한국정보전자통신기술학회논문지 (The Journal of Korea Institute of Information, Electronics, and Communication Technology)

  • 제13권6호
  • /
  • Pages.575-589
  • /
  • 2020
  • /
  • 2005-081X(pISSN)
  • /
  • 2288-9302(eISSN)
한국정보전자통신기술학회 (Korea Information Electronic Communication Technology)
권호 표지
DOI QR코드

DOI QR Code

자기주권신원기술의 국내 서비스 사례 및 연구 과제 분석을 통한 개인정보 주권 강화 방안연구

A Study on Strengthening Personal Information Sovereignty through Analysis of Domestic Service Cases and Research Projects of Self-Sovereign Identity Technology

  • Lee, Jeong-Hyeon (Department of Computer Engineering, INJE University) ;
  • Kim, Ji-Won (Department of Computer Engineering, INJE University) ;
  • Kim, Chul-Soo (Department of Computer Engineering, INJE University) ;
  • Yang, Jin-hong (Department of Healthcare IT, INJE University)
  • 투고 : 2020.11.05
  • 심사 : 2020.11.16
  • 발행 : 2020.12.30
PDF 다운로드
⟨ 이전 논문 다음 논문 ⟩

초록

데이터를 기반으로 한 비즈니스가 폭발적으로 성장함에 따라 개인정보가 포함된 데이터의 중요성이 확대되고 있다. 국내의 경우 데이터 3법이 시행됨에 따라 개인정보가 포함된 데이터 활용 시의 규제 개선 및 명문화를 통해 기업들이 개인정보를 보다 적극적으로 활용할 수 있게 되었다. 이러한 상황에서 서비스 이용에 따른 실명 인증 및 개인정보 제공과 관련해 개인정보 제공을 최소화할 수 있는 자기주권신원기술이 주목받고 있다. 특히, 최근 개인정보 이용에 따른 기록의 명확성 및 증명을 위해 자기주권신원 기능 이용 시 블록체인을 활용한 서비스 및 연구들이 활발하게 이루어지고 있다. 본 논문에서는 국내 자기주권신원 서비스의 특징 및 블록체인 기반 자기주권신원기술과 관련된 연구 현황 및 내용을 분석함으로써 향후 데이터 3법 시대의 개인정보 주권을 강화하기 위한 자기주권신원기술 기반 연구 방향을 제시하고자 한다.

Along with the exponential growth of data businesses, the importance of data containing personal information of use have also increaseing. Particularly, in Korea, as the Data 3 Act was implemented, companies can use personal information more actively through regulatory improvement and stipulation in case of using data containing personal information. In this situation as per the service use, self-sovereign identity technology has emerged that can minimize the provision of personal information in relation to real name authentication and provision of personal information. Recently, services and studies using blockchain have been actively conducted in case of using the self-sovereign identity function for clarity and verification of records according to the use of personal information. In this thesis, by analyzing the characteristics of domestic self-sovereign identity service and the current status and contents of research related to blockchain-based self-sovereign identity technology and we suggest a research direction based on self-sovereign identity technology to reinforce the sovereignty of personal information in the era of the 3rd Data Act do.

키워드

과제정보

This Paper was supported by Institute of Information & communications Technology Planning & Evaluation & grant funded by the Korea government (MSIT) (No: 2018-0-00261, GDPR Compliant Personal Identifiable Information Management Technology for IoT Environment) in 2020.

