-
公开(公告)号:KR1020140095860A
公开(公告)日:2014-08-04
申请号:KR1020130008766
申请日:2013-01-25
Applicant: 고려대학교 산학협력단
CPC classification number: G06Q50/28 , G06F21/6245 , H04L9/3213 , H04L9/3226 , H04L9/3242
Abstract: The present invention relates to a method of logistics which can be used to protect personal information used in the logistics process. The method of logistics according to an embodiment of the present invention includes the steps of transmitting cargo information from a sender terminal to a central authentication server; verifying the integrity of the cargo information received to the central authentication server; generating a sender bar code and a recipient bar code corresponding to the cargo information and transmitting the bar codes from the central authentication server to a distributor terminal; decoding the recipient bar code received to the distributor terminal with a unique secret key, and transmitting the decoded information to the central authentication server; transmitting a recipient authentication number to the recipient terminal from the central authentication server when a distributor repudiation prevention token received to the central authentication server and another distributor repudiation prevention token generated in central authentication server matches; decoding the sender bar code in the recipient terminal and transmitting the decoded sender bar code to the central authentication server; and transmitting a delivery completion message to the sender terminal after the central authentication server verifies the tracking number and the recipient authentication number received to the central authentication server.
Abstract translation: 本发明涉及一种物流方法,可用于保护物流过程中使用的个人信息。 根据本发明的实施例的物流方法包括以下步骤:将货物信息从发送者终端传送到中央认证服务器; 验证接收到中央认证服务器的货物信息的完整性; 生成对应于货物信息的发送者条形码和接收条形码,并将该条形码从中央认证服务器发送到分配器终端; 使用唯一的秘密密钥对接收到的分发终端的接收条码进行解码,并将解码的信息发送到中央认证服务器; 当接收到中央认证服务器的分发者拒绝防止令牌和在中央认证服务器中生成的另一个分发者拒绝防止令牌匹配时,从中央认证服务器向接收者终端发送接收者认证号码; 解码接收方终端中的发送者条形码,并将解码的发送者条形码发送到中央认证服务器; 以及在中央认证服务器验证接收到中央认证服务器的跟踪号码和接收者认证号码之后,向发送方发送传送完成消息。
-
公开(公告)号:KR101373574B1
公开(公告)日:2014-03-12
申请号:KR1020120096809
申请日:2012-08-31
Applicant: 고려대학교 산학협력단
CPC classification number: H04L9/3073 , H04L9/3247
Abstract: 무인증서 기반 서명을 이용한 디바이스의 펌웨어 관리 장치 및 방법이 개시된다. 본 발명의 일례에 따라 디바이스의 펌웨어를 관리하는 방법은, 펌웨어 서버가 키 생성 서버로부터 펌웨어 서버 자신의 식별자에 대응하는 부분 비밀키를 수신하고, 부분 비밀키에 기초하여 공개키 및 비밀키를 생성하고, 비밀키를 이용하여 펌웨어의 해쉬값에 대한 서명값을 생성하며, 펌웨어와 서명값을 결합하여 배포용 펌웨어 이미지를 생성한다.
-
公开(公告)号:KR1020140029070A
公开(公告)日:2014-03-10
申请号:KR1020120096809
申请日:2012-08-31
Applicant: 고려대학교 산학협력단
CPC classification number: H04L9/3073 , H04L9/3247
Abstract: Disclosed is an apparatus and a method for managing device firmware using a non-certificate-based signature. The method for managing device firmware according to an example of the present invention includes the steps of: a firmware server receiving a partial secret key corresponding to an identifier of the firmware server itself from a key creating server; creating a public key and a secret key based on the partial secret key; creating a signature value for a hash value of the firmware using the secret key; and combining the firmware and the signature value to create a firmware image for release. [Reference numerals] (310) Receiving a partial secret key corresponding to an identifier of the firmware server itself from a key creating server; (320) Creating a public key and a secret key based on the partial secret key; (330) Creating a signature value for a hash value of the firmware using the secret key; (340) Combining the firmware and the signature value to create a firmware image for release; (AA) Start; (BB) End
