WO2017115965A1 - 복수 단말에서 자필서명을 이용한 본인 확인 시스템 및 방법 - Google Patents
복수 단말에서 자필서명을 이용한 본인 확인 시스템 및 방법 Download PDFInfo
- Publication number
- WO2017115965A1 WO2017115965A1 PCT/KR2016/008225 KR2016008225W WO2017115965A1 WO 2017115965 A1 WO2017115965 A1 WO 2017115965A1 KR 2016008225 W KR2016008225 W KR 2016008225W WO 2017115965 A1 WO2017115965 A1 WO 2017115965A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- terminal
- electronic signature
- identity verification
- authentication server
- digital signature
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/40—Network security protocols
Definitions
- the present invention relates to an identity verification system and method using an electronic signature signed by a user in a plurality of terminals.
- the electronic signature may be referred to herein as a 'handwritten signature' as described below.
- Fingerprint recognition is an authentication method that extracts and fingerprints different fingerprint information for each individual, and face recognition recognizes facial features by analyzing facial symmetrical composition, appearance, hair, eye color, and facial muscle movement.
- Iris recognition is a technology that recognizes a person by using eye iris information that has unique characteristics
- vein recognition is a recognition technique that identifies a person using blood vessel patterns such as palms, back of hands, and wrists. .
- Biometrics is a technology that identifies the unique characteristics of a part of the body such as fingerprint, face, iris, and fingerprint, and is widely used. This is the subject of technology.
- Biometric technologies are used in a wide range of fields, from automotive, communications, security and healthcare to corporate marketing and public sectors, but their use in the financial industry is relatively low.
- Korean Patent Publication No. 10-2005-0041132 discloses an identification system and method using biometric information.
- the present invention registers only the electronic signature in the main terminal and registers the electronic signature and password together in the spare terminal, even if the main terminal cannot be used due to loss, failure, etc. It is to provide an identity verification system and method using an electronic signature in the terminal.
- the present invention is advantageous for financial transactions and security by performing various signature registration according to the use by performing the identity verification using the electronic signature, and the electronic signature in the multiple terminals that can replace the biometric information recognition that cannot be reset when information is leaked. It is to provide the identity verification system and method used.
- a method for identity verification using an electronic signature performed in an electronic signature authentication server comprising: (a) the electronic signature authentication server making an identity verification request including an input digital signature and terminal identification information from a user terminal; Receiving; (b) confirming whether the user terminal is a main terminal or a spare terminal through the terminal identification information; And (c) if the user terminal is the main terminal, confirming whether the user is based on a result of comparing the input digital signature included in the identity verification request with a registered electronic signature previously stored in the digital signature authentication server.
- the identity verification request further includes an input password
- step (c) if the user terminal is a preliminary terminal, the input digital signature and the digital signature authentication server included in the identity verification request.
- the step (c) is a signature attribute of one or more of the flow, shape, number of contact and connection position, acceleration / speed, horizontal size, vertical size, ratio, slope, pressure, and coordinate of the input digital signature and the registered digital signature.
- the degree of similarity can be determined by comparing them independently in a parallel processing manner.
- a method for identity verification using an electronic signature performed in the digital signature authentication server (a) receiving the identity verification request including the electronic signature and terminal identification information in the digital signature authentication server ; (b) analyzing the terminal identification information to confirm a type of the terminal for requesting identification; (c) checking the state of the current main terminal when the identity verification request terminal is a spare terminal; And (d) determining that the preliminary terminal is simply used when the main terminal is in a designated position, and performing identity verification only with the electronic signature included in the identity verification request.
- step (d1) if the main terminal is not in the designated position may include determining that the abnormality has occurred in the main terminal and discarding the main terminal status for the main terminal.
- (d2) may further include switching a status of the identity verification request terminal to a main terminal.
- the step (d2) may be performed only when a password is input to the identity verification request terminal and the input password matches a password previously stored in the digital signature authentication server.
