KR20180037168A - Cross authentication method and system using one time password - Google Patents

Abstract

The authentication server generating an OTP for server verification according to an OTP generation request for server verification; The OTP generator generates an OTP for verification of the same condition as the OTP for server verification for authenticity verification of the online service server and uses the same generation key as the OTP generation key used for generating the OTP for server verification, An operation condition different from the operation condition used for generating the OTP for verification is applied or a generation key different from the OTP generation key used for generating the OTP for server verification is used, Generating a user OTP having a value to be paired with the server verification OTP by applying the same calculation conditions; And if the user authentication request including the user OTP is received from the on-line service server, the authentication server generates a corresponding OTP having the same condition as the user OTP, and if the generated corresponding OTP is consistent with the user OTP And performing authentication on the service user by comparing the received authentication information with the service user.

Description

[0001] CROSS AUTHENTICATION METHOD AND SYSTEM [0002] USING ONE TIME PASSWORD [

More particularly, the present invention relates to an authentication method and system using an OTP, and more particularly, to a method and system for authenticating a server by providing a user authentication information after verifying whether a server providing an online service is a server by a true service providing entity, And a mutual authentication method and system using an OTP that enables mutual verification between service users.

Recently, One Time Password (OTP) has been introduced to enhance user authentication in electronic financial services and Internet of Things (IOT) facility control services. However, the OTP technology is currently used to verify whether a service user is a legitimate user, and is not used to verify that the online service itself is not a forgery or a pharming server operated by a hacker.

A pharming attack allows a user to identify a web site operated by a hacker as a valid site, thereby providing a user's account information (for example, an ID and a password), an OTP value input by the user in the OTP input window It is an attack in which a hacker intercepts the user's money or information by using the account information and the OTP value which are captured and taken.

Therefore, to prevent such pharming attacks, it is necessary to check that the server that the user accesses is a server that is not forged. In order to verify such a service server, a conventional technique has been proposed in which a user is allowed to upload a personal image to a service server to indicate that the site is a normal site, or a color is changed in an address window using SSL (Secure Socket Layer) Was used.

However, the method of registering a personalized image is that the user does not voluntarily register the image of the individual, so the usability is greatly reduced. The address color changing service is different from each other in the browser and is not easy to recognize, There are many cases. Therefore, there is a need for improved methods and techniques that allow the user to authenticate the service server naturally while authenticating the user.

In order to provide a secure on-line service, the OTP for server verification is displayed on the user authentication OTP publishing screen together, so that before the user inputs the OTP value for user authentication, the service is provided by a true service subject And then inputting an OTP value for user authentication.

According to an aspect of the present invention, there is provided a computer implemented method for performing mutual authentication between an online service server and a service user,

(a) generating, by the authentication server, an OTP for server verification according to an OTP generation request for server verification;

(b) an OTP generator generates an OTP for confirmation of the same condition as the OTP for server verification to confirm the authenticity of the online service server, and uses the same generation key as the OTP generation key used for generating the OTP for server verification Wherein the server is configured to use an operation condition different from the operation condition used for generating the OTP for server verification or to use an operation key different from the OTP generation key used for generating the OTP for server verification, Generating a user OTP having a value to be paired with the server verification OTP by applying the same calculation condition as the condition; And

(c) when a user authentication request including the user OTP is received from the online service server, the authentication server generates a corresponding OTP having the same condition as the user OTP, And performing authentication for the service user by comparing the correspondence with the service user.

In one embodiment, prior to step (b)

The authentication server may further include causing the OTP generation key and the operation condition used for generating the OTP for server verification to be transmitted to the OTP generator installed in the mobile user of the service user through a push message or a socket transmission .

In one embodiment, the server verification OTP generation request is transmitted to the on-line service server when the service user inputs the account information of the corresponding user pre-registered in the online site provided by the online service server, And may be transmitted from the server to the authentication server.

In one embodiment, the OTP generation key used for generating the OTP for server verification includes a pre-registered fixed key corresponding to the user account information of the service user, a pre-registered fixed key corresponding to the identification information of the true online service server, Key, and a dynamic allocation key dynamically allocated at the time when the service user accesses the online service server.

In one embodiment, the access terminal connection information of the service user connected to the online service server is used as the dynamic allocation key,

The access terminal connection information may be a session ID or a socket handle information allocated by the online service server when the service user accesses the terminal.

In one embodiment, the OTP for server verification uses the OTP generation key as a seed value, generates a trial number as a calculation condition as a first calculation condition based on a challenge & response generation method,

The user OTP may generate a time as an operation condition using a same generation key as the OTP generation key as a seed value and a second operation condition based on a time OTP generation method.

In one embodiment, the same user account information as the service user's account information may be used before the user OTP input validation time elapses due to the attempted connection by the service user to the online service server, or before the user OTP input is made If the used subordinate connection is retried,

The authentication server maintains the OTP for server verification generated according to the priority connection for the user OTP input valid time or until the user OTP input is made, or prohibits the new generation of OTP for server verification according to the subordinated connection can do.

In one embodiment, the OTP for server verification and the user OTP may be generated as values to be mutually padded by being generated according to different computation conditions using the same generation key and same generation method but different mode discriminators.

In one embodiment, the authentication server further includes transmitting the server verification OTP to the online service server so that the generated server verification OTP is posted through the OTP publication screen provided by the online service server and,

An OTP display window for posting the OTP for server verification and an OTP input window for inputting a user OTP are displayed on the OTP post screen,

In the step (b), the user OTP may be displayed on the same screen through the mobile device provided with the OTP generator, by being paired with the confirmation OTP.

