摘要:
Provided are a method and apparatus for transmitting a message in a heterogeneous federated environment, and a method and apparatus for providing a service according to the message. In the method of transmitting a message to an external domain in the heterogeneous federated environment, a service server of a domain creates a transmission message to be transmitted to the external domain and supplies it to a protocol interpretation unit of the domain. The protocol interpretation unit detects protocol information of the external domain, interprets the created transmission message based on the detected protocol information, and supplies the interpreted transmission message to the service server. The service server then supplies the interpreted transmission message to the external domain. Accordingly, two service servers in different domains with different protocol information can exchange messages with each other while guaranteeing security.
摘要:
A method and apparatus for generating a certificate including a guardian's agreement for a ward are provided. The apparatus includes a verification unit verifying a certificate of the guardian, an agreement setting unit setting an agreement on conditions on which the ward is allowed to use an online environment, and a certificate issuing unit generating a certificate including the agreement for the ward when the verification of the guardian's certificate succeeds.
摘要:
Provided is a certificate transmission server transmitting a certificate stored in a fixed terminal to a mobile terminal, a system including the same, and a method using the same. The method includes forming a security channel to the mobile terminal and performing authentication of the mobile terminal, forming a security channel to the fixed terminal and performing authentication of the fixed terminal, and if the authentication of the mobile terminal and the fixed terminal is successful, receiving the certificate from the fixed terminal and transmitting the certificate to the mobile terminal. Accordingly, authentication of a mobile terminal and a fixed terminal can be performed by a certificate transmission server, and the certificate can be transmitted by establishing a safe communication channel.
摘要:
Provided is an apparatus and method for issuing a certificate by receiving in real-time a user's consent in an online or offline environment. The apparatus includes: a database unit storing and managing a list of certificates requiring a user's consent and personal information containing the identity and a contact point of the user of the certificates; a determiner, when issuance of a certificate is requested, receiving identity information of an applicant and determining whether the certificate requested by the applicant is listed in the certificate list stored in the database unit; and a consent inquiry unit, when the requested certificate is listed in the certificate list, transmitting the identity information of the applicant and the name of the certificate to a contact point of the user of the certificate, which is stored in the database unit, and inquiring whether the user consents to the certificate issuance.
摘要:
Provided are a system and method for updating a user identifier (ID). The user ID updating method includes: (a) collecting unauthorized access attempt information for a user ID; (b) creating a user ID update policy for an encoded user ID obtained by encoding the user ID, according to the unauthorized access attempt information collected in operation (a); (c) storing the user ID update policy created in operation (b); (d) loading the user ID update policy stored in operation (c) and determining whether or not to update the user ID; and (e) creating a new user ID if it is determined in operation (d) that the user ID should be updated, and changing the user ID to the new user ID. Therefore, it is possible to ensure security for user IDs, by dynamically creating and updating user IDs according to security environments.
摘要:
A system for managing and protecting personal information on the Internet and a method thereof are disclosed. The management and the access control of the personal information stored in a plurality of ID management servers that store and provide the personal information of users are performed using an Identity search server and a personal information protection server, and thus the convenience in use can be provided to the users who manage the personal information with the protection of the personal information through the access control of the personal information.
摘要:
Provided are a method and system for managing reliability of an identification (ID) management apparatus for user centric ID management.Provided are a method and system for managing reliability of an ID management apparatus, whereby an application service providing apparatus can determine whether to trust a corresponding ID management apparatus without having a pre-agreement with an ID management apparatus regardless of which ID management apparatus is selected by a user in user centric ID management circumstances.Therefore, reliability is determined according to types of information provided by the ID management apparatus, and reliability of the ID management apparatus can be determined according to a result of evaluation made by the application service providing apparatus instead of a particular single subject.
摘要:
Provided is a certificate transmission server transmitting a certificate stored in a fixed terminal to a mobile terminal, a system including the same, and a method using the same. The method includes forming a security channel to the mobile terminal and performing authentication of the mobile terminal, forming a security channel to the fixed terminal and performing authentication of the fixed terminal, and if the authentication of the mobile terminal and the fixed terminal is successful, receiving the certificate from the fixed terminal and transmitting the certificate to the mobile terminal. Accordingly, authentication of a mobile terminal and a fixed terminal can be performed by a certificate transmission server, and the certificate can be transmitted by establishing a safe communication channel.
摘要:
A method and system for transmitting and receiving user's personal information using an agent are provided. An information management server managing user's personal information provides an agent including user's personal information in response to a user's personal information request message from a client. A client receives the agent and requests user's personal information from the agent. Then, the agent determines whether the client is authorized and provides the user's personal information to the client when it is determined that the client is authorized. Accordingly, the user's personal information is safely managed and transmitted.
摘要:
Provided are a system and method for updating a user identifier (ID). The user ID updating method includes: (a) collecting unauthorized access attempt information for a user ID; (b) creating a user ID update policy for an encoded user ID obtained by encoding the user ID, according to the unauthorized access attempt information collected in operation (a); (c) storing the user ID update policy created in operation (b); (d) loading the user ID update policy stored in operation (c) and determining whether or not to update the user ID; and (e) creating a new user ID if it is determined in operation (d) that the user ID should be updated, and changing the user ID to the new user ID. Therefore, it is possible to ensure security for user IDs, by dynamically creating and updating user IDs according to security environments.