KR20190033697A - Method and Computer Program for User Authentication using Graphic Touch Password - Google Patents

Abstract

Disclosed is a method for using a graphic image to set and input a password, and performing user authentication processing. According to the present invention, a user authentication method using a graphic touch password comprises the following steps: receiving a selection of a graphic image to be used as a password input screen from a user; receiving an N digit of a password from the user; respectively corresponding each digit of the password to N number of interest points on the graphic image in accordance with a user input; and associating the graphic image selected as the password input screen, the password, and information on a location and an order of the interest points corresponding to each digit of the password to generate a graphic touch password.

Description

Technical Field [0001] The present invention relates to a graphical touch password, a user authentication method and a computer program using the same,

The present invention relates to a user authentication method, and more particularly, to a method and a computer program for performing a user authentication process by setting and inputting a password using graphic images such as photographs, pictures, characters, and the like.

Various graphic images of a portable terminal are used only for recording and listening, and they are not utilized in other functional aspects such as a locking device of a terminal, a user authentication, a user interface, and the like.

In particular, since a photographic image of a graphic image is implemented by connecting itself to a connecting surface without boundary lines or lines and without a precise boundary line, it is impossible to accurately specify a specific pixel in a specific region of the image, There are millions of pixels. Therefore, even if a specific pixel is specified, it is difficult to accurately re-check the position of the same specific pixel thereafter.

In addition, it is the biggest weak point that the point of interest (POI, Point Of Interest) in the photograph can be set as the point of interest, and the point of interest in the photograph is almost the same Therefore, there is a problem that it is vulnerable to speculative attack and low security.

Meanwhile, in order to overcome user convenience and security, it has become more and more important to use the fingerprint, the vein, the face, and the iris Passwords using text have recently been employed, but the password system using text is still used mainly due to various technical problems such as verification of new technology and recognition error, user's maladjustment, anxiety about leak of body information, have.

In recent years, with the proliferation of mobile shopping, mobile banking, and the importance of security, the use of a combination of numbers and letters in passwords, the use of long passwords (six PINs for mobile banking) The adoption of the input method is making great changes to enhance security.

However, such an idea that neglects the convenience of the user and an easy alternative based on the provider is a situation in which the user pays off to the user rather than solving the vulnerability due to surrounding exposure and guessing attack, which is the fundamental problem of the character using password, It is growing. As the password becomes longer and harder due to the nature of the password, it is natural that the security becomes higher. Therefore, there is a problem that convenience is required to be increased in proportion to increasing security for user's convenience.

SUMMARY OF THE INVENTION The present invention has been made to solve the above problems of the prior art, and it is an object of the present invention to provide a user authentication method capable of solving user's convenience and password security together by performing user authentication using a graphic image which is the most familiar and easy- The purpose is to provide.

According to an aspect of the present invention, there is provided a method for setting a graphical touch password in a user terminal, the method comprising: receiving an image to be used as a password input screen from a user; Receiving an N-digit password from the user; Associating each digit of the password with N points of interest on the image in accordance with the user input; And generating a graphical touch password for the user by combining the graphical image selected as the password input screen, the password, and information on the order and position of points of interest corresponding to each digit of the password.

And the step of responding to the point of interest may correspond to each digit of the password according to a touch order when the user touches a predetermined position on the graphic image after inputting the password of the N digits.

The point of interest corresponding step may include: generating, when a user inputs the password of the N digits, N set icons indicating each digit of the input password in a predetermined area on the graphic image; If the user moves the N set icons to a desired point of interest on the graphic image, mapping each point of interest to the respective points of interest according to the movement order.

In the user authentication method, setting icons indicating candidates that can be input at each digit of the password are generated in a predetermined area on the graphic image, and when the user sets N of the setting icons as points of interest in the graphic image It is possible to determine an N-digit password by referring to the password candidates displayed on the moving order of the setting icons, the moved interest points, and the shifted setting icons, and determine a point of interest corresponding to each position of the determined password .

Wherein the user authentication method comprises: receiving from a user whether or not to use a random touch that can be touched before or after N points of interest corresponding to the N-digit password; The method may further include storing the input of the input of the random touch.

The user authentication method may further include transmitting the N-digit password from the generated graphic touch password to the authentication server when authentication information for the user is requested from the authentication server.

A user authentication method for processing an authentication attempt of a user using a graphical touch password according to another embodiment of the present invention includes a password input screen, an N-digit password, and a password corresponding to each digit of the password Obtaining predetermined graphic touch password information including information on a point of interest; Determining whether a graphic image selected by a user is a password input screen set in the graphic touch password; Determining that the user authentication has failed if the selected graphic image is not a password input screen; Obtaining a position and an order of points that the user touches on the selected image if the password input screen of the selected graphic image is correct; Determining success or failure of the authentication attempt by determining whether the position and order of the points touched by the user are touched in order of a point of interest and a point of interest corresponding to each position of the password set in the graphical touch password; . ≪ / RTI >

Even if the user further touches any point before or after touching the point of interest corresponding to each position of the password set in the graphic touch password in the user authentication method, Can be determined to be successful.

