公开(公告)号：KR101436536B1

公开(公告)日：2014-09-01

申请号：KR1020130070480

申请日：2013-06-19

Applicant: 숭실대학교산학협력단 ,  주식회사 안랩

Inventor： 이정현 ,  박유설 ,  정진혁 ,  최은혁 ,  조시행

IPC: G06F21/62 ,  G06F21/10 ,  G06F15/16

Abstract: The present invention relates to a file server, a program file transmitting method using the same, and a program file falsification preventing system. According to the present invention, the file server includes: a file separating part separating a program file into a general file and a core file composed of a core code to be protected from falsification; an encoding part selectively obfuscating the general file and the core file or encoding the files using a secret key; a communication part transmitting the obfuscated or encoded general file to a user client; and a storage part storing the obfuscated or encoded core file. The communication part transmits the obfuscated or encoded core file to the user client in accordance to a request of the user client. According to the present invention, an obfuscating technique is distributed to a client and a server so that a reverse engineering level increases. Moreover, a falsification detection routine is inserted into a software program distributed from the server so that the reliability of the falsification detection routine increases; and a decoding secret key of the encoded core code is dynamically generated and transmitted to an extra channel such as an SMS so that a key is prevented from being exposed on a network.

Abstract translation: 本发明涉及文件服务器，使用该文件服务器的程序文件发送方法和程序文件伪造防止系统。 根据本发明，文件服务器包括：将程序文件分离成一般文件的文件分离部分和由要保护的核心代码伪造的核心文件; 编码部分选择性地模糊所述一般文件和所述核心文件或使用秘密密钥对所述文件进行编码; 通信部件，将混淆或编码的通用文件发送给用户客户机; 以及存储部分，存储所述混淆或编码的核心文件。 通信部件根据用户客户端的请求将模糊化或编码的核心文件发送给用户客户机。 根据本发明，将混淆技术分配给客户端和服务器，使得逆向工程级别增加。 此外，伪造检测程序被插入到从服务器分发的软件程序中，使得伪造检测程序的可靠性增加; 并且编码的核心码的解密秘密密钥被动态地生成并发送到诸如SMS的附加信道，从而防止密钥暴露在网络上。

公开(公告)号：KR1020140037575A

公开(公告)日：2014-03-27

申请号：KR1020120103897

申请日：2012-09-19

Applicant: 숭실대학교산학협력단

Inventor： 이정현 ,  이현이 ,  박유설 ,  김태진

IPC: G06F21/30 ,  G06F3/00

CPC classification number: G06F21/32 ,  G06F3/017 ,  G06F3/0346

Abstract: The present invention relates to a password authentication apparatus using sensing information and a method thereof. The password authentication apparatus using the sensing information according to an embodiment of the present invention comprises: a password input recognition unit which recognizes motion information, sensed from a user terminal, as at least one password input; a final password input determination unit which determines the recognized password input as a final password input by using proximity information sensed from the rear of the user terminal; and an authentication processing unit which authenticates the final password input by comparing the determined final password input with a preset password. Since a user does not directly touch or operate a screen of the user terminal when inputting a password of the user terminal, it is possible to prevent the password from being exposed or hacked by observation of a third party. [Reference numerals] (110) Password input recognition unit; (120) Final password input determination unit; (130) Authentication processing unit

Abstract translation: 本发明涉及使用感测信息的密码认证装置及其方法。 使用根据本发明的实施例的感测信息的密码认证装置包括：密码输入识别单元，其识别从用户终端感测的运动信息作为至少一个密码输入; 最终密码输入确定单元，其通过使用从用户终端的后部感测的接近度信息来确定输入的识别密码作为最终密码输入; 以及认证处理单元，通过将确定的最终密码输入与预设密码进行比较来认证最终密码输入。 由于在输入用户终端的密码时用户不直接触摸或操作用户终端的屏幕，所以可以防止通过观察第三方来暴露或被黑客入侵。 （附图标记）（110）密码输入识别单元; （120）最终密码输入确定单元; （130）认证处理单元

