• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.9 no.8
• /
• pp.1754-1761
• /
• 2005

A monitoring system for the security is increasingly demanded in line with the issue of the infringement of privacy. This paper has conducted the study on the monitoring technique via the Internet using PC or PDA. This is a monitoring system for web-camera based home server, which transmits the images and sound data captured by mike-embedded USB camera, though multiplexer of H.263 and internet. It integrates the operating processors of each device into a unified drive module and provides it the operator to facilitate the system operation and maintenance.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.37B no.12
• /
• pp.1160-1167
• /
• 2012

Identifying traffic is an important issue for many networking applications including quality of service, firewall enforcement, and network security. Once we know the purpose of using the traffic in the firewall, we can allow or deny it and provide quality of service, and effective operation in terms of security. However, a number of applications encrypts traffics in order to enhance security or privacy. As a result, effective traffic monitoring is getting more difficult. In this paper, we analyse SSH encrypted traffic and identify differences among SSH tunneling, SFTP, and normal SSH traffics. By using EM clustering, we identify traffics and validate experiment results.

• The KIPS Transactions:PartC
• /
• v.18C no.3
• /
• pp.157-166
• /
• 2011

The virtualization layer is executed in higher authority layer than kernel layer and suitable for monitoring operating systems. However, existing virtualization monitoring systems provide simple information about the usage rate of CPU or memory. In this paper, the monitoring system using full virtualization technique is proposed, which can monitor virtual machine's dynamic kernel object as memory, register, GDT, IDT and system call table. To verify the monitoring system, the proposed system was implemented based on KVM(Kernel-based Virtual Machine) with full virtualization that is directly applied to linux kernel without any modification. The proposed system consists of KvmAccess module to access KVM's internal object and API to provide other external modules with monitoring result. In experiments, the CPU utilization for monitoring operations in the proposed monitering system is 0.35% when the system is monitored with 1-second period. The proposed monitoring system has a little performance degradation.

• Proceedings of the KAIS Fall Conference
• /
• 2011.12b
• /
• pp.562-564
• /
• 2011

본 논문에서는 리눅스 운영체제를 기반으로 오픈 소스 침입탐지 시스템인 Snort 등울 LSM(Linux Security Module) 구조의 hooking 부분에 구현시켜 보안 관리자가 의도하는 포트 스캔, DDOS 공격, ARP/IP 위장, 서명 탐지 등이 가능하도록 시스템을 구현하는 방법을 제시하고자 한다.

• Journal of Korea Multimedia Society
• /
• v.7 no.1
• /
• pp.91-97
• /
• 2004

As the electronic commercial transaction is being transacted by contents which can get an illegal intrusion from the outside, we sincerely require security for them. We must consider a protection countermeasure about intrusion from protection of the passive form to protection intrusion of the active one. So the security is required against hackers illegality intrusion into the contents. As soon as the intrusion happens about the contents, the tools providing the monitor of contents are required to minimize the damage to the systems. Modified web contents detection system in this paper prevents the loss of resources and manpower required through individually monitoring on the web. Also, this paper offers rapid support of security that it analyzes the weakness of contents security of the web environment and the cause of the problem with the leakage of information. So this system has the pur pose of protecting the weakness of contents security and the leakage of information.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.11 no.3
• /
• pp.1101-1107
• /
• 2010

DVR is widely used in the security monitoring system because it has excellent performance compared with VCR. In this paper, the new DVR interfaces and repeaters enhancing the performance of the existing DVR have been designed and implemented, which enables a large-scaled security monitoring system to be built economically. A repeater in this paper connects 8 monitoring terminals to 2 channels of DVR and a DVR interface manages 16 repeaters to be able to accommodate 128 monitoring terminals. Eventually, the implemented system has a quadruple scalability compared to the existing systems and can reduce the installation cost substantially by using cost-effective UTP cables instead of coaxial cables. And the system could be effectively used in various environments and conditions because various functions such as video transmission, audio communication, emergency call, and RFID card are integrated into the system.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.25 no.3
• /
• pp.449-455
• /
• 2021

This paper proposes an encryption web transaction attack detection system based on the existing web application monitoring system. Although there was difficulty in detecting attacks on the encrypted web traffic because the existing web traffic security systems detect and defend attacks based on encrypted packets in the network area of the encryption section between the client and server, by utilizing the technology of the web application monitoring system, it is possible to detect various intelligent cyber-attacks based on information that is already decrypted in the memory of the web application server. In addition, since user identification is possible through the application session ID, statistical detection of attacks such as IP tampering attacks, mass web transaction call users, and DDoS attacks are also possible. Thus, it can be considered that it is possible to respond to various intelligent cyber attacks hidden in the encrypted traffic by collecting and detecting information in the non-encrypted section of the encrypted web traffic.

