KR100750214B1 - How to log in using a public certificate - Google Patents

Abstract

The present invention relates to a login method using a public certificate, and in particular, a method for substituting an authentication service using a public certificate instead of an ID and password input method when a user logs in to a service server that provides a predetermined service on a communication network. It is about.

 A login method using an authorized certificate according to the present invention comprises an authentication server in an environment including a client, a service provider server, an authentication server, and a communication network connecting the client, service provider server, and authentication server to enable data communication. Is performed by. The login method relates to a method for the authentication server to authenticate the login eligibility of the client to the service provider server,

(1) an authentication request step of receiving at least one of public certificate information and public certificate identifier and an electronic signature value, and (2) uniqueness of the person who issued the public certificate based on the received public certificate information or public certificate identifier Extracting an identification code, (3) decoding and verifying the digital signature value, and (4) transmitting authentication confirmation information (assertion) including the unique identification code and authentication date and time data to the client; An authentication confirmation step for allowing a client to transmit the authentication confirmation information to the service provider server side.

The authentication request step and the authentication confirmation step are performed by a secure access protocol.

Public certificate, login, privacy, encryption

Description

Log-in Method Using Certificate

1 is a schematic diagram of an environment for performing a login authentication method according to the present invention;

2 is a flowchart of a registration process of using a login authentication method according to the present invention with respect to a service provider server that is already a member.

3 is a flowchart of a process of selecting a login authentication method according to the present invention when joining a service provider server as a member.

4 is a flowchart of a login process according to the present invention;

5 is a flowchart of a login process using an emergency key during the login process according to the present invention.

6 is a data flow diagram in the process shown in FIG.

7 is a data flow diagram in the process shown in FIG.

8 is a data flow diagram in the login process using a public certificate.

9 is a login screen of the public certificate according to the present invention.

10 is a login screen using the emergency key during login of the authorized certificate according to the present invention.

The present invention relates to a login method using a public certificate, and in particular, a method for substituting an authentication service using a public certificate instead of an ID and password input method when a user logs in to a service server that provides a predetermined service on a communication network. It is about.

As the Internet spreads widely, a service providing business that provides various contents is widely performed. In order to receive such a service through the Internet, the service provider generally requires the user to enter his or her personal information and register as a member of the company. In addition to the so-called portal site, each company's website also requires membership to provide advanced information and services.

The user must sign up for each website in order to be provided with the service, and enter the same personal information every time. In addition, if the ID you want to use is already occupied by another user, you must use another ID. As the number of sites joining as members increases, the number of IDs and passwords to remember increases and the web is smooth. You may encounter problems that prevent you from logging in to the site.

On the other hand, as the number of members increases in the service provider side, it is not easy to manage the personal information, and moreover, there is a problem that the stored personal information is leaked in an illegal manner.

An object of the present invention is to solve the problems of the prior art to provide a method for logging in to the service provider server side using a public certificate that is currently widely distributed.

A login method using an authorized certificate according to the present invention comprises an authentication server in an environment including a client, a service provider server, an authentication server, and a communication network connecting the client, service provider server, and authentication server to enable data communication. Is performed by. The login method relates to a method for the authentication server to authenticate the login eligibility of the client to the service provider server,

 (1) an authentication request step of receiving at least one of public certificate information and public certificate identifier and an electronic signature value, and (2) uniqueness of the person who issued the public certificate based on the received public certificate information or public certificate identifier Extracting an identification code, (3) decoding and verifying the digital signature value, and (4) transmitting authentication confirmation information (assertion) including the unique identification code and authentication date and time data to the client; An authentication confirmation step for allowing a client to transmit the authentication confirmation information to the service provider server side.

The authentication request step and the authentication confirmation step are performed by a secure access protocol.

The dictionary meaning of accredited certificate means "certificate issued by a certification authority as a kind of electronic signature used to verify and prove the identity of a trader in online financial transactions." Means a certificate issued by an accredited certification body designated in accordance with the provisions of Article 15 pursuant to Article 15 of the Act, but the "certified certificate" described in this specification and claims is not limited to such a certificate, Includes private certificates that guarantee authenticity.

According to the above configuration, the user makes a request for authentication to the authentication server using his / her public certificate by using the client, and the received authentication server sends the authentication confirmation information to the client side through a predetermined verification procedure, and the client sends the request. Since the data is re-transmitted to the service provider server and verified, the user does not need to enter an ID or password for logging in to the service provider server, and only the authorized certificate allows the user to log in to the service provider server. On the other hand, in parallel with or instead of transmitting the public certificate information, it is possible to transmit an identifier indicating a URL (URL) address, etc. that can know the public certificate information of the user.

In order to be able to log in to the public certificate, it is preferable to register the service provider server and the authentication server to use a login service using the public certificate in advance.

According to a preferred embodiment of the present invention, a service provider specific code capable of specifying the service provider is further received in the authentication request step, and the authentication method is performed by (1) the service provider specific code and the unique identification code. Determining whether the person who has been issued the public certificate has selected to use the public certificate login to the service provider server; and (2) extracting a login ID to the service provider server. The login ID is further transmitted in the authentication check step.

The digital signature value is a value obtained by hashing the service provider specific code with a hash algorithm and encoding a value encoded with the private key of the client side using a data encoding scheme, wherein the data encoding scheme is capable of printing binary data. It is preferable that the data encoding scheme be converted into a string code.

The data encoding scheme may be base64, for example, and converts the encoded binary value into an ASCII code.

The secure connection protocol is preferably Secure Socket Layer (SSL) or Transport Layer Security (TLS).

According to another embodiment of the present invention, the real name verification step of the login attempter is further performed.

As a specific example of the real name verification step, (1) the public certificate information includes a hash value by adding a predetermined random value and a unique identification code of the public certificate holder, and (2) the random value in the authentication request step. (3) compare the hashed value with the hashed value received in the authentication request step by adding the random value to the login attempt unique identifier code extracted by referring to the random value and the certificate. There is a way.

This makes it possible to further enhance security by performing a real name verification step so that it is possible to determine whether a malicious third party has changed the public certificate information during the authentication request.

Meanwhile, according to another embodiment of the present invention, there is also provided a method for logging in using an emergency key in a situation where there is no public certificate or a public certificate identifier cannot be specified in parallel with the public certificate login method.

In this embodiment, an authentication method specific code for specifying an authentication method is further received in the authentication request step. If the authentication method specific code is a code indicating a login of an authorized certificate, the authentication request step and the authentication confirmation step are performed. However, in the authentication confirmation step, a predetermined code indicating that the official certificate is logged in is further transmitted.

If it is determined that the authentication method specific code indicates emergency key authentication, the service provider specific code for specifying the service provider server, the emergency key information, and the unique identification code of the login attempter are transmitted in the authentication request step. Receive. In the authentication confirmation step, the client sends the authentication confirmation information including the unique identification code of the login attempt, the predetermined code indicating the authentication using the emergency key, and the authentication date and time data to the client so that the client sends the service provider server. To send to the client.

In this embodiment, both the authentication request steps and the authentication check steps are performed by the secure access protocol.

According to this configuration, when the user logs in to the service provider server from the client side on which the public certificate is not mounted, the user can log in using the emergency key registered in advance. That is, it is possible to change the login process according to this code by receiving a code indicating whether it is a login using a public certificate or an emergency key at the authentication request step.

According to a preferred embodiment of the present invention, the authentication server receives the personal information storage request message from the client, stores the personal information included in the message on the authentication server side, and transmits the processing result to the client. It further comprises a step.

According to this method, the personal information stored in the client can be backed up on the authentication server side to eliminate the risk of data loss.

With respect to the stored personal information, the client may request a download through the communication network, and the authentication server having received the request encrypts the stored personal information and transmits it through the communication network.

Further, by encrypting and storing the personal information as described above, the client can automatically complete a form requesting the personal information input when registering for the service provider server.

According to another aspect of the present invention, a login method using a public certificate includes (1) an authentication request step of receiving at least one of public certificate information and public certificate identifiers, and an electronic signature value, and (2) receiving the received certificate. Extracting a unique identification code of the person who issued the public certificate based on the public certificate information or the public certificate identifier; (3) decoding and verifying the digital signature value; and (4) certificate information of the authentication server. And authentication assertion information including at least one of a certificate identifier of an authentication server, a first encryption value obtained by encrypting the unique identification code and an authentication date and time, and a value obtained by electronically signing the first encryption value. The client to retransmit the authentication certificate information received by the client to the service provider server. It includes the level of authentication.

This configuration is different from the above-described embodiment in that the authentication request step and the authentication confirmation step are performed, including the encryption process, without using a separate secure access protocol, but the effect is similar.

On the other hand, according to a preferred embodiment of the present invention, in the authentication request step, at least one of the identifier of the service provider server certificate information and the service provider server certificate, and the first random value received by the client from the service provider server and And receiving a second encryption value that encrypts the second random value received from the authentication server and an electronic signature value that digitally signs the second encryption value. The first encryption value is a value obtained by encrypting the first random value, the unique identification code, and the authentication date and time.

