[go: up one dir, main page]

KR20000024217A - A authentication system for electronic commerce in data center and an offer method of authentication service - Google Patents

A authentication system for electronic commerce in data center and an offer method of authentication service Download PDF

Info

Publication number
KR20000024217A
KR20000024217A KR1020000004492A KR20000004492A KR20000024217A KR 20000024217 A KR20000024217 A KR 20000024217A KR 1020000004492 A KR1020000004492 A KR 1020000004492A KR 20000004492 A KR20000004492 A KR 20000004492A KR 20000024217 A KR20000024217 A KR 20000024217A
Authority
KR
South Korea
Prior art keywords
electronic transaction
buyer
electronic
server
certificate
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
KR1020000004492A
Other languages
Korean (ko)
Inventor
장승욱
Original Assignee
장승욱
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 장승욱 filed Critical 장승욱
Priority to KR1020000004492A priority Critical patent/KR20000024217A/en
Publication of KR20000024217A publication Critical patent/KR20000024217A/en
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • G06Q20/38215Use of certificates or encrypted proofs of transaction rights
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment
    • G06Q20/425Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

본 발명은 데이터 센터의 전자거래 인증시스템에 관한 것으로, 이러한 인증시스템은 적어도 하나의 전자거래관련사업자와 전자거래인증기관을 포함하는 데이터센터 단위로 분산된 인증시스템에 있어서, 상기 전자상거래관련사업자에 인증서를 발급하는 전자거래인증기관 서버; 및 상기 발급 받은 서버인증서와 구매자 단말장치에서 생성한 세션키를 근간으로 구매자 단말장치와의 보안채널을 설정하고, 구매자의 고객등록 및 갱신신청 처리과정에서 구매자의 동의하에 전자거래인증서비스 등록을 신청하는 전자거래관련사업자 서버를 포함하고, 상기 전자거래인증기관 서버는 구매자의 신청에 따라 구매자의 전자서명용 비밀키.공개키쌍을 생성하고 구매자의 전자서명용 비밀키를 암호화하여 전송하고, 구매자에게 인증서를 발급 및 저장하고, 암호화된 구매자의 전자서명용 비밀키를 복호화할 수 있는 비밀번호를 구매자가 등록신청시 지정한 전자우편주소로 발신하여 구매자가 단말장치에 인증서를 저장할 수 있게 함을 특징으로 한다.The present invention relates to an electronic transaction authentication system of a data center. The authentication system includes an authentication system distributed in a data center unit including at least one electronic transaction related company and an electronic transaction authentication authority. Electronic transaction certification authority server for issuing a certificate; And establish a secure channel with the purchaser terminal device based on the issued server certificate and the session key generated by the purchaser terminal device, and apply for electronic transaction authentication service registration with the purchaser's consent in the process of customer registration and renewal application of the buyer. The electronic trading certification server server generates a buyer's private key for digital signature and public key pair according to the buyer's request, encrypts the buyer's private key for electronic signature, and transmits the certificate to the buyer. It is characterized in that the buyer can store the certificate in the terminal device by sending a password for issuing and storing and decrypting the encrypted buyer's secret key for the electronic signature to the e-mail address specified by the buyer at the time of registration.

Description

데이터 센터의 전자거래 인증시스템 및 인증서비스 제공방법{A authentication system for electronic commerce in data center and an offer method of authentication service}A authentication system for electronic commerce in data center and an offer method of authentication service}

본 발명은 전자거래시스템에 관한 것으로, 더욱 상세하게는 전자거래의 안전성 및 신뢰성 보장을 위하여 전자거래에서 구매자 및 판매자에게 비밀성, 무결성, 부인방지, 신원확인 등 인증서비스의 기본적 기능을 제공하고, 구매자 및 판매자의 편의를 증진한 인증서 발급 및 처리 절차의 개발하며, 전자거래시장의 물리적 중심기능을 담당하는 데이터센터 단위로 인증 및 디렉토리서버를 분산함으로써 최적화된 인증시스템의 구축 및 운용에 관한 기술이다.The present invention relates to an electronic transaction system, and more particularly, to provide the basic functions of authentication services such as confidentiality, integrity, non-repudiation, identity verification to buyers and sellers in electronic transactions in order to ensure the safety and reliability of electronic transactions, This is a technology for the construction and operation of optimized authentication system by developing certificate issuance and processing procedures that enhance the convenience of buyers and sellers, and by distributing authentication and directory servers in units of data centers that are responsible for the physical center functions of the electronic trading market. .

기존의 전자거래시장에서 본 발명에 관련한 종래 기술을 찾는다면 SET 정도가 있을 수 있다.If there is a conventional technology related to the present invention in the existing electronic trading market, there may be a SET degree.

본 발명이 이루고자하는 기술적 과제는 전자거래의 안전성 및 신뢰성 보장을 위하여 전자거래단위에서 구매자 및 판매자에게 비밀성, 무결성, 부인방지, 신원확인 등 인증서비스의 기본적인 기능을 제공하고, 전자거래시장에서 인증서비스의 보급을 목적으로 인증서비스의 등록 및 이용절차를 단순화하여 구매자 및 판매자의 편의를 증진하고, 인증서비스의 근간인 PKI(Public Key Infrastructure)의 구축을 용이하게 하기 위해 가상적인 전자거래시장의 물리적 중심기능을 담당하는 각각의 데이터센터 단위로 인증 및 디렉토리 서버를 분산 구축하고 상호 연동하게 함으로써 인증서의 운용관리를 효율적으로 할 수 있는 데이터 센터 중심의 전자거래 인증시스템 및 인증서비스 제공 방법을 제공함에 있다.The technical problem to be achieved by the present invention is to provide the basic functions of the authentication service, such as confidentiality, integrity, non-repudiation, identity verification to buyers and sellers in the electronic trading unit to ensure the safety and reliability of electronic transactions, authentication in the electronic trading market In order to spread the service, the registration and use procedures of the authentication service are simplified to enhance the convenience of buyers and sellers, and to facilitate the construction of the public key infrastructure (PKI), which is the foundation of the authentication service. It is to provide a data center-centered electronic transaction authentication system and authentication service providing method to efficiently manage certificate management by distributing and interoperating authentication and directory servers in each data center unit that is in charge of central functions. .

도 1은 본 발명에 의한 데이터 센터의 전자거래 인증서비스에 대한 개략적인 시스템을 도시한 것이다.1 illustrates a schematic system for an electronic transaction authentication service of a data center according to the present invention.

도 2는 본 발명에 의한 데이터 센터의 전자거래 인증시스템의 구체적인 실시예를 도시한 것이다.Figure 2 illustrates a specific embodiment of the electronic transaction authentication system of the data center according to the present invention.

