정보보호학회논문지 (Journal of the Korea Institute of Information Security & Cryptology)

  • 제17권4호
  • /
  • Pages.115-129
  • /
  • 2007
  • /
  • 1598-3986(pISSN)
  • /
  • 2288-2715(eISSN)
한국정보보호학회 (Korea Institute of Information Security and Cryptology)
권호 표지
DOI QR코드

DOI QR Code

퍼베이시브 로밍 서비스를 위한 보안 관리 프레임워크

A Study of Pervasive Roaming Services with Security Management Framework

  • 발행 : 2007.08.31
PDF 다운로드
⟨ 이전 논문 다음 논문 ⟩

초록

유비쿼터스 및 자동화된 컴퓨팅 환경은 개방적이고 동적이어야 하며, 끊김 없는(seamless)소프트웨어와 시스템 구조의 연동을 통한 일반적인 무선 접근으로 사용자에게 다가가는 퍼베이시브 서비스를 제공해야한다. 하지만 다양한 네트워크에서 모든 이동 기기들 간에 미리 정의된 보안 인증을 포함한 로밍 서비스를 제동하기는 매우 복잡하고 어렵다. 더욱이 퍼베이시브서비스 환경에서 끊김 없는 통신 서비스를 제공하기 위해, 다양한 무선 사업자간에 로밍 협정을 세팅하거나 스마트카드 기반의 효율적인 사용자 프로파일 모델링 연구나 다양한 종류의 사용자 인터페이스를 이용하여 자동화된 사용자 인증 시스템을 위한 보안 방안에 관한 연구는 많지 않다. 사용자에게 다가가는 네트워크 도메인 간의 퍼베이시브 보안 서비스를 포함한 상호 로밍이 가능한 로밍 코디네이터 기반의 보안 관리 프레임워크를 제안한다. USIM(Universal Subscriber Identity Module Card)을 이용한 상용 이동 통신은 하나의 서비스 도메인에서만 가능하지만 본 논문에서 제안한 로밍 코디네이터(Roaming Coordinator)는 PWLAN(Public Wireless Local Area Network)이나 3G 이동통신 그리고 WMAN(Wireless Metropolitan Area Network) 등의 다른 네트워크 도메인에서의 보안 서비스를 보다 안전하고 쉽게 제공할 수 있다.

The ubiquitous and autonomic computing environments is open and dynamic providing the universal wireless access through seamless integration of software and system architectures. The ubiquitous computing have to offer the user-centric pervasive services according to the wireless access. Therefore the roaming services with the predefined security associations among all of the mobile devices in various networks is especially complex and difficult. Furthermore, there has been little study of security coordination for realistic autonomic system capable of authenticating users with different kinds of user interfaces, efficient context modeling with user profiles on Smart Cards, and providing pervasive access service by setting roaming agreements with a variety of wireless network operators. This paper proposes a Roaming Coordinator-based security management framework that supports the capability of interoperator roaming with the pervasive security services among the push service based network domains. Compared to traditional mobile systems in which a Universal Subscriber Identity Module(USIM) is dedicated to one service domain only, our proposed system with Roaming Coordinator is more open, secure, and easy to update for security services throughout the different network domains such as public wireless local area networks(PWLANs), 3G cellular networks and wireless metropolitan area networks(WMANs).

키워드

참고문헌

  1. Keith Mayes, Konstantinos Markantonakis, F.P.: Smart card based authentication- any future? Computers & Security 24 (2005) 188-191 https://doi.org/10.1016/j.cose.2005.03.002
  2. Nicolas Montavont, e.a.: Handover management for mobile nodes in ipv6 networks. IEEE Commun. Mag. 40 (2002) 38-43
  3. 김미연,김계진,이동훈, 'VoWLAN 보안 및 로밍 설계,' 정보보호학회논문지, 2005
  4. Feng, V. W.-S., e.a.: Wgsn: Wlan-based gprs environment support node with push mecha nism. The Computer Journal 47 (2004) 405-417 https://doi.org/10.1093/comjnl/47.4.405
  5. Salkintzis, A.K.: Interworking techniques and architectures for wlan/3g integration toward 4g mobile data networks. IEEE Wireless Commun. Mag. 11 (2004) 50-61 https://doi.org/10.1109/MWC.2004.1308950
  6. Minghui Shi, Xuemin Shen, M.J.: Ieee 802.11 roaming and authentication in wireless lan/cellular mobile networks. IEEE Wireless Commun. Mag. 11 (2004) 66-75 https://doi.org/10.1109/MWC.2004.1325893
  7. 3rd Generation Partnership Project (3GPP): Feasibility study on 3GPP system to wireless local area network (WLAN) interworking. Technical Report TR 22.934, 3rd Generation Partnership Project (3GPP) (2003)
  8. Jenq-Shiou Leu, Rong-Horng Lai, H.I.L.W.K.S.: Running cellular/pwlan services: practical considerations for cellular/pwlan architecture supporting interoperator roaming. IEEE Commun. Mag. 44 (2006) 111-122 https://doi.org/10.1109/MCOM.2006.1678118
  9. Sasitharan Balasubramaniam, e.a.: Vertical handover supporting pervasive computing in future wireless networks. Computer Communications (2004)
  10. Lee, M., Kim, J., Park, S., Lee, J., Lee, S.: A secure web services for location based services in wireless networks. In Mitrou, N., Kontovasilis, K.P., Rouskas, G.N., Iliadis, I., Merakos, L.F., eds.: NETWORKING 2004. Volume 3042 of Lecture Notes in Computer Science., Springer (2004) 332-344
  11. 3rd Generation Partnership Project (3GPP): 3gpp system to wireless local area network (wlan) interworking;system description (release 6). Technical Report TR 23.234, 3rd Generation Partnership Project (3GPP) (2005)
  12. Prehofer, C., Wei, Q.: Active networks for 4g mobile communication: Motivation, architecture and application scenarios. In: Proc. IWAN 2002. (2002)
  13. 3rd Generation Partnership Project (3GPP): Functional stage 2 description of location services (lcs) (release 7). Technical Report TS 23.271, 3rd Generation Partnership Project (3GPP) (2005)
  14. 3rd Generation Partnership Project (3GPP): Feasibility study on location services (lcs) for wireles local area network (wlan) interworking (release 7). Technical Report TR 22.935, 3rd Generation Partnership Project (3GPP) (2005)
  15. McNair, J., F.Z.: Vertical $hando{\circledR}s$ in fourth-generation multinetwork environments. IEEE Wireless Commun. Mag. 11 (2004) 8-15
  16. FreeRADIUS: (http://www.freeradius.org)
  17. OpenSSL: (http://www.openssl.org)
  18. Lee, M., Kim, G., Park, S., Jun, S., Nah, J., Song, O.: $E{\pm}cient$ 3G/WLAN interworking techniques for seamless roaming services with location-aware authentication. In: NETWORKING 2005. Volume 3462 of Lecture Notes in Computer Science., Springer (2005) 370-381
  19. Lee, M., Kim, G., Park, S.: Seamless and secure mobility management with location aware service (LAS) broker for future mobile interworking networks. Journal of Communications and Networks 7 (2005) 207-221 https://doi.org/10.1109/JCN.2005.6387867