Replay attack in which a malicious third party intercepts the encryption value and transmits it to the authentication server or service provider server several times. It can prevent damage caused by attack.

The second encryption value may be a value obtained by encrypting the first random value, the second random value received from the authentication server, and the service provider ID.

According to a preferred embodiment of the present invention, (1) generation of the first encryption value is performed with the public key of the service provider server, and (2) generation of the second encryption value is performed by a session key. (3) In the authentication request step, a third encryption value obtained by encrypting the session key with the public key of the authentication server is further received.

By using the session key in this way, the security can be improved. The session key may be encrypted using the public key of the authentication server and transmitted to the authentication server, and the received authentication server may verify the session key by decoding it with its own secret key and then decode the second encryption value with the session key to verify the encrypted data.

The second encryption value is a value obtained by converting a value encrypted with the session key by a data encoding scheme and URL-encoding the converted value, wherein the predetermined data encoding scheme is binary data. It is preferable that the data encoding scheme converts s into a printable string code.

As described above, this data encoding scheme is for example base 64, thus converting the encrypted binary value to an ASCII code.

The value of the electronic signature of the second encryption value is preferably a value obtained by hashing a source string by a hash function and encrypting the hash extracted and extracted by the client's private key.

The login method using the public certificate according to the present invention includes (1) an authentication request step of receiving authentication request data including at least one of public certificate information and public certificate identifier from the client, and (2) public certificate information received. Or extracting a unique identification code of the person who issued the public certificate based on the public certificate identifier, (3) decoding and verifying the digital signature value, and (4) verifying the unique identification code and the authentication date and time data. And an authentication confirmation step of transmitting, to the client, the authentication certificate information including the authentication certificate information, so that the client can transmit the authentication certificate information to the service provider server.

The authentication request step and the authentication confirmation step are performed by a secure access protocol.

Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.

1 is a schematic diagram of an environment in which login using a public certificate according to the present invention is performed.

As shown in FIG. 1, this environment includes a client 10, a service provider server 20, an authentication server 30, and a communication network 40. The communication network should be understood as a concept including any network that connects the client 10, the service provider server 20, and the authentication server 30 to enable data communication including the Internet. In the present specification, a communication network and the Internet are used interchangeably, but for convenience, it is to be understood that the term refers to a concept including a broad communication network as described above.

The client 10 refers to a personal computer for which a user attempts to log in. The client 10 is preferably equipped with a public certificate 15. If the public certificate 15 is not mounted, information for specifying a public certificate identifier, for example, a URL address for checking the public certificate information of the user, etc. should be stored. On the other hand, the client at the time of logging in using the emergency key as described later may not be equipped with a public certificate (15) or a public certificate identifier. As described above, the accredited certificate means "a certificate issued by a certification authority as a kind of electronic signature used to verify and prove the identity of a trader in an online financial transaction." The "certificate certificate" described in the claims is not limited to this certificate, but also includes a private certificate.

The service provider server 20 refers to a server that provides predetermined information or provides a service on the Internet. For example, the service provider server 20 may be a server of a site requiring membership.

Although the client 10 and the service provider server 20 are shown in the singular in the environment shown in FIG. 1, a plurality may be provided in the actual environment.

The authentication server 30 is provided separately from the service provider server 20 and is a subject performing login using an authorized certificate and login using an emergency key according to the present invention. Companies operating the service provider server 20 log in to the server through a predetermined contract with a subject operating the authentication server 30, the authentication server 30 login or emergency key using the authorized certificate according to the present invention. It is a way to enable the login.

FIG. 2 is a flowchart illustrating a process of registering a user to use a login using an authorized certificate in a service provider server 20 that is registered as a member. 6 shows a data communication flow diagram in which such a process is performed. This will be described with reference to FIGS. 2 and 6.

When a user has already registered as a member, a conventional method of inputting a user ID and password registered in the service provider server 20 is conventional. The user's personal information is input at the time of membership registration and stored in the service provider server 20.

After the user connects to the service provider server 20 through the communication network 40, the user inputs an ID / password in the web browser. (S200) Next, the browser calls a public certificate login object (S210). Is preferably provided in the form of Active X.

