• Proceedings of the Korea Information Processing Society Conference
• /
• 2002.11b
• /
• pp.979-982
• /
• 2002

본 논문에서는 로컬 또는 리모트에서 사용자가 서버 시스템에 접근하기 위해서 가장 먼저 거치게 되는 인증 절차 수행에 관련된 것으로 허가된 사용자의 접근만을 허용하고, 인증요청 메시지의 진위 여부를 확인시켜주는 기능과 사용자가 입력하는 중요 정보가 다른 사용자에게 유출되지 않도록 보장하는 기능을 추가한 신뢰성이 보장되는 인증방법을 소개한다. 본 논문에서는 역할기반의 접근제어 시스템을 커널 내부에 추가하고. 사용자인증에 비밀번호와 하드웨어 장치인 스마트카드를 사용함으로써 강화된 사용자 인증 시스템을 구현하였다.

• Proceedings of the Korean Information Science Society Conference
• /
• 2003.10a
• /
• pp.616-618
• /
• 2003

최근 급속하게 성장하고 있는 무선 이동 통신 분야중의 한 분야가 Ad hoc 네트워크 분야일 것이다. Ad hoc 네트워크는 기존의 고정된 네트워크의 한계를 뛰어 넘는 네트워크이다. 본 연구에서는 Ad hoc 네트워크의 클러스터 기반의 라우팅 프로토콜에서의 인증에 대한 프로토콜을 멀티 계층으로 설계하였다. CBRP(Cluster Based Routing Protocol)의 라우팅 프로토콜에서는 클러스터간의 인증을 위하여 CH(Cluster Head)간의 인증을 통하여 인증을 하게 된다. CH간의 신뢰성을 위하여 MCH(Main Cluster Head)를 두어 CH간의 신뢰성을 보장함으로써 상호 클러스터간의 인증을 위한 프로토콜을 설계하였다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2004.05a
• /
• pp.221-224
• /
• 2004

보안 S/W의 보안성 평가기준(CC; Common Criteria)은 국제 표준 ISO/IEC 15408로 제정되었고, 시제품에 대한 보안기능요구사항과 보증요구사항을 표준화된 방법으로 표현하고 있다. 보안 S/W의 보안성은 중요하나 그 품질 또한 간과되어서는 안 된다. 이에, 본 논문에서는 CC에서 기술하고 있는 보안기능에 대한 S/W 품질평가기준에 대해 연구하였다.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.17 no.7
• /
• pp.319-325
• /
• 2016

A variety of services for mobile payments by the activation of FinTech have been developed. Various payment methods were developed, and an authentication method was developed to improve the reliability of the payment. On the other hand, when mobile easy payment services are used, they have weak security because the authentication by phone number. Therefore, this paper proposes a technique for increasing the reliability of the authentication process using the unique device ID of the mobile device to improve the authentication process based on the telephone number. The core research contents are the architecture and process for the authentication of mobile payments based on the mobile device ID. The mobile payment architecture consists of a mobile device, authentication service, and mobile payment application. The mobile device consists of mobile device ID and phone number, and the authentication server consists of authentication module and encryption module. The mobile payment service consists of a pre-authentication module and decryption module. The process of mobile payment service is processed by the encrypted authentication information (device ID, phone number, and authentication number) among mobile devices, authentication server, and mobile payment application. The mobile device sends the telephone number and the device ID to the authentication server and the authentication server authenticates the user through an authentication process and encryption process. The mobile payment application performs the pre-authentication process by decrypting the received authentication number. This paper reports a difference that can prevent the risk of leakage of the authentication number in existing payment services through the authentication process of the authentication server and the pre-authentication process of the mobile payment service of this paper.

• Journal of IKEEE
• /
• v.19 no.4
• /
• pp.617-624
• /
• 2015

In this paper, an adult authentication system based on authentication certificate was designed and implemented using smartphone and near-field communication. It has three advantages. First, it achieves easy, convenient, and fast authentication by using smartphone and near-field communication. Second, it achieves extremely high security and reliability by exploiting authentication certificate. Third, it achieves extremely low risk of personal information leakage by generating and sending only virtual identification code. Finally, it has a proper legal basis by Digital Signature Act. It consists of adult authentication module, near-field communication control module, policy server module, and database server module. A prototype of the proposed system was designed and implemented, and it was verified to have correct operation.

