• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.19 no.11
• /
• pp.2656-2664
• /
• 2015

IoT management hub has to request the WLAN AP list of the accessible areas in a place that is installed, or choose a specific WLAN AP you want to connect in order to be connected to the Internet. the specific method also is required to input the password when the security key was set. As that way, IoT management hub needs both the display device and the input device to see the list of WLAN AP and to input the security key. If the IoT management hub is consist of them, It is difficult to achieve the objective of the miniaturization and cost reduction. In this paper, we propose a method to connect to a WLAN AP network using a smart-phone without the display device and the input device.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.12 no.11
• /
• pp.5238-5244
• /
• 2011

Recently, wireless sensor networks have become increasingly interesting areas over extensive application fields such as military, ecological, and health-related areas. Almost sensor networks have mission-critical tasks that requires very high security. Therefore, extensive work has been done for securing sensor networks from outside attackers, efficient cryptographic systems, secure key management and authorization, but little work has yet been done to protect these networks from inside threats. This paper proposed an method to select which nodes should activate their idle nodes as detectors to be able to watch all packets in the sensor network. Suggested method is modeled as optimization equation, and heuristic Greedy algorithm based simulation results are presented to verify my approach.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2007.11a
• /
• pp.640-643
• /
• 2007

기업 네트워크에 대한 보안 위협이 지속적으로 발생함에 따라 네트워크 관리가 중요시 되고 있다. 기업 네트워크의 보안성을 강화하기 위해서는 네트워크상의 각 노드에 설치된 보안 소프트웨어나 취약성이 있는 소프트웨어의 업데이트가 요구된다. 그러나, 일반적인 서버/클라이언트 형태의 소프트웨어 업데이트 서비스는 서버의 부하가 크고 시간효율적이지 못하다. 따라서 본 논문에서는 네트워크의 논리적인 형태를 노드의 상태정보에 따라 바이노미얼 트리로 구성하고, 이를 기반으로 이동 에이전트가 각 노드를 순회하며 소프트웨어를 업데이트할 수 있는 시스템을 제안한다. 제안 시스템을 이용함으로써 서버에 집중되는 부하를 줄이면서 빠른 시간 내에 네트워크 상의 모든 노드의 소프트웨어를 업데이트 할 수 있게 된다.

• Proceedings of the Korea Inteligent Information System Society Conference
• /
• 2005.05a
• /
• pp.321-325
• /
• 2005

최근 가정 내 디지털 기기 간 네트워크 가능성이 현실화되면서 관련 산업과 기술에 대한 관심이 고조되고 있다. 또한 최근 들어 컴퓨터의 보급이 확산되어 2대 이상 보유가구가 늘어나고, 점점 더 많은 전자기기를 소유하면서 각각의 장치들을 한데 묶어 서로 연결하며, 인터넷 접속을 통해 더욱 편리함과 부가가치를 창출하고자 하는 욕구가 증대되고 있다. 이에 본 연구는 댁내에 안전한 삶을 누릴 수 있도록 홈 디지털 기기간의 통신 방법의 설계 및 제어할 수 있도록 구현하고, 임베디드 장비를 이용하여 보안 기기와 통신할 수 있는 홈 서버를 개발한다. 댁내, 외 어디에서나 집안의 현재 상황을 관리, 제어 및 모니터링이 가능하도록 설계하였다.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.11 no.5
• /
• pp.933-939
• /
• 2007

There is a tremendous increase in the growth of Internet making people's life easy. The rapid growth in technology has caused misuse of the Internet like cyber Crime. There are several vulnerabilities in current firewall and Intrusion Detection Systems (IDS) of the Network Computing resources. Automatic real time station chase techniques can track the internet invader and reduce the probability of hacking Due to the recent trends the station chase technique has become inevitable. In this paper, we design and implement Active Security system using ICMP Traceback message. In this design no need to modify the router structure and we can deploy this technique in larger network. Our Implementation shows that ICMP Traceback system is safe to deploy and protect data in Internet from hackers and others.

• Convergence Security Journal
• /
• v.3 no.3
• /
• pp.35-42
• /
• 2003

With the rapid adaption of the network technologies, there has been in continual troubles with network attacking and computer virus which are getting more automatic and intelligent. To solve them, we survey the existing and currently used security solutions, describe the architecture of traditional network management, and propose the model of a MIB-based security management system which has dedicated management information base on each security solution.

• Convergence Security Journal
• /
• v.5 no.2
• /
• pp.65-74
• /
• 2005

The hacking accident is increasing repidly according to development of latest computer network and the method becomes various. But, to correspond to hacking, it is lot of difficulties to cope gear and security element between product because most radiant mercuries apply technology between individual digenomic species and It is real condition that great setup, equipment, manpower disturbance are enlarged to apply this. Designed and embody Site-Based executive system that can integrate security element about IDS information between digenomic species to solve these problem and correspond efficiently from hacking.

• Journal of KIISE:Information Networking
• /
• v.36 no.5
• /
• pp.437-455
• /
• 2009

In the near future, various multicast based services will be provided over clustered wireless networks. To provide multicast services in secure manner, multicast messages are encrypted by using group key which is shared by group members. Therefore, various group key management schemes have been introduced until now. Among them, tree based approach is one of the most representative paradigms in group key management. Traditional tree based approaches effectively reduce rekeying message transmissions of the key distribution center. However, they do not consider the network bandwidth used for transmitting the rekeying messages. In this paper, we firstly present formulas that describe bandwidth consumption of tree based group key management scheme. Based on our formulations, we propose a bandwidth efficient key tree management scheme for clustered wireless networks where membership changes occur frequently. Simulation results show that our scheme effectively reduces the bandwidth consumption used for rekeying compared to existing key tree schemes.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.14 no.3
• /
• pp.3-12
• /
• 2004

Secure operating system is a special operating system that integrates some security functions(i.e. access control, user authentication, audit-trail and etc.) with normal operating system in order to protect system from various attacks. But it doesn't consider my security of network traffic. To guarantee the security of the whole system, network traffic must be protected by a certain way and IPsec is a representative technology for network security. However, it requires administrator's carefulness in managing security policies and the key management mechanism is very heavy as well as complicated. Moreover, it doesn't have a suitable framework for delivery of security information for access control mechanism. So we propose a simple trusted channel mechanism for secure communication between secure operating systems. It provides confidentiality md authentication for network traffic and ability to deliver security information. It is implemented at the kernellevel of IP layer and the simplicity of the mechanism can minimize the overhead of trusted channel processing.

• Journal of Advanced Navigation Technology
• /
• v.28 no.4
• /
• pp.497-506
• /
• 2024

In this study, we proposed security information and event management for ship as a technology to respond to maritime cybersecurity regulations and evolving cyber threats. We analyze the main technologies of network management system and security information and event management, which are representative technologies for responding to ship cyber security, and propose SIEM for ships based on this. Optimized for ships based on the International Maritime Organization's Maritime Cyber Threat Management Guidelines, IACS UR E26, 27, etc. Derive the main functions of the SIEM for ship, linkage and normalization plan for the ship's heterogeneous equipment, ship's cyber threat and ship detection policy to identify ship's cyber security threats, and ship's operating environment and operating personnel.