• Asia-pacific Journal of Multimedia Services Convergent with Art, Humanities, and Sociology
• /
• v.8 no.5
• /
• pp.437-445
• /
• 2018

Devices have a lot of small breakdowns rather than big breakdowns. But it often wastes time and increases cost of maintenance, such as calling a service technician for small breakdowns. So, if we use remote control and monitoring service using Internet of Things, we can minimize the time period and cost for the maintenance. However, security is important because remote control and monitoring services contain personal information which when leaked, may be dangerous. There are many types of Internet based monitoring devices that are in use, but it is difficult to expect a high level of security because there are many cases in which the performance is minimal. Therefore, in this paper, we classify remote control and monitoring services based on Internet of Things type and derive encryption requirement for four types. We also compared and analyzed the lightweight cryptographic algorithms that can be expected to use high performance even on the Internet of Things. And it is derived that LED is used as a equipment management type, DESLX as a environment management type, CLEFIA as a healthcare management type and LEA as a security management type are the optimal lightweight cryptographic algorithms for each type.

• Review of KIISC
• /
• v.19 no.2
• /
• pp.74-81
• /
• 2009

본 연구는 여러 위치에서 이동 중인 다양한 유형의 단말기에 대해 보안을 관리하는 통합 시스템을 개발하는 것이다. 이 기술은 모바일 단말 인증, 모바일 단말 신뢰, 개인 프라이버시 보호, 3차원 시각화 기술에 의한 모바일 단말 보안 관리 기술이다. 인증과 신뢰 기술은 다른 도메인에 접근하더라도 신뢰할 수 있는지를 검사한다. 개인 프라이버시 보호 기술은 접근 기록을 사용자가 관리하는 기술이다. 3차원 시각화 기술은 단말의 이동과 접근을 3차원으로 모니터링 한다. 이러한 모바일 단말 보안 관리 기술은 여러 기술을 파생하거나 파급할 수 있는 중요한 기술이다.

• Information and Communications Magazine
• /
• v.29 no.10
• /
• pp.66-73
• /
• 2012

전 세계적으로 노령인구가 급격히 증가하면서 만성질환자도 급증하고 있는 추세이다. 또한, 고도화된 현대사회와 과도한 업무, 서양화된 식습관, 그리고 운동부족은 젊은 층에서의 성인병 및 만성질환 증가를 부추기고 있다. 만성질환의 증가는 의료비 증가로 이어지고 결국은 국가재정 부담으로 돌아가게 된다. 만성질환자의 대부분은 지속적인 생체정보 측정과 이를 통한 관리가 필수적인데 매번 병원을 방문해 관리하는 것은 현실적으로나 비용적인 측면으로나 무리가 있는 것이 사실이다. 이러한 문제를 해결하고 언제 어디서나 시간과 공간에 구애받지 않고 생체정보를 원격에서 측정하고 관리 받을 수 있도록 하는 것이 U-헬스케어 서비스이다. U-헬스케어 서비스는 전통적인 의료 서비스에 정보통신 기술을 접목한 형태로 고령인구 및 만성질환자의 지속적인 관리를 위해 현재 주목 받고 있는 기술이다. U-헬스케어 서비스의 가장 중요하면서도 기본적인 요소는 원격지 사용자의 생체정보를 측정하고 수집할 수 있는 원격 생체정보 모니터링 기술이다. 이를 위해서는 다양한 종류의 생체정보 측정기기가 필요한데 장비나 시스템 간 통신 인터페이스의 상호 호환성이 매우 중요하다. 본 논문에서는 원격 생체정보 모니터링을 위한 표준 기술인 IEEE 11073 PHD를 소개하고 현재 IEEE 11073 PHD 표준에서 명시하고 있지 않은 보안 문제점과 필요 기술들을 분석하고자 한다. 또한, IEEE 11073 PHD에서 IEEE 11073-20601 표준 프로토콜을 이용한 사용자 인증 구조를 제안한다.