In one embodiment, the OTP display window and the OTP input window are displayed in the OTP publication screen so that cognitive distinction is possible,

The confirmation OTP and the user OTP displayed on the same screen of the mobile device can be displayed on the screen of the mobile device by applying the same cognitive discriminating effect as applied to the OTP display window and the OTP input window .

According to another aspect of the present invention, there is provided an authentication system for performing mutual authentication between an online service server and a service user,

And generating a server verification OTP according to the OTP generation request for server verification, generating a corresponding OTP having the same condition as the user OTP when a user authentication request including a user OTP is received from the online service server, And authenticating the service user by comparing whether the user OTP is matched with the user OTP; And

Generating an OTP for verification of the same condition as the server verification OTP to verify the authenticity of the online service server, using the same generation key as the OTP generation key used for generating the OTP for server verification, The same operation condition as the operation condition used for generating the OTP for server verification is applied using an operation condition different from the operation condition used in the OTP generation for the server verification or a generation key different from the OTP generation key used for the OTP generation for the server verification An OTP generator for generating a user OTP having a value to be paired with the server verification OTP.

In one embodiment, the authentication server may cause the OTP generation key and the operation condition used for generating the server verification OTP to be transmitted to the OTP generator through a push message or a socket transmission.

In one embodiment, the server verification OTP generation request is transmitted to the on-line service server when the service user inputs the account information of the corresponding user pre-registered in the online site provided by the online service server, And may be transmitted from the server to the authentication server.

In one embodiment, the OTP generation key used for generating the OTP for server verification includes a pre-registered fixed key corresponding to the user account information of the service user, a pre-registered fixed key corresponding to the identification information of the true online service server, Key, and a dynamic allocation key dynamically allocated at the time when the service user accesses the online service server.

In one embodiment, the access terminal connection information of the service user connected to the online service server is used as the dynamic allocation key,

The access terminal connection information may be a session ID or a socket handle information allocated by the online service server when the service user accesses the terminal.

In one embodiment, the OTP for server verification uses the OTP generation key as a seed value, generates a trial number as a calculation condition as a first calculation condition based on a challenge & response generation method,

The user OTP may generate a time as an operation condition using a same generation key as the OTP generation key as a seed value and a second operation condition based on a time OTP generation method.

In one embodiment, the same user account information as the service user's account information may be used before the user OTP input validation time elapses due to the attempted connection by the service user to the online service server, or before the user OTP input is made If the used subordinate connection is retried,

The authentication server maintains the OTP for server verification generated according to the priority connection for the user OTP input valid time or until the user OTP input is made, or prohibits the new generation of OTP for server verification according to the subordinated connection can do.

In one embodiment, the OTP for server verification and the user OTP may be generated as values to be mutually padded by being generated according to different computation conditions using the same generation key and same generation method but different mode discriminators.

In one embodiment, the authentication server transmits the server verification OTP to the online service server so that the generated server verification OTP is posted through the OTP publication screen provided by the online service server,

The OTP display screen displays an OTP display window for posting the server verification OTP and an OTP input window for inputting a user OTP. The OTP display window and the OTP input window are displayed in the OTP publication screen And,

The user OTP is paired with the confirmation OTP on the same screen through the mobile device having the OTP generator,

The confirmation OTP and the user OTP may be displayed on the screen of the mobile device by applying the same cognitive distinction effect as applied to the OTP display window and the OTP input window.

According to the embodiment of the present invention, after the user verifies the OTP for server verification provided by the server through the screen for inputting the OTP value for user authentication, the user inputs the OTP value for user authentication, Verification and user authentication can be performed at the same time.

1 is a diagram for explaining a mutual authentication method and system between an online service server and a service user according to an embodiment of the present invention;
2 is a block diagram of an embodiment of an OTP authentication server implementing a mutual authentication method according to an embodiment of the present invention.
3 is a block diagram of an embodiment of an OTP generator implementing a mutual authentication method according to an embodiment of the present invention.
4 is an example of an OTP bulletin screen displayed on an online service site by an online service server.
5 is an example of a screen in which a confirmation OTP and a user OTP generated by an OTP generator are displayed on a screen of a mobile device.
FIG. 6 illustrates an example of a screen in which a user OTP is displayed on a screen of a mobile device using a time OTP generation method while an OTP for verification is driven by a challenge & response generation method by an OTP generator.
7 is a view for explaining a mutual authentication method using OTP according to another embodiment of the present invention.
FIG. 8 is an example of screen display on the mobile device in FIG. 7; FIG.

BRIEF DESCRIPTION OF THE DRAWINGS The present invention is capable of various modifications and various embodiments, and specific embodiments are illustrated in the drawings and described in detail in the detailed description. It is to be understood, however, that the invention is not to be limited to the specific embodiments, but includes all modifications, equivalents, and alternatives falling within the spirit and scope of the invention.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS Hereinafter, the present invention will be described in detail with reference to the accompanying drawings. In addition, numerals (e.g., first, second, etc.) used in the description of the present invention are merely an identifier for distinguishing one component from another.

Also, throughout the specification, when an element is referred to as being "connected" or "connected" with another element, the element may be directly connected or directly connected to the other element, It should be understood that, unless an opposite description is present, it may be connected or connected via another element in the middle.

Also, throughout the specification, when an element is referred to as "including" an element, it is understood that the element may include other elements as well, without departing from the other elements unless specifically stated otherwise. Also, the terms "a "," module ", and the like in the description mean a unit for processing at least one function or operation, which means that it can be implemented by one or more hardware or software or a combination of hardware and software .

In the following description, the OTP generator is mainly described as a software OTP generator installed in the form of an application program on a mobile device owned by the user, but it is not necessarily limited thereto. For example, the OTP generator may be a hardware OTP generator having a communication function. Hereinafter, embodiments of the present invention will be described on the assumption of the former case for convenience and concentration of explanation.