상기 기술적과제를 해결하기 위한 본 발명에 의한 데이터 센터의 전자거래 인증시스템은 적어도 하나의 전자거래관련사업자와 전자거래인증기관을 포함하는 데이터센터 단위로 분산된 인증시스템에 있어서, 상기 전자상거래관련사업자에 인증서를 발급하는 전자거래인증기관 서버; 및 상기 발급 받은 서버인증서와 구매자 단말장치에서 생성한 세션키를 근간으로 구매자 단말장치와의 보안채널을 설정하고, 구매자의 고객등록 및 갱신신청 처리과정에서 구매자의 동의하에 전자거래인증서비스 등록을 신청하는 전자거래관련사업자 서버를 포함하고, 상기 전자거래인증기관 서버는 구매자의 신청에 따라 구매자의 전자서명용 비밀키.공개키쌍을 생성하고 구매자의 전자서명용 비밀키를 암호화하여 전송하고, 구매자에게 인증서를 발급 및 저장하고, 암호화된 구매자의 전자서명용 비밀키를 복호화할 수 있는 비밀번호를 구매자가 등록신청시 지정한 전자우편주소로 발신하여 구매자가 단말장치에 인증서를 저장할 수 있게 함을 특징으로 한다.The electronic transaction authentication system of the data center according to the present invention for solving the technical problem is in the authentication system distributed in units of data center including at least one electronic transaction associated operators and electronic transaction certification authority, An electronic transaction certification authority server that issues a certificate to the server; And establish a secure channel with the purchaser terminal device based on the issued server certificate and the session key generated by the purchaser terminal device, and apply for electronic transaction authentication service registration with the purchaser's consent in the process of customer registration and renewal application of the buyer. The electronic trading certification server server generates a buyer's private key for digital signature and public key pair according to the buyer's request, encrypts the buyer's private key for electronic signature, and transmits the certificate to the buyer. It is characterized in that the buyer can store the certificate in the terminal device by sending a password for issuing and storing and decrypting the encrypted buyer's secret key for the electronic signature to the e-mail address specified by the buyer at the time of registration.

또한, 상기 구매자와 상기 전자거래인증기관의 서버인증서를 발급받은 데이터센터내.외의 임의의 전자거래관련사업자간의 전자거래 발생시, 상기 전자거래관련사업자 서버는 상기 구매자가 전자서명한 구매신청에 대한 확인을 전자거래사업자의 전자서명 후, 상기 전자거래인증기관의 서버에 요청하도록 프로그램되고, 상기 전자거래인증기관 서버는 데이터센터단위로 분산구축된 디렉토리서버를 검색하여 구매자 및 전자거래관련사업자 인증서의 유효성을 확인하고 인증기관의 전자서명 후, 상기 구매자 및 전자거래관련사업자의 거래발생 및 거래내역에 대한 확인서를 발급하도록 프로그램되고, 이를 근거로 전자거래와 연계된 과금, 청구, 중개, 물류 등의 관련절차를 진행할 수 있게 하는 프로그램됨을 특징으로 한다.In addition, when an electronic transaction occurs between any buyer and an electronic transaction related business entity within or outside the data center that has received the server certificate of the electronic transaction certification authority, the electronic transaction related business server confirms the purchase application signed by the buyer. After the digital signature of the electronic transaction provider, the electronic transaction certification authority server is programmed to request, and the electronic transaction certification authority server searches for a directory server distributed in data center units and validates the certificate of the buyer and the electronic transaction related operator. After confirming the certification and the electronic signature of the certification body, the program is issued to confirm the transaction occurrence and transaction history of the buyer and the electronic transaction related company, and based on this, related to billing, billing, mediation, logistics, etc. It is characterized by being programmed to allow the procedure to proceed.

또한, 상기 전자거래관련사업자 서버는 상기 전자거래인증기관 서버로부터 발급받은 서버인증서를 근간으로 구매자 단말장치와 보안채널을 설정하고, 구매자의 고객등록 및 갱신신청 과정에서 구매자의 동의를 얻어 전자거래 인증서비스 등록신청을 대행하는 인증등록신청수단; 및 상기 전자거래관련사업자가 구매자와의 전자거래 발생시, 구매자의 전자서명용 비밀키로 전자서명된 구매정보에 대하여 전자거래관련사업자의 비밀키로 전자서명 후, 전자거래인증기관에 전자거래의 구매신청의 확인을 요청하는 거래확인신청수단을 포함함을 특징으로 한다.In addition, the electronic transaction-related service provider server establishes a secure channel with the buyer terminal device based on the server certificate issued from the electronic transaction certification authority server, and authenticates the electronic transaction with the purchaser's consent during the customer registration and renewal application process. Authentication registration application means for the service registration application; And when the electronic transaction-related business operator makes an electronic transaction with the buyer, confirms the purchase application for the electronic transaction with the electronic transaction certification authority after the electronic signature with the private key of the electronic transaction-related business with respect to the purchase information electronically signed with the electronic signature of the buyer. Characterized in that it comprises a transaction confirmation application means requesting.

또한, 상기 전자거래인증기관의 서버는 상기 전자거래관련사업자의 서버에 소정의 절차에 따라 인증서를 발급하는 인증서 발급수단; 상기 전자거래인증기관의 서버에서 등록신청에 따라 구매자의 전자서명용 비밀키, 공개키쌍을 생성하는 키 쌍 생성수단; 상기 인증서를 저장 및 관리하고, 전자거래 단위의 거래 확인요청시 상대적인 가입자 경로를 기준으로 분산 구축하는 디렉토리관리수단; 상기 전자거래 단위의 거래 확인요청시 상대적인 가입자 경로를 기준으로 분산 구축된 디렉토리를 검색하여 인증서의 유효성을 확인하고 구매자 및 전자거래관련사업자에게 확인서를 발신하는 전자거래확인수단; 상기 전자거래인증기관의 서버에서 데이터센터 단위로 분산구축된 디렉토리서버를 검색하여 상기 구매자 및 전자거래관련사업자 인증서의 유효성을 확인하고 전자거래인증기관의 전자서명 후, 구매자 및 전자거래관련사업자에게 거래발생 및 거래내역에 대한 확인서를 발급하고, 이를 근거로 전자거래와 연계된 과금, 청구, 중개, 물류 등의 관련 절차를 진행하는 부가서비스연동수단; 및 상기 전자거래 단위의 인증서비스 제공을 위하여 데이터 센터 단위로 분산구축된 인증시스템간에 연동하는 인증서비스연동수단을 포함함을 특징으로 한다.In addition, the server of the electronic transaction certification authority may include: certificate issuing means for issuing a certificate to a server of the electronic transaction related company according to a predetermined procedure; A key pair generating means for generating a secret key and a public key pair for an electronic signature of a buyer according to a registration request in the server of the electronic transaction certification authority; Directory management means for storing and managing the certificate, and distributing and establishing based on a relative subscriber path when requesting a transaction confirmation of an electronic transaction unit; An electronic transaction verification means for searching a distributedly constructed directory based on a relative subscriber path when requesting a transaction confirmation of the electronic transaction unit, confirming validity of a certificate, and sending a confirmation letter to a buyer and an electronic transaction related company; Search the directory server distributed by data center unit from the server of the electronic transaction certification authority to check the validity of the certificate of the buyer and the electronic transaction related company, and then deal with the buyer and the electronic transaction related company after the electronic signature of the electronic transaction certification authority. Additional service interworking means for issuing a confirmation on the occurrence and transaction details and performing related procedures such as billing, billing, brokerage, logistics, etc., associated with the electronic transaction; And an authentication service interlocking means interoperating between authentication systems distributed and constructed in units of data centers to provide authentication services in units of electronic transactions.

또한, 상기 인증서발급수단은 상기 전자거래인증기관의 서버에서 생성된 구매자의 전자서명용 비밀키를 암호화하여 전송하고 암호화된 비밀키를 복호화 할 수 있는 비밀번호를 인증서비스 등록시 지정한 전자우편주소로 발신하는 기능을 수행함을 특징으로 한다.In addition, the certificate issuing means encrypts and transmits the secret key for the electronic signature of the buyer generated in the server of the electronic transaction certification authority, and transmits a password for decrypting the encrypted secret key to the e-mail address specified when registering the authentication service. It characterized in that to perform.

