• Title/Summary/Keyword: AAA

Search Result 251, Processing Time 0.033 seconds

Proxy-AAA Authentication Scheme with Forwarding Mode Supporting in PMIPv6 Networks

  • Han, JeongBae;Jeong, Jongpil;Jo, Jun
    • International Journal of Internet, Broadcasting and Communication
    • /
    • v.5 no.2
    • /
    • pp.18-22
    • /
    • 2013
  • Mobile IPv6 (MIPv6) is a host-based protocol supporting global mobility while Proxy Mobile IPv6 (PMIPv6) is a network-based protocol supporting localized mobility. This paper makes its focus on how to reduce the longer delay and extra cost arising from the combination of authentication, authorization and accounting (AAA) and PMIPv6 further. Firstly, a novel authentication scheme (Proxy-AAA) is proposed, which supports fast handover mode and forwarding mode between different local mobility anchors (LMAs). Secondly, a cost analysis model is established based on Proxy-AAA. From the theoretical analysis, it could be noted that the cost is affected by average arrival rate and residence time.

A Key Management Scheme for Mobile IP Registration Based on AAA (AAA 기반 Mobile IP 등록을 위한 키 관리기법)

  • Kang, Hyun-Sun;Park, Chang-Seop
    • Proceedings of the Korea Information Processing Society Conference
    • /
    • 2005.05a
    • /
    • pp.1233-1236
    • /
    • 2005
  • Mobile IP 는 모바일 노드(MN)의 이동성을 지원하기 위한 프로토콜로, 등록 프로토콜을 통해 이동 중에도 지속적인 서비스를 제공받게 된다. 등록 프로토콜은 무선 환경에서 다양한 MN 을 대상으로 수행되기 때문에, 반드시 인증절차가 필요하며, 인증을 위한 키 관리를 위해 AAA 를 도입하는 것이 일반적인 접근방식이다. 본 논문에서는 AAA 도입한 기본적인 Mobile IP 모델에 본 논문에서 새롭게 제안하는 계층적 키 관리기법을 도입하고, AAA 지연을 최소화하는 효율적이고 안전한 등록 프로토콜을 제안한다. 또한 제안 프로토콜은 해쉬체인을 이용하여 차후 MN 의 네트워크 서비스 사용에 대한 부인방지 서비스도 제공된다.

  • PDF

A Verification Case Study about the Authentication of a Network using AAA (AAA가 적용된 네트워크의 인증에 대한 검증 사례연구)

  • Park, Sung-Bae;Kim, No-Whan
    • The Journal of the Korea institute of electronic communication sciences
    • /
    • v.12 no.2
    • /
    • pp.295-300
    • /
    • 2017
  • AAA, an information-protective protocol authorizes the degree of service and rights to the user through a safe and reliable authentication. The protocol also systematically manages the accounting functions including billing, monitoring, and reporting using the user information. After a topology was created to design a network based on a router and server using RADIUS and TACACS+, a common virtual network was made using a packet tracker. This paper presents cases showing valid authentication through simulations.

A Implementation Method of AAA for Real-Time Authenticatton on MiDAS (무선 인터넷 접속 장치에서 실시간 인증을 위한 AAA 구현 방법)

  • Lee, Hoon-Ki;Kim, Soon-Chul;Ryu, Won
    • Proceedings of the Korea Information Processing Society Conference
    • /
    • 2002.11b
    • /
    • pp.1435-1438
    • /
    • 2002
  • 본 논문은 무선망과 유선 인터넷 망을 연결하여 실시간 인터넷 접속 서비스를 받을 수 있는 IS-95C 패킷 데이터 서비스 노드(PDSN: Packet Data Service Node) 기능을 수행하는 개방형 무선 인터넷 접속장치(MiDAS: Mobile Interface Data Access System)에서 사용자 인증 및 권한 검증을 수행하는 AAA 프레임웍의 설계 방법에 관한 것이다. 실시간으로 접속되는 무선 인터넷 접속 사용자의 수가 증가할수록 PDSN 에서의 사용자 관리가 중요한 문제로 대두되고 이러한 문제점을 효율적으로 처리할 수 있는 방법을 제시한다. MiDAS 에서의 AAA 프레임웍 구현을 위해 RADIUS 프로토콜을 이용하였으며 실시간으로 요구하는 무선인터넷 사용자의 인증을 수행하기 위해 AAA 클라이언트에서 사용자 관리를 위한 구현방법, 통신 구현방법, 그리고 타이머를 통하여 인증 처리에서 서버 응답에 대한 임계시간을 두어 구현하는 방법에 관한 것이다.