In the following description, it is assumed that the client terminal and the OTP generator, which are access terminals connected to the online service server based on FIG. 1, are physically separated from each other. However, the OTP generator may be integrally implemented with the client terminal. In the latter case, the mobile device shown in Fig. 1 will be omitted. It is also clear that the client terminal itself may be a mobile device.

1 is a view for explaining a mutual authentication method and system between an online service server and a service user according to an embodiment of the present invention. Herein, FIG. 2 is a block diagram of an embodiment of an OTP authentication server implementing a mutual authentication method according to an embodiment of the present invention, and FIG. 3 is a block diagram of an OTP generator implementing a mutual authentication method according to an embodiment of the present invention Fig. 4 is an example of an OTP publication screen displayed on an online service site by an online service server, and FIG. 5 is an example of a screen on which a confirmation OTP and a user OTP generated by the OTP generator are displayed on a screen of the mobile device . 6 shows an example of a screen displayed on a screen of a mobile device by a time OTP generation method, while OTP for verification is driven by a challenge & response generation method by an OTP generator and a user OTP is driven by a time OTP generation method. Hereinafter, a mutual authentication method and an authentication system according to an embodiment of the present invention will be described in detail with reference to FIG. 1 together with FIG. 2 to FIG.

Referring to step S1 of FIG. 1, when a user wants to use the online service by the online service site provided by the online service server 130, the service user requests a connection to the online service server 130.

For example, if the online service to be used is an online banking service, the user can access a specific online service server that provides the online banking service (i.e., a specific bank server that provides the online banking service). The connection to the online service server 130 may be made through a mobile connection through the mobile device 110 (e.g., a smart phone, etc.) owned by the user himself or herself, 110 and a client terminal 100 (for example, a company PC or the like) which is separate from the client terminal 100

Referring to step S2 of FIG. 1, the online service server 130 may request a service user who wants to use the online service to input user account information according to a connection request to the online service server 130. Here, the user account information means identification information of a corresponding user stored (registered) in the online service server 130 through a user registration procedure (or a service registration procedure). Typically, a user ID (Identifier) and a password (password) can be utilized as the user account information. However, if it is information capable of identifying a user who uses the on-line service, various information (for example, an email address, a telephone number, a certificate password on a PKI (Public Key Infrastructure) Etc.) can be alternatively utilized.

Referring to step S3 of FIG. 1, according to a request for inputting user account information, the service user inputs user account information to the corresponding online service site. Referring to step S4 of FIG. 1, when the user account information is input from the service user, the online service server 130 checks whether there is an account matching the user account information input from the user. The account DB 140 as shown in FIG. 1 may be utilized for checking the account information. In the account DB 140, account information on users (i.e., members) who can receive an online service through the online service server 130 is stored. Although FIG. 1 illustrates a case where the account DB 140 is provided separately from the online service server 130, it is needless to say that the account DB 140 may be integrated with the online service server 130. Also, according to the system implementation method, the account DB 140 may be integrated with the OTP authentication server 150. [

1, if the input user account information matches the user account stored in the account DB 140, the online service server 130 generates OTP for server verification with the OTP authentication server 150 Lt; / RTI > Here, the OTP for server verification is used to allow the user to determine whether the online service site currently accessed by the user is provided by a true online service provider.

Although it is shown in FIG. 1 that this step (that is, step S5) is executed immediately after completion of the above-described user account checking procedure (that is, step S4), it goes without saying that it may be different. For example, the request for generating the OTP for server verification by this step may be executed only when the user selects the OTP authentication method as the authentication means after the user account confirmation procedure is completed.

1, the online service server 130 requests the OTP authentication server 150 to generate an OTP for server verification, but it may be different. For example, when the confirmation of the user account is completed, the service user side may request the OTP authentication server 150 to generate an OTP for server verification. A more concrete implementation of this can be described as follows. When the user account is confirmed and the service is connected to the online service site, the user transmits an OTP generation request for server verification to the OTP authentication server 150 through the OTP generator 120 installed in the mobile device 110 Method may be used. Hereinafter, for convenience and concentration of explanation, an OTP generation request for server verification is transmitted from the online service server 130 to the OTP authentication server 150 will be described with reference to FIG.

The request for generating the OTP for server verification as described above is received (received) through the communication interface unit 151 of the OTP authentication server 150. [

Referring to step S6 of FIG. 1, the OTP authentication server 150 generates an OTP for server verification in response to a request for generating an OTP for server verification from the online service server 130. FIG. At this time, the OTP for server verification can be generated by the server verification OTP generation unit 153 of the OTP authentication server 150. Hereinafter, various embodiments related to a method of generating an OTP for server verification will be described in detail.

In one embodiment of the present invention, an OTP generation key to be utilized as a seed value for OTP generation may be a pre-registered fixed key corresponding to the user account information of the service user.

For example, the fixed key corresponding to the user account information may be any one or at least two combinations of user identification information, such as the user ID, password, user's e-mail address, telephone number, certificate password, etc., . As another example, the fixed key corresponding to the user account information may be the same as the phone number, product serial number, USIM card number, MAC address, etc. of the user's mobile device (e.g., smart phone) Any one or at least two combinations of identifiers may be pre-registered and used. As another example, the fixed key corresponding to the user account information may be a private key assigned by the user himself or herself when registering in the OTP authentication service or registered in the OTP authentication service registration.

In another embodiment of the present invention, the OTP generation key to be utilized as the seed value for OTP generation may be a pre-registered fixed key corresponding to the identification information of the true online service server to which the user wants to connect. For example, the server IP address of the online service server (which may be all or part of the IP address) may be used as the OTP generation key.

