The Journal of the Convergence on Culture Technology (문화기술의 융합)

The International Promotion Agency of Culture Technology (국제문화기술진흥원)
권호 표지
DOI QR코드

DOI QR Code

A Study on the Improvement of Personal Identity Proofing Service Using an Alternative Method for Resident Registration Number Based on Electronic Signature

전자서명 기반의 주민등록번호 대체수단을 사용한 본인확인서비스 개선 방안에 대한 연구

  • Kim, Jong Bae (Dept. of Software Engineering, Sejong Cyber Univ)
  • 김종배 (세종사이버대학교 소프트웨어공학과)
  • Received : 2021.04.10
  • Accepted : 2021.07.25
  • Published : 2021.08.31
Download PDF
⟨ Previous Next ⟩

Abstract

As the status of public certificates expired due to the recent revision of the Electronic Signature Act, electronic signature-based public certificates were also lost in the means of replacing resident registration numbers(RRN). As a result, public certification institutions have recently been designated by the Korea Communications Commission as identity verification service providers through a review of the designation of personal identity proofing agency based on alternative means of RRN. However, unlike existing RRN replacements such as i-PIN, mobile phones, and credit cards, the personal identity proofing process for applicants for certificates is different from existing alternatives. The proposed method shows that it is possible to protect users' personal information and provide universal, reasonable, and safe identification services by applying improvements to electronic signature-based personal identity proofing services.

최근 전자서명법 개정으로 인해 공인인증서(현. 공동인증서) 지위가 만료됨에 따라 전자서명 기반의 공인인증서도 주민등록번호 대체수단에서 지휘가 상실되었다. 이로 인해 공인인증기관들은 방송통신위원회로부터 주민등록번호 대체수단 기반의 본인확인기관 지정심사를 통해 본인확인서비스 제공 기관으로 최근 지정받은 바 있다. 하지만, 기존의 주민등록번호 대체수단인 아이핀, 휴대폰, 그리고 신용카드들과 달리 인증서 발급 신청자의 신원확인 절차가 기존 대체수단들과는 상이한 부분이 존재하고 있다. 특히, 발급 신청자의 신원을 등록대행기관이 수행하고 있다. 본 연구에서는 전자서명 기반의 본인확인서비스 제공 시 대체수단 발급 과정에서 신원확인, 허무인 확인, 신원보증인 확인 등에 대한 개선방안들을 제안한다. 제안한 방안은 전자서명 기반의 본인확인서비스에 적용함으로써 이용자 개인정보보호와 보편·타당하고 안전한 본인확인서비스 제공이 가능함을 알 수 있다.

Keywords

Acknowledgement

이 논문은 2021년도 산업통상자원부 규제 샌드박스융합신제품인증기술개발사업의 지원(20016800)과 과학기술정보통신부와 한국연구재단 보조금에 의해 지원된 연구임 (NRF-2020R1F1A106890011)

References

  1. N. G. Kim and B. J. Cho, "A History Check System of Public Electronic Certificate using OCSP Service", Journal of the Korea Institute of Information and Communication Engineering, vol. 20, no. 3, pp. 543-548, 2016. DOI: 10.6109/jkiice.2016.20.3.543
  2. https://www.law.go.kr/법령/전자서명법
  3. J. L. Zhang, "A study on application of digital signature technology", Proc. of IEEE International Conference on Networking and Digital Society, vol. 1, pp. 498-501, 2010. DOI: 10.1109/ICNDS.2010.5479249
  4. E. Y. Lee, C. Shin, Baatdawa, "A study on the factors affecting the usage and diffusion of mobile easy payment services". International Journal of Advanced Culture Technology, vol. 8, no. 1, pp. 38 -43, 2020. DOI: 10.17703/IJACT.2020.8.1.38
  5. https://biz.chosun.com/site/data/html_dir/2019/10/11/2019101102528.html
  6. J. B. Kim, "A Study on Improvement of Personal Identity Proofing Service(PIPS) Based on Alternative Methods of Resident Registration Number", Journal of the Korea Society of Digital Industry and Information Management, vol, 15 no. 2, pp. 29-42, 2019. DOI: 10.17662/ksdim.2019.15.2.029
  7. H. J. Lee, "The Improvement Plan of the Individual Information Protection of the Law on the Development of Cloud Computing and User Protection", Journal of the convergence on culture technology, vol. 5, no. 1, pp. 219-226, 2019. DOI: 10.17703/JCCT.2019.5.1.219
  8. J. H. Kim, "A Legal Issues of Authentication and Electronic Signature on the Electronic Transactions," Law Review, vol. 18, no. 2, pp. 59-103, 2018.
  9. J. W. Park, S. J. Kim, J. L. Lee, H. S. Lee, "Trend of standardization of identification technology using identification number in X.509 certificate", Review of Korea Institute Of Information Security And Cryptology, vol. 14, no, 2, pp. 46-56, 2004.
  10. J. B. Kim, "A Study on Improvement method of designation criteria for Personal Proofing Service Based on Resident Registration Number", Journal of the Korea Society of Digital Industry and Information Management, vol. 16, no. 3, pp. 13-23, 2020. DOI: 10.17662/ksdim.2020.16.3.013
  11. 아이핀(i-Pin) 서비스 연계 정보 국가표준, KS X 3228-3, 방통통신표준심의회, 국립전파연구원 2012.
  12. J. B. Kim, "A Study on the Securing Technological Safety of Mobile Electronic Notification Service in Public and Administrative Agencies", Journal of the Institute of Internet, Broadcasting and Communication, vol. 20, no. 4, pp. 7-16, 2020. DOI: 10.7236/JIIBC.2020.20.4.7
  13. 본인확인기관 지정 등에 관한 기준 고시, https://www.law.go.kr/LSW/admRulInfoP.do?admRulSeq=2200000038 67
  14. The Reference Value/Secret Value Specification for Issuing Accredited Certificate, KISA, 2009.
  15. https://news.zum.com/articles/11356119?t=t
  16. 전자서명인증업무준칙, https://www.rootca.or.kr/kor/accredited/accredited02.jsp
  17. e프라이버시 클린서비스, 한국인터넷진흥원, https://www.eprivacy.go.kr/mainList.do
  18. J. B. Kim, "A Study on Differentiated Personal Proofing Service Based on Analysis of Personal Identification Requirements in Online Services," Journal of the Institute of Internet, Broadcasting and Communication, vol. 20, no. 2 , pp. 201-208, 2020. DOI: 10.7236/JIIBC.2020.20.2.201