-
31.发明公开
公开(公告)号:KR1020140108749A
公开(公告)日:2014-09-15
申请号:KR1020130021262
申请日:2013-02-27
Applicant: 한국전자통신연구원
CPC classification number: G06F21/64
Abstract: Provided are a device for privacy protection document authentication information using various privacy protection electronic signatures and multidimensional codes and a method for authenticating a privacy protection document using the same. The provided device comprises: an electronic signature information generation unit to generate privacy protection electronic signature information about document content; a multidimensional code generation unit to generate a multidimensional code corresponding to the generated privacy protection electronic signature information; and a multidimensional code output unit to output the generated multidimensional code to a document. According to the device of the present invention, a privacy protection electronic signature value generated by a personalized smart device can be output to a physical document in the form of a multidimensional code to authenticate the document.
Abstract translation: 提供了一种使用各种隐私保护电子签名和多维码的隐私保护文档认证信息的设备以及使用其进行认证的隐私保护文档的方法。 所提供的设备包括:电子签名信息生成单元,用于生成关于文档内容的隐私保护电子签名信息; 多维代码生成单元,用于生成与生成的隐私保护电子签名信息对应的多维代码; 以及多维代码输出单元,用于将生成的多维代码输出到文档。 根据本发明的装置,由个性化智能设备生成的隐私保护电子签名值可以以多维代码的形式被输出到物理文档以对该文档进行认证。
-
公开(公告)号:KR1020140079544A
公开(公告)日:2014-06-27
申请号:KR1020120146909
申请日:2012-12-14
Applicant: 한국전자통신연구원
CPC classification number: H04L9/3281 , H04L9/00 , H04L9/08 , H04L9/0844 , H04L9/32 , H04L9/3255 , H04L2209/42
Abstract: Provided are an apparatus and a method for anonymity-based authentication and key agreement which are capable of providing transmission message binding properties, which ensure that the messages received via a plurality of rounds by participants who desire key agreement as well as anonymity have been sent by the same counterpart participants. The provided apparatus comprises: a signature verification unit which receives a plurality of messages, each carrying a signature generated based on link information of a sender, and verifies the signature of each of the messages; and a binding checking unit which determines whether the messages have been sent by an identical sender, if it is determined by the signature verification unit that the signature is valid, based on the link information of the signature.
Abstract translation: 提供了一种能够提供传输消息绑定属性的基于匿名的认证和密钥协商的装置和方法,其确保通过由密码协商和匿名的参与者通过多个回合接收的消息已经由 同样的对手参加。 所提供的装置包括:签名验证单元,其接收多个消息,每个消息携带基于发送者的链接信息生成的签名,并且验证每个消息的签名; 以及绑定检查单元,其基于签名的链接信息,如果由签名验证单元确定签名是有效的,则确定消息是否已被相同发送者发送。
-
公开(公告)号:KR1020130039174A
公开(公告)日:2013-04-19
申请号:KR1020110103670
申请日:2011-10-11
Applicant: 한국전자통신연구원
CPC classification number: H04L9/3255 , H04L2209/805
Abstract: PURPOSE: A lightweight group signature system with short signatures and a method thereof are provided to improve operation efficiency in signature generation, signature verification, and revocation on smart terminals, while providing security characteristics at a similar level with group signature mechanisms which provide controllable linkability. CONSTITUTION: A key issuing unit(110) initially generates a group public key as a trusted subject and generates a master issuing key(mik), a master opening key(mok), and a master linking key(mlk) corresponding thereto. The key issuing unit performs an interactive protocol, when receiving a join request from a new user device(140), and issues a signature key to the user device. A key revocation identifying unit(120) identifies whether revocation is performed using the updated revocation list and the master opening key when the revocation identification request is received from the signature verifying unit(150) and then, returns the identified results to the signature verifying unit. The key revocation identifying unit uses the master opening key to output the verification information for identifying a signer when a valid signature is given. A signer identification proof evaluating unit(160) evaluates the validity of the signer identification proof generated from a signature control unit(100). [Reference numerals] (100) Control unit; (110) Key issuing unit; (120) Key revocation identifying unit; (130) Signature connecting unit; (140) User device; (150) Signature verifying unit; (160) Signer identification proof evaluating unit; (AA) Generating a group public key; (BB) Master issuing key; (CC) Master identifying key; (DD) Master connecting key; (EE) Confirming signature connection information; (FF) Requesting confirmation of signature connection; (GG) Confirming key revocation; (HH) Requesting confirmation of key revocation; (II) Requesting identification of a signer; (JJ) Issuing a signature key; (KK) Generating a signature; (LL) Generating signer identification proof; (MM) Confirming signer identification proof;
