Forgery/tampering Verification System And Method For Financial Institution Certificates Based On Blockchain

  • Published: Aug 31, 2017
  • Earliest Priority: Feb 22 2016
  • Family: 6
  • Cited Works: 4
  • Cited by: 8
  • Cites: 2
  • Additional Info: Full text
Abstract

The present invention relates to a forgery/tampering verification system and method for financial institution certificates based on blockchain, where the system and method: can correctly verify forgery/tampering of certificates issued by financial institutions regardless of unverified watermarks using a means for comparing the content of certificates provided by a financial institution to a client when initially generated with the content thereof when issued by a client's request thereafter, so as to verify whether they are forged/tampered with, as well as significantly reduce the cost of registering clients' blockchain-based certificates; can minimise network overload by minimising traffic using a means for bundling and compressing certificate information of a client to a value preset by a system administrator, and registering this compressed information when transaction information including the certificates of the client is registered to a blockchain-holding server during the registration process of the blockchain-based certificates of the client; and verifies whether certificates of the client that are stored and managed by a financial institution are forged/tampered with according to a preset cycle, and can thereby promptly monitor whether certificates of the client are forged/tampered with through malicious actions such as hacking. A system and a method using the same are provided, the system comprising: a financial institution's terminal (100) for requesting record authentication of generated certificate information for a client when generating the certificate information for a client that is provided to a client by a financial institution, for storing certificate transaction ID information that is transmitted with the record authentication request, and for transmitting the certificate information for a client and the certificate transaction ID information if the certificate information for a client is requested to be downloaded; an authentication management server (200) for hashing the certificates for a client and client identification information identifying a corresponding client due to a record authentication request from the financial institution's terminal (100), and processing the same as node hash information, for accumulatively storing the node hash information in a certificate registration related information DB (211), and if the number of the accumulatively stored certificate node hash information reaches a preset root hash generation section, for operating a hash processing engine (220) so as to extract as many pieces of certificate node hash information as the number corresponding to the root hash generation section that is preset in the certificate registration related information DB (211) and so as to process the same as certificate root hash information for registration in which the extracted certificate node hash information is formed having a Merkle tree structure, for operating a transaction processing engine (230) so as to generate certificate transaction information including the certificate root hash information for registration, and certificate transaction ID information that is used as a key value for retrieving the certificate transaction information, and for transmitting the certificate transaction ID information to the financial institution's terminal (100), wherein the certificate transaction information is transmitted for record authentication; blockchain-holding servers (300) for authenticating bitcoin payments through verification of transmitted transaction information for bitcoin payments when the transaction information for a bitcoin payment is transmitted, wherein an electronic wallet having a blockchain in which the transaction information for bitcoin payments is recorded according to the authentication is placed in the blockchain-holding servers (300), and for recording the certificate transaction information transmitted by the authentication management server (200) in the blockchain; and a client's terminal (400) for requesting a download of the certificate information for a client from the financial institution's terminal (100) and for relay-transmitting the certificate information for a client and the certificate transaction ID information transmitted by the financial institution's terminal (100) due to the download request to the authentication management server (200) so as to request verification of whether the certificate information for a client is forged/tampered with, wherein the authentication management server (200) determines whether the certificate information has been forged/tampered with based on the transmitted certificate information for a client, certificate transaction ID information and client identification information, generates client-requested certificate verification information indicating whether the certificate information for a client has been forged/tampered with according to the determination, and controls the same to be transmitted to the client's terminal (400).


Claims
Download PDF
Document Preview
Document History
  • Publication: Aug 31, 2017
  • Application: Oct 10, 2016
    WO KR 2016011288 W
  • Priority: Feb 22, 2016
    KR KR 20160020437 A

Download Citation


Sign in to the Lens

Feedback