The user authentication method transmits an N-digit disposable password generated by randomly matching a password value to points touched by the user, when the disposable password for the user is requested from the authentication server, to the authentication server Step;

According to another aspect of the present invention, there is provided a user authentication system using a graphical touch password, comprising: an input unit for receiving a user input; A storage for storing one or more graphic images and a graphical touch password set by a user; A graphic image selected by the user as a password input screen among the graphic images stored in the storage unit, an N-digit password input by the user, and an interest point on the graphic image corresponding to each digit of the password, An authentication information generating unit for generating a graphic touch password for the user by combining information on the password input screen and storing the graphic touch password in the storage unit, And an authentication processor for determining whether or not the authentication attempt is successful by determining whether the positions and order of the points touched by the user are points of interest corresponding to the respective positions of the password set in the graphic touch password Ha And a control unit.

According to the present invention, it is possible to provide an authentication method which can be used by a user with a good user's satisfaction by utilizing emotional elements such as a user's memory, experience, and feeling on a graphic image.

In addition, it is possible to greatly increase security by preventing exposure and guessing attacks due to ambient exposure at the time of password input, which is a fundamental and fatal problem of passwords using the most commonly used numerals or characters.

In addition, since the password is input using a non-text graphic image, the password can not be obtained even if the password input scene is exposed.

In addition, when a one-time password (OTP) is extracted and used, it is possible to prevent inconvenience or input error of inputting text and prevent hacking.

In addition, since the existing password system or system is used as it is and only a password inputting method is used as a new inputting method by providing a password input system (for devices), it is necessary to change or change the password of the existing system or user none.

In addition, since the user can design and design a password input screen by using a familiar graphic image such as a picture and a character as well as a picture taken by the user himself / herself, the lock screen of the terminal can be personalized and originally designed according to his or her preference.

1 is a block diagram illustrating a configuration of a user authentication system using a graphical touch password according to an embodiment of the present invention.
2 is a flowchart illustrating a method of authenticating a user for setting a graphical touch password according to an embodiment of the present invention.
3 to 8 are views for explaining various embodiments of a user interface for setting a graphical touch password.
9 is a flowchart illustrating a user authentication method for inputting a graphical touch password and processing a user authentication attempt according to an embodiment of the present invention.
10 to 13 are views for explaining various embodiments of a user interface for inputting a graphical touch password.
FIG. 14 is a view for explaining an example of a user interface for confirming and changing a graphic touch password according to an embodiment of the present invention.
15 is a diagram for explaining an example of generating a disposable password (OTP) according to an embodiment of the present invention.

The terms used in this specification will be briefly described and the present invention will be described in detail.

While the present invention has been described in connection with what is presently considered to be the most practical and preferred embodiment, it is to be understood that the invention is not limited to the disclosed embodiments. Also, in certain cases, there may be a term selected arbitrarily by the applicant, in which case the meaning thereof will be described in detail in the description of the corresponding invention. Therefore, the term used in the present invention should be defined based on the meaning of the term, not on the name of a simple term, but on the entire contents of the present invention.

When an element is referred to as "including" an element throughout the specification, it is to be understood that the element may include other elements as well, without departing from the spirit or scope of the present invention. The term " means ", "part "," module ", etc. in the specification means units for processing at least one function or operation, Lt; / RTI >

Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings so that those skilled in the art can easily carry out the present invention. The present invention may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein. In order to clearly illustrate the present invention, parts not related to the description are omitted, and similar parts are denoted by like reference characters throughout the specification.

1 is a block diagram illustrating a configuration of a user authentication system using a graphical touch password according to an embodiment of the present invention.

A user authentication method according to the present invention can be performed by a computing system having a processor, a memory, and an input / output device. The user authentication system 10 of FIG. 1 includes a computing system that performs a user authentication method of the present invention, As shown in FIG.

Referring to FIG. 1, the user authentication system 10 includes a storage unit 12, 13 including a memory, and a storage unit 12 for storing one or more graphic images that are functionally possessed by a user And an authentication information storage unit 13 for storing the graphical touch password, which is authentication information of the user. In addition, although not shown, the user authentication system 10 will have an input for receiving user input and an output including a touch screen.