참고문헌

  1. Sang-kwang Kim, Sun-kyung Kim, The Effect of Personal Information Regulation Level and Data Combination on Big Data Utilization, KOTIS, Vol.23 No.2, pp. 305-323. Apr. 2020
  2. Min-chul Lim, KISA "Personal Information Paradigm, Protection + Utilization Change", ZDNetKorea, May. 01. 2017
  3. In-soon KIm, Change the paradigm of privacy and utilization, PRESS9, May. 07. 2017
  4. Privacy Protal, Understanding personal information, Retrieved Oct. 26. 2020 from https://www.privacy.go.kr/nns/ntc/inf/personalInfo.do
  5. Policy Briefing on the Republic of kore, Data 3 Law policy Brieging, Retrieved Oct. 9. 2020 from http://www.korea.kr/special/policyCurationView.do?newsId=148867915
  6. Jong-ho Han, Good!Bye, 'public certificate'the passage of a repeal bill by the National Assembly, Seoul Economy, May. 20. 2020
  7. Min-cheol Lim, public certificates that are about to be abolished, 46,000 cases leaked in the last two months... Most in history, Aju economy, Sep. 27. 2020
  8. Jae-hee Han, Competition to dominate the "digital ID card" market is heating up, seoul press, Jun. 21.2020
  9. Tae-yeong Jeong, Opening the Digital Identity Era, Safety Journal, Jul. 03. 2020
  10. Heon-young Kwon, The Possibility and Development of Blockchain Technology in the data Sovereignty Era, pp.17-27, IITP, Jul. 2020
  11. H. Gulati and C. Huang, "Self-Sovereign Dynamic Digital Identities based on Blockchain Technology," 2019 SoutheastCon, Huntsville, AL, USA, pp. 1-6, Apr. 2019
  12. M. S. Ferdous, F. Chowdhury and M. O. Alassafi, "In Search of Self-Sovereign Identity Leveraging Blockchain Technology," in IEEE Access, vol. 7, pp. 103059-103079, Jul. 2019 https://doi.org/10.1109/access.2019.2931173
  13. G. Malik, K. Parasrampuria, S. P. Reddy and S. Shah, "Blockchain Based Identity Verification Model," 2019 International Conference on Vision Towards Emerging Trends in Communication and Networking (ViTECoN), Vellore, India, pp. 1-6, Mar. 2019
  14. Sovrin, What is self-sovereign identity, Retrieved Oct. 26. 2020 from https://sovrin.org/faq/what-is-self-sovereign-identity/
  15. Security Technology Research Team (Security Research Division), Comparison of Identity Management Types and Characteristics, pp.1-6, Financial Security Agency, Mar. 2017
  16. H. Oh and S. Jin, "The Security Limitations of SSO in OpenID," 2008 10th International Conference on Advanced Communication Technology, Gangwon-Do, pp. 1608-1611, Apr. 2008
  17. N. Hossain, M. A. Hossain, M. Z. Hossain, M. H. I. Sohag and S. Rahman, "OAuth-SSO: A Framework to Secure the OAuth-Based SSO Service for Packaged Web Applications," 2018 17th IEEE International Conference TrustCom/BigDataSE, New York, NY, pp. 1575-1578, Sep. 2018
  18. Christopher Allen, The Path to Self-Sovereign identity, Retrieved Oct. 26. 2020 from http://www.lifewithalacrity.com/2016/04/the-path-to-self-soverereign-identity.html
  19. J. Fang, C. Yan and C. Yan, "Centralized Identity Authentication Research Based on Management Application Platform," 2009 First International Conference on Information Science and Engineering, Nanjing, pp. 2292-2295, Dec. 2009
  20. Security Research Department Security Technology Research Team, Comparison of characteristics and changes in identity information management types, pp.1-6, Financial Security Agency, Mar. 2020
  21. Dae-seon Choi, Sang-rae Cho, Seung-hyun Kim, Seung-hun Jin, Kyo-il Chung, "Internet ID Management Service", 14(5), pp. 32-43, Oct. 2004
  22. D. Choi, S. Jin and H. Yoon, "Trust Management for User-Centric Identity Management on the Internet," 2007 IEEE International Symposium on Consumer Electronics, Irving, TX, pp. 1-4, Nov. 2007
  23. T. Komura, Y. Nagai, S. Hashimoto, M. Aoyagi and K. Takahashi, "Proposal of Delegation Using Electronic Certificates on Single Sign-On System with SAML-Protocol," 2009 Ninth Annual International Symposium on Applications and the Internet, Bellevue, WA, pp. 235-238, Sep. 2009
  24. S. E. Haddouti and M. D. Ech-Cherif El Kettani, "Analysis of Identity Management Systems Using Blockchain Technology," 2019 International Conference on Advanced Communication Technologies and Networking (CommNet), Rabat, Morocco, pp. 1-7, Jun. 2019
  25. Q. Stokkink and J. Pouwelse, "Deployment of a Blockchain-Based Self-Sovereign Identity," 2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData), Halifax, NS, Canada, pp. 1336-1342, Jun. 2018
  26. Samjong KPMG economic researcher, The Beginning of the Data Economy, MyData: Focusing on the Financial Industry, samjon Insight, Vol.68, pp. 2-45, Jan. 2020
  27. Finance committee, Announcement of the Introduction of MyData Industry in the Financial Sector, Financial Services Commission Press Release, Jul. 18. 2018