상기 다른 기술적 과제를 해결하기 위한 본 발명에 의한 데이터 센터의 전자거래의 인증서비스 제공 방법은 (a)전자거래관련사업자 서버에 접속한 구매자 단말장치에서 생성한 세션키를 근간으로 상기 전자거래관련사업자 서버와 상기 구매자 단말장치간의 보안채널을 설정하는 단계; (b)상기 전자거래관련사업자 서버가 구매자의 고객등록 및 갱신 처리과정에서 구매자의 동의를 얻어 전자거래인증기관에 인증서비스 등록을 신청하는 단계; (c)상기 구매자의 인증서비스 등록신청에 따라 상기 전자거래인증기관 서버는 구매자의 전자서명용 비밀키.공개키 쌍을 생성하고, 생성된 가입자의 전자서명용 비밀키는 암호화하여 구매자에게 전송하며, 구매자의 인증서를 발급 및 저장하고, 암호화된 구매자의 전자서명용 비밀키를 복호화할 수 있는 비밀번호를 구매자가 인증서비스 등록시 지정한 전자우편주소로 전송하는 단계; (d)상기 구매자 단말장치에 전자거래인증기관 서버로부터 전송된 구매자의 암호화된 전자서명 비밀키를 저장하며, 지정한 전자우편주소로 발신된 비밀번호를 복호화하고 구매자의 단말장치내에 저장하는 단계; (e)상기 전자거래인증기관 서버로부터 인증서를 발급받은 구매자와 데이터센터내.외의 전자거래인증기관의 서버인증서를 발급받은 임의의 전자거래관련사업자간의 전자거래발생시, 구매자의 전자서명 후 상기 전자거래관련사업자 서버에 주문내역을 전송하는 단계; (f)상기 전자거래관련사업자 서버는 상기 구매자 단말장치로부터 전송된 주문내역에 대하여 전자서명 후, 전자거래인증기관 서버에 확인을 요청하는 단계; (g)상기 전자거래인증기관 서버는 데이터센터 단위로 분산구축된 디렉토리서버를 검색하여 구매자 및 전자거래관련사업자 인증서의 유효성을 확인하고 전자거래인증기관의 전자서명 후, 상기 구매자 단말장치 및 전자거래관련사업자 서버에 확인서를 전송하는 단계; 및 (h)상기 전자거래인증기관 서버의 확인을 근간으로 전자거래와 연계된 과금, 청구, 중개, 물류 등의 관련절차를 진행하는 단계를 포함함을 특징으로 한다.According to another aspect of the present invention, there is provided a method for providing an authentication service for an electronic transaction in a data center according to the present invention. (A) An electronic transaction related operator based on a session key generated by a purchaser terminal connected to an electronic transaction related server. Establishing a secure channel between a server and the purchaser terminal device; (b) the electronic transaction related service provider server applying for the authentication service registration to the electronic transaction certification authority with the purchaser's consent during the customer registration and update processing of the buyer; (c) In accordance with the purchaser's application for registration of the authentication service, the electronic transaction certification authority server generates a buyer's private key for public signature and public key, encrypts the subscriber's private key for electronic signature, and transmits the encrypted private key to the buyer. Issuing and storing a certificate, and transmitting a password for decrypting the encrypted buyer's private key to the e-mail address specified by the purchaser when registering the authentication service; (d) storing the encrypted electronic signature secret key of the buyer transmitted from the electronic transaction certification authority server in the buyer terminal device, decrypting the password sent to the designated e-mail address and storing in the buyer terminal device; (e) When an electronic transaction occurs between a buyer who has issued a certificate from the electronic transaction certification authority server and any electronic transaction related business entity that has issued a server certificate of an electronic transaction certification authority in or outside the data center, the electronic transaction after the buyer's electronic signature Transmitting the order history to a related service provider server; (f) the electronic transaction related operator server requesting confirmation from the electronic transaction certification authority server after the electronic signature with respect to the order history transmitted from the purchaser terminal device; (g) The electronic transaction certification authority server searches the directory server distributed in data center units to confirm the validity of the buyer and electronic transaction related business certificate, and after the electronic signature of the electronic transaction certification authority, the buyer terminal device and the electronic transaction. Transmitting a confirmation to a related service provider server; And (h) conducting related procedures such as billing, billing, brokerage, logistics, etc., associated with electronic transactions, based on the confirmation of the electronic transaction certification authority server.

이하 도면을 참조하여 본 발명을 상세히 설명하기로 한다.Hereinafter, the present invention will be described in detail with reference to the accompanying drawings.

본 발명은 전자거래가 발생하는 가상공간에서 네트워크의 물리적 허브 기능을 담당하는 데이터센터 단위로 인증 및 디렉토리서버를 분산 구축하고 이들의 연동을 위한 백본을 구성하여 효과적인 전자거래 단위의 인증서비스 제공을 가능하게 하며 인증서비스의 PKI구축에 용이한 계층적 하부구조를 가져갈 수 있게 한다.The present invention enables to provide an effective electronic transaction unit authentication service by constructing a backbone for interworking authentication and directory servers in a data center unit that serves as a physical hub of a network in a virtual space in which electronic transactions occur. It also allows for easy hierarchical infrastructure for PKI construction of certification services.

도 1은 데이터센터 중심의 인증서비스에 대한 개략적인 시스템을 도시한 것이다.Figure 1 shows a schematic system for a data center-centric authentication service.

도 1은 데이터센터 단위로 인증시스템을 분산구축하여 전자거래관련사업자의 서버에 인증서를 발급하고, 전자거래관련사업자를 일반에 대한 인증서비스 등록기관화하여 PKI를 구축하고, B2C 및 B2B간의 전자거래 단위에 있어 인증서비스를 제공하는 시스템을 도시한 것이다.1 is a distributed authentication system for each data center to issue a certificate to a server of an electronic transaction-related provider, to establish a PKI by becoming an authentication service registration agency for the general public, and to establish an electronic transaction between B2C and B2B. It shows a system for providing authentication services in units.

즉, 데이터센터내 전자거래관련사업자의 서비스 가입자는 전자거래인증기관의 인증서비스 고객으로 등록되고, 등록된 고객은 상기 인증기관으로부터 인증서를 발급받은 임의의 전자거래관련사업자간의 전자거래에 있어서도 동일한 인증서비스를 제공받을 수 있으며, 전자거래관련사업자는 인증서비스의 PKI에 등록된 임의의 구매자를 대상으로 안전성 및 신뢰성이 보장되는 전자거래를 할 수 있게 된다.That is, a service subscriber of an electronic transaction-related provider in a data center is registered as an authentication service customer of an electronic transaction certification authority, and the registered customer is authenticated in the same way in electronic transactions between any electronic transaction-related providers who have received a certificate from the certification authority. The service can be provided, and the electronic transaction-related service provider can perform the electronic transaction that guarantees safety and reliability to any buyer registered in the PKI of the authentication service.

도 2는 본 발명에 의한 데이터 센터의 전자거래 인증시스템의 구체적인 실시예를 도시한 것으로, 구매자 단말장치(210), 전자거래관련사업자 서버(220) 및 전자거래인증기관 서버(230)로 이루어진다.2 illustrates a specific embodiment of an electronic transaction authentication system of a data center according to the present invention, and includes a buyer terminal device 210, an electronic transaction related service provider server 220, and an electronic transaction authentication authority server 230.