Abstract translation: 目的:提供一种具有短签名的轻量级签名系统及其方法,以提高智能终端签名生成,签名验证和撤销操作的效率,同时提供与提供可控链路性的组签名机制相似的安全特性。 构成:密钥发布单元(110)最初生成作为可信对象的组公开密钥,并生成与其相对应的主发行密钥(mik),主开放密钥(mok)和主链接密钥(mlk)。 当从新用户设备(140)接收到加入请求时,密钥发布单元执行交互协议,并向用户设备发布签名密钥。 密钥吊销识别单元(120)在从签名验证单元(150)接收到撤销标识请求时,识别是否使用更新的撤销列表和主开放密钥执行撤销,然后将所识别的结果返回到签名验证单元 。 密钥吊销识别单元使用主开放密钥输出用于在给出有效签名时识别签名者的验证信息。 签名者识别确认评估单元(160)评估从签名控制单元(100)生成的签名者识别证明的有效性。 (附图标记)(100)控制单元; (110)发行单位; (120)钥匙撤销识别单元; (130)签名连接单元; (140)用户设备; (150)签名验证单元; (160)签名者识别证明评估单元; (AA)生成组公钥; (BB)主发卡钥匙; (CC)主识别键; (DD)主连接键; (EE)确认签名连接信息; (FF)请求确认签名连接; (GG)确认钥匙吊销; (HH)要求确认关键吊销; (二)要求签字人的身份证明; (JJ)签发签名密钥; (KK)生成签名; (LL)生成签名人身份证明; (MM)确认签署者身份证明;
-
公开(公告)号:KR1020120069447A
公开(公告)日:2012-06-28
申请号:KR1020100131001
申请日:2010-12-20
Applicant: 한국전자통신연구원
CPC classification number: H04L9/321 , H04L9/0891 , H04L9/3255 , H04L2209/42
Abstract: PURPOSE: A method for verifying key validity and a sever for performing the same are provided to reduce necessary operation times for verifying key validity in a signature process or a signature verification process by providing various services based on anonymous authentication. CONSTITUTION: An anonymous authentication server(110) revokes an anonymous secret key owned currently(S810). The anonymous authentication server is opened by generating a revocation list(S820). A service providing server(120) generates a LRL(Local Revocation List) by using a revocation list and its own LL secret key(S830). The service providing server calculates a virtual index of a service user through the signature of a service user(S840). The service providing server verifies the validity of a key of the service user based on the presence of the virtual index included in the local revocation list(S850).
Abstract translation: 目的:提供一种用于验证密钥有效性的方法和用于执行密钥有效性的服务器,以通过基于匿名认证提供各种服务来减少用于验证签名过程或签名验证过程中的密钥有效性的必要操作时间。 构成:匿名认证服务器(110)撤销当前拥有的匿名密钥(S810)。 通过生成撤销列表来打开匿名认证服务器(S820)。 服务提供服务器(120)通过使用撤销列表和其自己的LL秘密密钥生成LRL(本地撤销列表)(S830)。 服务提供服务器通过服务用户的签名来计算服务用户的虚拟索引(S840)。 服务提供服务器基于本地撤销列表中包括的虚拟索引的存在来验证服务用户的密钥的有效性(S850)。
-
35.发明公开
公开(公告)号:KR1020120058902A
公开(公告)日:2012-06-08
申请号:KR1020100120427
申请日:2010-11-30
Applicant: 한국전자통신연구원
IPC: H04L9/32
Abstract: PURPOSE: A system and a method for managing client information and a client terminal and an apparatus for managing the client information are provided to manage corresponding information by using an authentication element and an encryption key. CONSTITUTION: A system for managing client information comprises a client terminal group(100), a network(200), a client information management apparatus(300). The client terminal group requests subscription and authentication by using an authentication element and an encryption key. The network connects the client terminal group with the client information management apparatus. The network includes a broadband communication network and a local area network, etc. The client information management apparatus manages client information in an encrypted type.
Abstract translation: 目的:提供一种用于管理客户端信息的系统和方法以及客户终端和用于管理客户端信息的装置,以通过使用认证元件和加密密钥来管理相应的信息。 构成:用于管理客户信息的系统包括客户终端组(100),网络(200),客户端信息管理装置(300)。 客户终端组通过使用认证元素和加密密钥来请求订阅和认证。 网络将客户终端组与客户端信息管理装置连接起来。 网络包括宽带通信网络和局域网等。客户端信息管理装置以加密方式管理客户端信息。
-
Patent Agency Ranking
公开(公告)号:KR1020120051234A
公开(公告)日:2012-05-22
申请号:KR1020100112573
申请日:2010-11-12
Applicant: 한국전자통신연구원
IPC: G06Q50/10 , H04N21/4623 , H04N21/4627 , G06F21/10 , G06Q30/06
CPC classification number: G06Q50/10 , G06F21/10 , G06Q30/06 , H04N21/4623 , H04N21/4627
Abstract: PURPOSE: A content management method, system, and rights object management apparatus are provided to prohibit illegal usage for content by enabling a user who has rights for releasing rights object to use content through a mobile storage apparatus. CONSTITUTION: A content playback apparatus receives content from a content service providing apparatus(S504). A rights object management apparatus receives binding rights objects from a content service providing apparatus(S506). When the content playback apparatus requests the rights objects of the content to the rights object management apparatus, the right object management apparatus release the binding of the binding rights objects. The released binding rights objects are loaded on the content playback apparatus(S514).