- the electronic signature authentication server for receiving and registering the main terminal identification information, preliminary terminal identification information, the registration electronic signature from the user; And a plurality of terminals requesting identity verification while transmitting the electronic signature input from the user to the digital signature authentication server, wherein one of the plurality of terminals is designated as a main terminal and the other is designated as a spare terminal.
- the electronic signature authentication server is provided with an identity verification system using an electronic signature, characterized in that the identity is verified by comparing the electronic signature included in the identity verification request with the registered electronic signature.
- the digital signature authentication server is pre-stored in the registration password, the preliminary terminal receives a password in addition to the digital signature when the identity verification request, and transmits to the digital signature authentication server, the digital signature authentication server in addition to the digital signature
- the identity of the user may be authenticated using the result of comparing the password included in the identity verification request with the registration password.
- the digital signature authentication server may include an authentication unit for determining the similarity by comparing the signature attributes of one or more of the coordinates as a comparison item independently in a parallel processing manner.
- the main terminal registers only the electronic signature and the preliminary terminal registers the electronic signature and the password together so that the identity can be confirmed through the spare terminal even when the main terminal cannot be used due to loss or failure. It has the effect of improving security.
- FIG. 1 is a view showing the configuration of an identity verification system using an electronic signature in a plurality of terminals according to an embodiment of the present invention
- FIG. 2 is a diagram illustrating a process of registering an electronic signature and a terminal
- FIG. 3 is a flow chart of the identity verification method performed in the identity verification system according to an embodiment of the present invention
- Figure 4 is a flow chart of the identity verification method performed in the identity verification system according to another embodiment of the present invention.
- FIG. 5 is a diagram illustrating a configuration of comparison modules included in an authentication unit of an electronic signature authentication server
- FIG. 6 is a diagram showing an example of a comparison item and a determination result
- first and second may be used to describe various components, but the components should not be limited by the terms. The terms are used only for the purpose of distinguishing one component from another.
- FIG. 1 is a diagram illustrating a configuration of an identity verification system using an electronic signature in a plurality of terminals according to an embodiment of the present invention
- FIG. 2 is a diagram illustrating a process of registering an electronic signature and a terminal.
- the identity verification system using the electronic signature enables authentication using only the electronic signature in the main terminal and dual authentication using a password in addition to the electronic signature in the preliminary terminal. Even if it can not be used due to loss, breakdown, etc., it is possible to verify the identity through the terminal, while increasing the security.
- the identity verification system is a system for verifying identity by using an electronic signature as identity verification information that can replace biometric information, and can be used in fields such as access, security, access authentication, and payment.
- the identity verification system includes an electronic signature authentication server 100, a main terminal 200, and a spare terminal 300.
- the spare terminal 300 is illustrated as one in the drawing, this is only an embodiment, and of course, two or more spare terminals may be provided.
- the digital signature authentication server 100 receives and registers an electronic signature for authentication from a user, and then compares the digital signature with a registered electronic signature when the electronic signature is input through the terminal (main terminal 200 or the preliminary terminal 300). Authentication is performed according to the degree of similarity.
- the main terminal 200 is a terminal that allows a user to verify his / her identity to achieve a predetermined purpose (eg, entering or exiting a designated place, logging in to a website, or performing a financial transaction (including payment), etc.) by inputting an electronic signature. to be.
- a terminal to be mainly used may be designated as the main terminal 200.
- the preliminary terminal 300 is a terminal designated by the user to verify his / her identity for achieving the above-mentioned predetermined purpose through an electronic signature in preparation for an emergency such as a loss or failure of the main terminal 200.
- the main terminal 200 may be a mobile communication terminal owned by oneself
- the spare terminal 300 may be a tablet PC owned by a person or a mobile communication terminal owned by an acquaintance.
- the main terminal 200 includes a first service app driver 210, a first user input 220, and a first authentication information transmitter 230.
- the first service app driver 210 drives an application related to the digital signature identity verification service to achieve a predetermined purpose through the electronic signature.
- the first user input unit 220 is a touch screen provided in the main terminal 200 and receives an electronic signature for identity verification from the user.