구매자 단말장치(210)는 전자거래인증기관 서버(230)로부터 전송된 전자서명용 구매자 비밀키를 저장하고, 전자거래인증기관 서버(230)으로부터 전자우편을 통하여 수신된 비밀번호를 이용하여 구매자 전자서명용 비밀키를 복호화하고 구매자의 인증서를 저장한다.The buyer terminal device 210 stores the buyer secret key for the electronic signature transmitted from the electronic transaction certification authority server 230, and uses the password received through the e-mail from the electronic transaction certification authority server 230. Decrypt the key and store the buyer's certificate.

전자거래관련사업자 서버(220)는 구매자 단말장치(210)로부터 전자거래를 위한 고객 등록 및 갱신 신청을 받아 전자거래인증기관에 구매자의 전자서명용 비밀키, 공개키 쌍의 생성 및 인증서 발급을 요청하는 인증등록신청수단(222) 및 상기 절차에 따라 인증서를 발급받은 구매자와의 전자거래 발생시의 거래확인신청수단(221)을 구비한다.The electronic transaction-related business server 220 receives a customer registration and renewal request for electronic transactions from the purchaser terminal device 210 and requests the electronic transaction certification authority to generate a secret key and public key pair for the electronic signature of the buyer and issue a certificate. The certification registration application means 222 and the transaction confirmation application means 221 at the time of the electronic transaction with the buyer who issued the certificate in accordance with the above procedure.

인증등록신청수단(222)은 전자거래인증기관으로부터 발급받은 서버인증서를 근간으로 구매자 단말장치(210)와 보안채널을 설정하고, 구매자의 고객등록 및 갱신신청 과정에서 구매자의 동의를 얻어 전자거래 인증서비스 등록신청을 대행하는 기능을 수행한다.The certification registration application means 222 establishes a secure channel with the purchaser terminal 210 based on the server certificate issued from the electronic transaction certification authority, and authenticates the electronic transaction by obtaining the consent of the buyer during the customer registration and renewal application process. It performs the function of subscribing for service registration.

거래확인신청수단(221)은 전자거래관련사업자가 구매자와의 전자거래 발생시, 구매자의 전자서명용 비밀키로 전자서명된 구매정보에 대하여 전자거래관련사업자의 비밀키로 전자서명 후, 전자거래인증기관에 전자거래의 구매신청의 확인을 요청하는 기능을 수행한다.The transaction confirmation application means 221 is a digital signature of the electronic transaction associated with the electronic transaction, when the electronic transaction associated with the buyer when the electronic transaction with the buyer occurs, electronically signed to the electronic transaction certification authority Performs a function to request confirmation of a purchase application for a transaction.

전자거래인증기관 서버(230)는 상기 전자거래관련사업자 서버(220)의 고객에 대한 인증서비스 등록신청에 따라 전자서명용 비밀키, 공개키 쌍을 생성하고, 인증서를 발급하며, 생성된 전자서명용 비밀키를 암호화하여 전송하며, 암호화된 전자서명용 비밀키를 복호화할 수 있는 비밀번호를 고객등록시 지정한 전자우편주소로 발신하고, 상기 구매자 단말장치(210)로부터 상기 전자거래인증기관으로부터 인증서를 발급 받은 전자거래관련사업자 서버간의 전자거래 발생시, 전자상거래사업자 서버(220)의 거래확인신청수단(221)에서 구매자 및 전자거래관련사업자의 전자서명용 비밀키로 전자서명 된 구매정보가 전송되면 데이터센터 단위로 분산구축 된 디렉토리서버를 검색하여 구매자 및 전자거래관련사업자 인증서의 유효성을 확인하고 구매자 및 자거래관련사업자에게 전자거래 발생 및 거래내역에 대한 확인서를 발신하고 전자거래와 연계된 과금, 청구, 중개, 물류 등의 부가서비스를 진행시키는 시스템으로써, 부가서비스연동수단(231), 키 쌍 생성수단(232), 디렉토리관리수단(233), 인증서 발급수단(234), 전자거래확인수단(235) 및 인증서비스연동수단(236)으로 이루어진다.The electronic transaction certification authority server 230 generates a digital signature secret key and public key pair, issues a certificate, and generates the generated electronic signature secret according to the authentication service registration application for the customer of the electronic transaction related service provider server 220. Encrypts and transmits the key, transmits a password for decrypting the encrypted electronic signature for the electronic signature to the e-mail address specified at the time of customer registration, and obtains a certificate from the electronic transaction certification authority from the buyer terminal device 210. When electronic transaction occurs between related service provider servers, when the purchase confirmation information, which is electronically signed by the secret key for the electronic signature of the buyer and the related business operator, is transmitted from the transaction confirmation application means 221 of the e-commerce service provider server 220, the data is distributed and built into the data center unit. Search the directory server to verify the validity of the buyer and e-business related certificate, and It is a system to send confirmation of the occurrence of electronic transactions and transaction details to related businesses and to carry out additional services such as billing, billing, brokerage, logistics, etc. associated with electronic transactions, including additional service interworking means 231 and key pair generation means ( 232, directory management means 233, certificate issuing means 234, electronic transaction confirmation means 235 and authentication service interlocking means 236.

부가서비스연동수단(231)은 전자거래와 연계된 청구, 과금, 중개, 물류 등의 처리절차를 담당하는 부가서비스시스템(240)과의 연동 기능을 제공한다.The supplementary service interworking means 231 provides an interworking function with the supplementary service system 240 that is in charge of processing procedures such as billing, billing, mediation, and logistics associated with electronic transactions.

키 쌍 생성수단(232)은 구매자 및 전자거래사업자의 인증서 발급 요청에 따라 전자서명용 비밀키, 공개키 쌍을 생성하고 디렉토리서버에 저장하는 기능을 수행한다.The key pair generating means 232 generates a digital signature secret key and public key pair according to the certificate issuance request of the purchaser and the electronic trading operator and stores them in the directory server.

디렉토리관리수단(233)은 인증서를 저장 및 관리하고, 전자거래 단위의 거래 확인요청시 상대적인 가입자 경로를 기준으로 분산 구축된 디렉토리를 검색하여 인증서의 유효성을 확인하는 기능을 수행한다.The directory management means 233 stores and manages the certificate, and searches the distributedly constructed directory based on the relative subscriber path when requesting a transaction confirmation of the electronic transaction unit to check the validity of the certificate.

인증서발급수단(234)은 전자서명용 비밀키를 암호화하여 전송하고 암호화된 비밀키를 복호화 할 수 있는 비밀번호를 인증서비스 등록 시 지정한 전자우편주소로 발신하는 기능을 수행한다.The certificate issuing means 234 encrypts and transmits the secret key for digital signature, and transmits a password capable of decrypting the encrypted secret key to an e-mail address specified when registering an authentication service.

전자거래확인수단(235)은 전자거래 단위의 거래 확인요청 시 상대적인 가입자 경로를 기준으로 분산 구축된 디렉토리를 검색하여 인증서의 유효성을 확인하고 구매자 및 전자거래관련사업자에게 확인서를 발신하는 기능을 수행한다.The electronic transaction confirmation means 235 performs a function of checking the validity of a certificate by searching a distributedly constructed directory based on a relative subscriber path when requesting a transaction confirmation of an electronic transaction unit, and sending a confirmation to a buyer and an electronic transaction related company. .

