Presentation is loading. Please wait.

Presentation is loading. Please wait.

魂▪創▪通魂▪創▪通 2014. 9. 10. Digital Certificate and Beyond Sangrae Cho Authentication Research Team.

Published byLester Newton Modified over 8 years ago

Similar presentations

Presentation on theme: "魂▪創▪通魂▪創▪通 2014. 9. 10. Digital Certificate and Beyond Sangrae Cho Authentication Research Team."— Presentation transcript:

1 魂▪創▪通魂▪創▪通 2014. 9. 10. Digital Certificate and Beyond Sangrae Cho Authentication Research Team

2 魂▪創▪通魂▪創▪通 2 Web Browser caserver.com bank.com 3. use certificate (digital signature) 2. Issue certificate 4. Verify certificate Korean banking use case 1.Public key pair is generated in the browser.

3 魂▪創▪通魂▪創▪通 ActiveX based Service 3 Certification Authority Web Browser Internet Banking ActiveX for Certificate Management

4 魂▪創▪通魂▪創▪通 ActiveX realted Issues 4  ActiveX Programs Certificate Management Keyboard protection Personal filewall and anti-virus Web secure channel  Related Issues Only works for IE Weak for malicious program attack User inconvenience Not mobile friendly

5 魂▪創▪通魂▪創▪通 Web based Digital Certificate Service 5 Storage Devices Desktop PC Smart Authentication (USIM, NFC-Credit Card) CA Issuing Certificate Relying Party (Online banking, e-Gov) e-Gov) Smartphone APP Web Server JavaScript based HTML5 Issue a certificate Use the certificate Web Browser

6 魂▪創▪通魂▪創▪通 Web based Approach 6 Web Browser Crypto Library Cert and Key Store Storage Library Storage APIWebCrypto API Cert. Manager in Java Script CMP PCKS7 Certificate Manager  WebCrypto API for Crypto fucntions  HTML5 for storage and communication  CMP for certificate issuing and PKCS7 for digital signature implemented in JavaScript

7 魂▪創▪通魂▪創▪通TouchSignTouchSign 7  Smartcard solution for Financial Services Secure storage for digital certificates Digital Signature with NFC User Authentication

8 魂▪創▪通魂▪創▪通 TouchSign Applications 8 Online BankingCredit Card Subscription Money transfer in online banking can be done with TouchSign User Authentication Digital Signature Subscription for Credit Card can be done with TouchSign Digital Signature

9 魂▪創▪通魂▪創▪通 Digital Certificate with FIDO 9 Digital Certificate issued to Authenticator

10 魂▪創▪通魂▪創▪通 Hands-Free Payment Service 10 Hands-Free Payment

11 魂▪創▪通魂▪創▪通 Requirements for standard 11  Storage management for WebCrypto.Next  Standard API for Hardware Tokens  Standard API for communications such as NFC, Bluetooth

12 魂▪創▪通魂▪創▪通 12 Thank You

Download ppt "魂▪創▪通魂▪創▪通 2014. 9. 10. Digital Certificate and Beyond Sangrae Cho Authentication Research Team."

Similar presentations

Achieving online trust through Mutual Authentication.

Achieving online trust through Mutual Authentication.
Michal Bodlák. Referred to as mobile money, mobile money transfer, and mobile wallet generally refer to payment services operated under financial regulation.

Michal Bodlák. Referred to as mobile money, mobile money transfer, and mobile wallet generally refer to payment services operated under financial regulation.
EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
HCE AND BLE UNIVERSITY TOMORROWS TRANSACTIONS LONDON, 20 TH MARCH 2014.

HCE AND BLE UNIVERSITY TOMORROWS TRANSACTIONS LONDON, 20 TH MARCH 2014.
Chapter 6 E-commerce Payment Systems. Traditional Payment Systems Cash Checking Transfers Credit Card Accounts Stored Value Accounts Accumulating Balance.

Chapter 6 E-commerce Payment Systems. Traditional Payment Systems Cash Checking Transfers Credit Card Accounts Stored Value Accounts Accumulating Balance.
WPKI available technology diagram and the business model

WPKI available technology diagram and the business model
9/11/2012Pomcor 1 Techniques for Implementing Derived Credentials Francisco Corella Karen Lewison Pomcor (http://pomcor.com/)

9/11/2012Pomcor 1 Techniques for Implementing Derived Credentials Francisco Corella Karen Lewison Pomcor (
1 GP Confidential ©2013 1 GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)

1 GP Confidential © GlobalPlatform’s Value Proposition for Mobile Point of Sale (mPOS)
Copyright © 1999, Financial Services Technology Consortium. All rights reserved. FSML and Echeck Milton M. Anderson Financial Services Technology Consortium.

Copyright © 1999, Financial Services Technology Consortium. All rights reserved. FSML and Echeck Milton M. Anderson Financial Services Technology Consortium.
魂▪創▪通魂▪創▪通 2013. 7. 19. WebCert - SOP Sangrae Cho Authentication Research Team.

魂▪創▪通魂▪創▪通 WebCert - SOP Sangrae Cho Authentication Research Team.
1 Authentication and Open Standards Brian Kelly UKOLN University of Bath Bath, BA2 7AY UKOLN is funded by the British Library Research.

1 Authentication and Open Standards Brian Kelly UKOLN University of Bath Bath, BA2 7AY UKOLN is funded by the British Library Research.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
INFORMATION SYSTEMS SERVICES UNIVERSITY OF LEEDS Presentation to the UK e-Science Grid Workshop ‘Managing Access to Resources on the Grid’ e-Science Institute,

INFORMATION SYSTEMS SERVICES UNIVERSITY OF LEEDS Presentation to the UK e-Science Grid Workshop ‘Managing Access to Resources on the Grid’ e-Science Institute,
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
Mobile Credentials Ennio J. Carboni Product Manager, Keon PKI

Mobile Credentials Ennio J. Carboni Product Manager, Keon PKI
SKS – Secure Key Store KeyGen2 –Token Provisioning Protocol Executive Level Presentation.

SKS – Secure Key Store KeyGen2 –Token Provisioning Protocol Executive Level Presentation.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
Electronic Transaction Security (E-Commerce)

Electronic Transaction Security (E-Commerce)
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Online Security Tuesday April 8, 2003 Maxence Crossley.

Online Security Tuesday April 8, 2003 Maxence Crossley.

Similar presentations

Ads by Google