有限公司 可撤回的隐私授权转账方法、设备和存储介质
CN114268632A (zh) * 2021-11-08 2022-04-01 北京中合谷投资有限公司 一种服务广电网络的混合cdn业务构架和方法

Also Published As

Publication number Publication date
KR101661933B1 (ko) 2016-10-05

Similar Documents

Publication Publication Date Title
WO2017104899A1 (fr) Système d'authentification de certificat sur la base d'une chaîne de blocs et procédé d'authentification l'utilisant
WO2017022917A1 (fr) Système d'émission de certificat basé sur une chaîne de blocs
WO2017065389A1 (fr) Système de délivrance de certificats accrédités basé sur une chaîne de blocs et procédé de délivrance de certificats accrédités basé sur une chaîne de blocs l'utilisant, et système d'authentification de certificats accrédités basé sur une chaîne de blocs et procédé d'authentification de certificats accrédités basé sur une chaîne de blocs l'utilisant
WO2017171165A1 (fr) Système d'émission de certificat public en fonction d'une chaîne de blocs et procédé d'émission de certificat public en fonction d'une chaîne de blocs utilisant ledit système
WO2018008800A1 (fr) Système d'authentification de certificat accrédité basé sur une chaîne de blocs, et procédé d'authentification de certificat accrédité basé sur une chaîne de blocs, utilisant ce système
WO2021010766A1 (fr) Dispositif et procédé d'authentification électronique faisant appel à une chaîne de blocs
KR101799343B1 (ko) 인증 정보의 사용 방법, 파기 방법 및 이를 지원하는 블록체인기반 인증 정보 관리 서버
KR101780636B1 (ko) 인증 정보의 발급 방법 및 이를 지원하는 블록체인기반 인증 정보 관리 서버
WO2023033298A1 (fr) Procédé de fourniture de service réalisé par un serveur de plateforme de source sonore au moyen d'un nft basé sur une chaîne de blocs
WO2017119564A1 (fr) Système et procédé de transmission d'informations sécurisées pour une authentification d'identité personnelle
WO2018194379A1 (fr) Procédé d'approbation de l'utilisation d'une carte à l'aide d'un identificateur de jeton sur la base d'une chaîne de blocs et structure en arbre de merkle associée à celui-ci, et serveur l'utilisant
WO2020235782A1 (fr) Procédé d'authentification d'identification personnelle dans un environnement distribué
WO2018208105A1 (fr) Procédé reposant sur une chaîne de blocs pour effectuer un paiement pour un dispositif de l'internet des objets, et serveur, terminal de fourniture de service, et portefeuille électronique d'utilisateur l'utilisant
WO2017146333A1 (fr) Système et procédé de vérification de falsification/altération pour certificats d'établissement financier basés sur une chaîne de blocs
WO2018012747A1 (fr) Système mandataire d'authentification à deux canaux permettant de détecter l'altération frauduleuse d'une application et procédé associé
WO2020189926A1 (fr) Procédé et serveur permettant de gérer une identité d'utilisateur en utilisant un réseau à chaîne de blocs, et procédé et terminal d'authentification d'utilisateur utilisant l'identité d'utilisateur basée sur un réseau à chaîne de blocs
WO2020062642A1 (fr) Procédé, dispositif et équipement à base de chaîne de blocs pour signer des documents électroniques, et support d'informations
WO2020189927A1 (fr) Procédé et serveur de gestion de l'identité d'un utilisateur à l'aide d'un réseau de chaîne de blocs, et procédé et terminal d'authentification d'utilisateur à l'aide d'une identité d'utilisateur sur la base d'un réseau de chaîne de blocs
WO2015093734A1 (fr) Système et procédé d'authentification utilisant un code qr
KR20150087205A (ko) 보안 통신 아키텍쳐
WO2020141782A1 (fr) Procédé et serveur de gestion d'identité d'utilisateur à l'aide d'un réseau à chaîne de blocs, et procédé et terminal d'authentification d'utilisateur à l'aide d'une identité d'utilisateur basée sur un réseau à chaîne de blocs
WO2020209664A2 (fr) Procédé de distribution de certificat de droit d'utilisation de contenu numérique, et programme informatique stocké dans un support afin de mettre en oeuvre le procédé
WO2020130331A1 (fr) Procédé de partage et de vérification de blocs et de documents électroniques entre des nœuds dans une chaîne de blocs
WO2022045691A1 (fr) Procédé de médiation d'une transmission d'actifs virtuels
WO2020189800A1 (fr) Procédé et système d'authentification de données générées dans une chaîne de blocs

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16875841

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16875841

Country of ref document: EP

Kind code of ref document: A1