The user authentication information according to the present invention is generated by combining information on positions of points of interest on a graphic image corresponding to each position of a graphic image selected as a password input screen, an N-digit password, and a password, Quot; password ". The user who tries to authenticate successfully selects the password input screen from among many graphic images and tries to touch the points of interest corresponding to the respective places of the password on the graphic image in order to succeed in authentication. Instead of inputting the password through the keyboard, the user inputs the password by touching predetermined points on the graphic image in the order set by the user himself.

The user authentication system 10 generates and stores the graphic touch password as authentication information in response to the user authentication information setting request, determines whether or not the authentication of the authentication is successful by determining whether the graphic touch password is correctly input in response to the user authentication request And a control unit for performing post-processing such as unlocking when the authentication is successful, and the control unit may be implemented in the form of software executed by the processor.

Specifically, the control unit includes a graphic image selected by the user as a password input screen among the graphic images stored in the picture storage unit 12, an N-digit password input by the user, and a graphic corresponding to each position of the password An authentication information generation unit 11 for generating a graphic touch password for a user by combining information on points of interest on the image and storing the graphic touch password in the authentication information storage unit 13, When the image is selected, it is determined whether or not the position and order of the points touched by the user on the graphic image are the points of interest corresponding to the respective positions of the password set in the pre-set graphic touch password, And an authentication processing unit 14 There.

1, the system 10 includes a picture storage unit 12, an authentication information storage unit 13, an authentication information generation unit 11, and an authentication processing unit 14. According to this embodiment, the user authentication system 10 can perform a user authentication procedure necessary for logging in or releasing a lock screen to use a user terminal such as a smart phone, a tablet PC, a desktop, The present invention can be applied.

However, the present invention is not limited to the above embodiment, and the present invention can also be applied to a user authentication procedure for accessing a server through a user terminal in a system in which a user terminal and a server are linked through a network. In this embodiment, at least some or some of the functions of each component may be implemented on the server side.

2 is a flowchart illustrating a method of authenticating a user for setting a graphical touch password according to an embodiment of the present invention.

In step S20, when the user selects one of the graphic images stored in the picture storage unit 12, the password input screen is set as the password input screen.

In the present invention, the graphic image used as the password input screen is not limited to a photograph image photographed by a camera but may be a graphic image such as a picture, a character, a cartoon, a drawing, a map, a typography, an advertisement, a rendering, The image data may be used instead. In addition, a graphic image that can be used as a password input screen can be loaded from a photo storage folder in a user terminal such as a smart phone or can be downloaded from an external server, scanned, drawn, or a graphic image directly photographed .

The user can load graphic images in the photo storage box of the terminal device and display them on the screen, and use one of them as a password input screen. It is difficult for the third party to predict and hack the password since it is impossible to distinguish which one of these graphic images is used as the password input screen.

Since the user directly selects the password input screen from the graphic images held by the user himself / herself, the user can easily memorize and enhance the security since it is a result of using the cognitive information and the knowledge information, which are characteristics of the graphic image.

After the user selects a desired graphic image, a user interface for setting the graphic image as a password input screen, setting a password, and setting interest points corresponding to each digit of the password on the graphic image, An image will be provided on the screen in which it is displayed.

In step S21, an N-digit password will be input by the user.

In addition to numbers, letters, special characters, symbols, icons, colors, patterns, pictures, pictures, etc. can be used in each place of the password. In addition, the number of passwords can be set from 4 digits of the password used in the existing financial transactions to 6 digits of the PIN number for the mobile banking, and 8 digits using the mixed number and letters used for the Internet user authentication. Can be used variously.

One-digit passwords are very vulnerable to speculative attacks and can not be used as general passwords. However, temporary locks are required to limit the use of young children, but smart refrigerators that require quick access and door locks for home appliances It will be possible.

In addition, when using 2- or 4-digit passwords that are vulnerable to exposure, the "RANDOM TOUCH" and "QUICK SLIDING PASS", described below, can be used immediately and quickly, effectively preventing ambient exposure.

In step S22, points of interest are assigned to the respective positions of the password according to the input of the user, and are corresponded. For example, if a user touches a predetermined position on the graphic image after inputting an N-digit password, the user corresponds to each position of the inputted password according to the touch sequence.

The point of interest on the graphic image selected as the password input screen is a point at which the password is input at the time of the authentication attempt, and is a point on the graphic image, a setting icon used in setting the point of interest, Or a region in which the setting icon is disposed or an area in the touch range, that is, an area including a plurality of pixels.

Step S23 is a step of generating and storing user authentication information, and generates a graphic touch password by combining information on the positions and order of points of interest corresponding to each position of the graphic image, password, and password selected as the password input screen. The location information of each point of interest may be implemented as coordinate information that can identify the pixel or area.

After the setting of the graphic touch password is completed, the user interface provided for the setting of the graphic touch password such as the password setting icon and the setting completion icon disappears from the screen and only the original graphic image can be left. This is for preventing the third observer from recognizing the password input screen and the touch password input position.

