摘要 |
Disclosed is a user authentication method using biometric identification, which includes the steps of: receiving a request for user authentication using biometric identification from an online service server; generating a one-time password to respond to the request for user authentication using biometric identification, and transmitting the one-time password to the online service server; receiving the one-time password from a user terminal; transmitting an authentication message to the user terminal to respond to the reception of the one-time password; receiving the authentication message, which is signed by using a personal key stored in the user terminal, from the user terminal; verifying the authentication message, signed with the personal key, by using a stored public key; and transmitting a result of the user authentication using biometric information to the online service server according to a verification result. The personal key and the public key are paired, and authentication of biometric information of a user is required to access the personal key stored in the user terminal. |