A LOG BLACK BOX DEVICE IN ONLINE SERVICE PROVIDER SERVER OF LOG INFORMATION AUTHENTICATION SYSTEM USING THIRD PARTY CERTIFICATION AND ITS METHODS OF OPERATION

摘要

The present invention relates to a log black box device included in an OSP server of a log-information authentication system using third-party authentication, and an operation method of the same. The log black box device can provide the integrity of a software black box through a third-party authentication technique in order to guarantee authentication and integrity for the trust of a copyright holder even when installing and operating the software black box in the server room of an online storage company or in a data center. According to the present invention, the log black box device included in an OSP server of a log-information authentication system using third-party authentication comprises: a log file generating module that collects logs generated through the uploading or downloading of content stored in the OSP server, and generates an original log file; an MAC processing module that applies a message authentication code (MAC) to the generated original log file; a time information inserting module that inserts universal time coordinated (UTC) time, which is received from a network time protocol (NTP) server, into the generated original log file; an access control information inserting module that inserts an administration ID of the log black box device, which is generated by an authentication server, into the generated original log file; and an electronic signature and authentication processing module that encrypts the generated original log file, applies a signature by using a certificate generated by the authentication server, and generates a final log file.