• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2002.05a
• /
• pp.481-484
• /
• 2002

News service provide professional knowledge which can't be gained from any other internet service and the only way to keep pace with professional group. To get this advantage, many country provide news service and three major korean news server connected with foreign news server provide many articles to korea. A lot of institutes - company, research centers and universities - forward articles to home and abroad. In spite of this important effect, The user of news service and technical supports grow smaller. And now It is necessary for a nation to support and operate by non-profitable business. Especially, partially adapted security weaken entire system safety and can't satisfy service provider of various necessary condition. In this paper, we will mention troubles in authentication and suggest safety authentication method which must be supported by established news service.

• Journal of Aerospace System Engineering
• /
• v.17 no.6
• /
• pp.118-126
• /
• 2023

Most of the aerospace industries establish the SAE AS9100 Quality Management System, and acquire commercial certification by the 3rd party. Nevertheless, they repeatably have to cope with similar quality system evaluation by the airworthiness authority for the production certificate, parts manufacturer approval, and technical standard order authorization in accordance with the applicable regulations. The current quality system evaluation criteria of the airworthiness authority could be recommended for reforms in order to reduce duplication and correspond to the industrial development and environmental changes. In this paper, we propose measures to reform the authority's evaluation criteria through comparative analysis among the IAQG SAE AS9100, the FAA quality system codes, and the MOLIT ACSEP requirements.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2000.10a
• /
• pp.324-327
• /
• 2000

There are developing the World Wide Web systems for their information sharing among certain closed user group. These systems are required five common functions as follows. First, they have to support the web service for Internet users to access easily. Second, Hey have to support the authorization service to confirm the allowed users. Third, they have to support the database service to manage the sharing information among users. Fourth, they have to support the bulletin board service for closed users to discuss. Fifth, they have to support the e-mail service to send e-mail to the certain user subset and mail archive service to save and manage the previous mail information. In this paper, we described the detail function and processing procedure of our implemente system under LINUX operating system. In addition, we described problems occurring in implementation and their solutions.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.36 no.2C
• /
• pp.65-77
• /
• 2011

With the rapid expansion of application fields of vector data model such as CAD design drawing and GIS digital map, the security technique for vector data model has been issued. This paper presents the vector data hashing for the authentication and copy protection of vector data model. The proposed hashing groups polylines in main layers of a vector data model and generates the group coefficients by the line curve curvatures of the first and second type of all poly lines. Then we calculate the feature coefficients by projecting the group coefficients onto the random pattern and generate finally the binary hash from the binarization of the feature coefficients. From experimental results using a number of CAD drawings and GIS digital maps, we verified that the proposed hashing has the robustness against various attacks and the uniqueness and security by the random key.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.32 no.2
• /
• pp.255-266
• /
• 2022

Messenger applications applied end-to-end encryption on their own to prevent message exposure to servers. Standardization of a group messaging protocol called Message Layer Security (MLS) with end-to-end encryption is being discussed for secure and efficient message communication. This paper performs safety checks based on the operation process and security requirements of MLS. Confidentiality to a middleman server, which is an essential security requirement in messenger communication, can be easily violated by a server administrator. We define a server administrator who is curious about the group's communication content as a curious admin and present an attack in which the admin obtains a group key from MLS. Reminds messenger application users that the server can view your communication content at any time. We discuss ways to authenticate between users without going through the server to prevent curious admin attacks.

• The KIPS Transactions:PartD
• /
• v.13D no.6 s.109
• /
• pp.847-856
• /
• 2006

In this paper, we suggested a mobile collaboration framework for supporting mobile services among mobile devices, and designed and implemented on this environment. The suggested framework has three elements; groups of sensors and mobile devices(Fixed and Moving-typed PDAs) and a home server. We designed interfaces for interactions with each other in collaboration environment with three elements described above. The information collected by sensors can be share and exchanged by mobile devices or a home server in accordance with Push and Pull methods. This framework is based on the distributed object group framework(DOGF) we implemented before. Therefore the DOGF provides functions of object group management, storing information and security services to our mobile collaboration framework via application interfaces defined. The information collected by sensors is arranged according to user's security 'demands. And user profile information is used for checking authority of each service object. Each component for executing functions of mobile devices and a home server is implemented by TMO scheme. And we used the TMOSM for interactions between distributed components. Finally, we showed via GUI the executablity of a given healthcare application scenario on our mobile collaboration framework.

