BaroPAMs

BaroPAM solution is a software-based authentication solution that generates a second authentication key on a smart phone. It is also called a soft authentication key, a second generation authentication key, and a one-time authentication key. 1. Strong authentication solution 1) In order to receive user authentication, a new authentication key must be used each time, and it can be used only once due to volatility and is safe even when ID/PW is leaked. 2) Once used, the authentication key cannot be reused, and it is difficult to infer the authentication key, providing strong security against various hacking attacks. 2. Ease of service 1) Authentication processing using the smartphone of the user who normally carries and does not need to carry a separate authentication key device (token, card). 2) Login is possible only with the ID and authentication key for each user of the information system, so no password is required. 3. Cost reduction 1) Reduced management/operation cost with a structure (software method) that does not require a separate authentication server. 2) Reduced purchase cost of hardware authentication key (token, card). Hacking damage reports on corporate and personal information leaks continue to occur if they are forgotten, and the damage is serious. More fundamentally, the perception that it is necessary to respond by using a second authentication key (one-time authentication key) that is safe for hacking is spreading socially. 1. Use guessable password (anniversary, phone number) 2. Most unified ID/PW in one or two 3. In the event of a spill, it is difficult for the user to know if it is leaking 4. My computer is always exposed to viruses or hacking 5. Inconvenient to use because of too many passwords The password is never secure, and a second authentication key is required to replace and additionally authenticate the password with each use. The BaroPAM solution is a 2nd authentication key, which generates and authenticates an authentication key with an authentication key generation module (soft authentication key) in a smart phone instead of an authentication key generation device. It is the best solution for account theft prevention and access control. 1.Use of 512bit standard hash function (HMAC-SHA512) recognized worldwide (IETF RFC 6283, Internet security standard) 2. Time-Sync method recommended by the Financial Supervisory Service, and dynamic SEED encryption algorithm 3. Can be used in all areas that require user authentication, such as electronic financial transactions, online services, electronic commerce, ATM, server access control, door lock 4. Software method that does not require an authentication server (2nd authentication key) 5. Individual authentication key and authentication key generation cycle (3~60 seconds) for each server and account 6. Secondary authentication password replacement and additional authentication support 7. Unlike hard authentication key, it can be permanently used as soft authentication key 8. Free customizing and providing convenience of various application and interworking development (API interworking in Java and C languages) ※ HMAC (Hash-based Message Authentication Code) HMAC is a method of obtaining a Hash function by combining keys, and a method of creating a Hash value by mixing a key and a message shared only by the sender and the receiver. In addition, it can be used to check whether a message sent through a channel is corrupted. Since MAC cannot be converted due to the nature of the MAC, the received message and the Hash value are recalculated to check whether the calculated HMAC and the transmitted HMAC match. Question : mc529@nurit.co.kr