  28. Young-ok Kang, The Role of Spatial Information for the Vitalization of the Data Economy, pp. 2-4, KRIHS, May. 2019
  29. M. S. Ferdous, F. Chowdhury and M. O. Alassafi, "In Search of Self-Sovereign Identity Leveraging Blockchain Technology," in IEEE Access, vol. 7, pp. 103059-103079, Jul. 2019 https://doi.org/10.1109/access.2019.2931173
  30. World ide web consortium, Retrieved Oct. 26. 2020, from https://www.w3.org
  31. Decentralized Identity Foundation, Retrieved Oct. 26. 2020, from https://identity.foundation
  32. DID Alliance, DID Alliance Korea 2019 conference with plenty to see, DID Alliance press Release, Oct. 23. 2019
  33. DiD Alliance, Retrieved Oct. 26. 2020, from https://www.didalliance.or.kr
  34. MyID Alliance, Retrieved Oct. 26. 2020, from https://myidalliance.org
  35. Initial DID Association, Retrieved Oct. 26. 2020, from https://www.initial.id/html/index.html
  36. Mykeepin Alliance, Retrieved Oct. 26. 2020 from https://mykeepin.org
  37. KISA, Kisa-Financial Security Agency, working together to build a digital identification system based on a block chain, KISA press Release, Dec. 17. 2019
  38. Hyun-suk choi, Initial Confirmation of Blockchain Network Service Name, including 3 Mobile Telecommunications Companies and Samsung Electronics, yunhap news, Oct. 20. 2020
  39. S. Kakei, Y. Shiraishi, M. Mohri, T. Nakamura, M. Hashimoto and S. Saito, "Cross-Certification Towards Distributed Authentication Infrastructure: A Case of Hyperledger Fabric," in IEEE Access, vol. 8, pp. 135742-135757, Jul. 2020 https://doi.org/10.1109/access.2020.3011137
  40. C. Li, B. Palanisamy and R. Xu, "Scalable and Privacy-Preserving Design of On/Off-Chain Smart Contracts," 2019 IEEE 35th International Conference on Data Engineering Workshops (ICDEW), Macao, Macao, pp. 7-12, Apr. 2019
  41. T. Balopoulos and S. Gritzalis, "Towards a logic of privacy-preserving selective disclosure credential protocols," 14th International Workshop on Database and Expert Systems Applications, 2003. Proceedings., Prague, Czech Republic, pp. 396-401, Sep. 2003
  42. Laonsrcure, Retrieved Oct. 26. 2020, from https://www.raoncorp.com/ko/solution/omnioneenterprise
  43. Decentralized Identity, Retrieved Oct. 26. 2020, from https://www.w3.org/TR/did-core/
  44. Sang-rae cho, Dae-sun Choi, Seung-heon Jin, Hyung-ho Lee, Authentication technology without password-FIDO, pp.101-109, ETRI, Aug. 2014
  45. Ji-young Lee, Icon loop digital ID service Designated as Financial services commission innovation financial services, Daily economy, Jun. 26. 2019
  46. Zzeung, Retrieved Oct. 26. 2020 from https://www.zzeung.id/#/
  47. Seol-young Lee, Korea's representative DID MyKeypin Alliance full-scale expansion of ecosystem, Financial News, Sep. 23.2020
  48. Sang-il Lee, Passing the Data 3 Act, raising expectations for the activation of innovative services in the financial sector, Digital Daily, Jan. 1. 2020
  49. Financial Services Commission, Results of MyData Permission Demand Survey (5.14-5.28 days) in Financial Sector - 116 companies in various fields want MyData business, Korea Policy Briefing, Jun. 3. 2020
  50. Ministry of Science and ICT, Report on the launch of the Blockchain pilot project by the Ministry of the Ministry of Science and ICT, Government24, May. 27. 2020
  51. In-sun Jeong, 2020 government-sponsored public institution block chain project general reorganization, KISA open 10 blockchain public-leading pilot projects this year, coindesk, Jan. 18. 2020
  52. Im-sook Lee, Busan City's Blockchain-based Mobile Identity Experience Service Starts, Busan press Release, Jun. 9. 2020
  53. DBPIA, Retrieved Oct. 10. 2020, from https://www.dbpia.co.kr/
  54. IEEEXplore, Retrieved Nov. 1. 2020, from https://ieeexplore.ieee.org/Xplore/home.jsp
  55. Hyeop-goo Yeo, Min-goo Kang, Seung-il Sonh, "A Study on the DID based Smart Remocon and FIDO Transaction Certification for Home-shopping", Smart Media Journal, Vol.9, No.1, pp. 60-66, Mar. 2020 https://doi.org/10.30693/SMJ.2020.9.1.60
  56. Jae-hun Hwang, Min-je Cho, Cheol-hee Yoon, "A Study on the Application of DID Digital Forensic Framework for Traffic Accident Sensor Data Analysis", Digital Forensic Research, Vol.14, No.3, pp. 221-238, Sep. 2020
  57. NTIS, Blockchain task, Retrieved Oct. 26. 2020, from https://www.ntis.go.kr/
  58. B. Houtan, A. S. Hafid and D. Makrakis, "A Survey on Blockchain-Based Self-Sovereign Patient Identity in Healthcare," in IEEE Access, vol. 8, pp. 90478-90494, May. 2020 https://doi.org/10.1109/access.2020.2994090
  59. Seung-wan Chae, A Study on the Utilization of Decentralized ID Information Protection, pp. 74-99, Dong-A InfoSec 2020- Information Security & Privacy Conference, Feb. 2020