• Journal of KIISE:Computing Practices and Letters
• /
• v.13 no.7
• /
• pp.540-544
• /
• 2007

Researches on Sensor Network has become much more active and is currently being applied to many different fields. However since sensor network is limited to only collecting and reporting information regarding a certain event, and requires human intervention with that given information, it is often difficult to react to an event or situation immediately and proactively. To overcome this kind of limitation, Wireless Sensor and Actor Networks (WSANs) with immediate-response Actor Nodes has been proposed which adds greater mobility and activity to exisiting sensor networks. Although WSANs shares many common grounds with sensor networks, it is difficult to apply exisiting security technologies due to the fact that WSAN contains Actor Nodes that are resource-independent and mobile. This research therefore seeks to demonstrate ways to provide security, integrity and authentication services for WSAN's secure operation, by separating networks into hierarchcial structure by each node's abilities and providing different encryption key-based secure protocols for each level of hierarchy: Pair-wise Key, Node Key, and Region Key for sensor levels, and Public Key for actor levels.

• Convergence Security Journal
• /
• v.2 no.2
• /
• pp.89-97
• /
• 2002

We use the call routing to interpret the number or name for routing address in multimedia internet. The routing address is used for connection setup. The traffic engineering consists of traffic management, capacity management and network planning. In this paper, in the traffic management function, the basic functions for call routing and connection/bearer-path routing will be presented.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2002.11c
• /
• pp.2333-2336
• /
• 2002

1990년대를 지나면서 컴퓨팅 환경은 급속히 변화하였다. 과거 메인 프레임 중심의 환경에서 네트워크를 기반으로 클라이언트/서버 모델 중심의 분산 컴퓨팅 환경으로 전환되었다. 이러한 환경에서 복잡하고 유지하기 힘든 데이터 네트워크를 관리를 수행하고, 또한 유용한 정보를 줄 수 있는, 효과적인 네트워크 관리의 필요성이 대두되었다. 이러한 필요에 의해서 네트워크 관리의 개념이 등장하였다. 네트워크 관리에는, 기능적 관점에서, 장애 관리, 구성 관리, 계정관리, 성능 관리, 그리고 보안 관리로 나누어진다[1]. 그런데 네트워크가 발전함에 따라, 네트워크에서 발생할 수 있는 각종 장애를 신속히 발견하여 관리자에게 통보하고 적절한 처리를 할 수 있는 기능이 특히 요구되고 있다. 하지만 기존의 SNMP 트랩 기반의 장애 관리는 기능 면에서 부족한 점이 많다[2]. 예를 들어, 불규칙적인 트랩 메시지, 또는 SNMP 패킷의 소실 때문에 정확한 장애 발견에 문제가 생기게 된다. 본 논문에서는 SNMP 장애 관리 기능을 보완하기 위해 ICMP Echo/Reply 메시지를 이용한 장애 처리 시스템의 구조와 알고리즘에 대해 설명하고, 기존의 SNMP 기반의 NMS와 어떻게 연동될 수 있는 방안에 대해서 기술하도록 하겠다.

• Proceedings of the Korean Information Science Society Conference
• /
• 2003.10c
• /
• pp.703-705
• /
• 2003

현재 인터넷 서비스의 근간을 형성하고 있는 IPv4의 가용 주소 공간의 고갈, 보안성의 결여, 그리고 멀티미디어 서비스를 위한 QoS(Quility of Service)의 필요성과 같은 요구사항을 바탕으로 차세대 인터넷 프로토콜(IPv6)로의 전환이 요구되고 있다. 본 연구 목적은 이러한 네트워크상의 이동 인터넷 환경에다 실시간 서비스를 제공할 수 있도록 SIP(Session Initiation Protocol)를 적용하여 통함 된 환경이 이전 보다 안전한 인터넷 정보서비스를 제공할 수 있도록 보안 메커니즘을 적용 하였다. 네트워크 계층과 응용 계층의 이동성 관리 모델의 통합은 전체적인 시그널링 부하를 줄이고 지속적인 통신을 위한 빠른 핸드오프를 제공한다. 즉, 본 연구는 현재 Mobile IPv6 에서 보안상 취약점으로 나타나는 문제점 및 SIP 보안 고려사항 및 이동성을 해결하기 위해 제안되는 해결방안들을 분석하고 적합한 보안 메커니즘 적용 방안을 제안 하였다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2013.05a
• /
• pp.698-701
• /
• 2013