인증서비스연동수단(236)은 전자거래 단위의 인증서비스 제공을 위하여 데이터센터 단위로 분산구축된 인증시스템의 연동기능을 제공한다.The authentication service linkage means 236 provides an interworking function of the authentication system distributed and built in units of data centers to provide authentication services in units of electronic transactions.

상술한 구성에 의거하여 각각의 데이터센터에 인증시스템을 분산구축하고 전자거래 단위의 인증서비스를 제공하는 절차에 대하여 상세히 설명하기로 한다.Based on the configuration described above, a procedure for distributing an authentication system in each data center and providing an authentication service for an electronic transaction unit will be described in detail.

먼저, 전자거래인증기관은 인증시스템(230)를 이용하여 상기 전자거래관련사업자의 서버(220)에 별도의 절차에 따른 인증서를 발급하고, 상기 전자거래관련사업자는 발급 받은 서버인증서와 구매자 단말장치(210)에서 생성한 세션키를 근간으로 전자거래관련사업자와 구매자의 단말장치간 보안채널을 설정한다.First, the electronic transaction certification authority issues a certificate according to a separate procedure to the server 220 of the electronic transaction related operator using the authentication system 230, and the electronic transaction related operator receives the issued server certificate and the purchaser terminal device. Based on the session key generated in step 210, a secure channel is established between the electronic transaction related service provider and the purchaser's terminal device.

상기 전자거래관련사업자는 구매자의 고객등록 및 갱신 처리과정에서 구매자의 동의하에 상기 전자거래인증기관에 구매자의 전자거래 인증서비스 등록신청을 수행한다.The electronic transaction related business operator performs a buyer's electronic transaction authentication service registration application with the electronic transaction certification authority with the purchaser's consent in the process of registering and updating the customer's customer.

상기 전자거래관련사업자 서버(220)의 인증등록 신청수단(221)의 요청에 따라 키 쌍의 생성수단(232)은 구매자의 전자서명용 비밀키, 공개키 쌍 및 인증서를 생성하여 디렉토리 서버에 저장하고, 생성된 구매자의 전자서명용 비밀키는 인증서 발급수단(234)에 의해 암호화되어 구매자에게 전송되고 이를 복호화 할 수 있는 비밀번호를 구매자가 인증서비스 등록신청 시 지정한 전자우편주소로 발신된다.According to the request of the certificate registration requesting means 221 of the electronic transaction-related business server 220, the key pair generating means 232 generates a secret key, a public key pair and a certificate for the buyer's electronic signature, and stores it in a directory server. In addition, the generated secret key for the electronic signature of the buyer is encrypted by the certificate issuing means 234 and transmitted to the buyer, and a password capable of decrypting the password is sent to the e-mail address specified by the purchaser when registering for the authentication service.

구매자는 구매자단말장치(210)에 전자거래인증기관의 인증시스템(230)으로부터 전송된 구매자의 암호화된 전자서명용 비밀키를 저장하며, 지정한 전자우편주소로 발신된 비밀번호를 이용하여 비밀키를 복호화 하고 구매자 단말장치 내에 인증서를 저장한다.The buyer stores the encrypted electronic signature secret key of the buyer transmitted from the authentication system 230 of the electronic transaction certification authority in the buyer terminal device 210, and decrypts the secret key using the password sent to the designated email address. Store the certificate in the purchaser terminal device.

전자거래인증기관의 인증서를 발급받은 구매자와 데이터센터내.외의 전자거래인증기관의 서버인증서를 발급받은 임의의 전자거래관련사업자간의 전자거래발생 시, 구매자의 전자서명 후 전자거래관련사업자 서버에 주문내역을 전송하면 전자거래관련사업자의 거래확인신청수단(221)은 주문내역에 전자서명 후, 전자거래인증기관의 거래확인수단(235)에 확인을 요청한다.When an electronic transaction occurs between a buyer who has issued a certificate of an electronic transaction certification agency and any electronic transaction related company that has issued a server certificate of an electronic transaction certification institution in or outside the data center, the buyer orders the electronic transaction related server after the electronic signature of the buyer. When the details are transmitted, the transaction confirmation application means 221 of the electronic transaction-related operator requests the confirmation from the transaction confirmation means 235 of the electronic transaction certification authority after the electronic signature on the order details.

전자거래인증기관의 거래확인수단(235)은 인증서비스연동수단(236)을 통하여 데이터센터 단위로 분산구축된 디렉토리서버를 검색하여 구매자 및 전자거래관련사업자 인증서의 유효성을 확인하고 전자거래인증기관의 전자서명 후, 구매자 및 전자거래관련사업자에게 확인서를 전송한다.The transaction confirmation means 235 of the electronic transaction certification authority searches the directory server distributed by the data center unit through the authentication service interlocking means 236 to confirm the validity of the certificate of the buyer and the electronic transaction related business operator, After the digital signature, a confirmation letter is sent to the buyer and the business operator concerned.

전자거래인증기관의 확인을 근간으로 부가서비스연동수단(236)은 전자거래와 연계된 과금, 청구, 중개, 물류 등의 관련절차를 진행한다.Based on the confirmation of the electronic transaction certification authority, the additional service interworking means 236 proceeds with related procedures such as billing, billing, brokerage, logistics, and the like associated with the electronic transaction.

도면과 명세서는 단지 본 발명의 예시적인 것으로서, 이는 단지 본 발명을 설명하기 위한 목적에서 사용된 것이지 의미 한정이나 특허청구범위에 기재된 본 발명의 범위를 제한하기 위하여 사용된 것은 아니다. 그러므로, 본 기술 분야의 통상의 지식을 가진 자라면 이로부터 다양한 변형 및 균등한 타 실시 예가 가능하다는 점을 이해할 것이다. 따라서, 본 발명의 진정한 기술적 보호 범위는 첨부된 특허청구범위의 기술적 사상에 의해 정해져야 할 것이다.The drawings and specification are merely exemplary of the invention, which are used only for the purpose of illustrating the invention and are not intended to limit the scope of the invention as defined in the meaning or claims. Therefore, those skilled in the art will understand that various modifications and equivalent other embodiments are possible therefrom. Therefore, the true technical protection scope of the present invention will be defined by the technical spirit of the appended claims.

본 발명에 의하면, 전자거래 단위의 인증시스템 개발하여 전자거래의 안전성 및 신뢰성을 제공하여 전체 전자거래시장의 성장에 기여하고, 전자거래시장에서의 구매자 및 판매자의 전자거래에 연계된 인증서 발급 절차의 개발로 광범한 PKI의 구축이 용이하며, 가상적인 전자거래시장의 중심이 되는 데이터센터 단위로 인증시스템을 분산구축 함으로써 안정적인 인증서비스 제공과 인증서비스의 효율적인 운용이 가능하다.According to the present invention, by developing an electronic trading unit authentication system to provide the safety and reliability of electronic transactions to contribute to the growth of the entire electronic trading market, and the certificate issuance process linked to the electronic transactions of buyers and sellers in the electronic trading market It is easy to construct a wide range of PKI through development, and it is possible to provide stable authentication service and efficient operation of authentication service by distributing authentication system in each data center unit which is the center of virtual e-commerce market.

또한, 본 발명에서 제시된 구매자와 전자거래관련사업자 간의 전자거래 단위의 인증서비스 모델은 전자거래관련사업자간의 전자거래 단위의 인증서비스 제공에도 동일하게 적용가능하다.In addition, the authentication service model of the electronic transaction unit between the buyer and the electronic transaction-related provider presented in the present invention is equally applicable to providing the authentication service of the electronic transaction unit between the electronic transaction-related operators.