Subsequently, a screen for guiding the login service using the public certificate and inquiring whether to agree to the terms by the communication between the service provider server 20 and the object is displayed on the client 10 (S215). If it is determined in step S220, the process proceeds to step S225, and if it is determined not to agree, the process proceeds to step S275 to perform a normal ID / password login process. That is, if the user selects not to use the public certificate login service according to the present invention, the object transmits the ID and password input by the user in step S200 to the service provider server 20 in step S275. The service provider server 20 verifies the received ID and password, and if verified to be a legitimate member in step S285, provides the service to the user through the communication network 40 (S265).

In step S225, the service provider server 20 requests the user's personal information to be transmitted. In addition, in this case, the user transmits the ID and password input in step S200 to the service provider server 20. The personal information is information that a user enters when the user subscribes to the service provider server 20 as a member and is held by the service provider. The transmission of the ID and password is for checking whether the user is registered as a member in the service provider server 20 in the related art.

The service provider server 20 verifies the ID and password received from the object (S230), and determines whether the member is a legitimate member (S235). If it is determined that the ID and password are not a valid member, an error message is transmitted to the client 10 side.

If it is determined that the member is a legitimate member, the personal information stored in the service provider server 20 is transmitted to the object (S240). The client 10, which has received the personal information, encrypts and stores it. (S245) The personal information is encrypted. And stored in the client 10, the possibility of leakage to a third party is extremely low. As described later, it is convenient because the encrypted personal information can be decoded and used without having to input personal information again when joining another service provider server in the future.

After the above process, the login service subscription request using the authorized certificate according to the present invention is made to the authentication server 30. (S250)

The message structure between the client 10 and the authentication server 30 is represented as BNF (Backus Normal Form) as follows.

message :: = msg_type ["&" sign_data] ["&" signature] ["&" add_data]

Here msg_type is a code that specifies the type of message. For example, it can be configured as follows.

sign_data is the data to be digitally signed, and signature is the value of the digital signature of sign_data. Add_data may or may not be included in the message as additional data and is not digitally signed.

When the subscription request is sent to the authentication server in step S250, sign_data includes a service provider server specific code (mpid), a user's name, a unique identification code for identifying the user, an email address, and the user providing the service provider. ID (mpuserid) registered at the time of membership registration to the server 20, and includes an emergency key. The unique identification code that can identify the user can be, for example, a social security number. And if the accredited certificate is issued to a corporation, the unique identification code may be, for example, a corporate registration number. However, the present invention is not limited thereto, and any code that is uniquely assigned to an individual such as a driver's license number and a passport number may be used. The emergency key is a kind of password for allowing a user who uses the public certificate login service to log in to the service providing server 20 through the client 10 that is not equipped with the public certificate.

The digital signature value signature also has the following form when expressed in BNF format.

signature :: = "sg" "=" <base64-encoded string with digital signature of sign_data> ["&" "cc" "=" <certificate used for digital signature>] ["&" "alg" "= "<Algorithms Used in Digital Signatures]

Base64 is a type of data encoding scheme that converts binary code into printable strings, and other schemes that perform this function can be used. Instead of the certificate used for the digital signature, the certificate identifier information used for the digital signature may be included, or both may be included.

More specifically with regard to the generation of the digital signature value is as follows. First, sign_data is hashed with a hash algorithm, for example SHA-1, and then digitally signed with an RSA private key. After base64 encoding the digitally signed binary value, it is concatenated with "sg =". The certificate corresponding to the RSA private key is associated with "cc =" in PEM format. Finally, concatenate "alg = SHA-1withRSAEncryption" to the above result to complete the digital signature value.

When requesting membership using a public certificate, add_data included at the end of the message is a predetermined random value er.

The accredited certificate includes a unique identification code of the issuer for checking the real name, for example, a social security number or a corporation registration number and a value hashed by a predetermined random value. ) Hashes by adding the unique identification code extracted from the public certificate and this random value, and then checking whether the hash value matches the hash value included in the public certificate information.

On the other hand, the authentication server 30 corresponds to the DN included in the authentication certificate and the unique identification code transmitted when receiving a login service subscription request using a public certificate, and will be used later when performing a login using the public certificate.

The authentication certificate login registration request message thus prepared is transmitted to the authentication server 30, and the registration result is transmitted to the client 10 through a registration process (S255).

The message sent when the authentication server 30 responds to the membership request includes a service provider identification code (mpid), a social security number (sn1) and a rear digit (sn2), a user name (UB_name), and a user email (UB_email). ) Is included as sign_data and sent by digital signature. The msg_type of this message includes a flag indicating that it is a response to a membership request, and does not include add_data. The reason why the personal information is included in the response message is to allow the user to encrypt and store the personal information in the client 10.

