DOI QR코드

DOI QR Code

Study on the Connection with Public Authentication and Bio Authentication

공인인증서와 바이오인증 연계를 위한 연구

  • Ryu, Gab-Sang (Division of Computer Science, Dongshin University)
  • 류갑상 (동신대학교 컴퓨터학과)
  • Received : 2015.12.10
  • Published : 2015.12.30

Abstract

Organization is increasing the authorizing process to use public certificate and bio information. Certificate, has evolved to be able to parallel distributes the bio authentication and portable bio-authentication device. Authentication using an individual's PC and smart devices continue to generalize, while convenience for authentication is increased by comparison Study on cooperation with the security at the network level's a weak situation. If ask authentication method through the cooperation of the public certificate and bio information work with current network access control, there is a possibility to develop a more powerful security policy. by cooperation weaknesses against vulnerable personal authentication techniques on security token in a reliable and secure personal authentication techniques, such as bio-recognition, Bio Information for identification and to prevent exposing a methodology suggest to validate whether or not to carry out in this paper. In addition, organize the scenario that can work with the 802.1x network authentication method, and presented a proposal aimed at realization.

공인인증서와 바이오 정보를 활용하여 인증과정을 처리하고 있는 기관이 증가하고 있고 휴대용 바이오 인증기기를 배급하여 공인인증서와 바이오인증을 병행할 수 있도록 발전하고 있다. 개인의 PC나 스마트 디바이스를 이용한 인증이 범용화 되어가면서 인증에 대한 편의성이 증대되어가고 있는데 비해 네트워크 레벨에서의 보안과의 연계성에 대한 검토는 미약한 실정이다. 공인인증서와 바이오 정보의 연계를 통한 인증방식이 현재 네트워크 접근제어와 연계된다면 좀 더 강력한 보안정책으로 발전할 수 있다. 본 논문에서는 보안토큰에서의 취약한 개인인증 기법에 대한 취약점을 바이오인식과 같은 확실하고 안전한 개인인증 기법으로 연계함으로써 바이오 정보 노출 방지 및 바이오정보 본인 확인 수행 여부를 검증할 수 있는 방법론을 제시하였다. 아울러, 802.1x 네트워크 인증방식과 연계할 수 있는 시나리오를 정리하고 이의 실현을 위한 방안을 제시하였다.

Keywords

References

  1. In Bum Kim, Journal of information and security, "A Study on Enforce the Policy of User Certification in Public Certificate System", Vol. 10, No. 4, pp. 69-76, 2010.
  2. Junghyun Lee, Journal of information and security, "A Study on Certificate-based Personal Authentification System for Preventing Private Information Leakage through Internet", Vol. 10, No. 4, pp. 1-11, 2010.
  3. Kyoung-Soon Hong, The Journal of the Korea Contents Association, "Accessibility Evaluation of Accredited Certificate Subscriber Software", Vol. 11, No. 2 pp. 40-53, 2011.
  4. Sun-Woo Park, Journal of the Korean Institute of Information Security and Cryptology, "Security Analysis on Digital Signature Function Implemented in Electronic Documents Software ", Vol. 22, No. 5, pp. 945-957, 2012.
  5. http://en.wikipedia.org
  6. Changhyun No, "Study on the application of HSM to GPKI digital certification system", Changwon Univ., 2009.
  7. Hanna Choi, Journal of the Korean Institute of Information Security and Cryptology, "Improved Security for Fuzzy Fingerprint Vault Using Secret Sharing over a Security Token and a Server", Vol. 19. No. 1, pp. 63-70, 20.
  8. Yong-Nyuo Shin, Journal of Korean institute of information technology, "Privacy Preserving User Authentication Using Biometric Hardware Security Module", Vol. 22. No.2, pp. 347-3556, 2012.
  9. ISO/IEC 24761-Security techniques-ACBio, Authentication Context for Biometrics, 2009.
  10. Yong-Nyuo Shin, Journal of Korean institute of information technology, "Operational Management for Biometrics Hardware Security Module and PKI", Vol. 9. No.51, pp. 207-216, 2011.
  11. Hyo-Bin Lee, "Watermarking technique for biometric images security ", Younse Univ., 2007.
  12. Yooyoung Lee, Theory, Applications, and Systems, 2007. BTAS 2007, "Conformance Test Suite for CBEFF Biometric Information Records ", 2007.
  13. Weilin Xu, Circuits,Communications and System (PACCS), 2010 Second Pacific-Asia Conference on "802.1x relay: A new model for authentication of nat-enabled router", Vol. 1 .2010.
  14. Tae-Yoon Kim, Kyungnam Univ., "An Efficient user authentication method in PKI system based on 802.1x", 2005.
  15. Hyun-Suk Choi, Aju Univ., "Information Security in IEEE 802.1x Wireless LAN", 2007.