Claims (6)

적어도 하나의 전자거래관련사업자와 전자거래인증기관을 포함하는 데이터센터 단위로 분산된 인증시스템에 있어서,In the authentication system distributed in units of data center including at least one electronic transaction associated company and an electronic transaction certification body, 상기 전자상거래관련사업자에 인증서를 발급하는 전자거래인증기관 서버; 및An electronic transaction certification authority server for issuing a certificate to the electronic commerce related company; And 상기 발급 받은 서버인증서와 구매자 단말장치에서 생성한 세션키를 근간으로 구매자 단말장치와의 보안채널을 설정하고, 구매자의 고객등록 및 갱신신청 처리과정에서 구매자의 동의하에 전자거래인증서비스 등록을 신청하는 전자거래관련사업자 서버를 포함하고,Set up a secure channel with the buyer terminal device based on the issued server certificate and the session key generated by the buyer terminal device, and apply for electronic transaction authentication service registration with the purchaser's consent in the process of customer registration and renewal application. Including an e-commerce-related business server, 상기 전자거래인증기관 서버는The electronic transaction certification authority server 구매자의 신청에 따라 구매자의 전자서명용 비밀키.공개키쌍을 생성하고 구매자의 전자서명용 비밀키를 암호화하여 전송하고, 구매자에게 인증서를 발급 및 저장하고, 암호화된 구매자의 전자서명용 비밀키를 복호화할 수 있는 비밀번호를 구매자가 등록신청시 지정한 전자우편주소로 발신하여 구매자가 단말장치에 인증서를 저장할 수 있게 함을 특징으로 하는 데이터 센터의 전자거래 인증시스템.Upon purchaser's request, a buyer's private key for digital signature and public key can be generated, encrypted and transmitted to buyer's private key for digital signature, issued and stored to the buyer, and the encrypted private key for buyer's digital signature can be decrypted. An electronic transaction authentication system for a data center, characterized in that a password can be sent to an e-mail address specified by a buyer at the time of registration. 제1항에 있어서,The method of claim 1, 상기 구매자와 상기 전자거래인증기관의 서버인증서를 발급받은 데이터센터내.외의 임의의 전자거래관련사업자간의 전자거래 발생시,When an electronic transaction occurs between any purchaser and any electronic transaction related business entity in or outside the data center that has received the server certificate of the electronic transaction certification authority, 상기 전자거래관련사업자 서버는The electronic transaction-related business server 상기 구매자가 전자서명한 구매신청에 대한 확인을 전자거래사업자의 전자서명 후, 상기 전자거래인증기관의 서버에 요청하도록 프로그램되고,After the electronic signature of the electronic transaction provider to confirm the purchase application signed by the buyer electronically, it is programmed to request the server of the electronic transaction certification authority, 상기 전자거래인증기관 서버는The electronic transaction certification authority server 데이터센터단위로 분산구축된 디렉토리서버를 검색하여 구매자 및 전자거래관련사업자 인증서의 유효성을 확인하고 인증기관의 전자서명 후, 상기 구매자 및 전자거래관련사업자의 거래발생 및 거래내역에 대한 확인서를 발급하도록 프로그램되고, 이를 근거로 전자거래와 연계된 과금, 청구, 중개, 물류 등의 관련절차를 진행할 수 있게 하는 프로그램됨을 특징으로 하는 데이터 센터의 전자거래 인증시스템.To verify the validity of the certificate of buyers and e-businesses by searching the distributed directory server by data center unit, and to issue the confirmation of transaction occurrence and transaction history of the buyers and e-businesses after the electronic signature of the certification authority. The electronic transaction authentication system of the data center, characterized in that programmed to enable the related procedures such as billing, billing, brokerage, logistics, etc. associated with the electronic transaction based on this. 제1항에 있어서, 상기 전자거래관련사업자 서버는The server of claim 1, wherein the electronic transaction related service provider server 상기 전자거래인증기관 서버로부터 발급받은 서버인증서를 근간으로 구매자 단말장치와 보안채널을 설정하고, 구매자의 고객등록 및 갱신신청 과정에서 구매자의 동의를 얻어 전자거래 인증서비스 등록신청을 대행하는 인증등록신청수단; 및Based on the server certificate issued from the electronic transaction certification authority server, establish a secure channel with the buyer terminal device, the authentication registration application for the electronic transaction authentication service registration application with the consent of the buyer during the customer registration and renewal application process of the buyer Way; And 상기 전자거래관련사업자가 구매자와의 전자거래 발생시, 구매자의 전자서명용 비밀키로 전자서명된 구매정보에 대하여 전자거래관련사업자의 비밀키로 전자서명 후, 전자거래인증기관에 전자거래의 구매신청의 확인을 요청하는 거래확인신청수단을 포함함을 특징으로 하는 데이터 센터의 전자거래 인증시스템.When the electronic transaction-related business operator makes an electronic transaction with the purchaser, the electronic signature on the purchase information electronically signed by the purchaser's electronic signature secret key with the electronic business-related business secret key is confirmed, and the electronic transaction certification authority confirms the purchase application for the electronic transaction. Electronic transaction authentication system of a data center, characterized in that it comprises a request for requesting transaction confirmation. 제1항에 있어서, 상기 전자거래인증기관의 서버는According to claim 1, wherein the server of the electronic transaction certification authority 상기 전자거래관련사업자의 서버에 소정의 절차에 따라 인증서를 발급하는 인증서 발급수단;Certificate issuing means for issuing a certificate to a server of the electronic transaction related company according to a predetermined procedure; 상기 전자거래인증기관의 서버에서 등록신청에 따라 구매자의 전자서명용 비밀키, 공개키쌍을 생성하는 키 쌍 생성수단;A key pair generating means for generating a secret key and a public key pair for an electronic signature of a buyer according to a registration request in the server of the electronic transaction certification authority; 상기 인증서를 저장 및 관리하고, 전자거래 단위의 거래 확인요청시 상대적인 가입자 경로를 기준으로 분산 구축하는 디렉토리관리수단;Directory management means for storing and managing the certificate, and distributing and establishing based on a relative subscriber path when requesting a transaction confirmation of an electronic transaction unit; 상기 전자거래 단위의 거래 확인요청시 상대적인 가입자 경로를 기준으로 분산 구축된 디렉토리를 검색하여 인증서의 유효성을 확인하고 구매자 및 전자거래관련사업자에게 확인서를 발신하는 전자거래확인수단;An electronic transaction verification means for searching a distributedly constructed directory based on a relative subscriber path when requesting a transaction confirmation of the electronic transaction unit, confirming the validity of a certificate, and sending a confirmation letter to a buyer and an electronic transaction related company; 상기 전자거래인증기관의 서버에서 데이터센터 단위로 분산구축된 디렉토리서버를 검색하여 상기 구매자 및 