That is, the above-mentioned msg_type, sign_data, signature, and add_data are all concatenated to form an entire message.

When the member registration using the official certificate is completed as described above, the service is provided from the service provider server 20 by logging in to the official certificate (S260) (S265). The login process using the public certificate will be described later in more detail with reference to FIGS. 4 and 8.

The authentication server 30 is a completely separate object from the service provider server 20, and it is preferable not to directly perform data communication with the service provider when performing a procedure such as an authentication process or membership.

The message transmission processes according to the present invention are basically performed by the HTTP protocol. In particular, when security is required, for example, an object transmits a message requesting personal information and a service provider server 20 transmits personal information. The step and the step of transmitting the subscription request message and the subscription result message to the authentication server 30 are preferably performed by the secure access protocol. However, performing the message transmission by the secure access protocol is not limited to this step and can be flexibly applied as needed. The secure connection protocol is, for example, Secure Socket Layer (SSL) or Transport Layer Security (TLS). Such a message transmission protocol may be similarly applied in all processes described herein.

FIG. 3 is a flowchart illustrating a process of registering a user who has registered a service provider server to log in using a public certificate login service according to the present invention to use such a public certificate login when first registering with another service provider server. It is. 7 shows a data flow diagram of this process.

First, the user clicks the member registration button to the service provider server displayed on the browser (S300). Then, the public certificate login object is called (S310), and the public certificate login service guide and agreement agreement screen are displayed. (S315) This is to induce the use of the public certificate login when possible to make a membership to the service provider server 20. Thus, when selecting a membership, a separate public certificate login selection button is not automatically called. It can also be configured to call an object when it is clicked.

If the user agrees to the terms and conditions to use the public certificate login, the process proceeds to step S325 to perform the public certificate verification. If the verification of the certificate is successful in step S330, the process proceeds to step S340 to decrypt the personal information stored in the client 10. Personal information is information stored in the client 10 at the time of joining the public certificate login from another site.

In step S345, the member registration form is obtained from the service provider server 20, and the member registration form is completed using the decrypted personal information. (S350) Subsequently, the member request message is transmitted to the service provider server 20 side. And, the service provider server 20 that has verified this will provide a service through the browser of the client (10).

If for some reason the subscription to the service provider server does not succeed, the process proceeds to step S370 and transmits an error message.

Acquiring a registration form and transmitting a registration request message in the above process is preferably performed by a secure access protocol such as SSL or TLS as described above.

4 is a flowchart illustrating a process of performing a public certificate login according to the present invention, and FIG. 8 is a data flowchart of such a public certificate login process. Hereinafter, with reference to Figures 4 and 8 will be described for the authentication certificate login process according to the present invention.

The user accesses the service provider server 20 and clicks the public certificate login button of the browser (S400). Then, in step S405, it is determined whether the public certificate is mounted on the client 10 or whether an identifier for specifying the public certificate is stored. If the public certificate is not mounted on the client 10 or the public certificate identifier is not stored, the process proceeds to step S410 to perform an emergency key login procedure. The emergency key login procedure will be described later in detail with reference to FIG. 5.

However, if a public certificate is installed or if it is determined that a public certificate identifier is stored, the public certificate login and emergency key login may be selected, but the login using the emergency key is an exception, and the public certificate may not be mounted. It is possible to use it only if the certificate identifier is not stored.

The public certificate is stored in the hard disk of the client 10 or is stored in a removable storage medium, for example, a floppy disk or a USB memory connected to the client 10 so that data can be read and mounted thereon, or the public certificate identifier If it is determined that is stored, go to step S415 to call the object to request the authentication certificate login.

Next, as shown in FIG. 9, the client 10 displays a public certificate login screen (S420). The user inputs a password if the public certificate is singular, and a plurality of public certificates mounted on the client 10 are displayed. In the case of an individual, select a public certificate to be used for logging in the public certificate among them and input a password (S425).

If the entered password is determined to be valid, then a public certificate login request message is created. The msg_type of the request message is a code indicating an authentication request through the public certificate.

The sign_data is a service provider identification code (mpid), and the additional data add_data is a random value (er) for real name verification of a public certificate.

The service provider identification code (mpid) is hashed with a hash algorithm such as an SHA-1 algorithm and then encoded with an RSA private key. The result of this encoding is a binary value, which contains the base64 encoded value of the binary value in the message as the digital signature value. The reason for base64 encoding is to convert binary or binary data into printable string code. Therefore, in addition to base64, any such conversion can be used. In addition, the message includes the certificate information used for the digital signature and the hash algorithm used for the digital signature.

