• Journal of Convergence for Information Technology
• /
• v.9 no.6
• /
• pp.13-18
• /
• 2019

This paper proposes efficient and secure two-way authentication protocol for binding update messages between mobile devices and home agents / correspondent nodes in IoT and Mobile IPv6 (MIPv6) environments with limited computing power and resources. Based on the MIPv6 message exchange, the proposed protocol satisfies both the authentication and the public key exchange optimized for both sides of the communication with minimum modification. In the future, we will carry out a performance analysis study by implementing the proposed protocol in detail.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.11 no.4
• /
• pp.1260-1265
• /
• 2010

IPSec is the security protocol that do encryption and authentication service to IP messages on network layer of the internet. This paper presents the key recovery mechanism that is applied to IKEv2 of IPSec for mobile communication environments. It results to have compatibility with IPSec and IKEv2, reduce network overhead, and perform key recovery without depending on key escrew agencies or authorized party.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2000.10a
• /
• pp.813-816
• /
• 2000

최근 무선 인터넷 서비스가 증가함에 따라 무선 전자상거래(Mobile Commerce) 영역으로까지 발전하고 있으나 이의 실현을 위해서는 보안 문제의 해결이 필수적이다. 현재 WAP은 게이트웨이의 구조적인 문제로 궁극적인 보안이 불가능하며, 이에 많은 대안들이 제시되고 있다. 본 논문에서는 게이트웨이와는 무관하게 마이크로브라우저와 WAP 서버간의 안전한 통신을 하기 위한 보안 메커니즘을 제시하며 이를 위해 마이크로브라우저 차원에서 인증과 암호화를 위한 모듈을 구성하고 게이트웨이의 포맷 변화를 고려하여 서버 측에서 WML을 효율적으로 암호화하는 방법을 제시한다. 이들을 기반으로 하여 종단간의 암호화와 복호화 메커니즘을 구현한다.

• Proceedings of the Korean Information Science Society Conference
• /
• 2003.10a
• /
• pp.739-741
• /
• 2003

AAA(Authentication, Authorization, Accounting) 프로토콜은 기존의 PPP 뿐만 아니라 VoIP 및 Mobile IP 등과 같은 차세대의 다양한 네트워크와 프로토콜 상에서 안전하고 신뢰성 있는 사용자의 인증, 권한관리 및 과금을 제공하는 정보보호 메커니즘이다. 그러나 이러한 AAA 프로토콜에서는 사용자의 권한관리에 대한 표준화된 메커니즘을 제공하지 않고 있어, 도메인간의 로밍 및 새로이 출현하는 서비스 상의 권한관리에 대해 확장성 및 호환성이 결여될 수 있다. 따라서 본 논문에서는 IETF에서 권한관리 기반구조의 표준으로 제시하고 있는 속성 인증서(Attribute Certificate)를 통해 Diameter 프로토콜에서의 효과적이고 표준화된 권한관리 메커니즘을 제안하고, 관련 Diameter 메시지 등을 정의하였다.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.21 no.3
• /
• pp.57-66
• /
• 2011

The current trend of the handover authentication delay time is gradually increased according to the interworking between 3G cellular network and WLANs. Therefore, authentication mechanism minimized in delay is required to perform the seamless handover and support the inter-subnet and inter-domain handover. In this paper, we propose a novel pre-authentication scheme based on the fast channel switching which directly performs the authentication with the next access point in advance. In addition, the proposed scheme is efficient in the inter-domain handover and can be easily implemented in current WLANs since it just modifies the client side of user. To analysis and evaluate our scheme, we compare the packet loss ratio and the delay time with the two standard 802.11 authentication schemes. The analytical results show that our scheme is approximate 10 times more effective than the standard schemes in packet loss and the delay time is minimized down to 0.16 msec.

• Journal of the Institute of Convergence Signal Processing
• /
• v.10 no.1
• /
• pp.66-71
• /
• 2009

In view of mutual complementary feature of wide coverage and high data rate, the interworking between 3G cellular network and WLAN is a global trend of wireless communications. This paper introduces the analytic result of an authentication mechanism for 3GPP-WLAN seamless mobility under the USIM-based authentication test-bed. In a handover process between heterogeneous networks, authentication is the main factor of handover delay. So authentication processing time should be firstly reduced. This paper describes an USTM-based EAP-AKA test-bed implemented for handover in UMTS and WLAN interworking systems. Experimental result has shown that the fast re-authentication mechanism during handover has reduced the handover delay by about 48.6%.

• Convergence Security Journal
• /
• v.22 no.4
• /
• pp.179-188
• /
• 2022

Password authentication schemes (PAS) are the most common mechanisms used to ensure secure communication in open networks. Mathematical-based cryptographic authentication schemes such as factorization and discrete logarithms have been proposed and provided strong security features, but they have the disadvantage of high computational and message transmission costs required to construct passwords. Fairuz et al. therefore argued for an improved cryptographic authentication scheme based on two difficult fixed issues related to session key consent using the smart card scheme. However, in this paper, we have made clear through security analysis that Fairuz et al.'s protocol has security holes for Privileged Insider Attack, Lack of Perfect Forward Secrecy, Lack of User Anonymity, DoS Attack, Off-line Password Guessing Attack.

• The KIPS Transactions:PartC
• /
• v.14C no.2
• /
• pp.129-138
• /
• 2007

AAA(Aluthentieation, Authorization, Accounting) protocol is an information securitv technology that offer secure and reliable user Authentication, Authorization, Accounting function systematically in various services. protocol and wireless network work as well as win network. Currently IETF(Internet Engineering Task Force) AAA Working Group deal with about AAA protocol and studying with activity, But, recently it exposing much problems side to user's anonymity and privacv violation. Therefore, in this paper, AAAH(Home Authentication Server) authenticaters Mobile device, after that, use ticket that is issued from AAAH even if move to outside network and can be serviced offering authentication in outside network without approaching by AAAH, Also, we study mechanism that can offer user's privacy and anonymousness to when use service. Our mechanism is using Time Synchronization OTP and focusing authentication and authorization. Therefore, our mechanism is secure from third party attack and offer secure and effective authentication scheme. Also only right user can offer services by using ticket. can reduce signal and reduce delay of message exchanged, can offer persistent service and beighten security and efficiency.

• The KIPS Transactions:PartC
• /
• v.11C no.3
• /
• pp.293-300
• /
• 2004

Ad hoc networks are groups of mobile hosts without any fixed infrastructure. Frequent changes in network topology owing to node mobility make these networks very difficult to manage. Therefore, enhancing the reliability of routing paths in ad hoc networks gets more important. In this paper, we propose a ZRP(Zone Routing Protocol)-based route discovery scheme that can not only reduce the total hops of routing path, but Improve security through authentications between two nodes. And to solve the problem in maintenance of routing paths owing to frequent changes of the network topology, we adopt a query control mechanism. The effectiveness of our scheme is shown by simulation methods.

• Journal of KIISE:Computer Systems and Theory
• /
• v.35 no.7
• /
• pp.332-339
• /
• 2008

Radio Frequency Identification (RFID) technology is an important part of infrastructures in ubiquitous computing. Although all products using tags is a target of these services, these products also are a target of attacking on user privacy and services using authentication problem between user and merchant, unfortunately. Presently, it is very important about security mechanism of RFID system and in this paper, we analyze the security protocol among many kinds of mechanisms to solve privacy and authentication problem using formal verification and propose a modified novel protocol. In addition, the possibility of practical implementation for proposed protocol will be discussed.