KR-20260064868-A - Visitor Reservation System Using a Method for Splitting and Restoring Encrypted Biometric Authentication Data

Abstract

The present invention relates to a system that encrypts and partitions biometric authentication data for storage, and restores it to securely perform visit reservation and identity verification procedures. A user makes a visit reservation via their smartphone or other personal device and performs a biometric authentication procedure, such as finger vein authentication, using a biometric authentication terminal. By encrypting and partitioning the biometric authentication data and storing it separately on the user's device and a central server, the risk of data leakage is reduced and security is enhanced. The present invention generates a QR code after a visit reservation to be used for identity verification. At the destination, identity verification is performed by scanning the QR code to restore biometric authentication data, which is stored separately on a central server and the user's device, respectively. Once identity verification is complete, the user's biometric authentication data is immediately deleted from the system to prevent the information from remaining for the long term. Additionally, the biometric authentication data stored on the central server is also deleted once visit verification is complete, thereby further enhancing personal information protection and security. The present invention enables secure biometric authentication even in open network environments through the segmented storage and temporary restoration of biometric authentication data, and provides the effect of enhancing personal information protection and reliability in visit reservation and identity verification procedures. Through this, users can safely perform identity authentication without the risk of personal information leakage, and simultaneously ensure convenient visit reservations and security.

Inventors

• 김동규

Assignees

• 김동규

Dates

Publication Date

20260508

Application Date

20241030

Claims (8)

1. A visit reservation system using a method for splitting and restoring encrypted biometric authentication data comprises: a visit reservation unit (101) that selects a place to visit and a schedule through a user device, inputs reservation information to accept a reservation, and generates a unique reservation number; a biometric authentication data registration unit (102) that acquires biometric authentication data, encrypts and splits it, and stores it in a user device and a central server, respectively; a QR code generation unit (103) that generates a QR code based on reserved visit information and biometric authentication split information and uses it for an identity verification procedure; a biometric authentication data restoration unit (104) that scans the QR code at the place to visit to restore the split biometric authentication data and verify its integrity; an identity verification unit (105) that finally performs user identity verification using the restored biometric authentication data; and a data subsequent processing unit (106) that protects personal information by safely deleting the reservation information and biometric authentication data after identity verification is completed.
2. In Article 1, A visit reservation system using a method for splitting and restoring encrypted biometric authentication data, characterized in that the above-mentioned biometric authentication data register performs biometric authentication of a user through a biometric authentication terminal connected to a user device, obtains biometric authentication data from the device and encrypts it with a separately generated secret key, and then splits the encrypted biometric authentication data into biometric authentication split information to be included in a QR code and biometric authentication split information to be stored on a server.
3. In Paragraph 2, A visit reservation system using a method for splitting and restoring encrypted biometric authentication data, characterized by the above-mentioned biometric authentication data register generating a unique value for the biometric authentication data through SHA256 and HMAC-SHA256, generating a private key and a public key based on the unique value, generating an electronic signature for the biometric authentication data using the private key, receiving a password from the user to encrypt the secret key used when encrypting the biometric authentication data, generating a SHA256 hash value of the encrypted secret key and biometric authentication split information to be included in the QR code, transmitting the reservation unique number, electronic signature, hash value, and biometric authentication split information to be stored on the server to the server for storage, encrypting the encrypted secret key and biometric authentication split information to be included in the QR code with the user's password to generate encrypted QR code data, and storing this along with the reservation unique number on the user's device.
4. In Article 1, A visit reservation system using a method for splitting and restoring encrypted biometric authentication data, characterized in that the above-mentioned QR code generation unit receives a password from a user through a user device, obtains a reservation unique number stored in the user device and encrypted QR code data, and generates a QR code together with the reservation unique number and user password and the obtained encrypted secret key and biometric authentication split information obtained by decrypting the QR code data encrypted with the user password.
5. In Article 1, A visit reservation system using a method for splitting and restoring encrypted biometric authentication data, characterized in that the above-mentioned biometric authentication data restoration unit scans a QR code displayed on a user device in a reception system to obtain a reservation unique number, user password, encrypted secret key, and biometric authentication split information, generates a SHA256 hash value of the encrypted secret key and biometric authentication split information, transmits the reservation unique number and hash value to a server, and the server obtains information stored in a DB using the transmitted reservation unique number, verifies the integrity of the QR code by comparing the transmitted hash value and the stored hash value, and if they match, transmits an electronic signature and the biometric authentication split information stored in the server to the reception system.
6. In Paragraph 5, A visit reservation system using a method for splitting and restoring encrypted biometric authentication data, characterized in that the above-mentioned biometric authentication data restoration unit obtains encrypted biometric authentication data by combining biometric authentication split information included in a QR code in a reception system with biometric authentication split information transmitted from a server, restores the biometric authentication data by decrypting the secret key obtained by decrypting a secret key encrypted with a user password, generates a unique value from the biometric authentication data through SHA256 and HMAC-SHA256, generates a private key and a public key based on the unique value, and verifies the integrity of the biometric authentication data by verifying the digital signature with the public key.
7. In Article 1, A visit reservation system using a method for splitting and restoring encrypted biometric authentication data, characterized in that the above-mentioned identity verification unit stores biometric authentication data restored from the reception system in a biometric authentication terminal connected to the reception system, and then uses this to perform biometric authentication of the user to verify the user's identity.
8. In Article 1, A visit reservation system using a method for splitting and restoring encrypted biometric authentication data, characterized in that, after user identity verification is completed, the data subsequent processing unit deletes the user's biometric authentication data stored in the biometric authentication terminal, deletes all information related to the user remaining in the reception system, transmits a processing request to the server so that the server also deletes the biometric authentication split information stored in the DB, and periodically deletes invalid reservation information remaining in the DB through a scheduler.