In addition, it is preferable to include the above-described random value (er) in the message so that the authentication server 30 can perform the real name verification.

When the authentication certificate login request message is created through the above process, it is transmitted to the authentication server 30. This authentication certificate login request message transmission is preferably performed by the aforementioned secure access protocol.

The authentication server 30 that has received the public certificate login request message extracts a unique identification code of the public certificate issuer, for example, a social security number, based on the received public certificate information. As described above, since the DN of the public certificate and the social security number correspond to each other at the joining step, the authentication server 30 may extract a user's unique identification code from the DN of the received public certificate.

The authentication server 30 determines whether it is an authorized certificate login service use registrant from the service provider identification code and this identification code. (S445) The identification server 30 may be determined as a DN without using a unique identification code.

As a result of determination (S450), if the registrant is a valid registrant, the process proceeds to step S455 to verify the digital signature value of the login request message. If it is determined that it is not a valid registrant, an error message is transmitted (S465). The verification of the digital signature value may be performed before determining whether the certificate is a registered registrant, and the order thereof does not affect the scope of the present invention.

If it is determined in step S460 that the verification of the digital signature value is successful, the process proceeds to step S470 and issues an authentication confirmation. If the verification of the digital signature value fails, the process proceeds to step S465 to transmit an error message and terminates the login process.

The sign_data included in the authentication confirmation includes a user unique identification code, for example, a social security number, a user login ID to the service provider server 20, an authentication method specific code, and data on an authentication date and time. This sign_data is digitally signed in the above-described process to create an authentication confirmation message and transmit the authentication confirmation to the client 10. The client receives the authentication confirmation in step S475. Herein, the digital signature is preferably the private key of the authentication server 30. The client 10 retransmits the authentication confirmation thus received back to the service provider server 20. The service provider server 20 verifies the received authentication certificate. (S485) If the verification is successful, the service is provided to the client 10 through the communication network 40.

The step of transmitting the authentication certificate to the client 10 and the step of transmitting the authentication certificate to the service provider server 20 by the client are preferably performed by a secure access protocol such as SSL or TLS.

The process of logging in using the emergency key because the public certificate is not mounted on the client 10 or there is no public certificate identifier will be described with reference to FIG. 5.

The user inputs an emergency key and a unique identification code, which are registered at the time of registration of the authentication certificate login using the emergency key login screen as shown in FIG. 10, for example, a social security number. In this message, sign_data is a service provider server specific code (mpid), an emergency key, and the unique identification code. Since the public certificate information is not transmitted, the random value er for real name verification is not transmitted to add_data.

When receiving the emergency key login request message (S510), verify the emergency key and the unique identification code (S515), and if the verification is successful, proceeds to step (S520), and if verification fails, proceeds to step (S535). Send an error message and terminate the process.

In operation S520, the digital signature value included in the emergency key login request message is verified. If the verification is successful, the process proceeds to step S530 to issue an authentication assertion (assertion) and transmits it to the client 10, which is received (S540). The client 10 transmits it to the service provider server 20 again. (S545) The authentication confirmation includes the user's unique identification code (resident registration number), login ID (mpuserid) to the service provider server, authentication method specific code, and authentication date and time information as sign_data. The service provider server verifies the authentication confirmation received from the client 10 (S550), and provides a service through the communication network 40.

If the digital signature value verification fails, the flow advances to step S535 to transmit an error message.

On the other hand, the client 10 may make a request for storing, that is, a backup of the personal information to the authentication server 30 side. The sign_data of this backup request message is a service provider server specific code (mpid) and personal information to be backed up, and includes the above-described random value (er) as add_data for real name verification.

The backed up personal information can be downloaded by the client 10 to the authentication server 30. The personal information download request message does not include sign_data, and includes public certificate information and a random value er as add_data. The authentication server encrypts the public key of the client included in the public certificate information and transmits the encrypted information to the client 10. The client 10 decodes and stores the received encryption value into an RSA private key.

Hereinafter, a description will be given of a login method for a public certificate according to another embodiment of the present invention.

The main difference between this embodiment and the above-described embodiment is that data transmitted between the client and the authentication server is directly encrypted without using a separate secure access protocol.

This embodiment will be described in detail with reference to FIG. 4 as follows.