When the user authentication method according to the present invention is applied to unlocking the user terminal, the generated graphical touch password is stored in the user terminal as authentication information. When the user attempts authentication, the authentication is performed using the stored authentication information. If successful, the user terminal will be unlocked.

Meanwhile, a user authentication method according to the present invention includes a user terminal for setting and inputting a graphical touch password, a system configured to receive and store authentication information from a user terminal, and an authentication server for processing a user authentication attempt , A system for authentication of mobile payment, and a system for authentication of an Internet user), authentication information for the user is requested from the authentication server, and only the N-digit password among the generated graphic touch passwords can be transmitted to the authentication server. The authentication server will store the password along with the information about the user. This embodiment can be applied to an authentication server that does not support a graphical touch password but supports only existing password authentication.

According to this embodiment, when a password is input at the time of a user authentication attempt, the user terminal selects a password input screen and uses a graphic touch input method in which a point of interest is touched. When the user correctly inputs a graphic touch password , Only the password corresponding to the N digits is transmitted to the authentication server to request authentication.

In this case, as a means for communicating with a user authentication system through a network and inputting a password, there are digital door locks for door-to-door communication that are physically separated from the user authentication system, ATMs connected to the network, It can also be applied to user authentication of automation devices such as financial automation devices, kiosks and civil certificate issuers.

However, in another embodiment in which the authentication server supports the graphical touch password, when the user sets the graphical touch password through the user terminal, the information about the graphical image used as the password input screen, the password, and the coordinates And the graphical touch password information including the order information will be transmitted to the authentication server.

In this embodiment, when the user attempts authentication later, the user terminal selects a password input screen, touches the point of interest, and inputs the password through the graphic touch input method. The user terminal then displays coordinate information of the point of interest To the authentication server. The authentication server refers to the graphical touch password information of the user and performs authentication success processing if it is determined that the user has touched the points of interest assigned to the respective positions of the password in the correct order.

3 to 8 are views for explaining various embodiments of a user interface for setting a graphical touch password.

FIG. 3 shows an example of setting a graphic touch password by touching a specific portion of a graphic image after a user sets a password.

3, in order to set a point of interest as an input position corresponding to each digit of the password "2 400" in the bear character which is a graphic image selected as a password input screen by the user, The right ear 32, the right forefoot 33, and the belly button 34 in that order. When the designation of the point for each digit of the password is completed, a graphic including the identification information of the image, the password "2 4 0 9 ", the location information of the four points of interest 31,32, 33 and 34, A touch password will be generated and stored.

The point of interest set at each position of the password becomes the password input position at the time of the user authentication attempt later. That is, when an image touch password is generated as in the example of FIG. 3, if the user next touches four points of interest 31, 32, 33, and 34 sequentially in the graphic image, It is assumed to be input.

As another example of the graphical touch password setting, a password can be assigned to one point of interest in a duplicate manner. For example, if you set the password "2 4 0 9" and touch the left eye of the bear character twice in succession, the first password "2" and the second password "4" . Then, if you touch the right ear twice consecutively, the third and fourth passwords "0" and "9" are set in the ear of the bear character. That is, when the user inputs a password, only two points of interest are touched, but the password is "2 4" and "0 9".

As another example, you can touch the left eye of the bear character three times in succession to set a 3-digit password "2 4 0" and a password for the remaining digit ("9") in the right ear. Even with pin numbers that use six numbers, if you set up multiple passwords for two or three short passwords as you intend, you can simply use long passwords.

This can be a way to prioritize the user's convenience with a "short password" that can be used to shorten the complexity and length of the password because of exposure and hacking, as well as to prevent password entry errors that occur more frequently have.

Short and simple short passwords used at this time may be vulnerable to hacking by surrounding exposure or spying on input, but they can be effectively prevented by using random touch. Users can make user authentication fast and convenient with only two simple touch inputs in a safe place and use random random touch several times before and after two actual touch passwords in an unstable place to make users intentionally and efficiently So that the ambient exposure can be prevented.

Currently, the password system does not have a method or device to prevent or avoid the user even if he / she feels uneasiness. Therefore, the user has to restrict the input screen or restrict the use of the password.

However, by using the random touch and the short-cut password together, the number of the touches of the password is increased or decreased according to the surrounding environment by the user so that the user can use the shortened or longer time.

In this case, the number of random touches can be increased from 1 to N, but it is better to limit the use to 8 or less, considering random guessing attack.

FIG. 4 illustrates an example of setting a graphical touch password by providing a password setting icon according to each digit of a password according to an embodiment of the present invention.

In this embodiment, when an N-digit password is input by the user, N setting icons indicating each position of the inputted password are generated in a predetermined area on the graphic image, and when the user presses the N setting icons on the graphic image Moving to the desired point of interest, each point of interest and password is mapped according to the order of movement.

Referring to FIG. 4, when a user browses graphic images and selects a graphic image 40 desired to be set as a password input screen as shown in FIG. 4 (a), a keyboard 41 Is provided. Further, when the user inputs a password through the keyboard 41, a password setting icon 42 is generated according to the number of digits of the password and displayed on one side of the screen.

In this example, since the user has input the 4-digit password "2 4 0 9" on the keyboard 41, four password setting icons 42 indicating "2", "4", "0" And a completion icon 43 for storing the user's input is additionally provided.

The user moves each setting icon 42 to predetermined positions 45-1, 45-2, 45-3, and 45-4 on the graphic image that he or she wishes to use as the input position, as shown in FIG. 4 (c) The user touches the completion icon 43 to generate and store a graphic touch password corresponding to the input of the user and the user interfaces displayed on the graphic image 40 as shown in FIG.

An input method such as touch or drag can be used to move the password setting icon 42. [ When the user touches the positions 45-1, 45-2, 45-3, and 45-4 of the graphic image 40 in the touch input method, '2', '4', ' 0 ', and' 9 'will be sequentially moved. In the case of the drag input method, the position where the user drags and drops each setting icon 42 will become a point of interest corresponding to the password of the place.

The graphical touch password generated in this example will contain information about the graphical image 40, the password "2400, " information about the points of interest corresponding to each digit of the password.

On the other hand, if the area to be designated as the point of interest is small or a part is crowded and the setting icon is not raised, the graphic image is enlarged, and the graphic image is trimmed by moving or rotating the graphic image. .

FIG. 5 illustrates an example of providing a password setting icon on a graphic image, which is larger than the number of password digits set by the user, in accordance with an embodiment of the present invention.

Referring to FIG. 5, when a user sets a four-digit password "2 409", ten favorite point candidates are generated as shown in (a), a circular password setting icon is placed at each of the corresponding points, 2 ',' 4 ',' 0 ', and' 9 'of the password are set to the corresponding point of interest in the order selected by touching the user among the password setting icons as shown in FIG.

For example, if the user touches the setting icon 50 placed on the right ear of the graphic image a second time, the second digit '4' of the password is displayed on the setting icon 50, and '4' Points of interest corresponding to your ear are assigned.

If the user wishes to set a password for a point other than the candidate point of interest, the setting icon near the desired point can be dragged and dropped to a desired position and moved.

Candidate points of interest can be determined and generated on a portion of the graphic image that is easy for the user to identify and easy to remember as a password entry location, i.e., a meaningful point of the user's choice. For example, in the case of a graphic image including a photograph or a character photographed by a person, it is possible to set coordinates that are easy for the user to identify as interest point candidates such as eyes, nose, mouth, hands, feet,

At this time, other than the graphical touch password set as the point of interest, other than the preset password, the candidate points of interest may be randomly arranged. This is to make it difficult to predict the actual password when the input screen is stolen by hacking by arranging the remaining numbers not used in the password with the predetermined password at the candidate points of interest.

FIG. 6 illustrates an example in which a password is input and a point of interest is simultaneously performed using a password set icon set disposed on one side of a password input screen according to an embodiment of the present invention.

In this embodiment, setting icons indicating candidates that can be input at each digit of the password are created in a predetermined area on the password input screen, and when the user moves N of the setting icons to the point of interest of the password input screen , The order of movement of the setting icons, the moved point of interest, and the moved setting icons, determines the N-digit password and also determines points of interest corresponding to each digit of the password.

At this time, the shortcut password function can be used by overlapping one or more setting icons at one point of interest. That is, four passwords can be set for each of four points of interest, but two or three points of interest can be set.

Referring to FIG. 6A, a set 60 of password setting icons displaying a password that can be input is displayed at the lower part of the password input screen instead of a keyboard for inputting a password. When the user moves the desired setting icon among the setting icons 60 to a desired position as shown in FIG. 6 (b), the password and the point of interest are set according to the moving order and the position. After both the password and the point of interest are set, the user interfaces for password setting will be removed from the screen as shown in FIG. 6 (c).

7 illustrates an example of setting a dummy image in addition to a password input screen according to an embodiment of the present invention. One or more dummy images can be set before and after the graphic image set as the password input screen according to the user's input.

The dummy image refers to a graphic image without graphical touch password setting among graphical images browseable on the authentication attempt screen, and is intended to disguise a graphic image set as a real password input screen from being noticed by others. The lock screen of the device is provided not only with the graphic image selected as the password input screen but also with the graphic image (s) set as the dummy image, and as a result, the album function can additionally be provided.

