公开(公告)号：KR1020030043452A

公开(公告)日：2003-06-02

申请号：KR1020010074635

申请日：2001-11-28

Applicant: 한국전자통신연구원

Inventor： 조영섭 ,  진승헌 ,  조상래 ,  최대선 ,  노종혁 ,  김희선 ,  김태성

IPC: G06F17/00 ,  G06F21/24

Abstract: PURPOSE: A system and a method for generating a paper document of an electronic document signed by a public key, and an authenticating electronic signature on the paper document are provided to print an electronic document, signed by a public key, on a paper for a backup, a circulation and a check, and to authenticate the printed paper document. CONSTITUTION: The system comprises a paper document generator(1000), and a paper document authenticator(2000). The paper document generator(1000) includes a paper document generation module(100) and a paper printing module(200). The paper document authenticator(2000) includes a paper document input module(300) and a paper document authentication module(400). The paper document generation module(100) generates an image to be printed on a paper for the electronic document signed by the public key. The paper printing module(200) prints the generated image on the paper. The paper document input module(300) receives the paper document, output via the paper printing module(200), converts the paper document into the digital document, and transfers the digital document to the paper document authentication module(400). The paper document authentication module(400) authenticates the digital document, transferred by the paper document input module(300).

Abstract translation: 目的：提供一种用于生成由公钥签名的电子文档的纸质文档的系统和方法，以及在纸质文档上的认证电子签名，以将公钥签名的电子文档打印在纸张上 备份，流通和检查，以及验证打印的纸质文件。 规定：系统包括纸质文件生成器（1000）和纸质文件认证器（2000）。 纸质文件生成器（1000）包括纸质生成模块（100）和纸张打印模块（200）。 纸质认证器（2000）包括纸质文档输入模块（300）和纸质认证模块（400）。 纸质文件生成模块（100）生成用于由公开密钥签名的电子文档的纸上打印的图像。 纸张打印模块（200）将生成的图像打印在纸张上。 纸文件输入模块（300）通过纸张打印模块（200）接收纸质文档，将纸质文档转换为数字文档，并将数字文档传送到纸质认证模块（400）。 纸质认证模块（400）认证由纸质文档输入模块（300）传送的数字文档。

公开(公告)号：KR100479348B1

公开(公告)日：2005-03-31

申请号：KR1020020069035

申请日：2002-11-08

Applicant: 한국전자통신연구원

Inventor： 최대선 ,  김희선 ,  김태성 ,  노종혁 ,  조상래 ,  조영섭 ,  진승헌

IPC: G06F1/00

CPC classification number: H01R13/641

Abstract: 본 발명은 USB 포트를 보호하기 위한 뚜껑이 없이도 휴대 및 사용할 수 있도록 USB 포트를 외장 케이스 내부로 수납가능하게 한 휴대용 USB 저장장치를 개시한 것으로, 본 발명은 컴퓨터를 포함한 각종 단말장치의 입/출력 포트에 접속되어 데이터의 입/출력이 가능한 휴대용 USB 저장장치에 있어서, 데이터 저장장치가 실장되는 외장 케이스와, 외장 케이스 내부로 수납가능하게 슬라이딩 설치되는 USB포트와, 상기 USB포트의 수납을 선택적으로 조절할 수 있도록 설치되는 조절수단을 포함하는 것을 특징으로 한다.
본 발명에 따르면, 휴대용 USB 저장장치의 메모리 사용의 주된 입출력부로서 보호되어야 하는 USB 포트를 이동 및 휴대시에는 외장 케이스 내부로 수납할 수 있도록 함으로써 휴대용 USB 저장장치의 이용성 및 편의성을 높일 수 있다.

公开(公告)号：KR100419484B1

公开(公告)日：2004-02-19

申请号：KR1020010055190

申请日：2001-09-07

Applicant: 한국전자통신연구원

Inventor： 조영섭 ,  최대선 ,  진승헌 ,  조상래 ,  이정현 ,  김희선 ,  김태성 ,  노종혁 ,  정교일

IPC: H04L9/30

Abstract: PURPOSE: A method and apparatus of verifying validity of certificate of authentication using a verification server at a public key infrastructure are provided, which are capable of securing mutual interlocking of a public key infrastructure of different systems and of reducing a load of a client for verification. CONSTITUTION: The first verification server(28) receives validity verification request of a certificate of authentication from a verification request means(27) and judges whether or not of a reliable domain. The first verification server(28) compares and judges a routing server list to perform the validity verification of the certificate of authentication. The second verification server(29) receives validity verification request of a certificate of authentication from the first verification server and judges whether or not of an access allowance server list. The second verification server(29) performs the validity verification of the certificate of authentication.

Abstract translation: 目的：提供一种在公共密钥基础设施处使用验证服务器验证验证证书的有效性的方法和设备，其能够确保不同系统的公钥基础设施的相互联锁并且减少验证客户端的负载 。 组成：第一验证服务器（28）从验证请求装置（27）接收验证证书的有效性验证请求，并判断可靠域是否是可靠域。 第一验证服务器（28）比较并判断路由服务器列表以执行认证证书的有效性验证。 第二验证服务器（29）从第一验证服务器接收认证证书的有效性验证请求，并判断访问许可服务器列表是否存在。 第二验证服务器（29）执行认证证书的有效性验证。

公开(公告)号：KR100449483B1

公开(公告)日：2004-09-21

申请号：KR1020010064185

申请日：2001-10-18

Applicant: 한국전자통신연구원

Inventor： 김태성 ,  김희선 ,  노종혁 ,  정교일 ,  조상래 ,  조영섭 ,  진승헌 ,  최대선

IPC: G06K9/00

Abstract: PURPOSE: A method for a user registration is provided to solve an inconvenience of a complex approval code use and prevent a member authentication fraud through other person by using living body information in public key infrastructure. CONSTITUTION: An authentication system receives a request of member register from a registration institution(S600) and checks confidentiality and integrity of user information(S602). If the user information is normal(S604), inherent living body information of a user is recognized. In addition, it is checked whether living body information identified with the inputted living body information exists in database storage of the registration institution(S606). If identical living body information does not exist(S608), the user is approved as a member, the user information and living body information are stored and registered in the database storage by linking with a corresponding user table(S610,S617).

Abstract translation: 目的：提供一种用户注册方法，以解决复杂的批准代码使用的不便，并且通过在公共密钥基础设施中使用活体信息来防止通过他人进行成员认证欺诈。 组成：认证系统从注册机构（S600）接收成员注册请求并检查用户信息的机密性和完整性（S602）。 如果用户信息正常（S604），则识别用户的固有生物体信息。 另外，检查在输入的生物体信息中识别的生物体信息是否存在于注册机构的数据库存储器中（S606）。 如果不存在相同的生物体信息（S608），则用户被批准作为成员，通过与相应的用户表链接来存储和注册用户信息和生物体信息（S610，S617）。

公开(公告)号：KR1020040039902A

公开(公告)日：2004-05-12

申请号：KR1020020068139

申请日：2002-11-05

Applicant: 한국전자통신연구원

Inventor： 조영섭 ,  조상래 ,  최대선 ,  노종혁 ,  김희선 ,  김태성 ,  원형석 ,  진승헌

IPC: H04L9/30

CPC classification number: H04L9/3265 ,  H04L9/3268

Abstract: PURPOSE: An apparatus and a method for verifying a modified certificate path including root key verification and CRL pre-verification are provided to enhance the reliability of a root key by verifying the root key in a process for verifying a certificate path. CONSTITUTION: An apparatus for verifying a modified certificate path including root key verification and CRL pre-verification includes a root key verification unit(210), a CRL pre-verification unit(220), and a general certificate path verification unit(230). The root key verification unit(210) verifies a root key of a certificate authority of the highest level. The CRL pre-verification unit(220) identifies abolishing states of certificates on a certificate path. The general certificate path verification unit(230) verifies general items of the certificates.