  • PDF

A Study on the Performance Improvement of AAA in Mobile IPv6 using Fast-Handoff for Differentiated Services (차별화서비스를 위한 Mobile IPv6에서 AAA인증절차의 성능향상을 위한 Fast Handoff 적용방안 연구)

  • Byun, Kwang-ho;Mun, Young-song
    • Proceedings of the Korea Information Processing Society Conference
    • /
    • 2004.05a
    • /
    • pp.1549-1552
    • /
    • 2004
  • 초고속 인터넷 서비스가 일반화되고, PDA 및 노트북 등의 휴대 이동 컴퓨팅 기기의 사용이 증가하면서 인터넷 환경이 유선망에서 무선망으로 점차 변화하고 있다. 무선 인터넷 제공을 위한 주요 인프라는 이동 통신망이나 무선 랜 망이며, 서비스 가입자들은 무선망에서도 유선망과 같은 높은 품질과 안전한 서비스를 요구하고 있다. 그러나 무선망은 유선망에 비해 외부로부터의 공격에 매우 취약하므로 사용자의 QoS 요구사항 뿐만이 아니라 안전한 통신을 보장해야 한다. 현재 표준화 기관인 IETF의 Mobile IPv6 워킹그룹에서도 보안문제를 가장 중요하게 다루고 있으며, 기존의 보안 기법들의 취약성을 극복하기 위한 방안으로 표준작업 그룹에서는 인프라 차원의 AAA인증 절차를 이용한 이동노드의 인증 방안이 연구되고 있다. 본 눈문에서는 무선인터넷 가입자의 안전성과 서비스 품질을 보장하기 위해 차별화 서비스를 적용한 Mobile IPv6와 AAA연동 방안을 제안 하였으며, AAA 인증 절차에 따르는 핸드오프 지연을 줄이기 위해 Fast Handoff를 적용한 방안을 제안한다.

  • PDF

Endovascular Aneurysm Repair for Abdominal Aortic Aneurysm: A Comprehensive Review

  • Hyoung Ook Kim;Nam Yeol Yim;Jae Kyu Kim;Yang Jun Kang;Byung Chan Lee
    • Korean Journal of Radiology
    • /
    • v.20 no.8
    • /
    • pp.1247-1265
    • /
    • 2019
  • Abdominal aortic aneurysm (AAA) can be defined as an abnormal, progressive dilatation of the abdominal aorta, carrying a substantial risk for fatal aneurysmal rupture. Endovascular aneurysmal repair (EVAR) for AAA is a minimally invasive endovascular procedure that involves the placement of a bifurcated or tubular stent-graft over the AAA to exclude the aneurysm from arterial circulation. In contrast to open surgical repair, EVAR only requires a stab incision, shorter procedure time, and early recovery. Although EVAR seems to be an attractive solution with many advantages for AAA repair, there are detailed requirements and many important aspects should be understood before the procedure. In this comprehensive review, fundamental information regarding AAA and EVAR is presented.