전자거래관련사업자 인증서의 유효성을 확인하고 전자거래인증기관의 전자서명 후, 구매자 및 전자거래관련사업자에게 거래발생 및 거래내역에 대한 확인서를 발급하고, 이를 근거로 전자거래와 연계된 과금, 청구, 중개, 물류 등의 관련 절차를 진행하는 부가서비스연동수단; 및Search the directory server distributed by data center unit from the server of the electronic transaction certification authority to check the validity of the certificate of the buyer and the electronic transaction related company, and then deal with the buyer and the electronic transaction related company after the electronic signature of the electronic transaction certification authority. Additional service interworking means for issuing a confirmation on the occurrence and transaction details and performing related procedures such as billing, billing, brokerage, logistics, etc., associated with the electronic transaction; And 상기 전자거래 단위의 인증서비스 제공을 위하여 데이터 센터 단위로 분산구축된 인증시스템간에 연동하는 인증서비스연동수단을 포함함을 특징으로 하는 데이터 센터의 전자거래 인증시스템.And an authentication service interlocking means interworking between authentication systems distributed and constructed in units of data centers to provide authentication services in units of electronic transactions. 제4항에 있어서, 상기 인증서발급수단은The method of claim 4, wherein the certificate issuance means 상기 전자거래인증기관의 서버에서 생성된 구매자의 전자서명용 비밀키를 암호화하여 전송하고 암호화된 비밀키를 복호화 할 수 있는 비밀번호를 인증서비스 등록시 지정한 전자우편주소로 발신하는 기능을 수행함을 특징으로 하는 데이터 센터의 전자거래 인증시스템.Encrypting and transmitting the buyer's electronic signature secret key generated by the server of the electronic transaction certification authority, and transmitting a password for decrypting the encrypted secret key to an e-mail address specified in the authentication service registration. Center's e-commerce authentication system. 데이터센터 단위로 인증시스템을 분산 구축하고 전자거래 단위의 인증서비스 제공방법에 있어서,In the method of decentralizing authentication system by data center and providing authentication service by electronic transaction unit, (a)전자거래관련사업자 서버에 접속한 구매자 단말장치에서 생성한 세션키를 근간으로 상기 전자거래관련사업자 서버와 상기 구매자 단말장치간의 보안채널을 설정하는 단계;(a) establishing a secure channel between the electronic transaction related service provider server and the buyer terminal device based on a session key generated by the buyer terminal device connected to the electronic transaction related service provider server; (b)상기 전자거래관련사업자 서버가 구매자의 고객등록 및 갱신 처리과정에서 구매자의 동의를 얻어 전자거래인증기관에 인증서비스 등록을 신청하는 단계;(b) the electronic transaction related service provider server applying for the authentication service registration to the electronic transaction certification authority with the purchaser's consent during the customer registration and update processing of the buyer; (c)상기 구매자의 인증서비스 등록신청에 따라 상기 전자거래인증기관 서버는 구매자의 전자서명용 비밀키.공개키 쌍을 생성하고, 생성된 가입자의 전자서명용 비밀키는 암호화하여 구매자에게 전송하며, 구매자의 인증서를 발급 및 저장하고, 암호화된 구매자의 전자서명용 비밀키를 복호화할 수 있는 비밀번호를 구매자가 인증서비스 등록시 지정한 전자우편주소로 전송하는 단계;(c) In accordance with the purchaser's application for registration of the authentication service, the electronic transaction certification authority server generates a buyer's private key for public signature and public key, encrypts the subscriber's private key for electronic signature, and transmits the encrypted private key to the buyer. Issuing and storing a certificate, and transmitting a password for decrypting the encrypted buyer's private key to the e-mail address specified by the purchaser when registering the authentication service; (d)상기 구매자 단말장치에 전자거래인증기관 서버로부터 전송된 구매자의 암호화된 전자서명 비밀키를 저장하며, 지정한 전자우편주소로 발신된 비밀번호를 복호화하고 구매자의 단말장치내에 저장하는 단계;(d) storing the encrypted electronic signature secret key of the buyer transmitted from the electronic transaction certification authority server in the buyer terminal device, decrypting the password sent to the designated e-mail address and storing in the buyer terminal device; (e)상기 전자거래인증기관 서버로부터 인증서를 발급받은 구매자와 데이터센터내.외의 전자거래인증기관의 서버인증서를 발급받은 임의의 전자거래관련사업자간의 전자거래발생시, 구매자의 전자서명 후 상기 전자거래관련사업자 서버에 주문내역을 전송하는 단계;(e) When an electronic transaction occurs between a buyer who has issued a certificate from the electronic transaction certification authority server and any electronic transaction related business entity that has issued a server certificate of an electronic transaction certification authority in or outside the data center, the electronic transaction after the buyer's electronic signature Transmitting the order history to a related service provider server; (f)상기 전자거래관련사업자 서버는 상기 구매자 단말장치로부터 전송된 주문내역에 대하여 전자서명 후, 전자거래인증기관 서버에 확인을 요청하는 단계;(f) the electronic transaction related operator server requesting confirmation from the electronic transaction certification authority server after the electronic signature with respect to the order history transmitted from the purchaser terminal device; (g)상기 전자거래인증기관 서버는 데이터센터 단위로 분산구축된 디렉토리서버를 검색하여 구매자 및 전자거래관련사업자 인증서의 유효성을 확인하고 전자거래인증기관의 전자서명 후, 상기 구매자 단말장치 및 전자거래관련사업자 서버에 확인서를 전송하는 단계; 및(g) The electronic transaction certification authority server searches the directory server distributed in data center units to confirm the validity of the buyer and electronic transaction related business certificate, and after the electronic signature of the electronic transaction certification authority, the buyer terminal device and the electronic transaction. Transmitting a confirmation to a related service provider server; And (h)상기 전자거래인증기관 서버의 확인을 근간으로 전자거래와 연계된 과금, 청구, 중개, 물류 등의 관련절차를 진행하는 단계를 포함함을 특징으로 하는 데이터 센터의 전자거래 인증서비스 제공방법.(h) a method for providing an electronic transaction authentication service for a data center, comprising the steps of: performing billing, billing, brokerage, logistics, and the like, associated with an electronic transaction, based on the verification of the electronic transaction certification authority server; .
KR1020000004492A 2000-01-29 2000-01-29 A authentication system for electronic commerce in data center and an offer method of authentication service Ceased KR20000024217A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020000004492A KR20000024217A (en) 2000-01-29 2000-01-29 A authentication system for electronic commerce in data center and an offer method of authentication service