- the electronic signature may be referred to herein as a handwritten signature in that the electronic signature is inputted by the user for identification using the first user input unit 220 and / or the second user input unit 320 to be described later. It may be.
- the first authentication information transmitting unit 230 transmits the electronic signature input through the first user input unit 220 along with the terminal identification information to the electronic signature authentication server 100 after the first service app driver 210 is executed. Ask for identity verification.
- the preliminary terminal 300 includes a second service app driver 310, a second user input unit 320, and a second authentication information transmitter 330.
- the second service app driver 310 drives an application related to the digital signature identity verification service to achieve a predetermined purpose through the electronic signature.
- the second user input unit 320 is a touch screen provided in the preliminary terminal 300 and receives an electronic signature for identity verification from the user. In addition, the second user input unit 320 may additionally receive a password from the user.
- the second authentication information transmitter 330 receives the digital signature (which may include a password if an additional password is input) input through the second user input unit 320 after the second service app driver 310 is executed. Requests for identity verification while transmitting to the digital signature authentication server 100 together with the terminal identification information.
- the input of the password may be made with the digital signature or after the request from the digital signature authentication server 100 after the identity verification request.
- the digital signature authentication server 100 includes a terminal register 110, an electronic signature register 120, a password register 130, and an authenticator 140.
- step S400 the user who registers the digital signature and the terminal to be used is basically subscribed to the digital signature identity verification service provided by the digital signature authentication server 100 (step S400).
- the terminal registration unit 110 registers information about the terminal to be used by the user in performing identity verification using the electronic signature (step S410).
- the user registers the main terminal 200 to be mainly used and the spare terminal 300 to be used in a special case (abnormal situation) such as when the main terminal 200 is lost or broken.
- one or more terminal identification information of the terminal phone number and the terminal ID may be associated with the user information and registered in the terminal register 110.
- the electronic signature registration unit 120 registers the electronic signature to be used by the user (step S405).
- the electronic signature is a signature of a user who is handwritten through a touch screen provided on the screen of the terminal (main terminal 200 or preliminary terminal 300).
- the electronic signature register 120 includes not only the shape of the digital signature itself but also the flow of lines according to the movement of a touch means (for example, a hand or a stylus, etc.), the shape of the lines, the number of times and / or the contact position, the acceleration, the size and ratio of the signature, Data regarding signature attributes such as slope, touch pressure, line thickness, etc. may also be registered.
- the password registration unit 130 registers a password to be used by the user (step S415).
- Passwords can be created by combining one or more of letters, numbers, and symbols.
- the password may be used as a dual authentication means for identity verification together with the electronic signature when the preliminary terminal 300 is to be used.
- the authenticator 140 may include or exclude a cipher as an additional comparison item according to the type of the terminal identified through the terminal identification information transmitted together with the electronic signature.
- the identity when identity verification is requested through the main terminal 200, the identity may be promptly confirmed through only whether the electronic signature matches.
- the identification process of the identity can be strengthened through double verification by comparing whether or not the password registered separately.
- the electronic signature may be compared with only the electronic signature or the cipher in addition to the electronic signature.
- FIG. 3 is a flow chart of an identity verification method performed in the identity verification system according to an embodiment of the present invention.
- the user drives a service app (application) through the terminal (step S500).
- a service app application
- the user is a subscriber to the digital signature self-identification service, and has registered a terminal to use the same together with the digital signature.
- the service app checks the terminal type specified by the user for the current terminal (step S505).
- the terminal type specified by the user includes a main terminal where the user will mainly use identity verification through an electronic signature, and a spare terminal to be used in an emergency such as loss or failure of the main terminal.
- the electronic signature is input through the first user input unit 220 provided in the terminal (step S510).
- the input digital signature may be transmitted by the first authentication information transmission unit 230 together with the terminal identification information to the digital signature authentication server 100 as the first authentication information together with the identity verification request.
- the digital signature authentication server 100 checks whether or not the input digital signature included in the identity verification request received from the terminal matches the registered electronic signature stored in advance (step S515). As a result, the authentication process is successful by the electronic signature (step S520). However, if it is determined that the input digital signature is not similar to the registered digital signature, it is regarded that the user does not have the electronic signature and the authentication is failed.