In another embodiment of the present invention, the OTP generation key to be utilized as the seed value for OTP generation may be a dynamic allocation key dynamically allocated at the time when the user connects to the online service server.

For example, as a dynamic allocation key to be utilized as the OTP generation key, access terminal connection information of a service user accessing the on-line service server may be used. At this time, connection terminal connection information includes session information (e.g., a session ID, etc.) or socket information (e.g., a socket ID) allocated to the access terminal of the service user at the online service server A handle (Socket handle) or the like) can be used.

Here, the session ID is a value assigned by the server to manage continuous data transmission / reception between the server and the access terminal, and the socket handle information is used to manage a socket that is a unit for transmitting / receiving data between the server and access terminals It is an arbitrary connection unique value assigned by the server itself. Such a session ID or socket handle information is dynamically allocated, as well as a value assigned by the server itself, and is difficult to be stolen by a hacker outside the server. Therefore, when the OTP generation key is used as an OTP generation key, there is an advantage in security.

As another example, a mobile IP address (which may be all or a part of an IP address) dynamically allocated by a mobile communication company to a mobile device owned by a service user may be used as a dynamic allocation key to be utilized as the OTP generation key. For example, assuming that a service user accesses a corresponding online service server through his / her mobile device, a mobile IP address dynamically allocated by the mobile communication company may be used as an OTP generation key.

Further, in addition to the embodiments relating to the OTP generation keys described above, more various values can be utilized as seed values for OTP generation. As will be described later, in the mutual authentication method between the online service server and the service user according to the embodiment of the present invention, the OTP for server verification and the user OTP are generated as a pairing value. Therefore, OTP generation keys can be used in various ways to the extent that the above two OTP values can be paired with each other.

In the embodiment of the present invention, the server verification OTP can be generated by using the above-described OTP generation key, but applying specific calculation conditions. At this time, the operation conditions to be applied will be described together in step S10, which will be described later. Through this, it can be more clearly understood that the OTP for server verification and the user OTP are generated as the values of the pairing with each other.

Referring to step S7 of FIG. 1, when the server verification OTP is generated through the preceding step, the OTP authentication server 150 transmits the OTP generation condition to the mobile device 110 owned by the service user through the communication interface unit 151, To the OTP generator 120 installed in the network.

Although it is illustrated in FIG. 1 that the OTP generation condition of step S7 is performed through the push server 160, the OTP generation condition may be transmitted to the OTP generator 120 directly from the OTP authentication server 150 Of course it is. Although FIG. 1 shows the case of transmitting an OTP generation condition through a push message, the transmission of the OTP generation condition may be performed by a socket transmission method.

When transmitting the OTP generation condition through the push server 160, the OTP authentication server 150 transmits the OTP generation condition to the push server 160. At this time, the push server 160 transmits the OTP generation condition through the push message To the OTP generator 120. Here, the push message may be a message service provided for each application (app) in a specific mobile operating system. However, it is obvious that the transmission of the OTP generation conditions does not necessarily have to be based on a push message, and it may be applied to various commercial messaging services such as SMS and MMS, or may be performed by a specific communication protocol. In other exemplary cases where the transmission of the OTP generation condition is not based on a push message, the above-described push server 160 may be replaced with a general communication server.

Although the OTP generation condition is directly transmitted to the OTP generator 120 in FIG. 1, it is not necessarily the case. For example, it is obvious that the OTP generation condition is transmitted to the mobile device 110 via a push message, and the OTP generator 120 can read the OTP generation condition to receive (acquire) the OTP generation condition. The OTP generation condition receiving unit 121 of the OTP generator 120 may receive the OTP generation condition.

Here, the OTP generation condition transmitted to the OTP generator 120 may be an OTP operation condition and / or OTP generation key information. However, details of what information the OTP generation condition transmitted through step S7 is will be described later in detail in step S10.

Referring to step S8 of FIG. 1, the OTP authentication server 150 transmits the server verification OTP generated through the preceding step S6 to the online service server 130 through the communication interface unit 151. FIG.

The above-described steps S7 and S8 may be performed simultaneously or differently from the example shown in Fig. This is also true in the case of steps S9 and S10 described later.

Referring to step S9 of FIG. 1, in response to the delivery of the OTP for server verification, the online service server 130 posts the delivered OTP for server verification on the OTP publication screen of the online service site, Request input. An example of this is shown in Fig.

4, the OTP publishing screen 10 includes an OTP display window 10A where an OTP for server verification is posted (displayed) at the top, an OTP input window 10B for requesting input of a user OTP at its lower end adjacent to the OTP display window 10A, And an OK button 10C. At this time, the OTP display window 10A in which the server verification OTP is posted and the OTP input window 10B in which the user OTP is to be input are displayed in the OTP post screen 10 ). ≪ / RTI > For example, the OTP display window 10A provides an orange shading effect within the display window, and the OTP input window 10B provides a yellow shading effect within the display window so that the OTP display window 10A and the OTP input window 10B are visually distinguished .

In this regard, the display window (see 20A in Fig. 5) of the confirmation OTP (OTP corresponding to the server verification OTP) to be displayed on the screen of the user's mobile device and the user OTP The display window 20B of FIG. 5 can also be displayed by applying the same effect as the cognitive distinction effect applied to the OTP display window 10A and the OTP input window 10B displayed in the OTP display screen 10.

In this case, the service user can intuitively understand the usage classification of the OTP for the server verification and the user OTP without any difficulty. That is, the service user can intuitively find the display window (see 20A in FIG. 5) on the mobile device screen to which the same or similar distinguishing effect is applied as in the OTP display window 10A in the OTP publication screen 10, (I.e., the OTP value for server verification and the OTP value for confirmation), the authenticity of the corresponding online service server can be immediately determined. In addition, the service user can intuitively find a display window (see 20B in Fig. 5) on the mobile device screen to which the same or similar distinguishing effect is applied as in the OTP input window 10B in the OTP posting screen 10, (I.e., the user OTP value) posted in the OTP input window 10B in the OTP posting screen 10 can be intuitively input.

