KIISE Transactions on Computing Practices (정보과학회 컴퓨팅의 실제 논문지)

Korean Institute of Information Scientists and Engineers (한국정보과학회)
권호 표지
DOI QR코드

DOI QR Code

A Secure Data Transmission Scheme Based on Secret Sharing for the Maritime Cloud Environment

해사클라우드 환경에 적합한 비밀분산 기반의 안전한 데이터 전송 기법

  • 이동혁 (제주대학교 컴퓨터교육전공, 제주대학교 초등교육연구소) ;
  • 박남제 (제주대학교 초등컴퓨터교육전공)
  • Received : 2016.09.29
  • Accepted : 2016.12.29
  • Published : 2017.04.15
⟨ Previous Next ⟩

Abstract

The Maritime Cloud is a technology that enables the seamless exchange of information between several communication links in the maritime domain. Although research on The Maritime Cloud security is still at an early stage, furthering this knowledge is vital to securing the marine environment. In this paper, we propose a method for secure data transmission through The Maritime Cloud domain. The proposed technique, based on the "secret sharing" scheme, is delivered through specifically-dedicated geocasting software. Thus, only authorized vessels can restore the original information. The proposed method is safe from so-called "sniffing" and "man-in-the-middle" attacks.

해사클라우드는 해상 도메인의 여러 통신 링크 간 원활한 정보 교환을 가능하게 하는 e-Navigation의 주요 통신 기반 기술이다. 최근 이에 대한 연구가 활발히 진행중에 있으나, 현재까지는 기초적인 단계에 있다. 해사클라우드는 다양한 통신 인프라를 활용하여 정보를 전달하므로, 기존의 해양 통신 환경보다 더욱 많은 위협에 노출될 수 있다. 본 논문에서는 해사클라우드 환경을 위한 안전한 데이터 전송 기법을 제안한다. 제안한 기법은 비밀분산 방식을 기반으로 지오캐스팅을 통하여 비밀조각이 전달되며, 이를 기반으로 암호화 키를 생성하여 특정 시점에 인가된 선박에 한해서만 원본 정보를 복원할 수 있다는 특징이 있으며, 스니핑 및 중간자 공격에 안전하다는 장점이 있다.