7, the user selects a desired graphic image 72 among the graphic images stored in the device as a password input screen to set a password and a corresponding point of interest, and generates a plurality of different graphic images 71, 73 , 74, and 75) were set as dummy images.

When the user touches a specific position on the dummy image on the lock screen of the apparatus, the same vibration or sound effect as that on the password input screen is output, thereby preventing the other person from distinguishing from the actual password input screen.

FIG. 8 illustrates an example in which a password is set through an input window and a random touch is used according to an embodiment of the present invention.

8, a user interface for inputting a graphic touch password is provided with an input keypad 82 for inputting a password and a password input window 81 for displaying a password input through the input keypad 82 .

Also, when a password is input and then a desired point is touched by a number of digits of the password on the graphic image 80, a password of each digit is set to a point of interest generated at the touch point in the order of touch, A password setting icon marked with each digit of the password will be displayed at each point of interest.

Meanwhile, a random touch may be used before or after the graphic touch password is input. Whether or not the random touch is used may be set according to the input of the user, or may be set as a default. Information on whether the random touch is used or not will be stored in the authentication information storage unit 13.

If it is set to use the random touch, the authentication attempt will be determined to be successful even if the user further touches any point before or after touching the point of interest corresponding to each place of the password set in the graphic touch password. In this case, the random touch can be any number according to the user's desire and can touch an arbitrary position.

In FIG. 8, the point of interest actually set as the image touch password is the point of interest 83 with '2', '4', '0', '9' .

FIG. 9 is a flowchart illustrating a user authentication method for inputting a graphical touch password to process a user authentication attempt according to an exemplary embodiment of the present invention. FIGS. 10 to 13 illustrate various user interfaces for inputting a graphical touch password Fig.

In step S90, the graphical touch password information set in advance in the authentication attempt of the user is obtained. The information on the graphical touch password set by the user will include information on the graphic image to be used as the password input screen, information on points of interest corresponding to each digit of the N-digit password and password.

In step S91, it is determined whether the graphic image selected by the user is a preset password input screen.

If the graphic image selected by the user is not a password input screen, the flow advances to step S95 to determine that the user authentication has failed, and performs processing accordingly. The processing for authentication failure may be to maintain the locked state of the terminal or to maintain the image browsing mode as it is.

If the password input screen matches the graphic image selected by the user, the flow advances to step S92 to receive the touch input of the user. The position and order of points that the user touches on the password input screen are acquired to determine whether or not the received touch input corresponds to the preset password.

In step S93, it is determined whether or not the position and order of the points touched by the user are the points of interest corresponding to the respective positions of the password set in the graphical touch password and are touched in order of the password.

If the predetermined points of interest are correctly touched and the sequence of the touches is in the order of the pre-set password, the process proceeds to step S94 to determine that the authentication attempt is successful and performs processing accordingly. For example, the terminal can cancel the locked state or permit the login.

If the predetermined points of interest are not correctly touched or the order of touch is different from the order of preset passwords, the process proceeds to step S95 to determine that the authentication attempt is unsuccessful and performs processing accordingly.

10 is a diagram for explaining an example of releasing a lock of a terminal by inputting a graphic touch password according to an embodiment of the present invention.

10, the nose 101, the right eye 102, the lips 103, and the jaw 104 of the graphic image 100 correspond to each position of the password "2 400." As shown in (a), when the user sequentially touches the points of interest, the terminal is unlocked and becomes usable as shown in (b).

That is, when the points of interest 101, 102, 103, and 104 are input in order, the password is successfully authenticated as the password "2 409" is input. As the password is not exposed to the outside, I can not even see what the password is.

Since the general password input screen has a similar configuration from the password input button to the password input window, the password input scene can be immediately recognized by others. However, the graphical touch password according to the present invention allows a user to view a picture It is impossible to know whether the input is performed or not, and since there is no special marking such as a number or a character at the password inputting position, the password can be completely protected from the surrounding exposure. Even if you notice that you are entering the password, you can not find the actual password because there are no numbers or letters on the screen.

11 is a diagram for explaining a process of processing a user authentication attempt when the random touch is set to use according to an embodiment of the present invention.

Random touch means 'random'. Random means to disguise a point of interest of a real password when a user touches a specific area on a graphic image by inputting a password, and randomly touches an arbitrary position It is a touch input with no meaning.

Referring to FIG. 11, a graphic image including a bear character is set as a password input screen, and the left eye 111, the right ear 112, the right hand 113, the navel 114, Interest points are set in order. The points 115 to 118 indicated by 'X' are examples of random touch points that the user has arbitrarily touched, not predetermined points of interest.

When the random touch is set to be used, the user further touches any of the points 115 to 118 before or after touching the points of interest 111 to 114 corresponding to the respective positions of the password set in the graphic touch password It is determined that the authentication attempt is successful.

