diff --git a/src/main/java/com/dnd/dndtravel/auth/service/JwtProvider.java b/src/main/java/com/dnd/dndtravel/auth/service/JwtProvider.java
index 99671c6..b78fcd8 100644
--- a/src/main/java/com/dnd/dndtravel/auth/service/JwtProvider.java
+++ b/src/main/java/com/dnd/dndtravel/auth/service/JwtProvider.java
@@ -1,28 +1,30 @@
 package com.dnd.dndtravel.auth.service;
 
 import io.jsonwebtoken.*;
+import io.jsonwebtoken.io.Decoders;
 import io.jsonwebtoken.security.Keys;
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.stereotype.Component;
 
-import java.util.Base64;
 import java.util.Date;
 
+import javax.crypto.SecretKey;
+
 @Component
 public class JwtProvider {
     private static final String CLAIM_CONTENT = "memberId";
     private final long accessTokenExpiredTime;
     private final long refreshTokenExpiredTime;
-    private final String secretKey;
+    private final SecretKey secretKey;
 
     public JwtProvider(
-        @Value("${jwt.secret-key}") String secretKey,
+        @Value("${jwt.secret-key}") String secretKeyString,
         @Value("${jwt.access-token-expired-ms}") long accessTokenExpiredTime,
         @Value("${jwt.refresh-token-expired-ms}") long refreshTokenExpiredTime
-       ) {
-        this.secretKey = secretKey;
+        ) {
         this.accessTokenExpiredTime = accessTokenExpiredTime;
         this.refreshTokenExpiredTime = refreshTokenExpiredTime;
+        this.secretKey = Keys.hmacShaKeyFor(Decoders.BASE64URL.decode(secretKeyString));
     }
 
     public String accessToken(Long memberId) {
@@ -30,7 +32,7 @@ public String accessToken(Long memberId) {
             .claim(CLAIM_CONTENT, memberId)
             .issuedAt(new Date(System.currentTimeMillis()))
             .expiration(new Date(System.currentTimeMillis() + this.accessTokenExpiredTime))
-            .signWith(Keys.hmacShaKeyFor(Base64.getDecoder().decode(this.secretKey)))
+            .signWith(secretKey)
             .compact();
     }
 
@@ -39,7 +41,7 @@ public String refreshToken(Long memberId) {
             .claim(CLAIM_CONTENT, memberId)
             .issuedAt(new Date(System.currentTimeMillis()))
             .expiration(new Date(System.currentTimeMillis() + this.refreshTokenExpiredTime))
-            .signWith(Keys.hmacShaKeyFor(Base64.getDecoder().decode(this.secretKey)))
+            .signWith(secretKey)
             .compact();
     }
 }
diff --git a/src/main/resources/application.yml b/src/main/resources/application.yml
index 96bdde0..ba6a49c 100644
--- a/src/main/resources/application.yml
+++ b/src/main/resources/application.yml
@@ -7,6 +7,8 @@ spring:
     password: ${MYSQL_PASSWORD}
   jpa:
     open-in-view: false
+    hibernate:
+      ddl-auto: create # local에서만 사용할거고, prod 환경과 분리 필요
 
 social-login:
   provider: