KR100899638B1 - Method for providing service using device identity information, system thereof and computer-readable medium recoded the program for executing the method - Google Patents
Method for providing service using device identity information, system thereof and computer-readable medium recoded the program for executing the method Download PDFInfo
- Publication number
- KR100899638B1 KR100899638B1 KR1020080126848A KR20080126848A KR100899638B1 KR 100899638 B1 KR100899638 B1 KR 100899638B1 KR 1020080126848 A KR1020080126848 A KR 1020080126848A KR 20080126848 A KR20080126848 A KR 20080126848A KR 100899638 B1 KR100899638 B1 KR 100899638B1
- Authority
- KR
- South Korea
- Prior art keywords
- portable memory
- memory device
- identification information
- service
- user
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/604—Tools and structures for managing or administering access control systems
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Automation & Control Theory (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
Abstract
The present invention executes a program stored in a portable memory device in a terminal, so that a service user can use the service more conveniently, and secures security of service use by using device identification information and user identification information of the portable memory device. In order to increase convenience and increase convenience of a service user by using an approved portable memory device. To this end, the present invention is a device authentication step for transmitting the device identification information stored in the portable memory device to the approval server, and if the device identification information is registered in the approval server, as a result of the transmission of the device authentication step, the approval server A user authentication step of receiving and transmitting the user identification information requested by the user, an issuing step of receiving and storing the authorization code generated by the approval server when the user identification information is confirmed by the approval server, and the stored device identification. Provided is a method of providing a service using device identification information including a step of transmitting information and an authorization code to an approval server and using a service, and a computer readable recording medium recording the device and a program for executing each step by a computer.
Portable memory device, record carrier, approval code, device identification, user identification
Description
The present invention relates to providing an Internet service using a portable memory device, and more particularly, using device identification information for issuing an authorization code to a portable memory device using device identification information and user identification information of the user. The present invention relates to a service providing method, an apparatus, and a computer readable recording medium recording the program.
In addition, the present invention provides a service providing method using the device identification information to provide a service conveniently and securely using a program stored in the portable memory device with the authorization code using the device identification information, and the computer and computer-readable recording the program It relates to a recording medium.
In recent years, according to the popularization of computers and the development of the Internet, programs to be installed for use by companies or organizations to promote their contents or services are stored in a storage medium such as CD-ROM or DVD-ROM, and distributed to members or customers. There are many cases.
However, the data stored in CD-ROM, DVD-ROM, etc. cannot be changed or deleted, and even when the user installs and uses a program for using the service on the terminal, it is a service having the same contents regardless of who the user is or if it does not There is a difficulty in providing a service associated with a specific user, such as using a service through a separate authentication means.
On the other hand, portable memory devices that are easily connected to computers such as PCs and laptops as well as portable digital devices such as cameras, sound players, video players, etc. are used to store data. Provides an interface for reading by a flash memory having a USB (Universal Serial Bus) interface, CF (Compact Flash), SD (Secure Digital), xD (extreme Digital), There are various forms such as MS (Memory Stick) and smart card.
However, in most cases, when a portable memory device is connected to a computer, data stored in the portable memory device is used in a terminal, and is used as a device for storing and moving data.
In addition, in order to use the service that requires identity verification, a certificate issued in advance may be stored in a portable memory device, and the portable memory device may be connected to a computer and used for identity verification. There is a problem that requires authentication through the deterioration of user convenience. In addition, there is a problem that the use efficiency of the portable memory device is reduced by using only the stored certificate regardless of the characteristics of the portable memory device.
According to the present invention, a service memory is stored in a portable memory device by storing a program required for using a service in a portable memory device, and storing the authorization code generated by using the device identification information of the portable memory device together with the portable memory device. The present invention provides a service providing method using device identification information that enables a service to be conveniently used in a terminal to which a device can be connected, and a device and a computer readable recording medium storing the program.
In addition, in the present invention, by using the device identification information of the portable memory device for issuance of the approval code for using the service, only a specific user who has distributed the portable memory device gets an opportunity to use the service through the approval server. The present invention provides a service providing method using device identification information that increases security of service use, and a computer readable recording medium recording the device and the program thereof.
In addition, the present invention by using the device identification information of the portable memory device for issuance of the authorization code for the use of the service, it is an instrument that can lower the security level of personal information to be used in the subsequent user authentication step, security of service use The present invention provides a service providing method using device identification information which increases the convenience of service while guaranteeing the serviceability, and a computer readable recording medium recording the device and the program thereof.
In addition, the present invention is to provide a service providing method using the device identification information to use the service without additional authentication using the approved portable memory device, the apparatus and a computer-readable recording medium recording the program.
The present invention also provides a service providing method using the device identification information, device and program thereof by issuing an approval code using the device identification information to block the use of the service through the duplication of the approval code, thereby increasing the security of service use. To provide a computer readable recording medium having recorded thereon.
