-
公开(公告)号:KR1020110056997A
公开(公告)日:2011-05-31
申请号:KR1020090113521
申请日:2009-11-23
Applicant: 한국전자통신연구원
CPC classification number: H04L63/0853 , G06F21/33 , G06F21/34 , G06F21/445 , H04L9/3234 , H04L9/3263 , H04L9/3273 , H04L63/061 , H04L63/0823 , H04L63/0869 , H04L67/02 , H04L2209/56 , H04L2209/76 , H04L2209/805
Abstract: PURPOSE: An identity management server, a system and a method using the same are provided to safely and conveniently stores user identities to a smart card of a user through a standard web technology. CONSTITUTION: A portable terminal(10) includes a smart card(11), and a management server(110) is mounted at the smart card. The management server manages a user identity, and a web server(20) generates the identity related to a user. The web server provides the management server with the generated identity through wired/wireless networks(50). A service terminal(30) receives an essential identity from the portable terminal through a local network communication.
Abstract translation: 目的:提供身份管理服务器,系统和使用该身份管理服务器的方法,以通过标准网络技术安全地和方便地将用户身份存储到用户的智能卡。 构成:便携式终端(10)包括智能卡(11),并且管理服务器(110)安装在智能卡上。 管理服务器管理用户身份,Web服务器(20)生成与用户相关的身份。 Web服务器通过有线/无线网络向管理服务器提供生成的身份(50)。 服务终端(30)通过本地网络通信从便携式终端接收基本身份。
-
公开(公告)号:KR1020100068786A
公开(公告)日:2010-06-24
申请号:KR1020080127261
申请日:2008-12-15
Applicant: 한국전자통신연구원
Abstract: PURPOSE: A method for preventing a cellular phone phishing attack by managing caller identification is provided to reduce the damages resulting from a malicious phishing attack. CONSTITUTION: A phishing discrimination request message for the caller ID of a received voice call is received from a mobile communication terminal, which receives a voice call, through a communication network(S300). It is judged whether or not the caller ID of the received voice call is a phishing calling number by referring to an internal DB(S310). The judgment result is transmitted to the mobile communication terminal through the communication network(S320).
Abstract translation: 目的:提供一种通过管理呼叫者识别来防止蜂窝电话钓鱼攻击的方法,以减少由恶意网络钓鱼攻击造成的损害。 构成:通过通信网络从接收到语音呼叫的移动通信终端接收到用于接收到的语音呼叫的呼叫者ID的网络钓鱼鉴别请求消息(S300)。 通过参照内部DB判断接收到的语音呼叫的呼叫者ID是否为网络钓鱼呼叫号码(S310)。 判断结果通过通信网络发送到移动通信终端(S320)。
-
公开(公告)号:KR1020100065021A
公开(公告)日:2010-06-15
申请号:KR1020090025132
申请日:2009-03-24
Applicant: 한국전자통신연구원
IPC: G06Q50/10 , G06Q40/02 , H04N21/6334 , H04W12/06
CPC classification number: G06Q40/02 , H04N21/6334 , H04W12/06
Abstract: PURPOSE: An identity information management apparatus and a method are provided to solve a problem that all identity information of user is provided to the identity consumer by contracting a sharing contract about shared data item. CONSTITUTION: A contract matter management unit(220) manages share contract facts of the identity information fixed and contracted between user and identity providers. If the identity consumer inputs the identity information request about the user, an identity provider selector unit(230) selects the identity provider capable of proving the identity information about the user based on the share contract facts. An information provider unit(240) provides the information according to the identity information request to the identity consumer.
Abstract translation: 目的:提供一种身份信息管理装置和方法,用于解决通过共享关于共享数据项的共享契约向身份消费者提供所有用户身份信息的问题。 规定:合同事务管理单位(220)管理用户和身份提供者之间固定和签约的身份信息的共享合同事实。 如果身份消费者输入关于用户的身份信息请求,身份提供者选择器单元(230)基于共享契约事实选择能够证明用户的身份信息的身份提供者。 信息提供者单元(240)根据身份信息请求向身份消费者提供信息。
-
公开(公告)号:KR1020100008893A
公开(公告)日:2010-01-27
申请号:KR1020080069508
申请日:2008-07-17
Applicant: 한국전자통신연구원
CPC classification number: H04L9/321 , G06F21/31 , G06F2221/2117 , H04L9/0816 , H04L9/3236 , H04L9/3297
Abstract: PURPOSE: A method for enrollment, an authentication using private internet access devices, and a system thereof are provided to safely authenticate without inputting user ID and password. CONSTITUTION: An authentication unit(132) encrypts the special purpose key using the authentication key which it is input from the service provider server. The authentication unit decrypts the server intrinsic creation information encrypted to the authentication key received from the service provider server. The authentication unit ciphers the personal information of user by the hard coded using the key and decoded server intrinsic creation information as described above. A user interaction unit(134) displays the server information which can confirm the service provider server received from the service provider server to user.
