PERSONAL INFORMATION PROTECTION SYSTEM BASED ON APPROVAL BY OWNER OF PERSONAL INFORMATION AND METHOD THEREOF

摘要

The invention relates to a personal information protection system based on approval by an owner of information and a method thereof. More particularly, provided is a system and a method capable of accessing and retrieving personal information of an owner when a password which is set by a company or an institution for security of information matches, at the same time, a password which is set by an owner of information for security matches, the system comprising: a user device configured to generate an encryption key using a PIN (personal identification number) which is recognizable by a memory of a user or biometric information of a user such as finger prints, irises, and veins; a key store configured to issue a new key for submitting an encryption key to financial institutions, hospitals, public intuitions, companies, etc., wherein the encryption key is obtained by providing identification information by an owner who wants publication and use of information of the user, control of information of the owner i.e., use of information by approval of a third party, generating a key by using the PIN or the biometric key and encrypting the key; a privacy controller configured to generate an access key allowing the user to access the personal information by combining the key of the user generated by the key store and an institution key used by financial institutions, hospitals, public institutions or companies when using the personal information; and a service server including an application for managing customers by companies or institutions which inquires whether the owner of information wants the information of the owner to be used and a third party to use the information of the owner when use of the information of the owner is requested.;COPYRIGHT KIPO 2015