公开(公告)号：KR1020160114903A

公开(公告)日：2016-10-06

申请号：KR1020150041371

申请日：2015-03-25

Applicant: 삼성전자주식회사 ,  숭실대학교산학협력단

Inventor： 김정우 ,  이경희 ,  이정현 ,  박유설

IPC: G06F21/14 ,  G06F21/12

Abstract: 전자장치에있어서, 어플리케이션을저장하는메모리, 및상기어플리케이션의실행파일에서일부코드를분리하고, 상기분리된일부코드의연결정보및 로딩정보를상기실행파일에추가하고, 상기분리된일부코드를상기어플리케이션의리소스파일의일정부분에저장하도록제어하는프로세서를포함하는전자장치가개시된다. 이외에도명세서를통해파악되는다양한실시예가가능하다.

公开(公告)号：KR1020140082408A

公开(公告)日：2014-07-02

申请号：KR1020120152348

申请日：2012-12-24

Applicant: 숭실대학교산학협력단

Inventor： 이정현 ,  박유설

IPC: H04L9/30

CPC classification number: G06F21/14 ,  H04L9/3247

Abstract: The present invention relates to a method and a device for managing an application. The method for managing an application according to an embodiment of the present invention comprises the steps of: dividing an execution file of an application into a first file and a second file to encrypt; verifying a signature value of the first file by receiving the signature value of the first file from a user terminal which downloaded the first file; transmitting a secret key to the user terminal using a mobile communication channel; and transmitting, to the user terminal, the second file including a routine class to verify forgery of the application by encrypting the second file using the secret key. Accordingly, the difficulty of reverse engineering can be increased by dividing the execution file of the application, encrypting the divided files, and distributing the divided files to a server and the user terminal.

Abstract translation: 本发明涉及一种用于管理应用的方法和设备。 根据本发明的实施例的用于管理应用的方法包括以下步骤：将应用的执行文件划分为第一文件和第二文件进行加密; 通过从下载第一文件的用户终端接收第一文件的签名值来验证第一文件的签名值; 使用移动通信信道向所述用户终端发送秘密密钥; 以及通过使用所述秘密密钥加密所述第二文件，向所述用户终端发送包括用于验证所述应用的伪造的例程类的所述第二文件。 因此，可以通过划分应用程序的执行文件，加密分割的文件以及将分割的文件分配给服务器和用户终端来增加逆向工程的难度。

公开(公告)号：KR101380718B1

公开(公告)日：2014-04-02

申请号：KR1020120103897

申请日：2012-09-19

Applicant: 숭실대학교산학협력단

Inventor： 이정현 ,  이현이 ,  박유설 ,  김태진

IPC: G06F21/30 ,  G06F3/00

Abstract: 본 발명은 센싱 정보를 이용한 패스워드 인증 장치 및 그 방법에 관한 것으로, 본 발명의 일 실시예에 따른 센싱 정보를 이용한 패스워드 인증 장치는, 사용자 단말기로부터 센싱된 움직임 정보를 적어도 하나의 패스워드 입력으로 인식하는 패스워드 입력 인식부와, 상기 사용자 단말기의 후면으로부터 센싱된 근접 정보를 이용하여 상기 인식된 패스워드 입력을 최종 패스워드 입력으로 결정하는 최종 패스워드 입력 결정부와, 상기 결정된 최종 패스워드 입력과 기 설정된 패스워드를 비교하여 상기 최종 패스워드 입력을 인증하는 인증 처리부를 포함한다.
이에 따라, 사용자가 사용자 단말기의 패스워드를 입력시 사용자 단말기의 화면을 직접 터치하거나 조작하지 않음으로써 제3자의 관찰로부터 패스워드가 노출되거나 패스워드가 해킹되는 것을 방지할 수 있다.