Abstract translation: 公开了一种使用非基于证书的签名来管理设备固件的装置和方法。 根据本发明的示例的用于管理设备固件的方法包括以下步骤:固件服务器,从密钥创建服务器接收对应于固件服务器本身的标识符的部分密钥; 基于部分秘密密钥创建公钥和秘密密钥; 使用所述秘密密钥为所述固件的哈希值创建签名值; 并结合固件和签名值创建固件映像以便发布。 (附图标记)(310)从密钥创建服务器接收对应于固件服务器本身的标识符的部分密钥; (320)基于部分密钥创建公钥和秘密密钥; (330)使用秘密密钥创建固件的哈希值的签名值; (340)组合固件和签名值,创建固件映像以便发布; (AA)开始; (BB)结束
-
公开(公告)号:KR101357074B1
公开(公告)日:2014-02-05
申请号:KR1020110132682
申请日:2011-12-12
Applicant: 고려대학교 산학협력단
Abstract: 본 발명은 스마트 그리드 환경에서, 스마트 미터와 데이터 수집 장치와 AMI 서버 간에 암호화 통신을 위한 보안 키를 효율적으로 설정할 수 있는 공개키 기반의 키 공유 메커니즘을 이용한 보안 키 설정 방법에 관한 것으로서, 암호화 통신을 하고자 하는 두 장치가 각각 두 개의 랜덤값을 생성하고, 공개키 기반 암호화 방식을 통해서 상호 생성한 두 랜덤값을 교환하고, 교환한 상대방의 랜덤값 중 하나의 랜덤값을 다시 상대방에 전달함으로써 상호 키 동의를 수행하고, 키 동의가 이루어지면 두 장치가 각각 생성한 랜덤값 중에서 나머지 랜덤값을 이용하여 보안 키를 설정하는 것이다.
-
公开(公告)号:KR101356476B1
公开(公告)日:2014-01-29
申请号:KR1020120004330
申请日:2012-01-13
Applicant: 고려대학교 산학협력단
Abstract: 본 발명은 차량용 데이터의 인증 및 획득 방법에 관한 것으로, 보다 구체적으로는 차량 내 구비되는 적어도 하나의 제어부 및 다른 네트워크와의 연동을 위한 게이트웨이제어부가 상기 차량의 내부 네트워크를 통해 차량용 데이터를 송수신하는 차량용 데이터의 인증 및 획득 방법은 상기 게이트웨이제어부가 인증키 및 암호화키를 생성하여 상기 제어부로 전송하는 키교환단계; 상기 제어부가 메시지 전송완료를 나타내는 사이클카운터값을 이용하여 전송하고자 하는 메시지에 대한 가공메시지를 생성하고, 상기 가공메시지를 포함하는 네트워크 패킷에 대한 메시지인증코드를 생성한 후 전송하고자 하는 패킷 내 상기 메시지인증코드를 포함시켜 전송하는 패킷전송단계; 및 상기 패킷을 수신한 제어부가 상기 패킷에 포함된 메시지인증코드를 확인하고, 상기 패킷 내 포함된 메시지를 복호화하여 획득하는 메시지획득단계;를 포함하는 것을 특징으로 한다.
이러한 구성에 의해, 본 발명의 차량용 데이터의 인증 및 획득 방법은 차량에 대한 관련정보를 나타내는 메시지를 암호화한 후, 차량 내 구비되는 제어부로 전송되기 때문에 상기 메시지가 위변조되는 것을 방지할 수 있는 효과가 있다.-
Patent Agency Ranking
公开(公告)号:KR1020130083619A
公开(公告)日:2013-07-23
申请号:KR1020120004330
申请日:2012-01-13
Applicant: 고려대학교 산학협력단
Abstract: PURPOSE: A data authentication and acquisition method for a vehicle is provided to prevent messages from being forged. CONSTITUTION: A gateway control unit and a control unit store a public key certificate (S110). The gateway control unit generates an authorization key and a code key and transmits the authorization key and the code key to the control unit (S120). The control unit generates processing messages desired to be transmitted by using a cycle counter value expressing the completion of message transmission and generates a message authorization code on a network packet including the processing messages so that the processing messages with the message authorization code in the packet are transmitted (S130). The control unit confirms the message authorization code included in the packet and acquires the messaged included in the packet by decoding the messages (S140). [Reference numerals] (AA) Start; (BB) End; (S110) Gateway control part stores public key certificate; (S120) Gateway control part produces an authentication key and encryption key and transmit them to a control part; (S130) Control part produces a fake message and transmits packet to another control part; (S140) Control part which received the packet confirms MAC
Abstract translation: 目的:提供一种用于车辆的数据认证和获取方法,以防止消息伪造。 构成:网关控制单元和控制单元存储公钥证书(S110)。 网关控制单元生成授权密钥和代码密钥,并将授权密钥和代码密钥发送到控制单元(S120)。 控制单元通过使用表示消息发送完成的周期计数器产生期望发送的处理消息,并在包括处理消息的网络分组上生成消息授权码,使得具有消息授权码的处理消息是 发送(S130)。 控制单元确认分组中包括的消息授权码,并通过对消息进行解码来获取包在消息中的消息(S140)。 (附图标记)(AA)开始; (BB)结束; (S110)网关控制部分存储公钥证书; (S120)网关控制部分产生认证密钥和加密密钥,并将其发送到控制部分; (S130)控制部分产生假消息并将数据包发送到另一个控制部分; (S140)接收到分组的控制部确认MAC