Abstract translation: 目的：提供一种用于验证包括根密钥验证和CRL预验证的修改的证书路径的装置和方法，以通过在验证证书路径的过程中验证根密钥来增强根密钥的可靠性。 构成：用于验证包括根密钥验证和CRL预验证的修改的证书路径的装置包括根密钥验证单元（210），CRL预验证单元（220）和通用证书路径验证单元（230）。 根密钥验证单元（210）验证最高级的证书颁发机构的根密钥。 CRL预验证单元（220）识别证书路径上的证书的废除状态。 一般证书路径验证单元（230）验证证书的一般项目。

公开(公告)号：KR100431210B1

公开(公告)日：2004-05-12

申请号：KR1020020046693

申请日：2002-08-08

Applicant: 한국전자통신연구원

Inventor： 노종혁 ,  조영섭 ,  조상래 ,  최대선 ,  김태성 ,  김희선 ,  진승헌

IPC: H04L9/30

CPC classification number: H04L63/0823 ,  H04L9/3265 ,  H04L9/3268

Abstract: The present invention provides a method of validating a certificate by a certificate validation server using certificate policy and certificate policy mapping in a public key infrastructure (PKI). If the certificate validation server receives, from a client, an object certificate to be validated, a certificate of a certification authority which the client trusts, and a certificate policy which will be applied to validation of the object certificate, and receives a request for validation of the object certificate, the certificate validation server creates a certification path for the object certificate in response to the request. The certificate validation server validates the created certification path using a certificate policy mapping table if the validation of the object certificate is allowed, and then transmits a result message to the client according to the result of the validation of the certification path.

Abstract translation: 本发明提供了一种由证书验证服务器使用公钥基础设施（PKI）中的证书策略和证书策略映射来验证证书的方法。 如果证书验证服务器从客户端接收待验证的对象证书，客户端信任的证书颁发机构的证书以及将应用于验证对象证书的证书策略，并接收验证请求 证书验证服务器响应于该请求创建对象证书的证书路径。 如果允许对象证书的验证，则证书验证服务器使用证书策略映射表来验证所创建的证书路径，然后根据证书路径的验证结果向客户端发送结果消息。

公开(公告)号：KR1020030032422A

公开(公告)日：2003-04-26

申请号：KR1020010064186

申请日：2001-10-18

Applicant: 한국전자통신연구원

Inventor： 노종혁 ,  김태성 ,  김희선 ,  최대선 ,  조영섭 ,  조상래 ,  진승헌

IPC: H04L9/30

CPC classification number: H04L9/3231 ,  H04L9/006 ,  H04L9/3268 ,  H04L63/0823 ,  H04L63/0861 ,  H04L2209/76

Abstract: PURPOSE: A method for changing certificate right using biological information in a public key infrastructure authentication system is provided to perform right prohibition, right recovery and abolition of a certificate according to damage of a personal key through user authentication using biological information. CONSTITUTION: According to the method, it is accessed to a certificate authority server using login information of a user when there is a certificate right change request from the user registered in an authentication system as a member(S500). Biological information for user authentication is inputted through a biological information input device comprises in the user system. A certificate right change request message according to the request of the user is generated. Then, a certificate right change is requested through on-line by transmitting the biological information and the certificate right change request message to the above certificate authority.

Abstract translation: 目的：提供一种在公钥基础设施认证系统中使用生物信息改变证书权利的方法，通过使用生物信息的用户认证，根据个人密钥的损坏对证书执行正确的禁止，正确的恢复和废除。 构成：根据该方法，当在作为成员的认证系统中注册的用户存在证书权限改变请求时，使用登录信息访问认证机构服务器（S500）。 用户认证的生物信息通过生物信息输入装置输入，包括在用户系统中。 生成根据用户请求的证书权限变更请求消息。 然后，通过将生物信息和证书权利变更请求消息发送到上述认证机构，通过在线请求证书权利变更。