- the electronic signature is input through the second user input unit 320 provided in the terminal (step S530). If a password is also registered with the spare terminal, the password may also be input.
- the input digital signature and password may be transmitted by the second authentication information transmission unit 330 together with the terminal identification information to the digital signature authentication server 100 as the second authentication information together with the identity verification request.
- the digital signature authentication server 100 checks whether the input digital signature and the input password included in the second authentication information correspond to the registered digital signature and the registration password, which are stored in advance in the digital signature authentication server 100, respectively. S535). If the digital signatures have similarities or more than a predetermined reference value and the passwords match, the authentication is successfully processed by the user (step S540). However, if it is determined that the digital signatures are not similar or the passwords do not match, it is regarded as not the digital signature and the authentication is failed.
- FIG. 4 is a flow chart of a method of identity verification performed in the identity verification system according to another embodiment of the present invention.
- the electronic signature when the electronic signature is input from the spare terminal, it is determined whether the spare terminal is simply used according to the state of the main terminal or whether the terminal type is changed to the main terminal and the predetermined main terminal is discarded.
- the electronic signature authentication server 100 analyzes the terminal identification information included in the identity verification request to confirm the identity verification request terminal (step S600).
- the identity verification request terminal is a spare terminal
- the state (for example, location) of the current main terminal is checked (step S605).
- the main terminal 200 is provided with a positioning module (for example, a GPS module) capable of identifying the position.
- step S610 If the location of the main terminal is in a designated location (a place where the user registers as a place where the main terminal is mainly used, such as a house, a company, or a place of frequent visit), it is determined that the spare terminal is simply used (step S610). That is, it is more advantageous for the user to use the spare terminal because the user does not lose the main terminal or the main terminal has failed. If it is determined that the spare terminal is simply used, the user may be authenticated only by the electronic signature without additionally checking the password.
- the position of the main terminal is not the designated position, it is considered that an abnormality has occurred in the main terminal such as loss, and the status of the main terminal can be discarded with respect to the main terminal (step S615).
- the main terminal may be further downgraded to a spare terminal, and an additional encryption input may be required, or the status as a terminal associated with the electronic signature may be completely discarded and thus may not function as a spare terminal. This is to prevent misuse by a third party who has acquired the main terminal if it is lost.
- the status of the preliminary terminal that has sent the identity verification request to the main terminal can be switched.
- the password can be input through the spare terminal so that the status can be switched to the main terminal only when a normal password is input.
- FIG. 5 is a diagram illustrating a configuration of comparison modules included in an authentication unit of an electronic signature authentication server
- FIG. 6 is a diagram illustrating an example of a comparison item and a determination result.
- the authentication unit 140 of the digital signature authentication server described above compares the input digital signature and the registered digital signature to determine similarity.
- the similarity determination of the input digital signature and the registered digital signature may be performed individually and independently for various comparison items according to signature attributes.
- the authenticator 140 may perform a flow comparison module 710 and a shape comparison module 720. , Contact comparison module 730, acceleration / speed comparison module 740, horizontal size comparison module 750, vertical size comparison module 760, ratio comparison module 770, slope comparison module 780, pressure comparison module 790, one or more of the coordinate comparison module 800.
- the authentication unit 140 may add the comparison item according to the development of hardware and software in order to minimize the error rate of the signature comparison.
- the flow comparison module 710 sees the direction of the movement of the touch means as the flow of lines included in the signature when the signature is input, and compares the similarity of the flow with respect to the registered digital signature and the input digital signature.
- the shape comparison module 720 segments the input signature into a stroke, views the movement distance of the stroke at the point where the stroke ends, as a line shape, and compares the similarity of shapes with respect to the registered electronic signature and the input digital signature.
- the contact comparison module 730 may compare the similarity with respect to the information about the number and / or location of the touch means contacting the touchscreen of the terminal while the signature is input. For example, the number of times that the touch means contacts (or falls from the screen) and the position of contact (coordinates) during the signature may be included as the contact information.