현대 사회는 모바일 장치와 통신기술의 발달로 장소와 상관없이 자유롭게 네트워크에 접속할 수 있게 되었다. 모바일 디바이스 사용자의 폭발적인 증가는 이동성이 보장된 모바일 오피스 환경 구현을 가속화시키고 있으며 개인의 모바일 기기를 업무에 사용하는 경향도 두드러지고 있다. 개인소유 디바이스를 통해 기업 네트워크에 접속하는 횟수가 늘어나면서 기기를 통해 중요한 데이터의 분실이나 유출과 같은 보안 문제를 해결하려는 연구들이 발표되었다. 이와 같은 보안 문제 해결 방안으로 통합적으로 이동 단말을 관리하는 MDM(Mobile Device Management) 시스템 도입이 전망되고 있다. 하지만 아직 MDM 시스템에 대한 위협, 보안에 대한 연구가 미흡하다. 이에 본 논문에서는 보안강화와 효율적인 MDM 시스템 사용을 위해 MDM 시스템을 기반으로 위치정보를 활용하여 모바일 오피스 보안 시스템을 설계하였다.

• Convergence Security Journal
• /
• v.17 no.5
• /
• pp.101-110
• /
• 2017

The purpose of this study is to examine possibilities of industry secret information leakage through IoT devices and to prevent information leakage from the perspective of administrative and technique security. From the administrative security perspective, first, it is important to face the possibility of industry information data leakage through anyone who can access companies and should establish guidelines to limit the use of IoT devices when entering companies. Second, security management guideline should be prepared by companies or upon user's request and use of any electronic devices sharing wireless internet connection should be eliminated or restricted. From technique security perspective, channels that sharing IoT devices in computers should be controlled since industry secret information are stored in computers and servers. Furthermore, IoT devices that accessing wireless internet network or devices that already registered should be regularly checked in order to minimize any information leakage. Lastly, data and information stored in computers and servers should be encrypted.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.22 no.6
• /
• pp.1315-1324
• /
• 2012

Security visualization is a form of the data visualization techniques in the field of network security by using security-related events so that it is quickly and easily to understand network traffic flow and security situation. In particular, the security visualization that detects the abnormal situation of network visualizing connections between two endpoints is a novel approach to detect unknown attack patterns and to reduce monitoring overhead in packets monitoring technique. However, the session-based visualization doesn't notice a difference between normal traffic and attacks that they are composed of similar connection pattern. Therefore, in this paper, we propose an efficient session-based visualization method for analyzing and detecting between normal server activities and attacks by using the IP address splitting and port attributes analysis. The proposed method can actually be used to detect and analyze the network security with the existing security tools because there is no dependence on other security monitoring methods. And also, it is helpful for network administrator to rapidly analyze the security status of managed network.

• The KIPS Transactions:PartC
• /
• v.9C no.4
• /
• pp.467-472
• /
• 2002

Recently, Networks are required to adopt the security system and security consulting because of security threats and vulnerabilities of systems. Enterprise Security Management (ESM) is a system which establishes the security zone composed of security systems and Firewalls and applies the security policy to each security system. A relevant ESM is based on the effective policy and the proper security system. Particularly, multiple firewalls in ESM are concerned with the security policy about each traffic. In this paper, we describe the problems that can be occurred when we select the firewalls to apply security policy of access control in ESM composed of multiple firewalls and propose the FALCON algorithm, which is able to select the firewalis to apply the policy. We expect that FALCON algorithm offers stability, scalability and compactness for selecting firewall set.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.7 no.1
• /
• pp.203-211
• /
• 2012

Network security infrastructure is constantly developing based on the combination and blending of various types of devices. From the form of distributed control, the phased defense policy such as fire walls, virtual private communication network, invasion prevention system, invasion detection system, corporate security management, and TSM (Telebiometrics System Mechanism), now it consolidates security devices and solutions to be developed to the step of concentration and artificial intelligence. Therefore, this article suggests network security infrastructure design types concentrating security devices and solutions as platform types and provides network security infrastructure design selecting methodology, the foundational data to standardize platform design according to each situation so as to propose methodology that can realize and build the design which is readily applied and realized in the field and also can minimize the problems by controlling the interferences from invasion.

• Journal of Internet Computing and Services
• /
• v.6 no.1
• /
• pp.1-12
• /
• 2005

Recently, the patterns of cyber attack through internet have been various and have become more complicated and thus it is difficult to detect a network intruder effectively and to response the intrusion quickly. Therefore, It is almost not possible to chase the real location of a network intruder and to isolate the Intruder from network in UDP based DoS or DDoS attacks spoofing source IP address and in TCP based detour connection attacks. In this paper, we propose active security architecture on active network to correspond to various cyber attacks promptly. Security management framework is designed using active technology, and security control mechanism to chase and isolate a network intruder is implemented. We also test the operation of the active security mechanism implemented on test_bed according to several attack scenarios and analyze the experiment results.