DOI QR코드

DOI QR Code

A Study on the Utilization of Biometric Authentication for Digital Signature in Electronic Financial Transactions: Technological and Legal Aspect

전자금융 거래 시 생체인증을 전자서명에 활용하기 위한 기술 및 법률에 관한 연구

  • Song, Jae-Hun (Department of Information Security Graduate School, Korea University) ;
  • Kim, In-Seok (Department of Information Security, Korea University)
  • Received : 2016.10.21
  • Accepted : 2016.11.23
  • Published : 2016.11.30

Abstract

Today, leading smartphone manufacturers offer biometric technologies such as fingerprints, voice recognition, and iris patterns in their flagship models. These biometric technologies are used for authentication. Biometric authentications are widely used in device security and even in financial transaction. This paper examines cases where a user uses biometric authentication during financial transaction (both online and smartphone banking), and explains biometric for non-repudiation by digital signature. Finally, the paper also explains technical and legal requirements for biometric authentication in the area of financial services.

요즘 각 스마트폰 제조사에서 플래그쉽(flagship) 스마트폰 모델에 지문, 음성, 홍채인식 기능을 기본적으로 탑재하면서 생체인증을 활용한 인증수단이 활성화 되고 있다. 이러한 생체인증(지문, 음성, 홍채 등)은 패턴이나, 비밀번호와 같이 스마트폰의 잠금 해제 기능뿐만 아니라 금융권을 중심으로 다양한 인증수단으로 확산되고 있다. 본 논문에서는 생체인증을 통해서 전자금융(인터넷뱅킹, 스마트뱅킹 등)거래 시 사용자를 인증하고, 거래 내역에 대한 전자서명을 통한 부인방지 기술에 대해 설명하고, 이러한 생체인증 기술이 금융서비스에 접목되기 위해 필요한 관련 기술적, 법률적인 요구사항을 연구하고자 한다.

Keywords

References

  1. Cha, B. R. and Ko, F. I. S., "An OTP(One Time Password) Generation Method Using the Features of Fingerprint," The Journal of Society for e-Business Studies, Vol. 13, No. 1, pp. 33-43, 2008.
  2. Jang, S. S., "A Study on the Effect Fintech on the Information Security Industry," Internet & Security Focus, pp. 4-32, 2015.
  3. Jeong, C. H., "Electronic signature based authentication," Seoul Association For Public Administration, pp. 185-215, 2003.
  4. Jeong, W. Y., "A Comparative research on the revised electonic signature Act," Compare Justice, Vol. 10, No. 4, pp. 1-49, 2003.
  5. Kim, J. D., "The Legal Analysis on the Electronic Signature," Jungang Law Academy, Vol. 6, No. 3, pp. 353-376, 2004.
  6. Lee, H. J., "Biometrics began accelerate in the mobile security authentication means," Digieco, pp. 1-10, 2016.
  7. Lee, J. H., "The biometric authentication technology and financial transactions and its future," etnews, 2016.
  8. Park, J. G., "Understanding and Responding to Fintech services in the information security point of view," Payment and Information Technology, Vol. 61, pp. 70-100, 2015.
  9. Shim, C. S. and Chung, H. W., "A Study on the Improvement in Legal Issues for Related Electronic Signature Acts in Korea Focusing on the Legal Issues Connected with e-Signature and e-B/L," Korea Internet Electrornic Commerce Association, Vol. 10, No 2, pp. 59-75, 2010.
  10. Tsai, C. R., "Non-repudiation In Practice," Second international Workshop for Asian Public Key Infrastructure, pp. 1-2, 2002.

Cited by

  1. 의료 ICT융합 환경에서 안전한 사용자 관리를 위한 인증시스템 설계 및 구현: 중소형 의료기관을 중심으로 vol.19, pp.3, 2016, https://doi.org/10.33778/kcsa.2019.19.3.029
  2. FIDO2 CTAP을 활용한 전자서명 방법 vol.29, pp.5, 2019, https://doi.org/10.13089/jkiisc.2019.29.5.1049