- the acceleration / speed comparison module 740 reports the instantaneous movement speed of the touch means as speed information (acceleration or speed) for a predetermined time interval when the signature is input, and the similarity of the speed information with respect to the registered digital signature and the input digital signature. Compare
- the horizontal size comparison module 750 compares the similarity of the horizontal size among the entire images of each signature with respect to the registered digital signature and the input digital signature.
- the vertical size comparison module 760 compares the similarity of the vertical sizes among the entire images of each signature with respect to the registered digital signature and the input digital signature.
- the ratio comparison module 770 compares the similarity of the ratio of the width to the height of the entire image of each signature for the registered digital signature and the input digital signature.
- the tilt comparison module 780 views the degree of tilting the signature input unit 110 as the device tilt when inputting a signature, and compares the tilt with respect to the registered digital signature and the input digital signature.
- the pressure comparison module 790 compares the user's touch pressure measured while the signature is input by the signature input unit 110 with the registered digital signature and the input digital signature when the signature is input.
- the touch pressure may be replaced by the thickness of the line for the signature.
- the coordinate comparison module 800 compares an error value of the position information of the coordinates according to the flow of the line when the signature is input.
- Each comparison module makes a pass or non-pass decision based on whether or not the similarity level is preset for the comparison item.
- the similarity level can be set identically for each comparison module or can be set individually differently. For example, although the similarity level for each comparison item is set equal to 30% in FIG. 6A, this is only an example, and the similarity level may be changed together or independently as necessary. . For example, in order to increase the reliability of identity verification, the similarity level of individual comparison items may be set high.
- the comparison modules operate independently of each other, and the comparison result in one module does not affect other comparison modules.
- the authenticator 140 determines the authenticity of the signature based on the similarity determination result for each comparison item (signature attribute) determined by each comparison module. Depending on the determination result, it may be determined whether the user who performed the signature is verified.
- the similarity determination result of the comparison item may be utilized in parallel. For example, in most comparison modules, the result is that they have a high similarity, but in one comparison module, if the result is found to have a low similarity below the reference, it may be considered that the results have similarities. Determines that the signatures are different from each other based on the parallel processing technique.
- the authenticity determination unit 130 when the pass decision is made for all comparison items, the authenticity determination unit 130 considers that the input digital signature is the same as the registered electronic signature and is a signature by a true user. It can be determined. In this case, the user who performed the signature will be confirmed to be correct.
- the authentication unit 140 determines that the input digital signature is identical to the registered electronic signature. It can be considered different and can be determined not to be signed by a true user. In this case, it will be assumed that the user who performed the signature is not you.
- the signature is determined to be true only for all comparison items corresponding to the selected comparison module, and if a non-pass decision is made for any one item, the signature is not authentic and the authentication fails. .
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Collating Specific Patterns (AREA)
- Computing Systems (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (9)
- 전자서명 인증 서버에서 수행되는 전자서명을 이용한 본인 확인 방법으로서,(a) 상기 전자서명 인증 서버가 사용자 단말로부터 입력 전자서명 및 단말 식별정보를 포함하는 본인확인 요청을 수신하는 단계;(b) 상기 단말 식별정보를 통해 상기 사용자 단말이 메인 단말인지 예비 단말인지 확인하는 단계; 및(c) 상기 사용자 단말이 메인 단말인 경우 상기 본인확인 요청에 포함된 입력 전자서명과 상기 전자서명 인증 서버에 기 저장된 등록 전자서명을 비교한 결과에 따라 본인 여부를 확인하는 단계를 포함하되,상기 사용자 단말이 예비 단말인 경우 상기 본인확인 요청에는 입력 암호가 더 포함되며,상기 단계(c)는 상기 사용자 단말은 예비 단말인 경우 상기 본인확인 요청에 포함된 입력 전자서명과 상기 전자서명 인증 서버에 기 저장된 등록 전자서명을 비교한 결과 및 상기 입력 암호와 상기 전자서명 인증 서버에 기 저장된 등록 암호를 비교한 결과에 따라 본인 여부를 확인하는 것을 특징으로 하는 전자서명을 이용한 본인 확인 방법.