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020000004492A KR20000024217A (en) 2000-01-29 2000-01-29 A authentication system for electronic commerce in data center and an offer method of authentication service

Publications (1)

Publication Number Publication Date
KR20000024217A true KR20000024217A (en) 2000-05-06

Family

ID=19642801

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020000004492A Ceased KR20000024217A (en) 2000-01-29 2000-01-29 A authentication system for electronic commerce in data center and an offer method of authentication service

Country Status (1)

Country Link
KR (1) KR20000024217A (en)

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20010035539A (en) * 2001-02-27 2001-05-07 김형근 Method to notarize electronic documents by using digital signatures
KR20020005300A (en) * 2000-07-10 2002-01-17 류재철 Method for implementing realtime electronic auction system by using www based digital signature
KR20020022158A (en) * 2000-09-19 2002-03-27 전대식 method for authentication and settlement with the use of transaction code
KR20020022637A (en) * 2001-12-21 2002-03-27 대한설비건설공제조합 Method and system for issuing an electronic guarantee using internet
KR20020082251A (en) * 2001-04-19 2002-10-31 부루소 인터내셔날 주식회사 Customer Management System with Certificate
KR20030013946A (en) * 2001-08-10 2003-02-15 동우정보시스템(주) Cyber resource trading system
KR100419484B1 (en) * 2001-09-07 2004-02-19 한국전자통신연구원 An efficient certificate validation system and method using validation authority in PKI
KR20050042694A (en) * 2003-11-04 2005-05-10 한국전자통신연구원 Method for electronic commerce using security token and apparatus thereof
KR100503017B1 (en) * 2000-11-21 2005-07-22 양길섭 Method and System for server to execute Electronic Commerce in concerted internet site and off-line store
KR100506700B1 (en) * 2000-06-28 2005-08-09 소프트포럼 주식회사 Method for providing secured web-mail service based on public key, and system for the same
KR100739324B1 (en) * 2000-11-27 2007-07-12 주식회사 케이티 Electronic prescription delivery system and method
US7321970B2 (en) 2003-12-30 2008-01-22 Nokia Siemens Networks Oy Method and system for authentication using infrastructureless certificates
US7542571B2 (en) 2000-09-12 2009-06-02 Sony Corporation Transmitting second content data with reference for use with first content data
KR20150084124A (en) * 2014-01-13 2015-07-22 한국전자통신연구원 Vehicle Communication Registration Apparatus for Group Driving and Method thereof

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100506700B1 (en) * 2000-06-28 2005-08-09 소프트포럼 주식회사 Method for providing secured web-mail service based on public key, and system for the same
KR20020005300A (en) * 2000-07-10 2002-01-17 류재철 Method for implementing realtime electronic auction system by using www based digital signature
US7542571B2 (en) 2000-09-12 2009-06-02 Sony Corporation Transmitting second content data with reference for use with first content data
KR20020022158A (en) * 2000-09-19 2002-03-27 전대식 method for authentication and settlement with the use of transaction code
KR100503017B1 (en) * 2000-11-21 2005-07-22 양길섭 Method and System for server to execute Electronic Commerce in concerted internet site and off-line store
KR100739324B1 (en) * 2000-11-27 2007-07-12 주식회사 케이티 Electronic prescription delivery system and method
KR20010035539A (en) * 2001-02-27 2001-05-07 김형근 Method to notarize electronic documents by using digital signatures
KR20020082251A (en) * 2001-04-19 2002-10-31 부루소 인터내셔날 주식회사 Customer Management System with Certificate
KR20030013946A (en) * 2001-08-10 2003-02-15 동우정보시스템(주) Cyber resource trading system
KR100419484B1 (en) * 2001-09-07 2004-02-19 한국전자통신연구원 An efficient certificate validation system and method using validation authority in PKI
KR20020022637A (en) * 2001-12-21 2002-03-27 대한설비건설공제조합 Method and system for issuing an electronic guarantee using internet
KR20050042694A (en) * 2003-11-04 2005-05-10 한국전자통신연구원 Method for electronic commerce using security token and apparatus thereof
US7321970B2 (en) 2003-12-30 2008-01-22 Nokia Siemens Networks Oy Method and system for authentication using infrastructureless certificates
KR20150084124A (en) * 2014-01-13 2015-07-22 한국전자통신연구원 Vehicle Communication Registration Apparatus for Group Driving and Method thereof

Similar Documents

Publication Publication Date Title
US6102287A (en) Method and apparatus for providing product survey information in an electronic payment system
JP4518942B2 (en) System and method for secure authentication and billing of goods and services using cellular telecommunication and authorization infrastructure
EP1397787B1 (en) System and method of bootstrapping a temporary public -key infrastructure from a cellular telecommunication authentication and billing infrastructure
KR100925329B1 (en) Method and device for mutual authentication and key sharing for downloadable conditional access system in digital cable broadcasting network
KR101661930B1 (en) Certificate issuance system based on block chain
US6105012A (en) Security system and method for financial institution server and client web browser
US6675153B1 (en) Transaction authorization system
US6363365B1 (en) Mechanism for secure tendering in an open electronic network
US6934838B1 (en) Method and apparatus for a service provider to provide secure services to a user
US20100088236A1 (en) Secure software service systems and methods
US20110138177A1 (en) Online public key infrastructure (pki) system
CN102708508A (en) Secure wireless electronic-commerce system with wireless network domain
EP1722532A2 (en) Deliver-upon-request secure electronic message system
KR20000024217A (en) A authentication system for electronic commerce in data center and an offer method of authentication service
US20070118749A1 (en) Method for providing services in a data transmission network and associated components
CN113706261A (en) Block chain-based power transaction method, device and system
JP2001134534A (en) Authentication proxy method, authentication proxy service system, authentication proxy server device and client device
KR100926153B1 (en) Electronic signature wireless authentication service system and method using mobile terminal
JP4695633B2 (en) Method and apparatus for selling digital resources
KR20020070232A (en) On-line gift card system and method of providing the gift card
JP2004102872A (en) Personal Information Protection Online Commerce System
KR100374973B1 (en) Method for presenting/paying bill electronically and system for the same
JP2003308298A (en) Authorization method when executing online API
CA2237441C (en) A mechanism for secure tendering in an open electronic network
KR100802555B1 (en) How to process credit card secure payments online

Legal Events

Date Code Title Description
A201 Request for examination
PA0109 Patent application

St.27 status event code: A-0-1-A10-A12-nap-PA0109

PA0201 Request for examination

St.27 status event code: A-1-2-D10-D11-exm-PA0201

PG1501 Laying open of application

St.27 status event code: A-1-1-Q10-Q12-nap-PG1501

D13-X000 Search requested

St.27 status event code: A-1-2-D10-D13-srh-X000

D14-X000 Search report completed

St.27 status event code: A-1-2-D10-D14-srh-X000

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

St.27 status event code: A-1-2-D10-D21-exm-PE0902

P11-X000 Amendment of application requested

St.27 status event code: A-2-2-P10-P11-nap-X000

P13-X000 Application amended

St.27 status event code: A-2-2-P10-P13-nap-X000

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

St.27 status event code: A-1-2-D10-D21-exm-PE0902

E13-X000 Pre-grant limitation requested

St.27 status event code: A-2-3-E10-E13-lim-X000

P11-X000 Amendment of application requested

St.27 status event code: A-2-2-P10-P11-nap-X000

P13-X000 Application amended

St.27 status event code: A-2-2-P10-P13-nap-X000

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

St.27 status event code: A-1-2-D10-D21-exm-PE0902

P11-X000 Amendment of application requested

St.27 status event code: A-2-2-P10-P11-nap-X000

P13-X000 Application amended

St.27 status event code: A-2-2-P10-P13-nap-X000

R17-X000 Change to representative recorded

St.27 status event code: A-3-3-R10-R17-oth-X000

R17-X000 Change to representative recorded

St.27 status event code: A-3-3-R10-R17-oth-X000

E601 Decision to refuse application
PE0601 Decision on rejection of patent

St.27 status event code: N-2-6-B10-B15-exm-PE0601

R18-X000 Changes to party contact information recorded

St.27 status event code: A-3-3-R10-R18-oth-X000

P22-X000 Classification modified

St.27 status event code: A-2-2-P10-P22-nap-X000

P22-X000 Classification modified

St.27 status event code: A-2-2-P10-P22-nap-X000

P22-X000 Classification modified

St.27 status event code: A-2-2-P10-P22-nap-X000

P22-X000 Classification modified

St.27 status event code: A-2-2-P10-P22-nap-X000

P22-X000 Classification modified

St.27 status event code: A-2-2-P10-P22-nap-X000

P22-X000 Classification modified

St.27 status event code: A-2-2-P10-P22-nap-X000