Keywords

Acknowledgement

Supported by : 한국연구재단

References

  1. Donghyeok Lee, Namje Park, "A Scheme for Sharing Secret Informationin Maritime Cloud Environment," Conference Proceedings of Korea Information Science Society, pp. 1157-1159, Jun. 2016.
  2. An Gae Il, Lee Kwangil, Chung Byung Ho, "Analysis of Cyber-Security Threat on Maritime Cloud proposed as Maritime Communication Framework," Conference Proceedings of Korea Information Science Society, pp. 892-893, Dec. 2015.
  3. Donghyeok Lee, Namje Park, "Geocasting-based synchronization of Almanac on the maritime cloud for distributed smart surveillance," The Journal of Supercomputing, pp. 1-16, Aug. 2016.
  4. Ho-hee Kim, "A Verifiable Secret Sharing Scheme with no Secure Channels," Journal of The Korea Institute of Information Security & Cryptology, pp. 1037-1044, Dec. 2014.
  5. A. Shamir, "How to share a secret," Commun. ACM, Vol. 22, No. 11, pp. 612-613, 1979. https://doi.org/10.1145/359168.359176
  6. M. O. Rabin, "Efficient dispersal of information for security, load balancing, and fault tolerance," J. ACM, Vol. 36, No. 2, pp. 335-348, 1989. https://doi.org/10.1145/62044.62050
  7. H. Krawczyk, "Secret sharing made short," CRYPTO, pp. 136-146, 1993.
  8. J. K. Resch and J. S. Plank, "AONT-RS: Blending Security and Performance in Dispersed Storage Systems," FAST, pp. 191-202, 2011.
  9. Namje Park, "The Implementation of Open Embedded S/W Platform for Secure Mobile RFID Reader," The Journal of Korea Information and Communications Society, Vol. 35, No. 5, pp. 785-793, 2010.
  10. A. N. Bessani, M. P. Correia, B. Quaresma, F. Andre, and P. Sousa, "DepSky: Dependable and Secure Storage in a Cloud-of-Clouds," EuroSys, pp. 31-46, 2011.
  11. Namje Park, "The Implementation of Open Embedded S/W Platform for Secure Mobile RFID Reader," The Journal of Korea Information and Communications Society, Vol. 35, No. 5, pp. 785-793, 2010.
  12. Namje Park, "UHF/HF Dual-Band Integrated Mobile RFID/NFC Linkage Method for Mobile Devicebased Business Application," The Journal of Korea Information and Communications Society, Vol. 38, No. 10, pp. 841-851, 2013.
  13. Donghyeok Lee, Namje Park, "A Proposal of SHTree Based Data Synchronization Method for Secure Maritime Cloud," Journal of the Korea Institute of Information Security & Cryptology, Vol. 26, No. 4, pp. 929-940, Aug. 2016. https://doi.org/10.13089/JKIISC.2016.26.4.929
  14. Namje Park, Hyo-Chan Bang, "Mobile middleware platform for secure vessel traffic system in IoT service environment," Security and Communication Networks, Vol. 9, No. 6, pp. 500-512, Apr. 2016. https://doi.org/10.1002/sec.1108
  15. Namje Park, "Design and Implementation of Mobile VTS Middleware for Efficient IVEF Service," Journal of KICS, Vol. 39C, No. 6, pp. 466-475, Jun. 2014. https://doi.org/10.7840/kics.2014.39C.6.466
  16. Donghyeok Lee, Namje Park, "An Improvement of the eID Online Authentication Scheme for Privacy Enhancement," Journal of Korean Institute of Information Technology, Vol. 14, No. 5, pp. 89-98, May 2016.
  17. Namje Park, Hongxin Hu, Qun Jin, "Security and Privacy Mechanisms for Sensor Middleware and Application in Internet of Things (IoT)," International Journal of Distributed Sensor Networks, Volume 2016, 2016.
  18. K. D. Bowers, A. Juels, and A. Oprea, "HAIL: A High-Availability and Integrity Layer for Cloud Storage," 16th ACM Conference on Computer and Communications Security, CCS '09, ACM, pp. 187-198, 2009.
  19. Namje Park, Jin Kwak, Seungjoo Kim, Dongho Won, and Howon Kim, "WIPI Mobile Platform with Secure Service for Mobile RFID Network Environment," LNCS, Advanced Web and Network Technologies and Applications, Vol. 3842, pp. 741-48, Jan. 2006.
  20. Jae Hwan Lee et al., "Broadcast Encryption System Using Secret Sharing and Subset Difference Methods," Journal Of Broadcast Engineering, Vol. 20, No. 1, pp. 92-10, 2015. https://doi.org/10.5909/JBE.2015.20.1.92
  21. Namje Park, Marie Kim, "Implementation of load management application system using smart grid privacy policy in energy management service environment," Cluster Computing, Vol. 17, No. 3, pp. 653-664, Sep. 2014. https://doi.org/10.1007/s10586-014-0367-y
  22. Namje Park and Namhi Kang, "Mutual Authentication Scheme in Secure Internet of Things Technology for Comfortable Lifestyle," Sensors, Vol. 16, No. 1, pp. 1-16, Dec. 2015. https://doi.org/10.3390/s16010001
  23. A. Fiat and M. Naor, "Broadcast encryption," Proc. of the CRYPTO'93, LNCS, Vol. 773, pp. 480-491, Aug. 1993.
  24. Namje Park, "Detection Experimentation and Validation of Web Applications using Both Static and Dynamic Analysis," Information, International Information Institute (Tokyo), Vol. 18, No. 5A, pp. 1735-1742, May. 2015.
  25. E. Stefanov, M. van Dijk, A. Oprea, and A. Juels, "Iris: A scalable cloud file system with efficient integrity checks," 28th Annual Computer Security Applications Conference (ACSAC 2012), ACM, 2012.
  26. Namje Park, "Performance Analysis and Improvement for Data Exchange Protocol in Vessel Traffic System," Advanced Science Letters, Vol. 21, No. 3, pp. 504-507, Mar. 2015. https://doi.org/10.1166/asl.2015.5823