1, according to the transmission of the OTP generation condition in the preceding step S7, the OTP generator 120 generates an OTP for confirmation through the OTP generation unit for confirmation 123 and transmits the generated OTP to the user OTP generation unit 125 ) To create a user OTP.

Here, the confirmation OTP corresponds to the OTP for server verification posted by the OTP authentication server 150 and posted on the OTP publication screen (refer to reference numeral 10 in FIG. 3) on the online service site of the online service server 130 And an OTP value generated by the OTP generator 120. Therefore, when the OTP for confirmation and the OTP for server verification posted on the OTP publishing screen 10 match, the service user can determine that the online service server is a true service server (i.e., authenticity of the service server).

In the embodiment of the present invention, in the OTP generator 120, the generation of the confirmation OTP and the user OTP may be performed in the following manner. Basically, the confirmation OTP and the user OTP generated in the OTP generator 120 have a value that is paired with each other. This can be realized by using the same OTP generation key value in the OTP generation process, but generating OTP by applying different operation conditions. The same applies to the generation of the server verification OTP and the corresponding OTP (which is the OTP value corresponding to the above user OTP) in the OTP authentication server 150. Hereinafter, this will be described in detail.

In one embodiment, the OTP for verification (or OTP for server verification) uses the various OTP generation keys described above as a seed value, and generates the challenge and response by a challenge and response generation method. The user OTP (or corresponding OTP) By using the same OTP generation key as the seed value and creating the time OTP generation method, different operating conditions can be applied to each other. An example of this is shown in Fig. 6A and 6B, since the confirmation OTP (see service OTP in FIG. 6) displayed on the user's mobile device screen is generated by the challenge-and-response method, the same value However, since the user OTP is generated by the time OTP method, it can be confirmed that the value is changed after the elapse of the valid time.

Here, the challenge-and-response method is a method of generating an OTP by using the trial number as an operation condition. In this case, the OTP can be generated by encrypting a value obtained by multiplying the determined specific OTP generation key by the number of attempts, which is an operation condition, according to a specific hash function. Here, the time OTP method is a method of generating an OTP by using a generation time as an operation condition. In this case, the OTP can be generated by encrypting a value obtained by multiplying the determined specific OTP generation key by the generation time, which is an operation condition, according to a specific hash function.

In the above-described example, the OTP authentication server 150 receives the trial number information, which is an operation condition according to the challenge and response method, as the OTP generation condition used when the OTP for server verification is generated through the previous step S7, 120). At this time, however, the OTP generation key used for generating the OTP for server verification does not have to be transmitted to the OTP generator 120. If the fixed key described above in step S6 is utilized as the OTP generation key, the fixed key may be stored in advance in the key storage unit (not shown) of the OTP generator 120 and used directly. It is possible to transmit only the calculation condition in step S7. On the other hand, if the dynamic allocation key (e.g., session ID, etc.) is utilized as the OTP generation key, the OTP generation key may be transmitted to the OTP generator 120 through step S7 together with the calculation condition.

Accordingly, the confirmation OTP generation unit 123 of the OTP generator 120 generates an OTP for verification having the same value as the OTP for server verification generated by the OTP authentication server 150, based on the received OTP generation condition .

Also, the user OTP generation unit 125 of the OTP generator 120 may generate the user OTP using the same generation key as the OTP generation key used for generation of the confirmation OTP, but with the generation time as the calculation condition. At this time, the generation time to be used as the calculation condition of the user OTP generation may be transmitted from the OTP authentication server 150 to the OTP generator 120 through the preceding step S7. Accordingly, the confirmation OTP and the user OTP generated by the OTP generator 120 can be generated based on the same OTP generation key, but with a value paired according to different operation conditions.

In the above description, the case where the confirmation OTP and the user OTP are generated according to different operation conditions according to the same OTP generation key, respectively, and thus the values are mutually paired. However, according to another embodiment of the present invention, it is needless to say that the verification OTP and the user OTP can be generated by mutually paired values by applying the same calculation conditions to different OTP generation keys. Hereinafter, for convenience and concentration of explanation, the case of the former will be mainly described.

The confirmation OTP and the user OTP generated according to the above-described method can be displayed on the screen of the mobile device 110 by the OTP display unit 127 of the OTP generator 120. [ An example of screen display on this is shown in Fig. 5, the confirmation OTP is displayed on the screen of the mobile device through the display window of the reference numeral 20A, and the user OTP is displayed in parallel on the same screen through the display window of the reference numeral 20B .

Accordingly, the service user compares the OTP for server verification posted on the OTP display window 10A of the OTP publication screen shown in FIG. 4 displayed through the online service site with the OTP for confirmation posted on the left window display 20A of FIG. 5 So that the authenticity of the site can be determined. Also, the service user can input the user OTP value posted in the right display window 20B of Fig. 5 in the OTP input window 10B of the OTP publication screen of Fig. 4 (see step S11 of Fig. 1).

At this time, the OTP authentication server 150 performs OTP publication (for example, 60 seconds) during the user OTP input validation time (for example, 60 seconds) according to the connection attempt by the service user to the online service server 130, The OTP value for server verification published in the OTP display window 10A of the screen can be maintained as it is. That is, when the connection of the subordinate using the same account information as the user account information of the corresponding service user is retried before the user OTP input valid time elapses or before the user OTP input is made (for example, The OTP authentication server 150 can maintain the existing OTP value without generating a new OTP for server verification even if an additional connection is attempted by a hacker after connection. According to this, it is possible to prevent unauthorized user authentication due to subordinate connection by a hacker and information hijacking by the hacker.