-
公开(公告)号:KR1020130050013A
公开(公告)日:2013-05-15
申请号:KR1020110115132
申请日:2011-11-07
Applicant: 고려대학교 산학협력단
CPC classification number: G06F21/105 , G06F21/606 , H04L9/0891 , H04L9/14 , H04L2209/603 , H04L2463/101
Abstract: PURPOSE: A content sharing method of a DRM system is provided to easily share content between user terminals by re-encoding a right certificate key encoded through a public key of a user terminal. CONSTITUTION: A right issue server encodes a right certificate encoding key for using content by using a public key stored in a first user terminal and transmits the right certificate including an encoding key about the content and the right certificate encoding key to a first user terminal(S230). The first user terminal transmits packaged content and the right certificate to a second user terminal(S240). The first user terminal generates a re-encoding key for re-encoding the right certificate encoding key by using the public key of the second terminal and a private key stored in a first user terminal and transmits the right certificate encoding key to the right issue server(S270). [Reference numerals] (120) Content issue server; (140) Right issue server; (160) First user terminal; (180) Second user terminal; (AA,S310) Transmit contents in packaging state; (S210,S250) Transmit a public key; (S220) Encode a right certificate encoding key using the public key; (S230) Transmit the encoded right certificate encoding key and a right certificate; (S240) Transmit the contents in packaging state and the right certificate; (S260) Generate a reencoding key using a private key and the public key; (S270) Transmit the reencoding key and an encoded right certificate encoding key; (S280) Reencode the encoded right certificate encoding key using the reencoding key; (S290) Transmit the reencoded right certificate encoding key; (S300) Obtain the right certificate encoding key after decoding the reencoded right certificate encoding key using the private key
Abstract translation: 目的:提供DRM系统的内容共享方法,通过重新编码通过用户终端的公开密钥编码的正确证书密钥来容易地在用户终端之间共享内容。 构成:权利问题服务器通过使用存储在第一用户终端中的公开密钥对正确的证书编码密钥进行编码,并将包括关于内容和正确证书编码密钥的编码密钥的正确证书发送给第一用户终端( S230)。 第一用户终端向第二用户终端发送打包的内容和正确的证书(S240)。 第一用户终端通过使用第二终端的公开密钥和存储在第一用户终端中的专用密钥来生成用于重新编码正确的证书编码密钥的重新编码密钥,并将正确的证书编码密钥发送到正确的发行服务器 (S270)。 (附图标记)(120)内容发行服务器; (140)正确的问题服务器; (160)第一用户终端; (180)第二用户终端; (AA,S310)在包装状态下发送内容; (S210,S250)发送公钥; (S220)使用公钥对正确的证书编码密钥进行编码; (S230)发送编码的权利证书编码密钥和正确的证书; (S240)发送包装状态的内容和正确的证书; (S260)使用私钥和公钥生成重新编码密钥; (S270)发送重新编码密钥和编码的权利证书编码密钥; (S280)使用重新编码密钥对编码的权利证书编码密钥进行重新编码; (S290)发送重新编码的权限证书编码密钥; (S300)使用私钥解码重新编码的权利证书编码密钥后,获取正确的证书编码密钥
-
公开(公告)号:KR1020130022906A
公开(公告)日:2013-03-07
申请号:KR1020110085927
申请日:2011-08-26
Applicant: 고려대학교 산학협력단
CPC classification number: H04L63/0464 , H04L9/002 , H04L9/0866 , H04L9/14 , H04L9/3006 , H04L9/3073
Abstract: PURPOSE: Proxy re-encryption method and proxy re-encrypted message decryption method are provided to be safe from collusion attack of a proxy and not to be exposed of encryption key of a mandator. CONSTITUTION: Two secret keys are generated by using a public parameter a master secret key and mandator personal identification information(310). A message is encrypted by using the public parameter and the mandator personal identification information(320). A re-encryption key is generated by using the two secret keys, the mandator personal identification information and a proxy identification