- 제1항에 있어서,상기 단계(c)는 상기 입력 전자서명과 상기 등록 전자서명에 대해 선의 흐름, 모양, 접촉횟수 및 접속위치, 가속도/속도, 가로크기, 세로크기, 비율, 기울기, 압력, 좌표 중 하나 이상의 서명 속성을 비교 항목으로 하여 독립적으로 병렬 처리 방식으로 비교하여 유사도를 판정하는 것을 특징으로 하는 전자서명을 이용한 본인 확인 방법.
- 전자서명 인증 서버에서 수행되는 전자서명을 이용한 본인 확인 방법으로서,(a) 상기 전자서명 인증 서버에서 전자서명 및 단말 식별정보를 포함하는 본인확인 요청을 수신하는 단계;(b) 상기 단말 식별정보를 분석하여 본인확인 요청 단말의 종류를 확인하는 단계;(c) 상기 본인확인 요청 단말이 예비 단말인 경우, 현재 메인 단말의 상태를 확인하는 단계; 및(d) 상기 메인 단말이 지정된 위치에 있는 경우에는 상기 예비 단말을 단순 이용하는 것으로 판단하고 상기 본인확인 요청에 포함된 상기 전자서명만으로 본인 확인을 수행하는 단계를 포함하는 전자서명을 이용한 본인 확인 방법.
- 제3항에 있어서,상기 단계(d)에서,(d1) 상기 메인 단말이 지정된 위치에 있지 않은 경우에는 상기 메인 단말에 이상이 발생한 것으로 판단하고 상기 메인 단말에 대해 메인 단말 지위를 폐기하는 단계를 포함하는 것을 특징으로 하는 전자서명을 이용한 본인 확인 방법.
- 제4항에 있어서,(d2) 상기 본인확인 요청 단말을 메인 단말로 지위를 전환시키는 단계를 더 포함하는 것을 특징으로 하는 전자서명을 이용한 본인 확인 방법.
- 제5항에 있어서,상기 단계(d2)는 상기 본인확인 요청 단말에 대해 암호 입력을 요청하고, 입력된 암호가 상기 전자서명 인증 서버에 미리 저장된 암호와 일치하는 경우에 한해 수행되는 것을 특징으로 하는 전자서명을 이용한 본인 확인 방법.
- 사용자로부터 메인 단말 식별정보, 예비 단말 식별정보, 등록 전자서명을 입력받아 등록하는 전자서명 인증 서버; 및상기 사용자로부터 입력된 전자서명을 상기 전자서명 인증 서버로 전송하면서 본인확인을 요청하는 복수의 단말을 포함하되,상기 복수의 단말 중 하나는 메인 단말로 지정되고 나머지는 예비 단말로 지정되며,상기 전자서명 인증 서버는 상기 본인확인 요청에 포함된 전자서명과 상기 등록 전자서명을 비교하여 본인 여부를 인증하는 것을 특징으로 하는 전자서명을 이용한 본인 확인 시스템.
- 제7항에 있어서,상기 전자서명 인증 서버에는 등록 암호가 미리 저장되어 있으며,상기 예비 단말은 본인확인 요청 시에 전자서명 이외에 암호도 입력받아 상기 전자서명 인증 서버로 전송하고,상기 전자서명 인증 서버는 상기 전자서명 이외에 상기 본인확인 요청에 포함된 암호와 상기 등록 암호의 비교 결과도 활용하여 본인 여부를 인증하는 것을 특징으로 하는 전자서명을 이용한 본인 확인 시스템.