• The Korean Journal of Air & Space Law and Policy
• /
• v.28 no.1
• /
• pp.3-54
• /
• 2013

Nowadays, major advanced countries in aviation technology are putting their effort to develop commercial and civil Unmanned Aircraft System(UAS) due to its highly promising market demand in the future. The market scale of commercial and civil UAS is expected to increase up to approximately 8.8 billon U.S. dollars by the year 2020. The usage of commercial and civil UAS covers various areas such as remote sensing, relaying communications, pollution monitoring, fire detection, aerial reconnaissance and photography, coastline monitoring, traffic monitoring and control, disaster control, search and rescue, etc. With the introduction of UAS, changes need to be made on current Air Traffic Management Systems which are focused mainly manned aircrafts to support the operation of UAS. Accordingly, the legislation for the UAS operation should be followed. Currently, ICAO's Unmanned Aircraft System Study Group(UASSG) is leading the standardization process of legislation for UAS operation internationally. However, some advanced countries such as United States, United Kingdom, Australia have adopted its own legislation. Among these countries, United States is most forth going with President Obama signing a bill to integrate UAS into U.S. national airspace by 2015. In case of Korea, legislation for the unmanned aircraft system is just in the beginning stage. There are no regulations regarding the operation of unmanned aircraft in Korea's domestic aviation law except some clauses regarding definition and permission of the unmanned aircraft flight. However, the unmanned aircrafts are currently being used in military and under development for commercial use. In addition, the Ministry of Land, Infrastructure and Transport has a ambitious plan to develop commercial and civil UAS as Korea's most competitive area in aircraft production and export. Thus, Korea is in need of the legislation for the UAS operation domestically. In this regards, I personally think that Korea's domestic legislation for UAS operation will be enacted focusing on following 12 areas : (1)use of airspace, (2)licenses of personnel, (3)certification of airworthiness, (4)definition, (5)classification, (6)equipments and documents, (7)communication, (8)rules of air, (9)training, (10)security, (11)insurance, (12)others. Im parallel with enacting domestic legislation, korea should contribute to the development of international standards for UAS operation by actively participating ICAO's UASSG.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2006.05a
• /
• pp.971-974
• /
• 2006

핸드오프가 자주 발생할 경우 모바일IP에서 제어 메시지가 많이 발생하게 된다. 이러한 문제를 해경하기 위해서 마이크로 모빌리티 프로토콜이 제안되었다. 이 논문에서 마이크로 모빌리티 환경에서 안전한 멀티캐스팅 서비스를 제공하기 위한 방법에 대해 소개한다. 먼저 마이크로 모빌리티 환경에서의 멀티캐스팅 서비스 프로토콜을 소개하고 이 프로토콜을 기반으로 보안 서비스를 추하한다. 제안된 멀티캐스트 라우팅 프로토콜은 공유 멀티캐스트 트리를 만들고 다른 유니캐스트 마이크로 모빌리티 프로토콜을 고려하지 않는다. 추가된 보안 서비스는 인증, 권한, 기밀성, 그리고 완전무결성이 대칭이나 비대칭 암호와 알고리즘을 기반으로 하여 포함되어 있다. 또한 보안 프로토콜은 그룹의 멤버가 자주 바뀌고 핸드오프가 일어나는 현상을 다루기 위하여 페이징 지역을 기준으로 계층적 키 구조를 사용한다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2006.05a
• /
• pp.995-998
• /
• 2006

IGMP(Internet Group Management Protocol)는 멀티캐스트 그룹의 멤버쉽 관리를 위한 프로토콜로서, 임의의 호스트가 멀티캐스트 라우터에게 특정한 멀티캐스트 통신의 수신을 요청할 경우에 사용된다. 본 논문에서는 이와 같은 IGMP 메시지를 이용한 정당하지 않은 호스트의 DoS 공격 등으로부터 멀티캐스트 분배트리의 보호를 위한 수신자 접근제어 기법을 제안한다. 또한 제안기법은 수신자 접근제어 기능뿐만 아니라, 실제 다양한 상업적인 멀티캐스트 서비스에도 적용될 수 있는 비즈니스 모델을 기반으로 하며 과금과 관련하여 활용이 가능하다.

• Journal of the Korea Safety Management & Science
• /
• v.2 no.4
• /
• pp.45-57
• /
• 2000

국제 공통평가기준(CC)은 정보보호제품의 개발. 평가. 사용을 위한 ISO 15048 국제 표준이다. 국제 공통평가기준의 제 2 부 보안기능 요구사항은 정보보호제품의 보안 기능을 11개 클래스로 분류하였고, 13개국 인증제품 상호승인 협정(MRA)에 의하여 교차 사용이 가능한 평가된 보안제품을 해설할 수 있는 공통 언어로써 사용할 수 있다. 보호프로파일(PP)은 특정형태의 제품군이 지녀야 할 보안 목적을 사용자 그룹에서 요구한 명세서이다. 보호프로파일은 제품군의 운영환경, 위협요소를 분석하고 보안기능 요구사항의 부분 집합들을 모아서 제품군이 목표로 하는 보안 목적들을 주장할 수 있다.