• The KIPS Transactions:PartC
• /
• v.19C no.1
• /
• pp.47-54
• /
• 2012

Sharing cross-site resources has been adopted by many recent websites in the forms of service-mashup and social network services. In this change, exploitation of the new vulnerabilities increases, which includes inserting malicious codes into the interaction points between clients and services instead of attacking the websites directly. In this paper, we present a system model to identify malicious script codes in the web contents by means of a remote verification while the web contents downloaded from multiple trusted origins are executed in a client's browser space. Our system classifies verification items according to the origin of request based on the information on the service code implementation and stores the verification results into three databases composed of white, gray, and black lists. Through the experimental evaluations, we have confirmed that our system provides clients with increased security by effectively detecting malicious scripts in the mashup web environment.

• Annual Conference of KIPS
• /
• 2004.05a
• /
• pp.1169-1172
• /
• 2004

웹서비스의 보안정책은 전송계층과 어플리케이션 계층 두 부분에 적용되고 있으며, 분산 어플리케이션간 통신을 할 경우 데이터에 대한 암호화와 인증처리가 가장 중요한 부분이 될 것이다. 본 논문에서 제안한 시스템은 웹서비스 작업에서 클라이언트의 요청을 XML 서명 후 전송하여 요청을 받은 서버측에서 응답을 하기 전 정당한 클라이언트인가를 검증하는 단계를 거친다. 이렇게 함으로써 웹서비스 환경에서의 SOAP을 이용한 메시지계층 보안을 한층 강화시키려는 목적이다.

• Journal of Korean Society of Archives and Records Management
• /
• v.9 no.1
• /
• pp.77-98
• /
• 2009

The purpose of the study is to analyze the user satisfaction of 'the Presidential Web Record Service' using a proposed model of the user satisfaction index which consists of contents quality, service quality, and system quality. In addition, user's royalty and compliant are also measured in this study. This study shows that satisfaction of contents quallity and system quality influence significantly on the user satisfaction. And contents quality, service quality, user satisfaction show a significant relationships to user's royalty.

• The KIPS Transactions:PartD
• /
• v.19D no.4
• /
• pp.299-306
• /
• 2012

To fulfill the complex user requirement, composition web service comprised of existing services is considered from the efficient and reusable point of view instead of making entirely new web service. However, with the growing the number of web services which provide the same functionality but differ in quality value, the service composition becomes a decision problem on which component services should be selected such that end-to-end QoS constraints by the client and overall QoS of the composition service are satisfied. QoS of service aspects is a determinant factor for selecting the services, since the performance of the composed service is determined by the performance of the involved component web service. In this paper, hybrid genetic algorithm is presented to select component services to take part in the QoS-aware composition. The local search method is used to be combined with the genetic algorithm to improve the individuals (component service) in population as well as composed service. The paper also presents a set of experiments conducted to evaluate the efficiency of selection algorithm using the real web service data.

• The KIPS Transactions:PartC
• /
• v.10C no.6
• /
• pp.769-778
• /
• 2003

XKMS(XML Key Management Specification), one of XML Security specification, defines the protocol for distributing and registering public keys for verifying digital signatures and enciphering XML documents of web service applications with various and complicate functions. In this paper, we propose XML Key Information protocol service model and implements reference model of protocol component based on standard specification. Also describes the analysis and security method of Key Information Service(XKIS) for Secure XML Web Service,paying attention to the features of XML based security service. This protocol component supported includes public key location by given identifier information, the binding of such keys to edentifier information. This reference model offers the security construction guideline for future domestric e-Business Frameworks.

• Proceedings of the Korea Contents Association Conference
• /
• 2006.11a
• /
• pp.465-468
• /
• 2006

To evaluate the suitability of wind energy which is one of the alternative future resources, middle and long term survey and verification about the value of wind resource is needed. However, because measurement equipments of wind information is generally installed at remote and secluded place, it is not easy to gather wind information and relative data in real time. In this paper, we design and demonstrate the system which gathers wind information and provides users with services, therefore it help us to decide the suitability and applicability of wind resources. Also, we develop the system by using web services technologies so as to provide a variety of clients with adequate services and information.