- 제7항에 있어서,상기 전자서명 인증 서버는, 상기 본인확인 요청에 포함된 전자서명과 상기 등록 전자서명에 대해 선의 흐름, 모양, 접촉횟수 및 접속위치, 가속도/속도, 가로크기, 세로크기, 비율, 기울기, 압력, 좌표 중 하나 이상의 서명 속성을 비교 항목으로 하여 독립적으로 병렬 처리 방식으로 비교하여 유사도를 판정하는 인증부를 포함하는 것을 특징으로 하는 전자서명을 이용한 본인 확인 시스템.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
BR112018013234-9A BR112018013234A2 (pt) | 2015-12-28 | 2016-07-27 | sistema e método de identificação de usuário com uso de assinatura autográfica em terminais |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150187805A KR101739098B1 (ko) | 2015-12-28 | 2015-12-28 | 복수 단말에서 자필서명을 이용한 본인 확인 시스템 및 방법 |
KR10-2015-0187805 | 2015-12-28 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2017115965A1 true WO2017115965A1 (ko) | 2017-07-06 |
Family
ID=59051214
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/KR2016/008225 WO2017115965A1 (ko) | 2015-12-28 | 2016-07-27 | 복수 단말에서 자필서명을 이용한 본인 확인 시스템 및 방법 |
Country Status (3)
Country | Link |
---|---|
KR (1) | KR101739098B1 (ko) |
BR (1) | BR112018013234A2 (ko) |
WO (1) | WO2017115965A1 (ko) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN117636376A (zh) * | 2024-01-23 | 2024-03-01 | 长沙枫树林电子科技有限公司 | 电磁原笔迹签批方法及终端 |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR102193115B1 (ko) | 2019-04-24 | 2020-12-18 | 넷마블 주식회사 | 드로잉 기반 보안 인증을 수행하기 위한 컴퓨터 프로그램 |
KR102286649B1 (ko) * | 2020-06-09 | 2021-08-05 | 한국전자영수증 주식회사 | 본인확인을 이용한 건강보험 관리 방법 및 시스템 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2010009513A (ja) * | 2008-06-30 | 2010-01-14 | Toshiba Corp | 情報処理装置およびセキュリティ保護方法 |
JP2011138279A (ja) * | 2009-12-28 | 2011-07-14 | Dainippon Printing Co Ltd | シンクライアントシステム、シンクライアント端末およびシンクライアントプログラム |
US20110247055A1 (en) * | 2008-06-02 | 2011-10-06 | Microsoft Corporation | Trusted device-specific authentication |
US20150046989A1 (en) * | 2013-08-08 | 2015-02-12 | Duo Security, Inc. | System and method for verifying status of an authentication device |
US20150131874A1 (en) * | 2013-11-14 | 2015-05-14 | Wacom Co., Ltd. | Dynamic handwriting verification and handwriting-based user authentication |
-
2015
- 2015-12-28 KR KR1020150187805A patent/KR101739098B1/ko active IP Right Grant
-
2016
- 2016-07-27 WO PCT/KR2016/008225 patent/WO2017115965A1/ko active Application Filing
- 2016-07-27 BR BR112018013234-9A patent/BR112018013234A2/pt not_active Application Discontinuation
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110247055A1 (en) * | 2008-06-02 | 2011-10-06 | Microsoft Corporation | Trusted device-specific authentication |
JP2010009513A (ja) * | 2008-06-30 | 2010-01-14 | Toshiba Corp | 情報処理装置およびセキュリティ保護方法 |
JP2011138279A (ja) * | 2009-12-28 | 2011-07-14 | Dainippon Printing Co Ltd | シンクライアントシステム、シンクライアント端末およびシンクライアントプログラム |
US20150046989A1 (en) * | 2013-08-08 | 2015-02-12 | Duo Security, Inc. | System and method for verifying status of an authentication device |