In the above description, the OTP for verification (or the OTP for server verification) and the user OTP (or the corresponding OTP) are generated under the different operation conditions by the challenge-and-response method and the time OTP method, respectively, . However, the foregoing description is merely an example, and may be generated with a value that is mutually paired by another method.

For example, the OTP generation key and the OTP generation method may all be the same, but different mode discriminators may be applied as calculation conditions to have a value to be paired with each other. For example, both OTP and OTP (or OTP for server verification and corresponding OTP) session IDs are generated as OTP generation keys, both of which are generated by the time OTP method, One may have a value to be paired with each other by generating an OTP by adding 1 as a mode discriminator and 2 as a mode discriminator.

That is, the OTP generation key as the seed value of the OTP generation may be the same, but there may be more various modifications in addition to the generation of the value to be mutually paired by applying one or more of the calculation conditions. All of which will be covered by the embodiments of the present invention.

In the above description, the OTP input window is displayed on the OTP publishing screen, and the service user directly inputs the user OTP in the OTP input window. However, this need not necessarily be the case, and the modification to various methods for achieving the same effect Of course it is possible. For example, only the OTP for server verification may be posted on the OTP publishing screen, and the OTP input window for inputting the user OTP may not be separately posted. Also, the user OTP may not be directly input by the service user, but may be replaced by a specific gesture. For example, when the authenticity of the OTP for server verification is verified through the confirmation OTP, the user simply touches the user OTP displayed on the touch screen of the mobile device, and the touch gesture Etc., so that the automatic input of the user OTP can be performed.

When the user OTP value is inputted through step S11, the online service server 130 can request confirmation (i.e., request user authentication) of the user OTP value input to the OTP authentication server 150 See step S12).

1, the corresponding OTP generation unit 155 of the OTP authentication server 150 applies the same conditions as those of the user OTP generated in the OTP generator 120 in the preceding step S10 to the corresponding OTP . The authentication processing unit 157 of the OTP authentication server 150 can perform user authentication for the corresponding service user by comparing whether the generated corresponding OTP is matched with the inputted user OTP. At this time, the authentication result is notified to the online service server 130 (refer to step S14 of FIG. 1), and when the authentication is normally performed, the online service server 130 can start the corresponding service to the corresponding service user See step S15).

The mutual authentication method between the online service server and the service user according to the embodiment has been described above. Hereinafter, a mutual authentication method according to another embodiment of the present invention will be described with reference to FIGS. 7 and 8. FIG. Here, FIG. 7 is a view for explaining a mutual authentication method using OTP according to another embodiment of the present invention, and FIG. 8 is an example of screen display on a mobile device in FIG. 7 and 8, a detailed description of the contents that can be duplicated in the mutual authentication method described with reference to FIGS. 1 to 6 in the process of describing the mutual authentication method according to another embodiment of the present invention It will be omitted.

FIG. 7 is a flowchart illustrating a mutual authentication method according to an embodiment of the present invention when a payment service is performed using a payment application 120A installed in a mobile device owned by a user when the online service server as a service verification target is specialized as a payment server 130A. Fig. Here, the verification module 120B performs essentially the same or similar functions as the OTP generator 120 of FIG. 1 described above. The verification module 120B may be implemented as a separate application, but may be implemented together with the payment application 120A as a part of the payment application 120A. Accordingly, in this example, the payment application 120A and the verification module 120B are implemented as one application program (refer to reference character AA in FIG. 7) to be stored in the user's own mobile device (see reference numeral 110 in FIG. 1) Is assumed to be installed.

When the payment application 120A is activated as in step S1 of FIG. 7, a PIN (personal identification number) input by the user and verification thereof (that is, verification of the entered PIN number) are completed ), The payment application 120A can extract the user serial from the verification module 120B according to step S2 in FIG. 7 and request the server verification OTP to the payment server 130A in accordance with step S3 in FIG. 7 .

At this time, the user serial may be a user-specific value used when the payment application 120A and the verification module 120B are registered as one application in the OTP authentication server 150A. Such a user serial may be transmitted to the payment server 130A together with the OTP request for server verification. Hereinafter, the description will be made on the basis thereof.

When the OTP request for server verification is received together with the user serial, the payment server 130A transmits the OTP request to the OTP authentication server (see step S4 in FIG. 7), and accordingly, the OTP authentication server 150A generates the OTP for server verification (See step S5 in FIG. 7).

Various methods can be used as a method of generating an OTP for server verification through the OTP authentication server 150A as described above with reference to FIGS. 1 to 6. FIG. However, in this example, it is assumed that the private key, the IP address of the payment server, and the session ID generated by the payment server are used as the seed value of the OTP generation for server verification, and the OTP for server verification is generated by the challenge and response method . At this time, the private key may be a predetermined key value stored corresponding to the user identified by the user serial, and in some cases, the user serial value may be used as it is. In this case, the OTP authentication server 150A sends an IP address of the payment server 130A and a session ID assigned for communication connection with the payment application 130A from the payment server 130A to the OTP authentication server 150A It needs to be received. In one embodiment, the IP address and session ID of the payment server 130A may be transferred from the payment server 130A to the OTP authentication server 150A through step S4 of FIG.

The OTP authentication server 150A can transmit the OTP generation condition used for generating the OTP for server verification to the verification module 120B (see step S6 in FIG. 7). At this time, the transmission method of the OTP generation condition from the OTP authentication server 150A to the verification module 130B is essentially the same as that in the step S7 of FIG. 1 described above, so a duplicated description thereof will be omitted. That is, although FIG. 7 does not show the push server 160 or the like in FIG. 1 directly, this step can be performed in the same manner as in step S7 of FIG.

