• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.33 no.1
• /
• pp.87-97
• /
• 2023

Containers are an emerging virtualization technology that can build an isolated environment more lightweight and faster than existing virtual machines. For that reason, many organizations have recently adopted them for their services. Yet, the container architecture has also exposed many security problems since all containers share the same OS kernel. In this work, we focus on the fact that an attacker can abuse host resources to make them unavailable to benign containers-also known as host resource exhaustion attacks. Then, we analyze the impact of host resource exhaustion attacks through real attack scenarios exhausting critical host resources, such as CPU, memory, disk space, process ID, and sockets in Docker, the most popular container platform. We propose five attack scenarios performed in several different host environments and container images. The result shows that three of them put other containers in denial of service.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2012.04a
• /
• pp.1015-1017
• /
• 2012

본 논문은 컨테이너 터미널의 컨테이너 정보를 RFID를 통하여 획득하고 이 정보를 바탕으로 효율적인 선적 하역작업을 스케줄링하는 시스템에 관한 연구이다. 유비쿼터스의 핵심기술인 RFID(Radio Frequency ID)전자태그 시스템을 이용하여 컨테이너를 효율적으로 선적 할 수 있게 돕고, 운송 과정에서 컨테이너의 실시간 관리가 가능한 시스템으로, 컨테이너 선적의 신속성과 정확성을 강화하여 컨테이너를 효율적으로 관리하는 것을 목적으로 한다.

• The Journal of the Korea Contents Association
• /
• v.15 no.10
• /
• pp.607-615
• /
• 2015

Mosts user of internet and smart phone has certificate, and uses it when money transfer, stock trading, on-line shopping, etc. Mosts user stores certificate in a hard disk drive of PC, or the external storage medium. In particular, the certification agencies are encouraged for user to store certificate in external storage media such as USB memory rather than a hard disk drive. User think that the external storage medium is safe, but when it is connect to a PC, certificate may be copied easily, and can be exposed to hackers through malware or pharming site. Moreover, if a hacker knows the user's password, he can use user's certificate without restrictions. In this paper, we suggest secure management scheme of the private key file using a password of the encrypted private key file, and a USB Memory's hardware information. The private key file is protected safely even if the encrypted private key file is copied or exposed by a hacker. Also, if the password of the private key file is exposed, USB Memory's container ID, additional authentication factor keeps the private key file safe. Therefore, suggested scheme can improve the security of the external storage media for certificate.

• The Proceeding of the Korean Institute of Electromagnetic Engineering and Science
• /
• v.16 no.3 s.55
• /
• pp.26-32
• /
• 2005

RFID 기술은 사물에 전자 태그를 부착하여 무선으로 사물의 ID를 인식하여 정보를 수집하고 주변상황 정 보를 감지하고 수집 된 정보를 저 장, 가공, 추적함으로써 사물에 대한 측위, 원격처리, 관리 및 사물간 정보 교환 등의 서비스를 제공하는 기술이다. 특히,.미 관세청에서 2005년 미국에 수출되는 컨테이너에 RFID 태그를 부착하는 정책을 발표하여 2006년부터는 능동형 RFID 태그를 이용한 컨테이너 통관을 시행할 예정이며, 현재 태그 부착은 의무 사항은 아니지만 선별적으로 컨테이너 전수 검사를 실시한다는 방침이어서 반강제적인 성격을 지닌 것으로 판단할 수 있다. 또한, 물류 산업의 변화의 대세에 따라 제조업체의 생산품이 유통 과정을 거쳐 항만에서 처리되는 과정을 실시간으로 추적이 가능함은 물론이고 나아가서 외국 항만과의 연계를 통하여 수출입 전 과정의 추적성을 파악하고 거기에 다른 시스템의 효율적인 통합을 이루어 언제 어디서나 화물의 추적과 관리가 가능한 유비쿼터스 환경의 선진화된 항만 시스템을 구축할 수 있다. 본고에서는 항만 물류용 능동형 RFID 기술과 관련하여 시스템 구성 요소 및 관련 기술 동향, 항만 물류 시스템의 응용에 대해 알아본다.

• The Journal of the Korea Contents Association
• /
• v.17 no.7
• /
• pp.276-282
• /
• 2017

Password-based authentication is vulnerable because of its low cost and convenience, but it is still widely used. In order to increase the security of the password-based user authentication method, the password is changed frequently, and it is recommended to use a combination of numbers, alphabets and special characters when generating the password. However, it is difficult for users to remember passwords that are difficult to create and it is not easy to change passwords periodically. Therefore, in this paper, we implemented a user authentication system that does not require a password by using the USB memory that is commonly used. Authentication data used for authentication is protected by USB data stored in USB memory using USB device information to improve security. Also, the authentication data is one-time and reusable.Based on this, it is possible to have the same security as the password authentication system and the security level such as certificate or fingerprint recognition.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2009.10a
• /
• pp.139-142
• /
• 2009

RFID(Radio Frequency IDentification) technology is an automatic identification method using radio frequencies between RFID reader which collects the information and tag which transmits the information. RFID technology develops passive RFID which transmit the only ID to active RFID which transmit the additional information such as sensing information. However, ISO/IEC 18000-7 as active RFID standard has a problem which cannot use multiple channel. To solve this problem, we use the 2.4GHz bandwidth technology and we propose the dynamic channel allocation method which can efficiently allot a channel. we show the operation of the dynamic channel allocation method through design and implement with CC2500DK of Taxas Instrument.