Browse > Article
http://dx.doi.org/10.13089/JKIISC.2008.18.2.21

A Study on UICC(Universal IC Card)-based Authentication Mechanism using OTP  

Kang, Soo-Young (Division of Computer, Soonchunhyang University)
Lee, Im-Yeong (Division of Computer, Soonchunhyang University)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.18, no.2, 2008 , pp. 21-31 More about this Journal
Abstract
Ubiquitous environment is constructed by development of an IT technology, offer environment of many service changed to mobile environment. Also, existed service offered at fixed position like home or company, but according to development of mobile device. user require service as moving. Wibro can offer as user moving using mobile device. As requirement should be included authentication, in case of authentication between UICC and AAA authentication server is offered in Wibro, service is available. However, when UICC requires initial authentication to AAA authentication server, identification information of UICC expose as plaintext, so privacy infringement of mobile device occurs. Therefore, identification information of terminal generate randomly using OTP(One-Time Password) that generated in mobile terminal, and we proposed mechanism of privacy protection. Also, we proposed mechanism that offer secure service to user as offer authentication from OTP framework, and offer OTP combination authentication detailedly.
Keywords
OTP(One-Time Password); UICC(Universal IC Card);
Citations & Related Records
Times Cited By KSCI : 2  (Citation Analysis)
연도 인용수 순위
1 Inn-yeal Oh, Hyung Joon Jeon, "The Verification of Linearizer for Wibro PAM", ICCSA 2006, pp 974-981, 2006.08
2 Jun-Cheol Jeon, Kee-Won Kim, and KeeYoung Yoo, "Non-group Cellular Automata Based One Time Password Authentication Scheme in Wireless Networks", Verlag Berlin Heidelberg 2006, pp. 110-116, 2006.05
3 Mitchell, C.J., Chen, L., "Conunents on the S/KEY User Authentication Scheme", ACM Operating Systems Review. Vol. 30. No.4
4 서승현, 강우진, "OTP 기술현황 및 국내 금융권 OTP 도입사례" 정보보호학지, 제 17권 제 3 호, pp. 18-25, 2007.06   과학기술학회마을
5 최동현, 김승주, 원동호, "일회용 패스워드 (OTP: One-Time Password) 기술 분석 및 표준화 동 향." 정보보호학회지, 제 17권 제 3 호, pp.12-17, 2007.06   과학기술학회마을
6 정보보호진흥원, "와이브로 정보보호 보안 기술 해설서", 2006.08
7 Haller, N.M, "The S/KEY One-time Password System" RFC 1760. 1995.02
8 Soo-Young Kang, Im-Yeong Lee, Doo-Soon Park, "A Study On Improved OTP Authentication Scheme Using Synchronization Scheme", MITA 2007, pp. 210-213, 2007.08
9 강수영, 이임영, "향상된 S/Key 방식을 이용한 안전하고 효율적인 OTP 인증 방안에 관한 연 구" 한국멀티미디어학회 춘계학술대회, Vol.10, No.1,2007.05
10 Lee, N.Y, Chen, J.C., "Improvement of Onetime Password Authentication Scheme Using Smart Cards" IEICE Trans. Commun. Vol. E88-B. No.9. 2005.09
11 Chang Y.F, Chang C.C, Kuo J.Y, "A Secure One-time Password Authentication Scheme using Smart Cards without Limiting Login Times", Operating Systems Review, Vol. 38, No. 4, 2004
12 강수영, 이임영, "동기화 방식을 이용한 향상된 일회용 패스워드 인증 방안에 관한 연구" 한국 정보보호학회 춘계학술대회 Vol.17, No.1, 2007.05
13 Anita K. Jones, "Password Authentication with Insecure Conununication", Communications of the ACM, 1981
14 Yeh, T.C., Shen, H.Y, Hwang, J.J. "A Secure One-time Password Authentication Scheme Using Smart Cards", IEICE Trans. Commun. Vol. E85-B. No. 11.2002.11
15 Kyu Ouk Lee, Jin-Ho Hahm, Young Sun Kim, "Operator's QoS Policy in WiBro Implementation", NEW2AN 2006, pp. 143-147,2006.05