The authentication certificate issued in step S470 includes at least one of certificate information of the authentication server and a certificate identifier of the authentication server, and a unique identification code of the user extracted in step S440, for example, a social security number and an authentication date and time. One encryption value and the value which digitally signed this 1st encryption value are included. In the authentication request step, it is preferable to include at least one of certificate information of the service provider server 20 and this certificate identifier, and the generation of the first encryption value included in the authentication certificate is performed by the public key of the service provider server. Generation of the digital signature value is preferably performed with the private key of the authentication server.

Meanwhile, in order to prevent a replay attack of a hacker, the client receives the first random value and the second random value from the service provider server 20 and the authentication server 30, respectively, and at the time of the authentication request. It is preferable to receive a second encrypted value obtained by encrypting the first random value and the second random value, and an electronic signature value that has electronically signed the second encrypted value. In this case, the second encryption value is generated using the public key of the authentication server, and the digital signature is performed by the private key of the client.

In this case, the first encryption value is a value obtained by encrypting the first random value, the unique identification code, and the authentication date and time. And the second encryption value also includes the service provider server identification code to perform encryption.

The generation of the second encryption value is preferably performed by a session key. A third encryption value obtained by encrypting the session key with the public key of the authentication server is included in the authentication request message. More specifically, after encrypting the source string with the session key and converting it into an encoding scheme such as Base64, the encoded value of the converted value is the second encrypted value. The digitally signed value of the second encryption value is a value obtained by hashing a source string by a hash function and encrypting the digest extracted through the hash with the private key of the client.

While the preferred embodiments of the present invention have been described above with reference to the accompanying drawings, it should be clearly understood that the scope of the present invention is determined by the claims below and is not limited to such embodiments and / or drawings. . In addition, improvements, changes, and modifications apparent to those skilled in the art described in the claims are included in the scope of the present invention.

According to the present invention, since the user can log in to each site using a public certificate, there is no need to memorize the ID and password when logging in to use the service provided by the service provider server. There is no confusion if you register. And since the login is performed using a public certificate, real name authentication or adult authentication is very easy.

It is convenient because the service provider server side does not have to register and store personal information.

In addition, since the user can log in through an authorized certificate login authentication server operated by a highly reliable company, any site that can log in with such a public certificate can be trusted. It also has the advantage of preventing problems such as leakage.

Claims (16)