Abstract translation: 目的:提供内容管理方法,系统和权限对象管理装置,通过使具有释放权利对象的权限的用户通过移动存储装置使用内容来禁止非法使用内容。 内容回放装置从内容服务提供装置接收内容(S504)。 权限对象管理装置从内容服务提供装置接收绑定对象对象(S506)。 当内容回放装置向权利对象管理装置请求内容的权利对象时,右对象管理装置释放绑定对象的绑定。 释放的绑定权限对象被加载到内容播放装置上(S514)。
-
公开(公告)号:KR1020120042469A
公开(公告)日:2012-05-03
申请号:KR1020100104173
申请日:2010-10-25
Applicant: 한국전자통신연구원
CPC classification number: H04L9/08 , G06F21/10 , G06F2221/0755 , H04L2209/16 , H04L2209/603
Abstract: PURPOSE: A content protection device and a method thereof through combination between additional information and encoding key are provided to prevent decoding of additional information by changing an encoded key when changing additional information. CONSTITUTION: An encoding unit(150) generates an encoding key for encoding requested data and generates encoded data. An additional information managing unit(170) manages additional information including right information about the encoded data. A white box password processing unit(160) generates a white box password table for combining the encoded key and the additional information. A combined data generating unit(180) generates combined data for combining additional information through encoding of the white box encoding table.
Abstract translation: 目的:通过附加信息和编码密钥之间的组合来提供内容保护设备及其方法,以防止在更改附加信息时改变编码密钥对附加信息进行解码。 构成:编码单元(150)生成用于对所请求数据进行编码的编码密钥并生成编码数据。 附加信息管理单元(170)管理包括关于编码数据的正确信息的附加信息。 白箱密码处理单元(160)生成用于组合编码密钥和附加信息的白盒密码表。 组合数据生成单元(180)通过编码白盒编码表来生成用于组合附加信息的组合数据。
-
公开(公告)号:KR1020110070715A
公开(公告)日:2011-06-24
申请号:KR1020100037432
申请日:2010-04-22
Applicant: 한국전자통신연구원
CPC classification number: G06F21/33 , G06Q50/10 , H04L9/006 , H04L9/3263 , H04L63/0421
Abstract: PURPOSE: Personalized service providing system and method are provided to maintain anonymity and to offer personalized service by adding an approval function for supporting personalized service to an authentication function using signature. CONSTITUTION: A service providing server(30) requests an attribute certificate according to service request, confirming the validity of the attribute certificate, and determines the offer of the service. An anonymous authentication server(11) provides the anonymous information of a user in response to request. An attribute issuance server(20) transmits the request for issuing attribute certificate of a user terminal(40) to an anonymous certificate server.
Abstract translation: 目的:提供个性化服务提供系统和方法,以保持匿名性,并通过使用签名将认证功能添加到认证功能来支持个性化服务来提供个性化服务。 构成:服务提供服务器(30)根据服务请求请求属性证书,确认属性证书的有效性,并确定服务提供。 匿名认证服务器(11)响应于请求提供用户的匿名信息。 属性发行服务器(20)向匿名证书服务器发送用户终端(40)的属性证书的发行请求。
-
公开(公告)号:KR1020110060433A
公开(公告)日:2011-06-08
申请号:KR1020090117022
申请日:2009-11-30
Applicant: 한국전자통신연구원
Abstract: PURPOSE: An anonymity authentication and qualification verification method is provided to accomplish authentication on the basis of a short group signature scheme offering anonymity. CONSTITUTION: A user terminal(120) selects a random number as a personal key. In case the personal key ownership verification information of the user terminal is effective, a group management server(110) issues a signature key for the user terminal through a master secret key. The group management server issues a qualification certificate for the user terminal through the issued signature key. A service providing server(130) performs authentication and qualification verification for the user terminal.
Abstract translation: 目的:提供匿名认证和鉴定验证方法,以提供匿名的短组签名方案来完成认证。 构成:用户终端(120)选择随机数作为个人密钥。 在用户终端的个人密钥所有权验证信息有效的情况下,组管理服务器(110)通过主秘密密钥发出用户终端的签名密钥。 组管理服务器通过发出的签名密钥向用户终端发出资质证书。 服务提供服务器(130)对用户终端执行验证和鉴定验证。
-
-
-
-
-
-
-
-
-
Search Results
55
records
(took 0.027 seconds)