Abstract translation: 目的:提供一种注册方法,使用专用互联网接入设备的身份验证及其系统,以安全认证,而无需输入用户ID和密码。 构成:认证单元(132)使用从服务提供商服务器输入的认证密钥加密专用密钥。 认证单元将从服务提供商服务器接收到的认证密钥加密的服务器固有创建信息解密。 认证单元通过使用密钥的硬编码和解码的服务器固有创建信息来加密用户的个人信息,如上所述。 用户交互单元(134)显示可以向用户确认从服务提供商服务器接收的服务提供商服务器的服务器信息。
-
公开(公告)号:KR1020090104638A
公开(公告)日:2009-10-06
申请号:KR1020080135425
申请日:2008-12-29
Applicant: 한국전자통신연구원
Abstract: PURPOSE: A user terminal equipping an identity selector and an identity authentication method using the identity selector are provided to solve a problem about not remembering an I-PIN or G-PIN about which a user subscribes a site by adding the identity selector. CONSTITUTION: A user terminal(100) equipped with an identity selector includes an identity administration module(130), and an identity selector module. The identity selector provides identity information for the identification certification of a user between the identity certificate server, and the web service providing server. The identity administration module stores the information of the identity certificate server for issuing the crustaceous personal identification information for the corresponding user and information for identity of the corresponding user.
Abstract translation: 目的:提供使用身份选择器配备身份选择器和身份认证方法的用户终端,以解决通过添加身份选择器不记住用户订阅网站的I-PIN或G-PIN的问题。 构成:配备有身份选择器的用户终端(100)包括身份管理模块(130)和身份选择器模块。 身份选择器为身份证书服务器和Web服务提供服务器之间的用户的身份认证提供身份信息。 身份管理模块存储用于发布用于相应用户的皮肤个人识别信息的身份证明服务器的信息和用于相应用户身份的信息。
-
Patent Agency Ranking
公开(公告)号:KR100918838B1
公开(公告)日:2009-09-28
申请号:KR1020070131956
申请日:2007-12-17
Applicant: 한국전자통신연구원
Abstract: There is provided a method of sharing identities in a ubiquitous environment, the method including: allowing an identity sharing apparatus to receive a service message transmitted from a service provider; allowing a relationship module of the identity sharing apparatus to check whether to have a relationship with a service of the service provider that transmits the service message; displaying a portion of the received service message such that a user can select a service, when it is determined that no relationship is established; displaying relationship establishment conditions including the content of the selected service and an identity list to be provided to the service provider; allowing the service provider and the identity sharing apparatus to perform a relationship establishment protocol; and storing relationship establishment information.
-
27.发明授权고정 단말기에 저장되어 있는 인증서를 이동 단말기로전송하는 인증서 전송 서버 및 시스템 그리고 그 방법 失效고정단말기에저장되어있는인증서를이동단말기로전송하는인증서전송서버및시스그리고그방
公开(公告)号:KR100908242B1
公开(公告)日:2009-07-20
申请号:KR1020070046225
申请日:2007-05-11
Applicant: 한국전자통신연구원
IPC: H04W12/06
Abstract: A certificate transmitting server and system for transmitting a certificate stored in a fixed terminal to a mobile terminal, and a method thereof are provided to authenticate the mobile terminal and the fixed terminal through the certificate transmitting server and transmit the certificate through a safely set communication channel, thereby providing a safe mobile electronic business service. A method for transmitting a certificate stored in a fixed terminal to a mobile terminal comprises the following steps of: configuring the mobile terminal and a security channel to authenticate the mobile terminal(S301~S305); configuring the fixed terminal and a security channel to authenticate the fixed terminal(S309~S313); and receiving the certificate from the fixed terminal and transmitting the certificate to the mobile terminal if all authentication succeeds(S319).
