• Journal of Internet Computing and Services
• /
• v.7 no.6
• /
• pp.157-174
• /
• 2006

Ajax interaction model changes the posture of web application to become a stateful over HTTP. Ajax applications are long-lived inthe browser. XMLHTTPRequest (XHR) is used to facilitate the data exchange. Using HTTPS over this interaction is not viable because of the frequency of data exchange. Moreover, switching of protocols form HTTP to HTTPS for sensitive information is prohibited because of server-of-origin policy. The longevity, constraint, and asynchronous features of Ajax application need to hove a different authentication and session fondling mechanism that invoke re-authentication. This paper presents an authentication and session management scheme using Ajax. The scheme is design lo invoke periodic and event based re-authentication in the background using digest authentication with auto-generated password similar to OTP (One Time Password). The authentication and session management are wrapped into a framework called AWASec (Ajax Web Application Security) for coupling to avoid broken authentication and session management.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.17 no.2
• /
• pp.119-126
• /
• 2017

Developing the TCP/IP standard IBA which is higher organization of IETF decided to attach the TCP/IP protocol stack to small things, such as sensor. This means small object is also considered as on of the communication node, it has symbolic meaning that expand smart object has all five layer. Under this background, IoT/WoT configure the intelligent network between objects based on the internet to communication was introduced. Things has own IP address on IoT environment and are smart object that a lot of people communicate over the internet on Application Layer. In other words, IoT is that smart object are commercialized space. According to the interest of IoT, IETF establish CoAP for use as IoT protocol. CoAP is expected that standard protocols created by things is connected to the Internet protocol that can be used within a constrained environment. Accordingly, in this paper, we proposed Middleware API that can manage and collect the data of objects that connected CoAP network.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.14 no.2
• /
• pp.521-533
• /
• 2010

The OSGi framework is a java-based service platform that can be remotely managed, providing an application life cycle management model, a service registry and an execution environment. Based on the framework, various OSGi layers, APIs, and services have been defined. A bundle is an application that can be executed in the OSGi framework, deployed through a bundle repository. Usually, bundles in the repository are accessible via a designated web page. Unfortunately, the current bundle repositories do not provide any kind of group access services and dynamic bundle installation and deployment. In this paper, we describe a WebDAV-Based OSGi bundle repository named WOBR, which supports effective group-based accesses. WOBR is composed of a WOBR bundle repository, a management bundle and an access bundle that interact with the bundle repository. The management bundle is for configuration of the WOBR bundle repository, managing group access facility to the repository. The access bundle provides access to the repository and search mechanism for the bundles. Additionally, it provides the life cycle management of the installed bundles on the local environment.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.36 no.6B
• /
• pp.608-617
• /
• 2011

ubiquitous network management system (u-NMS) is the network management system based on smartphone which are recently of wide use. The purpose of the u-NMS is to provide convenience for network administrator utilizing the mobility of smartphone and to manage the network efficiently. This paper proposes the smart NMS agent and the mobility management server (MMS). The smart NMS agent enables to use the monitoring web server and remote control application on the smartphone in wireless network. The MMS is developed to reduce the problems such as handover latency and packet loss, which can be taken place in wireless network. The network manager can monitor traffic in real time through the smart NMS agent and remotely control the network efficiently when sudden failures happen in the u-NMS. In this paper, performance evaluation is carried out with our test-bed system implemented. We focus on the measurement of the MMS performance. When the MMS is compared to previous mobility management protocol, our mobility management server reduces the average latency up to 65% in initial access, handover latency and processing delay to the network management center.

• The Transactions of the Korea Information Processing Society
• /
• v.4 no.8
• /
• pp.1961-1974
• /
• 1997

WWW has accepted widely to the who wants the hypermedia-based internet services. And WWW introduces intranet environment which consists of the networks supporting TCP/IP and HTTP protocol for processing the task of company inside that. Intranet application should support not only acquiring the informations, but also producing, modifying and deleting the ones. But since previous hypermedia development methods lack modeling behavior of system and reuse, we need a new method for intranet application. In this thesis, we have proposed the OOIDM(Object Oriented Intranet application Development Method)supporting modeling behavior of system and reuse. And we have proposed the design patterns available for the intranet domain in order to reuse the design information. And we introduces a case study about OOIDM applying design patterns. Adaptation of design patterns to intranet domain gives us much benefits. Design patterns make it easier to reuse the successful design, architecture and reducing the design decisions.

