METHOD AND APPARATUS FOR NON-PLUGIN DIGITAL-SIGNING BASED ON BIO AUTHENTICATION STANDARD

摘要

The present invention relates to a method for non-plug-in digital signing based on a biometric authentication standard and an apparatus thereof to increase user convenience. The method for non-plug-in digital signing based on a biometric authentication standard generates an authentication response message in response to a user authentication request in accordance with a prescribed biometric authentication standard and transmits the authentication response message to a remote authentication server via a user terminal to authenticate a user. The method comprises: a step in which an authentication device stands by to allow a user to input bio-information; a step of verifying the inputted bio-information based on previously stored bio-information; a step of performing a digital signing process by a previously stored authentication tool when bio-information verification is completed to generate a device authentication value by a device authentication tool in accordance with the biometric authentication standard and a user digital signature value by a previously stored user authentication certificate and an associated secret key; a step of including the device authentication value in a basic field of an authentication response message to be generated on the one hand and including the user digital signature value in an extension field on the other hand to generate the authentication response message; and a step of transmitting the authentication response message to a remote authentication server via the user terminal.