Abstract translation: 提供了一种用于将存储在固定终端中的证书发送到移动终端的证书发送服务器和系统及其方法,用于通过证书发送服务器对移动终端和固定终端进行认证并通过安全设置的通信信道发送证书 从而提供安全的移动电子商务服务。 一种将存储在固定终端中的证书发送给移动终端的方法,包括以下步骤:配置移动终端和安全通道以认证移动终端(S301〜S305); 配置固定终端和安全通道以认证固定终端(S309〜S313); 并且如果全部认证成功(S319),则从固定终端接收证书并将证书发送到移动终端。
-
公开(公告)号:KR1020090055847A
公开(公告)日:2009-06-03
申请号:KR1020070122688
申请日:2007-11-29
Applicant: 한국전자통신연구원
CPC classification number: G06Q20/409 , G06Q20/38 , H04L63/08 , H04L63/205
Abstract: An authentication system between a server and a client through the various kinds of certification media and a method thereof are provided to select an authentication method suitable for a right level required from the server by providing an authentication method regardless of the authentication mechanism. A client(200) requests general-purpose authentication list to a server(300). The client provides the general purpose authorization index to a user(100). The authentication type is selected user. The server determines whether the user is authenticated. The response message is transmitted from the server to the client. The authentication system between a server and a client through the various kinds of certification media selects an authentication method suitable for a right level.
Abstract translation: 提供通过各种认证介质的服务器与客户端之间的认证系统及其方法,通过提供认证方法来选择适合于从服务器所需的权限级别的认证方法,而不管认证机制如何。 客户端(200)向服务器(300)请求通用认证列表。 客户端向用户提供通用授权索引(100)。 认证类型是选择用户。 服务器确定用户是否被认证。 响应消息从服务器发送到客户端。 通过各种认证媒体,服务器和客户端之间的认证系统选择适合于正确级别的认证方法。
-
公开(公告)号:KR1020090051966A
公开(公告)日:2009-05-25
申请号:KR1020070118449
申请日:2007-11-20
Applicant: 한국전자통신연구원
CPC classification number: H04L63/0884 , G06F21/41 , H04L63/0815 , H04L63/083
Abstract: 웹사이트 로그인 처리 방법 및 장치가 개시된다. 어느 웹사이트에 대한 여러 개의 사용자 ID 및 패스워드를 포함하는 사용자 정보가 사용자 컴퓨터에 저장되어 있다. 본 발명에 따른 웹사이트 로그인 장치가 사용자 컴퓨터의 하나의 예가 될 수 있다. 사용자가 웹사이트에 대한 로그인을 시도하면, 사용자 컴퓨터에 저장되어 있던 사용자 정보가 사용자에게 시각적으로 표시되며, 사용자는 그 여러 개의 사용자 정보 중에서 하나를 선택한다. 사용자가 선택한 ID 및 패스워드에 의해 해당 웹사이트에 대한 로그인이 처리된다. 난수에 의해 사용자 정보에 대한 암호키가 생성되고, 이 암호키에 의해 로그인의 정당성이 확인된다. 사용자 컴퓨터에 저장된 사용자 정보를 조회함으로써 사용자는 자신이 가입한 웹사이트의 현황을 파악한다.
-
公开(公告)号:KR1020080052100A
公开(公告)日:2008-06-11
申请号:KR1020060124155
申请日:2006-12-07
Applicant: 한국전자통신연구원
Abstract: A method and an apparatus for controlling distribution of personal information among privacy domains are provided to enhance efficiency in distributing the personal information on the basis of a BPP(Bridge Privacy Policy) list via a BPC(Bridge Privacy Controller) without each PC(Privacy Controller)'s considering the information of the sites within all the domains. An apparatus for controlling distribution of personal information includes an AC(Attribute Consumer) list receiver(201), a BPP list generator(202) and a BPP list transmitter(203). The AC list receiver receives an AC list, which is a trust level list on the sites within a privacy domain, from each PC, which manages distribution of personal information among the sites within the privacy domain. The BPP list generator generates a BPP list for making each PC process a query on a request of the personal information from a specific site within other privacy domain by integrating the received AC list. The BPP list transmitter transmits the generated BPP list to each PC.
Abstract translation: 提供一种用于控制隐私域之间的个人信息分发的方法和装置,用于提高基于BPP(网桥隐私策略)列表的个人信息的分发效率,该列表通过BPC(网桥隐私控制器)而不使用每个PC(隐私控制器 )考虑到所有域内的站点的信息。 用于控制个人信息分发的装置包括AC(属性消费者)列表接收器(201),BPP列表生成器(202)和BPP列表发送器(203)。 AC列表接收器从每个PC接收AC监控列表,该列表是隐私域内的站点上的信任级别列表,其管理在隐私域内的站点之间的个人信息的分发。 BPP列表生成器生成BPP列表,用于通过集成所接收的AC列表来使得每个PC进程针对来自其他隐私域内的特定站点的个人信息的请求进行查询。 BPP列表发送器将生成的BPP列表发送到每个PC。
-
-
-
-
-
-
-
-
-
Search Results
158
records
(took 0.025 seconds)