7, the OTP authentication server 150A transmits the OTP for server verification generated according to step S5 of FIG. 7 to the payment server 130A (see step S7 of FIG. 7) OTP to the payment application 120A (see step S8 of FIG. 7). In this case, the payment application 120A can deliver the received server verification OTP to the verification module 120B (see step S9 in FIG. 7). However, the server verification OTP generated by the OTP authentication server 150A does not need to be transmitted to the verification module 120B through the steps S7, S8, and S9. For example, the OTP for server verification may be transmitted together with the OTP generation condition transmission process according to step S6. However, in the present specification, the case of the former method will be described for convenience and concentration of explanation.

Accordingly, the verification module 120B generates an OTP for verification corresponding to the OTP for server verification with reference to the OTP generation condition received through the preceding step S6, and transmits the OTP for server verification received in step S9 and the self- (Step S10 in FIG. 7).

Through the above-described steps, when the server verification is completed, the verification module 120B generates a user OTP according to a predetermined method (see step S11 in FIG. 7), and transmits the generated user OTP to the payment application 120A (See step S12 in Fig. 7). At this time, the delivered user OTP may be transmitted from the payment application 120A to the payment server 130A (see step S13 in FIG. 7), and then transmitted to the OTP authentication server 150A (see step S14 of FIG. 7) .

Here, the method of generating the user OTP in the verification module 120B may also be applied to the various schemes described above with reference to FIG. 1 through FIG. However, in this example, the private key and the session ID used as the seed value of the OTP for server verification are used as the seed value of the user OTP generation, but the private IP address of the mobile device in which the verification module 120B is installed is set as the additional seed value , It is assumed that the user OTP is generated by applying the time OTP scheme. That is, in this example, the user OTP and the OTP for server verification use the same key as the private key and the session ID, but in the OTP generation process for server verification, the OTP is generated by the challenge and response method using the server IP address as the additional seed value In the user OTP generation process, the OTP is generated with the mobile IP address as an additional Sys value, and the OTP is generated by the time OTP method. However, in the mutual authentication method according to another embodiment of the present invention, there is no limitation that the user OTP and the OTP for server verification must be paired according to the system implementation method.

7, the OTP authentication server 150A generates the corresponding OTP corresponding to the received user OTP with the same generation conditions as in the step S11 of FIG. 7, and transmits the received OTP (Step S15 in FIG. 7). The user authentication is performed by comparing the received OTP with the self-generated corresponding OTP. The user authentication result at this time is transmitted to the payment server 130A (refer to step S16 of FIG. 7). If the user who is connected to the service is determined as a legitimate user according to the authentication result, the payment server 130A proceeds with the service [ See step S17 in Fig. 7). A payment app screen displayed on the screen of the mobile device owned by the user in the state where the user authentication is completed is illustrated in FIG. 8 (b).

8 (a) and 8 (b), it can be seen that the screen display methods are different from those of FIGS. 5 and 6 described above. Referring to FIG. 8, in the mutual authentication method according to another embodiment of the present invention shown in FIG. 7, the OTP for server verification and the user OTP for the server verification are not displayed on the service site screen and the application screen, unlike in FIG. 5 and FIG. That is, according to the embodiment of FIG. 7, the server verification OTP and the user OTP are used only for the mutual authentication performed inside the system without being exposed to the user. Therefore, after the process of inputting the PIN number by the user according to step S1 of FIG. 7 (see FIG. 8A), the series of processes from step S2 to step S16 of FIG. 7 are processed in the system, The service start screen of FIG. 8 (b) is immediately displayed on the application screen.

The method and apparatus according to embodiments of the present invention may be implemented in the form of program instructions that can be executed through various computer means and recorded in a computer-readable medium. The computer readable medium may include program instructions, data files, data structures, and the like, alone or in combination.

Program instructions to be recorded on a computer-readable medium may be those specially designed and constructed for the present invention or may be available to those skilled in the computer software arts. Examples of computer-readable media include magnetic media such as hard disks, floppy disks, and magnetic tape; optical media such as CD-ROMs and DVDs; magnetic media such as floppy disks; Includes hardware devices specifically configured to store and execute program instructions such as magneto-optical media and ROM, RAM, flash memory, and the like. Examples of program instructions include machine language code such as those produced by a compiler, as well as high-level language code that can be executed by a computer using an interpreter or the like.

The hardware devices described above may be configured to operate as one or more software modules to perform the operations of the present invention, and vice versa.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it will be understood by those of ordinary skill in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the following claims And changes may be made without departing from the spirit and scope of the invention.

Claims (19)

