• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.14 no.3
• /
• pp.131-137
• /
• 2014

The advent of various smart devices like smart phones and tablets has triggered the changes in information systems of medical centers. Especially, diversifying devices of clients and the need for N-Screen services increase necessities for sharing effectively information in medical centers. However, developing and managing clients for each OS like iOS and Android cost high and make it hard to provide seamless service through multi devices. Also, in the aspect of security it is necessary to share information between clients and health information systems. In this paper, we develop a smart health information client based real-time health information sharing framework. The developed client is based on hybrid app, that enables to share information in real time between N devices through health information sharing framework and to adopted to developments of various clients.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.2
• /
• pp.513-528
• /
• 2018

In a smart home environment that integrates IoT technology into a residential environment, the smart home hub provides convenience functions to users by connecting various IoT devices to the network. The smart home hub plays a role as a gateway to and from various data in the process of connecting and using IoT devices. This data can be abused as personal information because it is closely related to the living environment of the user. Such abuse of personal information may cause damage such as exposure of the user's identity. Therefore, this thesis analyzed the threat by using LINDDUN, which is a threat modeling technique for personal information protection which was not used in domestic for Smart Home Hub. We present evaluation criteria for smart home hubs using the Common Criteria, which is an international standard, against threats analyzed and corresponding security requirements.

• Journal of Korea Society of Industrial Information Systems
• /
• v.28 no.5
• /
• pp.41-54
• /
• 2023

Smart grid that supports efficient energy production and management is used in various fields and industries. However, because of the environment in which services are provided through open networks, it is essential to resolve trust issues regarding security vulnerabilities and privacy preservation. In particular, the identification information of smart meter is managed by a centralized server, which makes it vulnerable to security attacks such as device stolen, data forgery, alteration, and deletion. To solve these problems, this paper proposes a blockchain based authentication protocol for a smart meter. The proposed scheme issues an unique decentralized identifiers (DIDs) for individual smart meter through blockchain and utilizes a random values based on physical unclonable function (PUF) to strengthen the integrity and reliability of data. In addition, we analyze the security of the proposed scheme using informal security analysis and AVISPA simulation, and show the efficiency of the proposed scheme by comparing with related work.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.25 no.2
• /
• pp.286-293
• /
• 2021

Smart contract based on the blockchain technology can be applied to the real estate registry including transactions. The Ethereum coin using multi layered protocol is widely accepted as the token for the smart contract. Block chain smart contract using SOLIDITY or PYTHON can mediate transactions auch as sale or lease, creating various scenarios in the property market. Those smart contract can construct the basis for the blockchain real estate registry, which is expected to overcome conventional transaction costs concerning the national law system, the asymmetric information and the currency exchange. The advantages of blockchain technology, namely security, decentralization, global transparency and openness can be applied to the smart contract system on the property registry. Several countries have advanced such blockchain real estate registry project recently, but no actual implementation has been reported for years, owing to institutional and technological impasses.

• Proceedings of the Korea Institutes of Information Security and Cryptology Conference
• /
• 2003.12a
• /
• pp.406-411
• /
• 2003

최근, 디지털 기술과 네트워크의 발달로 다양한 무선통신 단말기, 반도체, 디지털 방송, 전자상거래 등 다양한 분야가 융합되어 사람과 디바이스간에 실시간으로 정보를 주고받는 환경 즉, 유비쿼터스 컴퓨팅 환경에 많은 관심이 주목되고 있다. 이러한 유비쿼터스 컴퓨팅 환경에서의 통신은 통신개체간에 실시간 개체인증은 물론 전송되는 정보의무결성, 기밀성 등 보안 서비스가 요구된다. 현재의 개체 인증은 사용자가 기억하는 패스워드 또는, 스마트 카드와 같은 보안 모듈을 사용하여 사용자와 개체간에 인증이 이루어지고 있는 실정이다. 이러한 방식은 사용자가 기억해야 할 패스워드가 증가한다거나, 보안 모듈의 손상 및 분실로 인해 자신의 프라이버시(privacy)가 노출될 수 있는 단점이 있다. 이에 본 논문에서는 사용자 고유의 생체 정보와 기억할 수 있는 패스워드를 비밀정보로 사용하여 양방향 개체 인증 키 분배 프로토콜을 제안한다.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.10 no.10
• /
• pp.1139-1144
• /
• 2015

The internet of things(: IoT) which could produce new information as well as service through connecting small devices with internet interface becomes reality and could be utilized in home, office and plant. Especially the IoT can provide our home for safety, security, convenience, and power saving since all devices form a small internet. This paper proposes an IoT prototype for home with Raspberry Pi which has various sensors and monitors environment. This Raspberry Pi sensor node is small and inexpensive but can provide powerful service. The implemented node goes beyond simple role of sensor node and features a kind of sensor web node which performs various functions to outer network. So the proposed IoT prototype can provide flexibility as well as extensibility since it does not need expensive server.