• The Journal of the Korea Contents Association
• /
• v.6 no.11
• /
• pp.285-294
• /
• 2006

In this paper, we propose a new remote control and monitoring technique using web-service technology for URC robot. URC robot needs the architecture which can be applied all over the variety hardware and software platform for supporting the several interface with external world in the ubiquitous environment. In this paper, web-service technology is preferentially deliberated how to adopt into the embedded environment and the remote control and monitoring technology based on web-service technology for URC robot is designed and implemented as to support the interaction with agent programs. It has been carried out through simulating and implementing this technology into the target robot called NETTORO and proved its practical worth.

• The KIPS Transactions:PartD
• /
• v.13D no.4 s.107
• /
• pp.603-612
• /
• 2006

Recently the web service area is rapidly growing as the next generation IT paradigm because of increase of concern about SOA(Services-Oriented Architecture) and growth of B2B market. Since a service discovery through UDDI(Universal Description, Discovery and Integration) is limited to a functional requirement, it is not considered an effect on frequency of service using and reliability of mutual relation. That is, a quality as nonfunctional aspect of web service is regarded as important factor for a success between consumer and provider. Therefore, the web service selection method with considering the quality is necessary. This paper suggests the agent-based quality broker architecture and selection process which helps to find a service providing the optimum quality that the consumer needs in a position of service consumer. A theory of agent is accepted widely and suitable for proposed system architecture in the circumstance of distributed and heterogeneous environment like web service. In this paper, we considered the QoS and CoS in the evaluation process to solve the problem of existing researches related to the web service selection and used PROMETHEE(Preference Ranking Organization MeTHod for Enrichment Evaluations) as an evaluation method which is most suitable for the web service selection among MCDM approaches. PROMETHEE has advantages that solve the problem that a pair-wise comparison should be performed again when comparative services are added or deleted. This paper suggested a case study with the service composition scenario in order to verify the selection process. In this case study, the decision making problem was described on the basis of evaluated values for qualities from a consumer's point of view and the defined service level.

• Journal of the Institute of Convergence Signal Processing
• /
• v.10 no.4
• /
• pp.225-232
• /
• 2009

Context-aware technologies for ubiquitous computing are necessary to study the representation of gathered context-information appropriately, the understanding of user's intention using context-information, and the offer of pertinent services for users. In this paper, we propose the WS-CAM(Web Services based Context-Aware Middleware) framework for context-aware computing. WS-CAM provides ample power of expression and inference mechanisms to various context-information using an ontology-based context model. We also consider that WS-CAM is the middleware-independent structure to adopt web services with characteristic of loosely coupling as a matter of communication of context-information. In this paper, we describe a scenario for lecture services based on the ubiquitous computing e e e e e e to verify the utilization of WS-CAM We also show an example of middleware-independent system expansion to display the merits of web-based services. WS-CAM for lecture services represented context-information itodomaits as OWL-based ontology model effectively, and we confirmed the information is inferred to high level context-information by user-defined rules. We also confirmed the context-information is transferred to application services middleware-independently using various web methods provided by web services.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.14 no.5
• /
• pp.1185-1192
• /
• 2010

Recently, the demand for various contents and mobile web service has been rising due to the improvement of the techniques of wireless networks. In mobile web service, it is essential to exchange the device informations and contents using specific information which are standardized for users, operators and contents providers. This is based on the existing service providers based on the existing terminal, which provides information to help plan and operate independently of the mobile Web services and content services for various users needs. In this paper, the interoperable DDL is proposed for providing contents to fit with each different mobile device, which contributes toward the optimized mobile web service and guarantee the interoperability of device information. and we implemented the device information processing system, which has the purpose of servicing the device information and verifying the result to the interoperability of mobile web service on proposed DDL and the description language of the device information.