Journal of Convergence for Information Technology (융합정보논문지)

Convergence Society for SMB (중소기업융합학회)
권호 표지
DOI QR코드

DOI QR Code

Review of the suitability to introduce new identity verification means in South Korea : Focused on Block Chain and FIDO

우리나라의 본인확인수단에 관한 신규 인증수단의 도입 적합성 검토 : Block Chain과 FIDO를 중심으로

  • Shin, Young-Jin (Industry-Academic Cooperation Foundation, Paichai University)
  • Received : 2018.08.27
  • Accepted : 2018.10.20
  • Published : 2018.10.31
Download PDF
⟨ Previous Next ⟩

Abstract

This study investigates the suitability of the blockchain and FIDO among non-face-to-face authentication means in order to secure diversity of identfication means operated in South Korea. In order to do this, the study selected and analyzed seven conformance criteria (universality, persistence, uniqueness, convenience, security, applicability, and economics), and the results were appropriate. Accordingly, in order to apply the blockchain and FIDO as the identification means, the related regulations and notices should be revised to improve the identification procedure. In addition, differentiated certification standards should be established for each service field to apply various authentication means as well as existing identification means, and the authentication means should be continuously developed and linked with the service. In the future, the identification means will bring security of the information circulation environment in the IoT, so it should be implemented in a variety of services by supporting application of identification means.

본 연구는 우리나라에서 운영되고 있는 본인확인수단의 다양성을 확보하기 위해 비대면 본인인증수단 중에서 블록 체인과 FIDO를 선택하여 본인확인수단으로서의 적합성 정도를 검토하였다. 이를 위해 7가지 적합성 기준(보편성, 지속성, 유일성, 편의성, 보안성, 적용성, 경제성)을 선정하여 분석하였는데, 모두 적합한 수준을 갖추고 있음을 검증하였다. 이에 따라 블록체인과 FIDO를 본인확인수단으로 적용하기 위해서는 관련 규정 및 고시의 개정으로 본인확인절차를 개선하여야 한다. 더욱이, 기존의 본인확인수단뿐만 아니라 다양한 본인인증수단을 적용할 수 있도록 서비스분야별로 차별화된 인증기준이 마련되어야 하고, 지속적으로 인증수단을 개발하여 서비스와 연계하여야 한다. 앞으로 본인확인수단은 사물인터넷시대에서 정보유통환경의 안전성을 가져올 것이므로, 본인확인수단의 적용 확대 및 자율적 도입을 지원하여 다양한 서비스에서 구현될 수 있어야 한다.