• Information and Communications Magazine
• /
• v.32 no.7
• /
• pp.63-71
• /
• 2015

클라우드 컴퓨팅이란 공유된 IT 자원을 네트워크 상에서 가상화를 통하여 독립적으로 사용할 수 있는 개념으로 저탄소 녹색시대를 위한 에너지 절감 솔루션이다. 특히 비용 절감이 필수적인 기업과 공공기관 등에서 IT 자원의 개별적 소유에 시간과 비용을 투입하지 않고 사용한만큼의 비용을 지불할 수 있다. 이에 정부에서는 2015년 9월부터 시행되는 클라우드법 제정을 통하여 클라우드 컴퓨팅의 활성화를 적극 장려하고 있다. 그러나 신뢰성있는 서비스 제공을 위해서는 보안성, 성능, 안정성 제공을 위한 네트워크 기능의 한계 극복이 필수적이다. 이에 본 논문에서는 언제 어디서나 다양한 기기로 업무를 수행할 수 있는 모바일 스마트워크가 가능하도록 하는 단말과 기업망, 클라우드를 안전하게 연결하는 가상 사설 클라우드(Virtual Private Cloud) 네트워킹 구조를 제안한다. 본 구조에서는 클라우드 내에서 사설 주소의 중복 문제 해결을 위하여 위치 주소와 아이디 분리 프로토콜 기반 위에 기업망 등의 엔터프라이즈 ID 개념을 적용하여 주소 확장성을 제공하였다. 또한 이러한 기술을 적용한 VPC 매니저, 서비스 게이트웨이 및 에이전트로 구성된 VPC 네트워킹 솔루션으로 테스트베드를 구축하고 그 운용 경험을 통해서 실 사업자망에 적용 가능한 비즈니스 모델 도출이 가능할 것으로 기대한다.

• The Journal of the Korea Contents Association
• /
• v.19 no.12
• /
• pp.407-415
• /
• 2019

As the IT environment changes with cloud computing and smart work, the existing perimeter security model is showing its limitations and Software Defined Perimeter is being discussed as an alternative. However, SDP Spec 1.0 does not specify the device registration procedure, policy distribution process and authentication key generation and sharing process.In this paper, we propose a method to solve the problem of SDP access control by improving the operation procedure of Single Packet Authentication. This paper suggests that the proposed method can implement a consistent and automated integrated access control policy compared to the existing access control methods.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2016.05a
• /
• pp.766-768
• /
• 2016

Conventional locking device has a disadvantage such as a security vulnerability caused by using avoid traces of the keypad that are frequently used due to the complex password application. In this study, we proposed a OTP based locks by using user identical informations that overcomes the disadvantages of the conventional apparatus. We implemented and validated the proposed algorithm through simulations.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2014.04a
• /
• pp.453-456
• /
• 2014

최근 무선 인터넷의 발달 및 스마트 디바이스의 등장 등의 이유로 다양한 분야의 네트워크 기반 서비스가 등장하고 있다. 폭발적으로 증가하는 네트워크 서비스를 신뢰적이며 효율적으로 운영하기 위한 기술로 미래 네트워크 기술의 하나인 SDN이 주목받고 있다. 하지만 SDN은 기존 네트워크의 보안 취약성인 IP주소를 타깃으로 하는 공격에 대한 취약점을 보완하지 못하고 있다. 이에 본 논문은 SDN망에서 기존 Control Layer외에 Security Layer를 추가함으로서 네트워크 위협사항에 능동적으로 대처가 가능하고 해당 구조의 기반 위에 검색가능 암호화 기법을 사용하여 IP주소를 은닉화하는 기법을 제안하고자 한다.