As another example, although not shown, when a password input screen is displayed for user authentication as shown in FIG. 11, the size of the bear character (graphic image) is enlarged or reduced or displayed on the screen The position coordinate value of the predetermined point of interest is changed corresponding to the password, so that the keylogging for detecting the password to the touch position of the user can be effectively blocked. At this time, the layout position of the graphic image is changed randomly according to the number of times of use or time.

FIG. 12 illustrates an example in which a graphical touch password is used in a smart watch according to an embodiment of the present invention.

Referring to FIG. 12, when three points of interest are touched in a predetermined password order in a character image used as a password input screen and the user authentication is successful, the unlocking of the smart watch will be performed.

When a character image is used in a wearable device such as a smart watch or an IoT (Internet of Things) application, the user interface design can be expanded to enhance a product design or an interior effect. In addition, It can also be used as advertising and publicity.

It is difficult to use key buttons of more than ten passwords due to a small display space in a device having a limited display function due to a small display screen. However, when the graphic touch password according to the present invention is used, By using the ping, it is possible to go beyond these external limitations and increase security with convenient use.

13 is a diagram for explaining an example of using a Quick Sliding Pass when a graphic touch password is input according to an embodiment of the present invention.

As described above, each of the points-of-interest setting positions can be touched at the time of inputting the graphic touch password. However, as shown in FIG. 13, by sweeping in accordance with the order of the point- You may.

In the present invention, a method of inputting a graphic touch password by inputting a pattern by the swipe operation is referred to as a "quick sliding pass ". The Quick Sliding Pass can be useful when passwords with a high number of digits are set in the password input screen, the input positions are located at different positions, or the input screen is small.

In the case of using the quick sliding pass, it is judged that the authentication is successful if the point of interest set as the graphic touch password is included in the trajectory touched by the user's swipe input as shown in FIG.

In the case of user authentication by swiping, since the touch point is always located at the same position in the existing pattern password, when replacing the password, it is necessary to discard the familiar pattern and use a new pattern. However, The touch points of eyes, nose, mouth, hands, feet, and the like change, so the pattern shape changes naturally. Therefore, even if a previously used password or graphic touch password is used intact The advantage is that the password will be replaced.

According to this embodiment, the user can easily change the password and provide a new character image, thereby naturally inducing pattern replacement. At this time, the existing graphic touch password may be automatically set to the new character using the point-of-interest setting information of the newly changed character image, or may be manually reset by the user. When the password input screen is changed to another character image, the graphical touch password will be changed by modifying the points of interest corresponding to each digit of the password, while keeping the password included in the existing graphical touch password.

In the conventional pattern password, the dot display for drawing the pattern is always displayed on the screen. Therefore, when the pattern input scene is exposed to the surroundings, it is possible to easily follow others. However, And the elements or points of interest that make up the pattern are different for each user, so that other users can not follow it.

FIG. 14 is a view for explaining an example of a user interface for confirming and changing a graphic touch password according to an embodiment of the present invention.

According to an embodiment of the present invention, there is provided a user interface capable of checking a position of a graphic touch password in case the user can not memorize the graphic touch password preset by the user.

It is necessary to confirm whether or not the user is the person himself or herself before the position of the graphic touch password is displayed. In setting the graphic touch password, the specific position 140 of the password input screen can be designated for personal authentication.

If a user who forgets a graphical touch password touched a predetermined number of times (for example, five times) or touches the specific position 140 for authentication of the graphic image set as the password input screen for a predetermined period of time, It is possible to display the password setting icon preset in the points of interest set as the graphical touch password to store the graphical touch password set by the user himself / herself.

14 (a), the password is not displayed on the password setting icon displayed at the point of interest, and the setting icon is displayed on random points other than the previously set password setting icon They are arranged and shown together. The user can immediately find the password setting icon and the point of interest of the point of interest set by the user from among the password setting icons on the screen of FIG. 14 (a), but the other person can not know which is the actual preset icon . When the user correctly inputs the graphic touch password on the screen (a) of FIG. 14, the password can be displayed on the corresponding setting icon as shown in (b).

FIG. 15 is a diagram for explaining an example of generating a one-time password (OTP) according to an embodiment of the present invention.

When the present invention is applied to the generation of the one-time password, the user touches the points of interest set as the graphical touch password in order, but the user authentication system will generate the password value randomly according to the time or the number of times. Specifically, when a one-time password is requested for the user from the authentication server, the N-th one-time password generated by randomly matching the password value to the points touched by the user is transmitted to the authentication server.

15, the password is set to "2 409" and the password setting icon indicated by "A", "B", "C", "D" indicates the point of interest selected by the user when setting the graphical touch password . That is, the user can touch the point of interest in the order of nose, right eye, mouth, and chin when entering the password. The user authentication system randomly generates a disposable password by changing the matching of the touch point and the number each time the user inputs the graphic touch password. As shown in FIG. 15, when the user first inputs a password after setting the graphic touch password, it generates "6 3 8 5" as a one-time password but generates "4 8 3 1" when the next password is input. The generated one-time password is transmitted to the authentication server. Accordingly, the user only touches the points of interest set as the graphical touch password in the same order, but the password transmitted to the server can be a randomly generated password.

The method according to an embodiment of the present invention can be implemented in the form of a program command which can be executed through various computer means and recorded in a computer-readable medium. The computer-readable medium may include program instructions, data files, data structures, and the like, alone or in combination. The program instructions recorded on the medium may be those specially designed and constructed for the present invention or may be available to those skilled in the art of computer software. Examples of computer-readable media include magnetic media such as hard disks, floppy disks and magnetic tape; optical media such as CD-ROMs and DVDs; magnetic media such as floppy disks; Includes hardware devices specifically configured to store and execute program instructions such as magneto-optical media and ROM, RAM, flash memory, and the like. Examples of program instructions include machine language code such as those produced by a compiler, as well as high-level language code that can be executed by a computer using an interpreter or the like.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, It belongs to the scope of right.

Claims (12)

A user authentication method for setting a graphical touch password in a user terminal,
Receiving a graphic image to be used as a password input screen from a user;
Receiving an N-digit password from the user;
Associating each digit of the password with N points of interest on the graphic image according to the user input;
And generating a graphical touch password for the user by combining the graphical image selected as the password input screen, the password, and information on the order and the position of the point of interest corresponding to each digit of the password. User authentication method. The method according to claim 1,
The point of interest response may comprise:
And if the user touches a predetermined position on the graphic image after inputting the password of the N digits, associating each position of the password according to a touch order. The method according to claim 1,
The point of interest response may comprise:
Generating N set icons indicating a position of the input password in a predetermined area on the graphic image when the N-digit password is input by the user;
And associating each point of the password with each point of interest according to a movement order when the user moves the N set-up icons to a desired point of interest on the graphic image. The method according to claim 1,
When the user moves the N of the setting icons to the point of interest in the graphic image, the setting icons of the setting icons are displayed in the predetermined area on the graphic image, Determines a password of N digits by referring to the password candidates displayed by the movement order of the user, the moved interest point and the moved setting icons, and determines a point of interest corresponding to each position of the determined password . The method according to claim 1,
Receiving from the user whether to use a random touch that can be touched before or after N points of interest corresponding to the N-digit password;
Further comprising the step of storing whether the inputted random touch is used or not. The method according to claim 1,
And transmitting the N-digit password from the generated graphic touch password to the authentication server when authentication information for the user is requested from the authentication server. A computer program recorded on a recording medium for executing a user authentication method for setting a graphical touch password according to any one of claims 1 to 6. A user authentication method for processing a user authentication attempt using a graphical touch password,
Obtaining predetermined graphic touch password information including a password input screen, an N-digit password, and information on a point of interest corresponding to each digit of the password at the authentication attempt of the user;
Determining whether a graphic image selected by a user is a password input screen set in the graphic touch password;
Determining that the user authentication has failed if the selected graphic image is not a password input screen;
Obtaining a position and an order of points that the user touches on the selected graphic image if the selected graphic image is a password input screen;
Determining success or failure of the authentication attempt by determining whether the position and order of the points touched by the user are the points of interest corresponding to the respective positions of the password set in the graphical touch password and touched in order of the password; The user authentication method comprising: 9. The method of claim 8,
It is determined that the authentication attempt is successful even if the user further touches any point before or after touching the point of interest corresponding to each position of the password set in the graphic touch password Characterized by a user authentication method. The method according to claim 1,
And transmitting the one-time password of N digits generated by randomly matching the password value to the points touched by the user when the one-time password is requested from the authentication server to the authentication server And a user authentication method. A computer program recorded on a recording medium for executing a user authentication method for processing a user's authentication attempt using the graphic touch password of any one of claims 8 to 10. An input for receiving a user input;
A storage for storing one or more graphic images and a graphical touch password set by a user;
A graphic image selected by the user as a password input screen among the graphic images stored in the storage unit, an N-digit password input by the user, and an interest point on the graphic image corresponding to each digit of the password, An authentication information generating unit for generating a graphic touch password for the user by combining information on the password input screen and storing the graphic touch password in the storage unit, And an authentication processor for determining whether or not the authentication attempt is successful by determining whether the positions and order of the points touched by the user are points of interest corresponding to the respective positions of the password set in the graphic touch password Ha Wherein the control unit is configured to control the operation of the graphical user interface.

Images