In an environment including a client, a service provider server, an authentication server, and a communication network connecting the client, service provider server, and authentication server to enable data communication, the client may be eligible for login to the service provider server. In the authentication server authentication method, An authentication request step of receiving at least one of the public certificate information and the public certificate identifier and the digital signature value; Extracting a unique identification code of the person who issued the public certificate based on the received public certificate information or public certificate identifier; Decoding and verifying the digital signature value; An authentication confirmation step of transmitting authentication authentication information (assertion) including the unique identification code and authentication date and time data to the client so that the client can transmit the authentication confirmation information to the service provider server side; Receiving, by the authentication server, a request for storing personal information from the client; Storing, by the authentication server, personal information included in the personal information storage request message; The authentication server further comprises the step of transmitting the result of storing the personal information, The authentication requesting step and the authentication checking step are performed by a secure access protocol, login qualified authentication method using a public certificate. The method according to claim 1, The service provider specific code that can specify the service provider is further received in the authentication request step, Determining whether a person who has received the public certificate by using the service provider specific code and the unique identification code has selected to use the public certificate login to the service provider server; Extracting a login ID to the service provider server; Further transmitting the login ID in the authentication step, Login qualification using public certificate. The method according to claim 2, The digital signature value is a value obtained by hashing the service provider specific code with a hash algorithm and encoding a value encoded with the private key of the client side using a data encoding scheme. And the data encoding scheme is a data encoding scheme for converting binary data into a printable string code. The method according to claim 1 or 2, The secure access protocol is a secure socket layer (Secure Socket Layer) or transport layer security (Transport Layer Security), login qualified authentication method using a public certificate. The method according to claim 1 or 2, The public certificate information includes a hash value by adding a predetermined random value and a unique identification code of the public certificate holder, The random value is further received in the authentication request step, The real name verification step of performing a real name verification by comparing the hashed value and the hashed value received in the authentication request step by adding the random value to the login attempt unique identification code extracted by referring to the random value and the certificate; doing, Login qualification using public certificate. delete In an environment including a client, a service provider server, an authentication server, and a communication network connecting the client, service provider server, and authentication server to enable data communication, the client may be eligible for login to the service provider server. In the authentication server authentication method, Public certificate authentication request data, including at least one of public certificate information and public certificate identifiers, a digital signature value, and a public certificate certificate specific code indicating that the certificate is a public certificate certificate request, or An authentication request step of receiving emergency key authentication request data including emergency key information, a unique identification code of the login attempt, and an emergency key authentication specific code indicating an emergency key authentication request; If the public certificate authentication request data has been sent, Extracting a unique identification code of the person who issued the public certificate based on the received public certificate information or public certificate identifier; Decoding and verifying the digital signature value; Authentication to transmit authentication authentication information (assertion) including the unique identification code, the authentication date and time data, and a predetermined code indicating that the authentication certificate authentication to the client so that the client can transmit the authentication confirmation information to the service provider server side. Includes a verification step, If the emergency key authentication request data is received, Verifying the received emergency key and the unique identification code; The client may transmit the authentication identification information including the unique identification code, the authentication method information, a predetermined code indicating that the emergency is authentication, and authentication date and time data to the client, and transmit the authentication confirmation information to the service provider server. Verification steps to ensure that The authentication request steps and authentication check steps are performed by a secure access protocol, Login qualification using public certificate. The method according to claim 7, Receiving, by the authentication server, a request for storing personal information from the client; Storing, by the authentication server, personal information included in the personal information storage request message; The authentication server further comprises the step of transmitting the result of storing the personal information, Login qualification using public certificate. The method according to any one of claims 1 and 2 and 8, Receiving, by the authentication server, a download request message of personal information stored by the personal information storage request from the client; The method further includes encrypting the personal information stored in the authentication server and transmitting the encrypted personal information through the communication network. Login qualification using public certificate. In an environment including a client, a service provider server, an authentication server, and a communication network connecting the client, service provider server, and authentication server to enable data communication, the authentication server may be connected to the service provider server of the client. In the method for authenticating login eligibility, At least one of public certificate information and public certificate identifier, and an authentication request step of receiving an electronic signature value; Extracting a unique identification code of the person who issued the public certificate based on the received public certificate information or public certificate identifier; Decoding and verifying the digital signature value; An authentication certificate including at least one of certificate information of the authentication server and a certificate identifier of the authentication server, a first encryption value obtained by encrypting the unique identification code and the authentication date and time, and a value obtained by electronically signing the first encryption value ( an authentication confirmation step of transmitting an assertion) information to the client side to retransmit the authentication certificate information received by the client to the service provider server side; Receiving, by the authentication server, a request for storing personal information from the client; Storing, by the authentication server, personal information included in the personal information storage request message; The authentication server further comprises the step of transmitting the result of storing the personal information, Login qualification using public certificate. The method according to claim 10, In the authentication requesting step, at least one of the service provider server certificate information and the identifier of the service provider server certificate, a first random value received by the client from the service provider server and a second random value received from the authentication server. Receiving an encrypted second encryption value and an electronic signature value that digitally signed the second encryption value, The first encryption value is a value obtained by encrypting the first random value, the unique identification code, and the authentication date and time. Login qualification using public certificate. The method according to claim 11, The second encryption value is a value obtained by encrypting the first random value and the second random value and the service provider server identification code; Login qualification using public certificate. The method according to claim 11 or 12,  The generation of the first encryption value is performed with the public key of the service provider server. Generation of the second encryption value is performed by a session key, In the authentication request step, further receiving a third encryption value by encrypting the session key with the public key of the authentication server, Login qualification using public certificate. The method according to claim 13, The second encryption value is a value obtained by converting a value encrypted with the session key using a data encoding scheme and URL-encoding the converted value. The predetermined data encoding scheme is a data encoding scheme for converting binary data into a printable string code; Login qualification using public certificate. The method according to claim 11 or 12, The value of digitally signing the second encryption value is a value obtained by hashing a source string by a hash function and encrypting a hash extracted and extracted digest with a private key of the client. In an environment including a client, a service provider server, an authentication server, and a communication network connecting the client, service provider server, and authentication server to enable data communication, the client may be eligible for login to the service provider server. In the authentication server authentication method, An authentication request step of receiving authentication request data including at least one of public certificate information and public certificate identifier from the client; Extracting a unique identification code of the person who issued the public certificate based on the received public certificate information or public certificate identifier; Decoding and verifying the digital signature value; An authentication confirmation step of transmitting authentication authentication information (assertion) including the unique identification code and authentication date and time data to the client so that the client can transmit the authentication confirmation information to the service provider server side; Receiving, by the authentication server, a request for storing personal information from the client; Storing, by the authentication server, personal information included in the personal information storage request message; The authentication server further comprises the step of transmitting the result of storing the personal information, The authentication requesting step and the authentication checking step are performed by a secure access protocol, login qualified authentication method using a public certificate.

Images