Description

Visitor Reservation System Using a Method for Splitting and Restoring Encrypted Biometric Authentication Data Visitor Reservation System Using a Method for Splitting and Restoring Encrypted Biometric Authentication Data The present invention relates to a system and method for detecting one's own face image using deep learning technology, and more specifically, to a technology for efficiently learning face images based on one's own face data and biometric authentication, and for detecting face images similar to oneself on various online platforms such as the web or social media. The present invention aims to protect personal information and prevent unauthorized use of images by preventing the unauthorized use of one's own face image and effectively filtering forged content such as deepfakes. Biometric authentication technology has advanced significantly over the past few years and plays a crucial role in the fields of security and authentication. In particular, contactless biometric authentication methods, such as finger vein recognition, identify users using the vein patterns of their fingers and boast high security and accuracy. These technologies are being utilized in various fields, including visit reservation systems, security access control, and financial transaction authentication. Existing biometric authentication technologies primarily focus on storing and utilizing users' biometric information in a single manner. However, since the leakage of biometric authentication data can lead to privacy violations or security issues, there is a need for safer methods to manage data. To address this, technologies that encrypt and partition biometric authentication data for storage, and restore it upon authentication, are gaining attention. The present invention proposes a system that encrypts biometric authentication data, such as finger vein patterns, securely partitions and stores it upon a visit reservation, and restores the data at the destination to perform identity verification. This ensures the safety of user biometric information and enhances security during the visit reservation and identity verification processes. FIG. 1 is a diagram showing the overall configuration and processing flow of a visit reservation system using a method for splitting and restoring encrypted biometric authentication data according to an embodiment of the present invention. It summarizes the configuration and processing flow of the overall system, including a visit reservation unit (101) that encrypts and splits information through biometric authentication when a user makes a visit reservation, a biometric authentication data registration unit (102) that encrypts and splits information by performing a biometric authentication procedure such as finger vein authentication, a QR code generation unit (103) that generates a QR code for identity verification when visiting, a biometric authentication data restoration unit (104) that restores the split biometric authentication data by scanning the QR code at the reception system of the place of visit, an identity verification unit (105) that performs identity verification using the restored biometric authentication data, and a data subsequent processing unit (106) that safely manages reservation information and biometric authentication data. FIG. 2 is a diagram showing the technical process of a visit reservation unit (101) that shows the process in which a user selects a place to visit and a schedule through a smartphone app and completes a reservation by performing biometric authentication according to an embodiment of the present invention. FIG. 3 is a diagram illustrating the technical process of a biometric authentication data register (102) in which a user performs a biometric authentication procedure, such as finger vein authentication, according to an embodiment of the present invention, and the biometric authentication data is encrypted and divided into two pieces of split information for storage. FIG. 4 is a diagram showing the technical process of a QR code generation unit (103) that generates a QR code based on reservation information and biometric authentication data according to an embodiment of the present invention and uses it for identity verification. FIG. 5 is a diagram showing the process of a biometric authentication data restoration unit (104) that scans a QR code in a visit reception system according to an embodiment of the present invention, collects biometric authentication data divided from a server and a user device, and restores the original data. FIG. 6 is a diagram showing the technical process of an identity verification unit (105) that performs identity verification through a device such as a vein authenticator using biometric authentication data restored according to an embodiment of the present invention. FIG. 7 is a diagram illustrating the technical process of a data subsequent processing unit (106) that securely manages reservation information an