A computer implemented method for performing mutual authentication between an online service server and a service user,
(a) generating, by the authentication server, an OTP for server verification according to an OTP generation request for server verification;
(b) an OTP generator generates an OTP for confirmation of the same condition as the OTP for server verification to confirm the authenticity of the online service server, and uses the same generation key as the OTP generation key used for generating the OTP for server verification Wherein the server is configured to use an operation condition different from the operation condition used for generating the OTP for server verification or to use an operation key different from the OTP generation key used for generating the OTP for server verification, Generating a user OTP having a value to be paired with the server verification OTP by applying an operation condition identical to the condition; And
(c) when a user authentication request including the user OTP is received from the online service server, the authentication server generates a corresponding OTP having the same condition as the user OTP, Performing authentication for the service user by comparing the match
The computer-readable medium comprising:
The method according to claim 1,
Before the step (b)
Causing the authentication server to transmit an OTP generation key and an operation condition used for generating the server verification OTP to the OTP generator installed in the mobile user of the service user through a push message or a socket transmission
Wherein the computer-readable medium further includes a computer-implemented method for mutual authentication.
The method according to claim 1,
The server verification OTP generation request is transmitted from the online service server to the authentication server if the user account information input by the service user to the online site provided by the online service server matches the pre- RTI ID = 0.0 > 1, < / RTI >
The method according to claim 1,
The OTP generation key used for generating the server verification OTP includes a fixed key pre-registered corresponding to the user account information of the service user, a pre-registered fixed key corresponding to the identification information of the true online service server, And a dynamic allocation key that is dynamically allocated at the time of accessing the online service server.
5. The method of claim 4,
The dynamic allocation key includes connection terminal connection information of the service user connected to the online service server,
Wherein the access terminal connection information is a session ID or a socket handle information allocated by the online service server when the service user accesses the computer.
The method according to claim 1,
The OTP for server verification uses the OTP generation key as a seed value, generates a trial number as a calculation condition as a first calculation condition based on a challenge & response generation method,
Wherein the user OTP is generated by using the same generation key as the OTP generation key as a seed value and a time as an operation condition as a second operation condition based on a time OTP generation method, .
The method according to claim 6,
Before the user OTP input valid time elapses due to the attempted connection by the service user to the online service server or before the user OTP input is made, the connection of the latter using the same account information as the user account information of the service user If retried,
The authentication server maintains the OTP for server verification generated according to the priority connection for the user OTP input valid time or until the user OTP input is made, or prohibits the new generation of OTP for server verification according to the subordinated connection Wherein the computer-readable medium is a computer-readable medium.
The method according to claim 1,
Wherein the server verification OTP and the user OTP are generated by mutually generating a value to be mutually generated by the same generation key and the same generation method but according to different operation conditions different from the mode distinguisher .
The method according to claim 1,
Further comprising the step of the authentication server transmitting the server verification OTP to the online service server so that the generated server verification OTP is posted through the OTP publication screen provided by the online service server,
An OTP display window for posting the OTP for server verification and an OTP input window for inputting a user OTP are displayed on the OTP post screen,
Wherein the user OTP is paired with the OTP for verification on the same screen through the mobile device in which the OTP generator is installed, and the user OTP is displayed in step (b).
10. The method of claim 9,
Wherein the OTP display window and the OTP input window are displayed in the OTP publication screen so that cognitive distinction can be made,
Wherein the confirmation OTP and the user OTP displayed on the same screen of the mobile device are displayed on the screen of the mobile device by applying the same cognitive discriminating effect as applied to the OTP display window and the OTP input window, A computer implemented method for authentication.
An authentication system for performing mutual authentication between an online service server and a service user,
And generating a server verification OTP according to the OTP generation request for server verification, generating a corresponding OTP having the same condition as the user OTP when a user authentication request including a user OTP is received from the online service server, And authenticating the service user by comparing whether the user OTP is matched with the user OTP; And
Generating an OTP for verification of the same condition as the server verification OTP to verify the authenticity of the online service server, using the same generation key as the OTP generation key used for generating the OTP for server verification, Or an operation condition identical to the operation condition used for generating the OTP for the server verification is applied using an operation condition different from the operation condition used in the OTP generation for the server verification or a generation key different from the OTP generation key used for the OTP generation for the server verification Thereby generating a user OTP having a value to be paired with the OTP for server verification,
The authentication system comprising:
12. The method of claim 11,
Wherein the authentication server causes an OTP generation key and an operation condition used for generating the server verification OTP to be transmitted to the OTP generator through a push message or socket transmission.
12. The method of claim 11,
The server verification OTP generation request is transmitted from the online service server to the authentication server if the user account information input by the service user to the online site provided by the online service server matches the pre- To the authentication system.
12. The method of claim 11,
The OTP generation key used for generating the server verification OTP includes a fixed key pre-registered corresponding to the user account information of the service user, a pre-registered fixed key corresponding to the identification information of the true online service server, And a dynamic allocation key that is dynamically allocated at the time of accessing the on-line service server.
15. The method of claim 14,
The dynamic allocation key includes connection terminal connection information of the service user connected to the online service server,
Wherein the access terminal connection information is a session ID or a socket handle information allocated by the online service server when the service user accesses the terminal.
12. The method of claim 11,
The OTP for server verification uses the OTP generation key as a seed value, generates a trial number as a calculation condition as a first calculation condition based on a challenge & response generation method,
Wherein the user OTP is generated using the same generation key as the OTP generation key as a seed value and a time as an operation condition as a second operation condition based on a time OTP generation method.
17. The method of claim 16,
Before the user OTP input valid time elapses due to the attempted connection by the service user to the online service server or before the user OTP input is made, the connection of the latter using the same account information as the user account information of the service user If retried,
The authentication server maintains the OTP for server verification generated according to the priority connection for the user OTP input valid time or until the user OTP input is made, or prohibits the new generation of OTP for server verification according to the subordinated connection The authentication system comprising:
12. The method of claim 11,
Wherein the server verification OTP and the user OTP are generated by values generated by mutually different operation conditions by using the same generation key and same generation method but different mode discriminators.
12. The method of claim 11,
Wherein the authentication server transmits the server verification OTP to the online service server so that the generated server verification OTP is published through the OTP publication screen provided by the online service server,
The OTP display screen displays an OTP display window for posting the server verification OTP and an OTP input window for inputting a user OTP. The OTP display window and the OTP input window are displayed in the OTP publication screen And,
The user OTP is paired with the confirmation OTP on the same screen through the mobile device having the OTP generator,
Wherein the confirmation OTP and the user OTP are displayed on the screen of the mobile device by applying the same cognitive distinction effect as applied to the OTP display window and the OTP input window.

Images