• Journal of KIISE:Computing Practices and Letters
• /
• v.9 no.2
• /
• pp.191-204
• /
• 2003

In the home gateway environment, several characteristics for the user authentication mechanism should be reflected separately from the existing distributed service environment. First, the platform of a home gateway is a component based system that its services are installed dynamically. Second, the convenience that user can use several services by authentication of once should be offered. Finally, the system resources of a home gateway are restricted. However, a user authentication mechanism that reflected these characteristics is not shown at the user admin service specification of the OSGi service platform.(OSGi is the representative standardization organization of hone gateway.) Also, there is no existing authentication protocol that satisfies these qualities at the same time. In this paper, we propose a new user authentication mechanism considering those characteristics for the home gateway environment. We also design and implement an independent authentication service bundle based on the OSGi service platform so that it can perform user authentication operations for each bundle service. We supplement and extend the Kerberos Protocol that can apply.

• Proceedings of the Korean Society for Quality Management Conference
• /
• 2009.10a
• /
• pp.334-340
• /
• 2009

본 연구는 국방품질경영시스템인증을 취득한 군수업체의 설문조사 결과를 분석하여 인증동기와 인증 후 효과를 파악하자 한다. 연구결과 인증 동기는 경영자의 의지와 회사 업무발전의 동기가 높게 나타났고 기간이 지남에 따라 동기가 강하게 변화하고 있다. 인증 취득 후에는 대외 신뢰도와 의식변화에 대한 효과가 높고 인증의 유지로 인한 업무능률 향상과 매출이익이 증가하는 것으로 파악되었다. 그리고 국방품질인증 심사에 대한 평가는 합리적이고 객관적인이란 항목에 높은 반응을 보이고 있으나 수검의 용이성에 대한 만족도가 낮고 합리성과 전문성은 인증기간이 지남에 따라 낮아지는 것으로 나타났다. 인증유지를 하는데 애로사항은 정보 및 자료부족, 부서간 협조부족, 규격이해 및 전문 인력부족 등 기업 내부적인 문제점을 발견하여 개선을 위한 필요성이 제기 되었다.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• v.9 no.2
• /
• pp.837-840
• /
• 2005

본 논문은 DHCP(Dynamic Host Configuration Protocol) 메시지 인증에 관한 것으로 홈네트워크에서 적용 가능한 디바이스 인증 및 사용자 인증과의 관련성에 대해 살펴본다. 또한, 본 논문에서 제안하는 DHCP 메시지 인증은 DHCP 서버가 IP 주소 할당을 요구하는 DHCP 클라이언트들에게 IP 주소를 할당함에 있어서, 인증 과정을 거친 후 인증에 성공한 클라이언트에게만 IP 주소를 할당 해주고, DHCP 클라이언트도 자신이 등록된 DHCP 서버로부터만 IP 주소를 할당 받을 수 있는 DHCP 메시지 인증 방법을 제안함에 있어서 효과적이고 보안성을 강화한 키관리 방법으로 리플레이 공격에 대한 방지법을 포함하는 DHCP 메시지 인증 방법을 제공한다.

• Current Research on Agriculture and Life Sciences
• /
• v.32 no.4
• /
• pp.225-230
• /
• 2014

This study investigates the effect of organic certification of apples on consumer preference in China as a way to support the expanded export of Korean apples to China. A choice experiment was designed to analyze the apple consumption in China. A total of 298 Chinese consumers answered the survey, and multinomial logit models were used to analyze the results. Organic certification was identified as an important determinant of consumer preference for apples in China, affecting both the evaluation and choice of country of origin. The results also indicated that Korean organic certification significantly increased the probability of Chinese consumers choosing Korean apples. Thus, organic certification by the Korean government should be strengthened to promote apple exports to China, plus the results of this study may provide useful information to promote agricultural product exports and improve the organic certification system.

• Journal of Internet Computing and Services
• /
• v.6 no.5
• /
• pp.27-43
• /
• 2005

EAP provides authentication for each entity based on IEEE Std 802.1x Wireless lAN and RADIUS/DIAMETER protocol, and it uses certificate, dual scheme(e.g., password and token) with the authentication method. The password-based authentication scheme for authenticated key exchange is the most widely-used user authentication method due to various advantages, such as human-memorable simplicity, convenience, mobility, A specific hardware device is also unnecessary, This paper discusses user authentication via public networks and proposes the Split Password-based Authenticated Key Exchange (SPAKE), which is ideal for both authenticating users and exchanging session keys when using a subsequent secure communication over untrusted network, And then we provides EAP authentication framework EAP-SPAKE by using it.