The Journal of the Institute of Internet, Broadcasting and Communication (한국인터넷방송통신학회논문지)

The Institute of Internet, Broadcasting and Communication (한국인터넷방송통신학회)
권호 표지
DOI QR코드

DOI QR Code

A new password authentication scheme using two-way password in Smartphone Banking

이중 패스워드 방식을 이용한 스마트폰 뱅킹 관리

  • 송종근 (동서대학교 유비쿼터스 IT과) ;
  • 김태용 (동서대학교 정보통신학과) ;
  • 이훈재 (동서대학교 정보통신학과) ;
  • 장원태 (동서대학교 정보통신학과)
  • Received : 2012.05.30
  • Accepted : 2012.06.08
  • Published : 2012.06.30
Download PDF
⟨ Previous Next ⟩

Abstract

Smart Phone devices offer convenience for users, but present a new set of security issues due to loss or malicious code. In this paper, a mobile cloud system environment is used with existing smart phones in an attempt to solve the problems in a banking environment. In order to prevent financial damages due to loss or personal information leakage by malicious code, a mobile cloud computing service that provides control and protection of personal information in environment that ensures individual authentication is used. Existing ID / Password with certificate, with the way smart phone dual password authentication scheme using the gyro sensors proposed.

스마트폰은 사용자들에게 편리함을 제공하지만 분실과 악성코로 인한 보안적인 측면에서 문제점을 이슈가 되고 있다. 본 논문에서는 이중 보안 시스템 환경을 이용하여 기존에 사용되어지고 있는 스마트폰 뱅킹 환경에서의 문제점을 해결하고자 한다. 분실 또는 악성코드를 통해 개인정보 유출, 금전적인 피해를 줄이기 위해서는 스마트폰 뱅킹 서비스 환경에서 개인정보의 통제 및 보호가 보장되는 개인인증 방법을 제공할 필요가 있다. 이를 위해서 기존 ID/Password 방식과 더불어 공인인증서와 함께 스마트폰의 자이로센서를 이용한 이중 패스워드 인증 방식을 제안한다.

Keywords

References

  1. H. M. Jung, J. I. Sin, K. S. Lee, "Design of User Authentication Method in Mobile Cloud Computing," 2010 Fall Conference of Korea Multimedia Society, Vol.13, No.2, pp. 516-519, November 2010
  2. M. Y. Hwang, W. K, D. B. Lee, J. K, "Certificate Management Plan in Smart Phone Banking using the Mobile Cloud Computing," The Institute of Electronics Engineers Summer Conference Article, Vol.33, No.1, pp.1873-1876, June 2010
  3. E. Y. Jang, H. J. Kim, C. S. Park, J. Y. Kim, J. I. Lee, "The study on a threat countermeasure of mobile cloud services," Korea Institute of Information Security 2011, Vol.21, No.1, pp. 177-186, Feb. 2011
  4. H. K. Kim, L. Y. Lee, "A Study on One-Time Password Authentication Scheme in Mobile Environment," Journal of Korea Multimedia Society, Vol.14, No.6, pp.785-793, June 2011 https://doi.org/10.9717/kmms.2011.14.6.785
  5. J. C. Park, "Design of A One-time Password Generator on A Mobile Phone Providing An Additional Authentication for A Particular Transaction," Journal of KIISE , Vol.36, No.6, pp.552-557, December 2009
  6. H. N. You, J. S. Lee, J. J. Kim, J. P. Park, M. S. Jun, "A Study on the Two-channel Authentication Method which Provides Two-way Authentication using Mobile Certificate in the Internet Banking Environment," Journal of KICS , Vol.36, No.8, pp.939-946, August 2011 https://doi.org/10.7840/KICS.2011.36B.8.939

Cited by

  1. A Study of Authentication Method for Id-Based Encryption Using In M2M Environment vol.14, pp.4, 2013, https://doi.org/10.5762/KAIS.2013.14.4.1926
  2. A Study on Financing Security for Smartphones Using Text Mining 2017, https://doi.org/10.1007/s11277-017-4121-7