Method for modifying validity of a certificate using biometric information in public key infrastructure-based authentication system
First Claim
1. A method for modifying validity of a certificate using biometric information in a public key infrastructure-based authentication system including a registration authority for verifying identity of at least one user by proxy, a certificate authority for issuing the identity-verified user with the certificate and a user system, the method comprising the steps of:
- a) accessing a server of the certificate authority using login information of the user in response to a certificate validity modification request from the user under the condition that he/she is registered as a member in the authentication system;
b) inputting the biometric information for a user authentication through a biometric information input unit in the user system;
c) generating a certificate validity modification request message in response to the certificate validity modification request from the user, wherein generating a certificate validity modification request message includes one of;
generating a certificate revocation request message revoking the certificate issued to the user;
generating a certificate suspension request message suspending the certificate issued to the user; and
generating a certificate recovery request message recovering suspended authority of the certificate of the user; and
d) sending the inputted biometric information and the generated certificate validity modification request message to the certificate authority to request the certificate validity modification online.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention provides a method for modifying validity of a certificate in a public key infrastructure (PKI)-based authentication system, which is capable of performing online suspension, recovery and revocation of a certificate between a user system and a certificate authority by executing user authentication with guaranteed reliability using user biometric information. Accordingly, there is no need for the user to personally visit a registration authority or certificate authority to modify the certificate validity. The user can easily modify the certificate validity using his/her user system connected online to the certificate authority.
31 Citations
14 Claims
-
1. A method for modifying validity of a certificate using biometric information in a public key infrastructure-based authentication system including a registration authority for verifying identity of at least one user by proxy, a certificate authority for issuing the identity-verified user with the certificate and a user system, the method comprising the steps of:
-
a) accessing a server of the certificate authority using login information of the user in response to a certificate validity modification request from the user under the condition that he/she is registered as a member in the authentication system; b) inputting the biometric information for a user authentication through a biometric information input unit in the user system; c) generating a certificate validity modification request message in response to the certificate validity modification request from the user, wherein generating a certificate validity modification request message includes one of; generating a certificate revocation request message revoking the certificate issued to the user; generating a certificate suspension request message suspending the certificate issued to the user; and generating a certificate recovery request message recovering suspended authority of the certificate of the user; and d) sending the inputted biometric information and the generated certificate validity modification request message to the certificate authority to request the certificate validity modification online. - View Dependent Claims (2, 7, 8, 9, 10)
-
-
3. A method for modifying validity of a certificate using biometric information in a public key infrastructure-based authentication system including a registration authority for verifying identity of at least one user by proxy, a certificate authority for issuing the identity-verified user with the certificate and a user system, the method comprising the steps of:
-
a) receiving a message for requesting a certificate validity modification from the user system under the condition that the user system is connected to the authentication system via the Internet; b) receiving login information and the biometric information entered from the user for a system member authentication if he/she requests the certificate validity modification; c) determining whether the received biometric information is the same as user'"'"'s biometric information registered in a database storage unit if the user is authenticated on the basis of the received login information; d) modifying the validity of the certificate issued to the user in response to the certificate validity modification request if the received biometric information is the same as the user'"'"'s registered biometric information; and e) sending to the user system an acknowledgment message for notifying the user that the certificate validity modification has been normally processed; wherein step d) includes; d1) revoking the certificate issued to the user if the certificate validity modification request message indicates certificate revocation; d2) suspending the certificate issued to the user if the certificate validity modification request message indicates certificate suspension; and d3) recovering suspended authority of the certificate of the user if the certificate validity modification request message indicates certificate recovery. - View Dependent Claims (4, 5, 6, 11, 12, 13, 14)
-
Specification