Keywords

References

  1. Naver wikipedia. Blck chain anf FIDO, https://terms.naver.com
  2. J. H. Yang. (2018). A Study on the Effect of Block Chain Application and Legal Issue in Logistics Industry. Journal of Convergence for Information Technology, 8(1), 187-199. https://doi.org/10.22156/CS4SMB.2018.8.1.187
  3. S. J. Park. (2017). Blockchain paradigm and FIntech Seuciryty. The Journal of The Korean Institute of Communication Sciences, 34(3), 23-28.
  4. H. J. Mun. (2018). Biometric Information and OTP based on Authentication Mechanism using Blockchain. Journal of Convergence for Information Technology, 8(3), 85-90. https://doi.org/10.22156/CS4SMB.2018.8.3.085
  5. H. Y. Han. (2015). Features and Application Examples of Block Chain Technology. KFTC Payment trends. Korea Financial Telecommunications & Clearings Institute.
  6. S. Choi. et al. (2016). Excavating research areas of FinTech through the analysis of its relevant technologies and policy trends at home and abroad. Korea Internet & Security Agency.
  7. S. G. Lee. (2017). BlockChain Technology and market trend report. S&T Market Report. 47, Commercializations Promotion Agency for R&D Outcomes.
  8. Y. G. Kim. (2015). Blockchain technology and change in Finance. KB knowledge Vitamin. KB Financial Group Inc. Research Institute..
  9. Y. S. Kim, S. L. Cho & S. H. Kim. (2016. 5. 11). Concept and Application Status of Blockchain Technology. Weekly ICT Trends. Institute for Information & communications Technology Promotion
  10. S. S. Kim. (2018). The more compatible and safer authenfication service using bio verification as like fingerprint, iris, face. etc. Dreamsecurity. http://www.dreamsecurity.com/fido/
  11. Eugene Investment Co., LTD. (2016). Next Generation Authentication FIDO and Biometric Authentication.
  12. M. .K. Kim. (2016). Introduction of next-generation medical information authentication system using biometric information (fingerprint, iris, facial recognition, etc.). 21st Healthcare Korea Forum Conference Proceeding. http://www.healthcarekorea.com/2016_21th/pdf/02_raon.pdf
  13. B. J. Park, T. J. Lee & J. Kwak. (2017). Blockchain-Based IoT Device Authentication Scheme. Journal of the Korea Institute of Information Security & Cryptology, 27(2), 343-35. DOI : 10.13089/jkiisc.2017.27.2.343
  14. S. Y. Oh & C. H. Lee. (2017). Block Chain Application Technology to Improve Reliability of Real Estate Market. The Jounal of Society for e-Business Studies, 22(1), 51-64. DOI : 10.7838/jsebs.2017.22.1.051
  15. M. Vukolie. (2015). The quest for scalable block-chain fabric: Proof of work vs. BFT replication. International Workshop on Open Problems in Network Security, Springer International Publishing.
  16. S. H. Kim. (2016. 1). Fintech authentication technology based on FIDO. The Journal of The Korean Institute of Communication Sciences, 33(2), 59-65.
  17. J. S. Kim, S. J. Lee, B. S. Kim & S. W. Lee. (2015). Standardization trend of non-face authentication technology based on telebio recognition. REVIEW OF KIISC, 25(4), 43-50.
  18. S. H. Kim, J. H. Rho & Y. S. Kim. (2017) Next-generation Fintech authentication technology. The Journal of The Korean Institute of Communication Sciences, 34(3), 29-36.
  19. Ministry of Information Telecommunication. (2005). Develeopment Status for Alternative menas of resident registration number and related research results.
  20. S. K. Kim. (2017). Authentication by creditcard from this mony. Newso of Moneytoday. http://news.mt.co.kr/mtview.php?no=2017031517435012042&outlink=1&ref=https%3A%2F%2Fsearch.naver.com
  21. Korea Internet & Security Agency. (2013). Research on the Actual Condition of Electronic Signature System Usage. Korea Internet & Security Agency.
  22. J. Bonneau et al. (2012). The Quest to Replace Passwords: A Framework for Comparative Evaluation of Web Authentication Schemes. Proceedings of the IEEE Symposium on Security and Privacy, 553-567.
  23. Finance Security Institute. (2013). Compliance assessment of new authentication technology.
  24. Korea Internet & Security Agency. (2015) Research on the Actual Condition of Electronic Signature System Usage(in Electronic Signature User). Korea Internet & Security Agency.
  25. Y. J. Shin et al. (2015). The Research for Alternatives of the Resident Registration Numbers and Improvement of Authentication Process. Korea Internet & Security Agency.
  26. U. S. Kim. (2017). High-Trust government operation through Blockchain : possibility and case. E-government research seminar in Korean Association for Public Administration.
  27. Santander Innovatntures. (2015). The FinTech 2.0 paper. http://santanderinnoventures.com/fintech2/
  28. Korea Internet & Security Agency. (2016). Top 10 internet issues in 2017
  29. Y. S. Go & H. S. Choi. (2017). Change of business paradigm and its application: Focusing on block chain technology. Korea Science & Art Forum Proceeding, 13-29.
  30. D. G. No. (2015). Easy-to-use payment market, 'FIDO'. News of IT Chosun. http://it.chosun.com/site/data/html_dir/2015/10/14/2015101485009.html
  31. W. H. Choi. FIDO. in facebook. https://www.facebook.com/kftctiger?fref=ts