Browse > Article
http://dx.doi.org/10.13089/JKIISC.2017.27.5.1129

Design of a Limited Two-Way Communications System  

Kim, Dongwook (The Attached Institute of ETRI)
Min, Byunggil (The Attached Institute of ETRI)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.27, no.5, 2017 , pp. 1129-1140 More about this Journal
Abstract
Unidirectional data transmission system, which allows physical one way transmission, removes the backward link physically to prevent the intrusion from the outside through the network. However, the system is difficult to apply to the environment requiring either backward transmissions or bi-directional communications. In this paper, we proposed Limited Two-way communications system, called as LimTway, which only allows outbound TCP two-way communications. LimTway uses two one-way links(forward, backward). While the forward one-way link is staying to be activated so that an allowed outbound UDP traffic could be transmitted one-way always, the backward one-way link is activated while allowed outbound TCP sessions are established. In order to prevent the intrusion from the outside during the period, the software of LimTway is designed to allow only the transmissions of both outbound TCP two-way communication traffics and outbound UDP traffics.
Keywords
Unidirectional Data Transmission System; Limited Two-way communication system; forward one-way link; backward one-way link;
Citations & Related Records
Times Cited By KSCI : 1  (Citation Analysis)
연도 인용수 순위
1 Waterfall One-Way. [Online]. Available: http://www.waterfallsecur-ity.com
2 Fox-IT, "Fox DataDiode: A Pereferred Solution for high-security real-time electronic unidirectional data transfer between networks," White paper, Jan. 2008.
3 J. Menoher, "All Data Diodes Are Not Equal", White Paper, 2013.
4 Dual diode. [Online]. Available: http://www.owlcti.com
5 Y. Heo, B. Kim, D. Kang, S. Shon, and J. Na, "A Design of Unidirectional Security Gateway for Enforcement Security and Reliability for Transfer Data", The Korean Institute of Communications and Information Sciences, pp.827-828, Jan. 2016.
6 K. Kim, Y. Chang, H. Kim, J. Yun, and W. Kim, "Physical One-way Data Transfer System Design for Control System Network", Journal of KISS: Information Networking, 40(2), pp.126-130. Apr. 2014.
7 D. Kim and B. Min, "Design of a Reliable Data Diode System", Journal of the Korea Institute of Information Security & Cryptology, 26(6), pp. 1571-1582, Dec. 2016.   DOI
8 Lin Honggang, "Research on Packet Loss Issues in Unidirectional Transmission", Journal of Computers, vol. 8, no. 10, pp. 2664-2671, Oct. 2013.
9 K. Kim, J. Yun, H. Kim, M. Jung, W. Kim, E. Park, and S. Park, "Physical One Direction Communication Device and Method Thereof", Korea Patent No. 10-1593168, Feb. 02, 2016.
10 H. Lee, D. Cho, and K. Kou, "A Study of Unidirectional Data Transmission System Security Model for Secure Data transmission in Separated Network", Asia-pacific Journal of Multimedia Services Convergent with Art, Humanities, and Sociology, vol.5, no.6, pp.539-547, Dec. 2015.
11 Sid Snitkin, "Unidirectional Security Gateways Reduce Risk of Industrial Cyber Attacks", ARC View, Jul. 2015.
12 PF_RING, www.ntop.org/products/packet-capture/pf_ring/
13 PF_RING ZC, www.ntop.org/products/packet-capture/pf_ring/pf_ring-zc-zero-copy