information(330). The encrypted message is re-encrypted by using the re-encryption key(340). [Reference numerals] (310) Generating two secret keys by using a public parameter, a master secret key, and mandator personal identification information; (320) Encrypting a message by using the public parameter and the mandator personal identification information; (330) Generating a re-encryption key by using the public parameter, the two secret keys, the mandator personal identification information, and proxy identification information; (340) Re-encrypting the encrypted message by using the re-encryption key; (AA) Start; (BB) End
Abstract translation: 目的:提供代理重新加密方法和代理重新加密的消息解密方法,以避免代理的串通攻击,而不是暴露于强制授权的加密密钥。 构成:通过使用公共参数,主秘密密钥和强制人员个人识别信息(310)生成两个秘密密钥。 通过使用公共参数和强制人员个人识别信息来加密消息(320)。 通过使用两个秘密密钥,强制人员个人识别信息和代理识别信息(330)来产生重新加密密钥。 通过使用重新加密密钥重新加密加密的消息(340)。 (310)通过使用公共参数,主秘密密钥和强制人员个人识别信息生成两个秘密密钥; (320)使用公共参数和强制人员身份信息加密消息; (330)通过使用公共参数,两个秘密密钥,强制人员身份信息和代理身份信息生成重新加密密钥; (340)使用重新加密密钥重新加密加密的消息; (AA)开始; (BB)结束
-
公开(公告)号:KR1020120020014A
公开(公告)日:2012-03-07
申请号:KR1020100083708
申请日:2010-08-27
Applicant: 고려대학교 산학협력단
CPC classification number: G06F21/6254 , H04L9/14
Abstract: PURPOSE: A group calculation system and method thereof are provided to protect the participant of privacy by calculating t-repetition value in encrypted environment. CONSTITUTION: Tupels of all cryptographs are acquired by using PPSU(Privacy Preserving Set Union) protocol. Participants create the tuples. The tuples are distributed to other participants. All participants acquire t-repetition numbers from the tuples. All participants acquire the t-repetition value by decoding a group.
Abstract translation: 目的:提供一种组计算系统及其方法,通过计算加密环境中的t重复值来保护隐私参与者。 构成:使用PPSU(隐私保护集联盟)协议获取所有密码的元组。 参与者创建元组。 元组分配给其他参与者。 所有参与者从元组获取t重复数字。 所有参与者通过解码组获取t重复值。
-
40.发明公开무선센서네트워크에서의 타원곡선암호 기반 키 설정 방법과이를 이용한 무선센서네트워크 시스템 및 기록매체 无效基于无线传感器网络的ELLIPTIC CURVE CRYPTOGRAPHY,无线传感器网络系统及其记录介质的关键建立方法
公开(公告)号:KR1020090104421A
公开(公告)日:2009-10-06
申请号:KR1020080029841
申请日:2008-03-31
Applicant: 고려대학교 산학협력단
Abstract: PURPOSE: A method for setting up a key based on an elliptic curve cryptograph in a wireless sensor network, a wireless sensor network system and a recording medium thereof are provided to guarantee the PFS(Perfect Forward Secrecy) without influencing session keys used in prior sessions. CONSTITUTION: A method for setting up a key based on an elliptic curve cryptograph in a wireless sensor network comprises the following steps. A security administrator generates the first random number-hidden information by using a public key and then transmits it to a sensor node(S200). The sensor node generates the second random number-hidden information by using the public key. The first session key is generated by using the first random number-hidden information. Authentication information including the first session key and a secret key of the sensor node is generated. The second random number-hidden information and authentication information are transmitted to the security administrator(S210).
Abstract translation: 目的:提供一种基于无线传感器网络中的椭圆曲线密码术设置密钥的方法,无线传感器网络系统及其记录介质,以保证PFS(完美转发保密),而不影响先前会话中使用的会话密钥 。 构成:用于在无线传感器网络中基于椭圆曲线密码术设置密钥的方法包括以下步骤。 安全管理员通过使用公开密钥生成第一随机数隐藏信息,然后将其发送到传感器节点(S200)。 传感器节点通过使用公共密钥生成第二个随机数隐藏信息。 第一个会话密钥是通过使用第一个随机数字隐藏信息生成的。 生成包括传感器节点的第一会话密钥和秘密密钥的认证信息。 将第二随机数隐藏信息和认证信息发送给安全管理员(S210)。
-
-
-
-
-
-
-
-
-
Search Results
226
records
(took 0.034 seconds)
