• Proceedings of the Korea Information Processing Society Conference
• /
• 2004.05a
• /
• pp.1331-1334
• /
• 2004

액티브 네트워크는 액티브 패킷을 이용하여 실행코드르 운반함으로서 새로운 서비스와 프로토콜을 빠르고 유연하게 배포할 수 있는 장점이 있다. 하지만 액티브 패킷은 실행코드를 운반해야 하기 때문에 네트워크 성능 상의 문제가 발생하고 있다. 따라서 본 논문에서는 실행코드를 클래스 별로 분리하고 필요한 클래스만을 전송하는 새로운 메커니즘을 이용하여 액티브 패킷이 운반해야 하는 실행코드의 크기를 줄여 액티브 네트워크의 성능을 향상시킬 수 있는 방법을 제시하고, 이를 이론적으로 증명한다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2008.11a
• /
• pp.950-953
• /
• 2008

MANET(Mobile Ad-hoc Network) 환경에서 P2P(peer to peer) 시스템은 중앙 집중식 서버 구조나 고정된 인프라를 활용할 수 없다는 제약 때문에 효율적인 파일 공유 및 검색을 지원하기 어렵다. 본 논문에서는 위치기반 라우팅의 위치 서비스 메커니즘을 사용하는 MANET P2P 파일 검색 프로토콜을 제안한다. 제안하는 시스템에서 참여 노드들은 응용 계층의 파일 색인 테이블과 네트워크 계층의 라우팅 테이블을 통합한 크로스 레이어 테이블을 유지한다. 참여 노드들은 이를 이용해 플러딩(flooding)을 배제한 파일 검색을 수행할 수 있으며 질의에 검색된 파일은 파일 요청 노드의 지리적인 위치를 고려해 선택되기 때문에 최적화된 라우팅 경로를 형성할 수 있다.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.9 no.8
• /
• pp.1768-1773
• /
• 2005

The IEEE 802.1x standard provides an architectural framework which can be used various authentication methods. But, IEEE 802.1x also has vulnerabilities about the DoS, the session hijacking and the Man in the Middle attack due to the absence of AP authentication. In this paper, we propose a WLAN secure system which can offer a robust secure communication and a user authentications with the IEEE 802.1x framework. The user authentication on the WLAN secure system accomplishes mutual authentications between authentication severs, clients and the AP using PKI and prevents an illegal user from intervening in communication to disguise oneself as a client, the AP or authentication servers. Also, we guarantee the safety of the communication by doing secure communication between clients and the AP by the Dynamic WEP key distribution.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.16 no.9
• /
• pp.1983-1989
• /
• 2012

The IEEE 802.1x standard provides an architectural framework which can be used various authentication methods. But, IEEE 802.1x also has vulnerabilities about the DoS(Denial of Service), the session hijacking and the MiM(Man in the Middle) attack due to caused by structural of authentication protocol. In this paper, we propose a WLAN system which can offer safety communication by complement of IEEE 802.1x vulnerabilities. The WLAN system accomplishes mutual authentications between authentication servers, clients and the AP using PKI and prevents an illegal user from intervening in communication to disguise oneself as a client, the AP or authentication servers. Also, we guarantee the safety of the communication by the Dynamic WEP key distribution between clients and the AP.

• Journal of KIISE:Computer Systems and Theory
• /
• v.36 no.2
• /
• pp.124-133
• /
• 2009

CANopen which is one of the in-vehicle network (IVN) protocols is adopted to solve the hardware dependency problem of the CAN-based application. CANopen makes different CAN devices interoperable each others. By the advantage of the device profiling concept, it can make the period of developing CAN-based application system shorten. The utilization of CANopen network must be reduced to improve the communication performance (e.g. worst-case response time). For reducing network utilization, messages need to be packed as many as possible so that message frame overhead can be decreased. In this paper, we suggested a PDO packing mechanism using object dictionary (OD) and process data object (PDO) communication service in CANopen. Through experiments, the performance of the mechanism is evaluated with SAE benchmark. As a result, network utilization is decreased about 10% compared to the result of the previous works.

• The KIPS Transactions:PartA
• /
• v.8A no.4
• /
• pp.311-318
• /
• 2001

In recent years, users\` demands for multimedia service are increasing because of a diffusion of internet. Server systems, however, offer inefficient multimedia data service to users. Multimedia applications often transfer the same data between shared devices at very high rates, and therefore require an efficient I/O subsystem. Data copying and context switching have long been identified as sources of I/O inefficiency. Therefore we propose the new Multimedia Stream System Call (MSSC) mechanism, which is inserted into a Linux kernel: The MSSC mechanism operates in kernel domain with RTP (Real-time Transport Protocol). We present measurements indicating that use of our techniques resulted in a 12.5%∼14% gain in throughput as compared with a conventional Linux system.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.19 no.5
• /
• pp.45-57
• /
• 2009

In this paper, we implemented the conference system based on DTLS for saving securely the VoIP, which is served sprightly in the latest, securely and tested (and also analyzed) the system. As VoIP technology development, demand of conference system is increased and the related technologies are growed. But Security protocol to protect conference service is getting late than conference technology. In this paper, we studied based on DTLS protocol that can provide function of signaling, channel security, media channel security and application of group key and apply to VoIP conference system based UDP unchanged. In this paper, we searched suggested security protocols based on DTLS can apply to conference system and implement and apply the protocol to conference system. And we tested (and also alayzed) overhead of encryption and key management mechanism.

• The KIPS Transactions:PartC
• /
• v.9C no.3
• /
• pp.367-374
• /
• 2002

IPsec offers not odd Internet security service such as Internet secure communication and authentication but also the safe key exchange and anti-replay attack mechanism. Recently IPsec is implemented on the various operating systems. But there is no existing tool that checks the servers, which provide IPsec services, work properly and provide their network security services well. In this paper, we design and implement the rule based security evaluation system for IPsec engine. This system operated on Windows and UNX platform. We developed the system using Java and C language.

• The Transactions of the Korea Information Processing Society
• /
• v.6 no.7
• /
• pp.1897-1908
• /
• 1999

Multimedia services(i.e. teleconferencing and Video on demand) have been developed on MBone. The video and audio data of them require Real-Time service using QoS(Quality of Service) guarantees. RSVP(Resource reSerVation Protocol) on the Internet has been suggested to support QoS guarantees. But currently, it has two problems : complexity and scalability. To solve these problems, this paper describes the design and implement of teleconferencing system with QoS guarantees by simplifying the resource reservation processing to solve the RSVP's complexity and scalability.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.21 no.2
• /
• pp.139-147
• /
• 2011

More convenient and value-added application services can be provided to user in case of using location-based service on Smart phone. However, privacy problem will be happen when an application disclosures the personal location information. Therefore, each user should securely control and manage his own personal location information by specifying access control list and profiles. In this study, we implemented personal location information self-control protocol and developed secure personal location management system with OTP based authentication procedure.