• KIPS Transactions on Computer and Communication Systems
• /
• v.2 no.8
• /
• pp.327-334
• /
• 2013

Today's network traffic has become extremely complex and diverse since the speed of network became faster and a variety of application services appear. Moreover, many applications appear and disappear fast and continuously. However, the current traffic classification system does not give much attention to this dynamic change of applications. In this paper, we propose an application awareness system in order to solve this problem. The application awareness system can provide the information, such as the usage trend of conventional applications and the emergence of new applications by recognizing the application name in a rapidly changing network environment. In order to recognize the application name, the Host field of HTTP protocol has been utilized. The proposed mechanism consists of two steps. First, the system generates the candidates of application name by extracting the domain name from the Host field in HTTP packet. Second, the administrator confirms the name afterward. The validity of the proposed system has been proved through the experiments in campus network.

• The KIPS Transactions:PartC
• /
• v.13C no.4 s.107
• /
• pp.511-520
• /
• 2006

WebDAV is a protocol which supports web-based distributed authoring and versioning, providing a standard infrastructure for asynchronous collaboration on various contents through the Internet. Current WebDAV-enabled authoring applications that support WebDAV, such as Microsoft office, Photoshop, or Dreamweaver, work by integrating WebDAV capabilities into the application. While this approach provides solid support for collaborative authoring, it has a drawback that each of the applications needs to support WebDAV capabilities in its own way. We developed a WebDAV client named DAView running on Linux KDE, which enables WebDAV-unaware authoring tools to have effective remote authoring capabilities. DAView provides a GUI view of a WebDAV server, similar to existing WebDAV-enabled file managers such as DAVExplorer. Unique among WebDAV file managers, it also provides the ability to launch the authoring application associated to a WebDAV server resource, automatically managing the locks on the resource.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.34 no.4B
• /
• pp.377-386
• /
• 2009

IPTV technology for providing multimedia content with high-speed is the network which combines existing network, multimedia and internet technology etc. But internet, broadcasting and web technologies which is now being used is not optimized to IPTV because the security problem between user who gets content service through mobile units and content server is not guaranteed. This paper proposes user certification mechanism between mobile device and content server to receive the service which the user for the content chooses by mobile device safely. The proposed mechanism uses the random number which user creates and certification token for preventing illegal user who uses other's service that already paid. Also the proposed protocol encrypts the delicate data like user's information or profile using shared-key between java card attached on user's mobile device and grant sewer and then prevents reply attack which happens often in wireless section and man-in-the-middle attack by MAC.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.11 no.6
• /
• pp.1182-1189
• /
• 2007

As ubiquitous environment rapidly emerges due to the development of network and information communication technology, ubiquitous computing is being noticed as a technology that will take the lead in information technology industry of the future. To the end, the data recognized from each sensors, collected and processed need be transferred to applied service so that they may be used as data for providing sum to users. However, in reality as the definitions of metadata and platform for each sensor are not clear, approach from applied service for data use is difficult and there are limitations in transferring sensor measurement data of the applied service because of the difference of platform and protocol. In this paper, we designed sensor service technology language that expresses sensor and measurement data and describes the service though sensor data service. Also the researcher implemented a sensor data processing system that transfers sensor data to the applied service by using web service. The thesis will apply a reference model for standardization to guarantee mutual compatibility in exchanging sensor data through the system.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.12 no.3
• /
• pp.500-508
• /
• 2008

For efficient compatible system between medical clinics, the medical information has to be built on a standardized protocol such as a HL7 for text data and a DICOM for image data. But it is difficult to exchange information between medical clinics because the systems and softwares are different and also a structure of data and a type of code. Therefore we analyze a structure of DICOM file and design an integrated database for effective information sharing and exchange. The WISD system suggested in this paper separate the DICOM file transmitted by medical clinics to text data and image data and store it in the integrated DB(database) by standardized protocol respectively. It is very efficient that each medical clinic can search and exchange information by web browser using the suggested system. The WISD system can not only search and control of image data and patient information through integrated database and internet, but share medical information without extra charge like construction of new system.