Service providing method using the device identification information of the present invention for solving the above problems, the device for confirming that the device identification information stored in the portable memory device is registered in the approval server through the terminal connected to the portable memory device; If the received device identification information is registered in the approval server as a result of the authentication step and the device authentication step, checking whether the service is available by receiving user identification information through a terminal to which the portable memory device is connected. And a user authentication step and, if a service is available as a result of the user authentication step, issuing step of generating an authorization code for use of the service and transmitting it to the portable memory device.
In addition, the device for providing a service using the device identification information of the present invention, the device authentication unit for receiving the device identification information stored in the portable memory device through the terminal connected to the portable memory device and confirms whether it is registered in the approval server, and When the device identification information stored in the portable memory device is registered in the approval server, a user authentication unit for receiving a user identification information through a terminal connected to the portable memory device to check whether the service is available, and the user authentication unit. If it is confirmed that the service is available through, characterized in that it comprises an authorization code generation unit for generating an authorization code for use of the service.
In addition, the computer-readable recording medium of the present invention, the first step of transmitting the device identification information stored in the portable memory device to the approval server, the transmission result of the first step, the device identification information is registered in the approval server And a second step of receiving and transmitting user identification information requested by the approval server, and receiving the approval code generated by the approval server when the user identification information is confirmed by the approval server. The program for executing the third step of storing in the program is recorded.
The program of the present invention is executed inside the terminal through the portable memory device interface of the terminal, and may be a web application executed in the web browser of the terminal as well as application software executed in the terminal independently of the program.
In addition, the device identification information of the present invention is to store and use the manufacturer ID (Vendor ID), product ID (Product ID), serial number (Serial Number) of the product in the portable memory device in which the program is stored, the approval server Will be the only non-duplicate value in the array.
In addition, the user identification information of the present invention is the personal information of the user who is provided with the service using the portable memory device, the student's school number, member's serial number, personal telephone number, part of the resident registration number, etc. registered in advance in the approval server. The value can be used to identify the user. When the user wants to use the service for a user who is not registered in the approval server, a process of registering by the user may be provided.
According to the present invention configured as described above, by storing a program necessary to use the service in a portable memory device, a service user can use the service more conveniently in a terminal to which the portable memory device can be connected.
In addition, in the present invention, by using the device identification information of the portable memory device for issuance of the approval code for using the service, only a specific user who has distributed the portable memory device gets an opportunity to use the service through the approval server. This increases the security of service use.
In addition, the present invention by using the device identification information of the portable memory device for issuance of the authorization code for the use of the service, it is an instrument that can lower the security level of personal information to be used in the subsequent user authentication step, security of service use While guaranteeing sex, it is effective to increase convenience of service use.
In addition, the present invention can omit the authentication of the user when using the service by using the approved portable memory device, it is not necessary to perform the authentication of the user every time to use the service to increase the user's convenience of service use There is.
In addition, the present invention has an effect of increasing the security of the service use by issuing the approval code using the device identification information, blocking the use of the service through the duplication of the approval code.
Hereinafter, with reference to the accompanying drawings will be described in detail a preferred embodiment of the present invention.
Figure 1 shows the overall system configuration for explaining a preferred embodiment of the present invention.
First, the portable memory device 1 includes a
In addition, the portable memory device 1 mainly includes a non-volatile memory and provides an interface for a computer to read data stored in the memory. The portable memory device 1 may include a flash memory having a USB (Universal Serial Bus) interface, and There are various forms such as CF (Compact Flash), SD (Secure Digital), xD (extreme Digital), MS (Memory Stick), and smart card connected through a card reader.
In addition, the nonvolatile memory of the portable memory device may store a vendor ID, a product ID, and a serial number of a product therein, so that the nonvolatile memory is manufactured as a portable memory device. Later, device identification information unique to the portable memory device may be input.
In addition, the portable memory device 1 is connected to the
Meanwhile, the
The
In addition, the authorization
In addition, the
In addition, the
In addition, the authorization
Issuance of the authorization code using the portable memory device 1 will be described later with reference to FIGS. 3 and 5, and the use of the service through the authorization code issued using the device identification information will be described later with reference to FIGS. 4 and 6, respectively. This will be described.
2 is a flowchart showing a process of registering device identification information with the
In general, the manufacturer of the portable memory device 1 stores and sells information such as a manufacturer ID, a product ID, a serial number, and the like in the portable memory device 1. In this case, the above information can be used as it is as device identification information. If not, a number that is not duplicated in the
In addition, the device identification information stored in the portable memory device 1 is input to the
Subsequently, a program for using a service is mounted on the portable memory device 1 (S30) and distributed to the user. The program for using the service will be described later with reference to FIG. 6.
As such, although it is not shown in FIG. 2 in the process of registering before distributing the portable memory device 1, the user identification information required for the user to receive the authorization code is also registered. The portable is distributed to the user regardless of the execution order. This may be performed before inputting and confirming user identification information in the
Hereinafter, a process of issuing an approval code in a preferred embodiment according to the present invention will be described with reference to FIGS. 3 and 5.
3 is a diagram illustrating a process of issuing an approval code in a preferred embodiment according to the present invention.
5 illustrates a window for inputting user identification information in a preferred embodiment according to the present invention.
When the user who has distributed the portable memory device 1 first connects the portable memory device 1 to the
When the portable memory device 1 is connected to the
The program of the portable memory device 1 may be directly executed by the terminal, or may be automatically executed when the portable memory device 1 is connected to the
If the approval code is not stored in the portable memory device 1, the program loaded in the portable memory device 1 and executed in the terminal 2 requests issuance of the approval code. The program first reads the device identification information stored in the portable memory device 1 (S110) and transmits it to the approval server 3 (S112).
Subsequently, the
Performing a device authentication step of confirming whether or not device identification information is registered in the
Subsequently, if the received device identification information is registered in the
When the user inputs the information requested by the user identification
In the device authentication step performed before the user authentication step, the service user is limited to the user who has distributed the registered portable memory device 1, so that the user identification information to be used in the user authentication step is less risky and has a low importance. Information becomes available.
After the device authentication and user authentication as described above, the device identification information and the user identification information confirmed in the device authentication step and the user authentication step is stored in the
In addition, the basic value used to generate the authorization code is not only the device identification information and the user identification information identified in the device authentication step and the user authentication step, but also other user's personal information, time information, and approval server information. , Random data using a random number table, or the like may be used.
The basic value used for generating the authorization code and the authorization code generation function are stored in the
A hash function such as MD5 or SHA-1 can be used to generate this authorization code. If the base value for encryption is different, the same result cannot be obtained, and the base value is restored from the result of the hash. It is extremely difficult to do.
When the approval code generated in this way is transmitted to the
Set a password for the use of the authorization code when storing the authorization code in the portable memory device 1, and when the authorization code is used later, the password is entered so that the portable memory device 1 in which the authorization code is stored may be lost. It can also be made unavailable to users.
4 is a flowchart illustrating a process of using a service with an authorization code issued by using device identification information in a preferred embodiment according to the present invention.
6 is a block diagram of a program executed for service use in the preferred embodiment according to the present invention.
As described with reference to FIG. 3, after the approval code is stored in the portable memory device 1, the portable memory device 1 is connected to the
As shown in the program configuration of Figure 6, the
When the portable memory device 1 storing the authorization code is connected to the
The service embedded in the program may be executed by the
When a service is to be provided from the
When the
Before the authorization code is transmitted to the
The verification by the received approval code regenerates the approval code in the
If the device identification information received from the
The
In addition, although not shown in the drawings, in case of losing the portable memory device 1 that issued the approval code, the approval associated with the corresponding user identification information or device identification information through the loss report of the portable memory device 1 The code may no longer be used, or a new portable memory device 1 may be distributed to provide approval.
As such, using the portable memory device 1 that has undergone the first approval code issuing procedure described with reference to FIGS. 3 and 5, the service providing using the device identification information for more convenient use of the service is completed.
In addition, the preferred embodiment of the present invention for the purpose of illustration, those skilled in the art will be able to various modifications, changes, substitutions and additions through the spirit and scope of the appended claims, such modifications, changes, etc. are the following patents It should be regarded as belonging to the claims.
1 is a block diagram of a preferred embodiment of the present invention.
2 is a flow chart of a registration process before distribution of a portable memory device in a preferred embodiment of the present invention.
3 is a flow chart for issuing an authorization code in a preferred embodiment according to the present invention.
4 is a flow chart of using a service in a preferred embodiment according to the present invention.
5 is a window for inputting user identification information in a preferred embodiment according to the present invention.
6 is a diagram illustrating a program executed for service use in a preferred embodiment according to the present invention.
<Explanation of symbols for the main parts of the drawings>
1: portable memory device 2: terminal
3: Authorization server 4: Service provision server
11: device identification information storage unit 12: approval code storage unit
13: program storage unit
31: device authentication unit 32: user authentication unit 33: authorization code generation unit
34: database 35: device register 36: user register
37: approval code transmitter 38: approval code receiver
100: user identification information input window 200: service program
210: service provider 220: shortcut provider
230: promotional material providing unit 240: approval code validity period confirmation unit
250: service setting unit
Claims (17)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020080126848A KR100899638B1 (en) | 2008-12-12 | 2008-12-12 | Method for providing service using device identity information, system thereof and computer-readable medium recoded the program for executing the method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020080126848A KR100899638B1 (en) | 2008-12-12 | 2008-12-12 | Method for providing service using device identity information, system thereof and computer-readable medium recoded the program for executing the method |
Publications (1)
Publication Number | Publication Date |
---|---|
KR100899638B1 true KR100899638B1 (en) | 2009-05-27 |
Family
ID=40862538
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020080126848A KR100899638B1 (en) | 2008-12-12 | 2008-12-12 | Method for providing service using device identity information, system thereof and computer-readable medium recoded the program for executing the method |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR100899638B1 (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101107421B1 (en) * | 2009-04-20 | 2012-01-19 | 황성민 | System and Method for data retrieval of lost portable disk |
KR20140043071A (en) * | 2011-06-07 | 2014-04-08 | 주식회사 잉카인터넷 | Authentication system and method for device attempting connection |
KR101535806B1 (en) * | 2010-07-26 | 2015-07-10 | 에스케이플래닛 주식회사 | System for providing compatibility of application, apparatus and method for providing compatibility of application |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20040097435A (en) * | 2003-05-12 | 2004-11-18 | 에크로텍(주) | Software unlawfulness reproduction preventing device using universal serial bus portable storing device and preventing method thereof |
KR20050083117A (en) * | 2004-02-21 | 2005-08-25 | 주식회사 성신 | Identification method on the web using usb memory stick |
-
2008
- 2008-12-12 KR KR1020080126848A patent/KR100899638B1/en not_active IP Right Cessation
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20040097435A (en) * | 2003-05-12 | 2004-11-18 | 에크로텍(주) | Software unlawfulness reproduction preventing device using universal serial bus portable storing device and preventing method thereof |
KR20050083117A (en) * | 2004-02-21 | 2005-08-25 | 주식회사 성신 | Identification method on the web using usb memory stick |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR101107421B1 (en) * | 2009-04-20 | 2012-01-19 | 황성민 | System and Method for data retrieval of lost portable disk |
KR101535806B1 (en) * | 2010-07-26 | 2015-07-10 | 에스케이플래닛 주식회사 | System for providing compatibility of application, apparatus and method for providing compatibility of application |
KR20140043071A (en) * | 2011-06-07 | 2014-04-08 | 주식회사 잉카인터넷 | Authentication system and method for device attempting connection |
KR101583698B1 (en) | 2011-06-07 | 2016-01-08 | 주식회사 잉카인터넷 | Authentication system and method for device attempting connection |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9667426B2 (en) | Information processing apparatus, program, storage medium and information processing system | |
WO2020093214A1 (en) | Application program login method, application program login device and mobile terminal | |
JP3785640B2 (en) | Service providing apparatus and service providing method | |
CN100419773C (en) | Permission verification and verifying system for electronic file | |
EP3777082B1 (en) | Trusted platform module-based prepaid access token for commercial iot online services | |
CN104902028A (en) | Onekey registration authentication method, device and system | |
US20080086645A1 (en) | Authentication system and method thereof | |
WO2019134493A1 (en) | Subscriber identity module data writing method, device, platform, and storage medium | |
JP4597568B2 (en) | Secure device, information processing terminal, and information processing system | |
CN105101205A (en) | One-click login authentication method, device and system | |
JP4764339B2 (en) | How to secure and verify electronic certificates | |
US8006009B2 (en) | Methods and device for implementing multifunction peripheral devices with a single standard peripheral device driver | |
KR100899638B1 (en) | Method for providing service using device identity information, system thereof and computer-readable medium recoded the program for executing the method | |
CN110855718B (en) | Enterprise user registration method and device, electronic equipment and computer readable medium | |
CN109063461B (en) | Third-party password-free login method and system | |
KR101167458B1 (en) | Digital content management methods and systems | |
JP2002287629A (en) | Electronic device, information update system in electronic device, information update method and program therefor | |
CN110851881B (en) | Security detection method and device for terminal equipment, electronic equipment and storage medium | |
JP6801146B2 (en) | Electronic approval systems, methods, and programs using biometrics | |
CN102812470A (en) | Content Binding At First Access | |
CN113015156A (en) | Mobile phone number batch binding changing method, terminal and computer readable storage medium | |
CN112445705A (en) | Software running system, method, device, computer equipment and storage medium | |
TW201427369A (en) | Mutual authentication method and system for electronic document and carrier | |
JP2009260688A (en) | Security system and method thereof for remote terminal device in wireless wide-area communication network | |
JP4309068B2 (en) | Card data processing device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
A302 | Request for accelerated examination | ||
E902 | Notification of reason for refusal | ||
E701 | Decision to grant or registration of patent right | ||
GRNT | Written decision to grant | ||
LAPS | Lapse due to unpaid annual fee |