US20150131874A1 (en) * | 2013-11-14 | 2015-05-14 | Wacom Co., Ltd. | Dynamic handwriting verification and handwriting-based user authentication |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN117636376A (zh) * | 2024-01-23 | 2024-03-01 | 长沙枫树林电子科技有限公司 | 电磁原笔迹签批方法及终端 |
CN117636376B (zh) * | 2024-01-23 | 2024-05-28 | 长沙枫树林电子科技有限公司 | 电磁原笔迹签批方法及终端 |
Also Published As
Publication number | Publication date |
---|---|
BR112018013234A2 (pt) | 2018-12-04 |
KR101739098B1 (ko) | 2017-05-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2018124857A1 (ko) | 블록체인 기반의 모바일 아이디를 이용하여 사용자를 비대면 인증하는 방법, 단말 및 이를 이용한 서버 | |
KR100899471B1 (ko) | 컴퓨터 네트워크 보안 방법 및 시스템과 그에 사용된네트워크 구성 요소들에의 액세스를 제어하기 위한 퍼스널식별 장치 | |
US8433921B2 (en) | Object authentication system | |
WO2013100699A1 (en) | Method, apparatus, and computer-readable recording medium for authenticating a user | |
WO2017043717A1 (ko) | 생체인식 본인인증 방법 | |
WO2017057899A1 (ko) | 일회용 난수를 이용하여 인증하는 통합 인증 시스템 | |
WO2019177298A1 (en) | Method and apparatus for managing user authentication in a blockchain network | |
WO2017022990A1 (ko) | 지정맥과 지문을 동시에 스캐닝하여 사용자 인증을 처리하는 다중 안전 잠금 기능을 갖는 금융 거래 중계 시스템 및 그의 처리 방법 | |
WO2018128237A1 (ko) | 사용자의 이용패턴 분석을 활용한 본인 인증 시스템 및 사용자 단말 | |
Tulqin o’g’li | INDENTIFICATION AND AUTENTIFICATION | |
WO2018124856A1 (ko) | 블록체인 데이터베이스를 통해 모바일 아이디를 이용하여 사용자를 인증하는 방법, 단말 및 이를 이용한 서버 | |
WO2017115965A1 (ko) | 복수 단말에서 자필서명을 이용한 본인 확인 시스템 및 방법 | |
WO2017065576A1 (ko) | 가변 키패드를 이용한 본인 인증 방법 및 시스템 | |
WO2017043885A1 (ko) | 모바일 비대면 실명 확인을 통한 금융 서비스 제공 방법 및 시스템 | |
WO2018026109A1 (ko) | 네트워크를 사용하여 게이트에 대한 액세스 허용 여부를 결정하는 방법, 서버 및 컴퓨터 판독 가능한 기록 매체 | |
WO2022045419A1 (ko) | 블록체인 네트워크 기반의 분산 아이디를 이용한 운전 면허증 인증 서비스 방법 및 운전 면허증 인증 서비스를 수행하는 사용자 단말 | |
WO2018040760A1 (zh) | 服务器、终端及其授权码的验证方法 | |
WO2020159328A1 (ko) | 인증 정보 처리 방법 및 장치와 인증 정보 처리 방법 장치를 포함한 사용자 단말 | |
WO2017217808A1 (ko) | 모바일 인증방법 및 그 시스템 | |
WO2011136464A1 (ko) | 비밀번호 키의 이동값을 이용하는 비밀번호 안전 입력 시스템 및 그 비밀번호 안전 입력 방법 | |
WO2014112695A1 (ko) | 이중 인증을 통한 전자기기의 보안 시스템 및 이를 이용한 전자기기의 보안 방법 | |
WO2012026793A2 (ko) | 바이오 정보를 이용한 부인방지 본인확인 검증 시스템 및 방법 | |
WO2021206289A1 (ko) | 유저 인증방법, 장치 및 프로그램 | |
WO2012074275A2 (ko) | 인터넷 보안을 위한 본인인증 장치, 그 방법 및 이를 기록한 기록매체 | |
WO2022114290A1 (ko) | 비대면 본인인증 시스템 및 그 방법 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 16881918 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
REG | Reference to national code |
Ref country code: BR Ref legal event code: B01A Ref document number: 112018013234 Country of ref document: BR |
|
ENP | Entry into the national phase |
Ref document number: 112018013234 Country of ref document: BR Kind code of ref document: A2 Effective date: 20180627 |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 16881918 Country of ref document: EP Kind code of ref document: A1 |