IDENTITY-BASED AAA AUTHENTICATION PROTOCOL

  • Kim Dong-myung;Cho Young-bok;Lee Dong-heui;Lee Sang-ho
    • Proceedings of the KSRS Conference
    • /
    • 2005.10a
    • /
    • pp.678-682
    • /
    • 2005
  • IETF suggested AAA for safe and reliable user authentication on various network and protocol caused by development in internet and increase in users. Diameter standard authentication system does not provide mutual authentication and non-repudiation. AAA authentication system using public key was suggested to supplement such Diameter authentication but application in mobile service control nodes is difficult due to overhead of communication and arithmetic. ID based AAA authentication system was suggested to overcome such weak point but it still has the weak point against collusion attack or forgery attack. In this thesis, new ID based AAA authentication system is suggested which is safe against collusion attack and forgery attack and reduces arithmetic quantity of mobile nodes with insufficient arithmetic and power performance. In this thesis, cryptological safety and arithmetical efficiency is tested to test the suggested system through comparison and assessment of current systems. Suggested system uses two random numbers to provide stability at authentication of mobile nodes. Also, in terms of power, it provides the advantage of seamless service by reducing authentication executing time by the performance of server through improving efficiency with reduced arithmetic at nodes.

  • PDF

Utilization of Mediation under KCAB in International Commercial Disputes - Focusing on Comparison with AAA - (국제상사분쟁에서 KCAB 조정의 활용방안 - AAA와의 비교를 중심으로 -)

  • JANG, Eun-Hee
    • THE INTERNATIONAL COMMERCE & LAW REVIEW
    • /
    • v.77
    • /
    • pp.91-112
    • /
    • 2018
  • Mediation is one of several alternatives to litigation or arbitration. It is the most informal of the alternatives and the only one that gives the parties control over the outcome. The mediator in mediation is there to help the parties persuade each other that it is in their best interests to settle. As several advantages of mediation, it is considered as the fastest way to resolve a dispute because procedures associated with litigation are not imported into the process. In mediation, the client's resources are focused on resolving the dispute as opposed to building armaments of evidence to buttress legal and factual positions. The AAA commercial mediation rules and operations in the USA are very successful owing to professional training for mediators and simple procedures for mediation to the public. Comparison with USA mediation, KCAB mediation system has several weak points. KCAB mainly deals with administrative matters related to Foreign Trade Law. Therefore, it is necessary for KCAB to come up with more improved international commercial mediation. For example, mediation should be promoted to the public as who easily rely on litigation or arbitration. Second, Setting a rule for easy access to mediation is needed by bench marking AAA's mediation guidelines and operations. Third, professional mediators should be developed by establishing relevant ADR course in law schools. This article investigated some differences of mediation system between KCAB in Korea and AAA in USA, and present some suggestions in order to promote International commercial mediation in KCAB.

  • PDF

Secure Handoff Based on Dual Session Keys in Mobile IP with AAA (Mobile IP 및 AAA 프로토콜 기반으로 신속성과 안전성을 고려한 듀얼세션키 핸드오프 방식연구c)

  • Choi Yumi;Lee Hyung-Min;Choo Hyunseung
    • Journal of Internet Computing and Services
    • /
    • v.6 no.3
    • /
    • pp.107-119
    • /
    • 2005
  • The Mobile IP has evolved from providing mobility support for portable computers to support wireless handheld devices with high mobility patterns. The Mobile IP secures mobility, but does not guarantee security, In this paper, the Mobile IP has been adapted to allow AM protocol that supports authentication, authorization and accounting for authentication and collection of accounting information of network usage by mobile nodes, For this goal, we propose a new security handoff mechanism to intensify the Mobile IP security and to achieve fast handoff. In the proposed mechanism, we provide enough handoff achievement time to maintain the security of mobile nodes, According to the analysis of modeling result, the proposed mechanism composed the basic Mobile IP along with AM protocol is up to about $60\%$ better in terms of normalized surcharge for the handoff failure rate that considers handoff time.

  • PDF

Boundary Zone Overlapping Scheme for Fast Handoff Based on Session Key Reuse (AAA MIP 환경에서 공유영역 기반 세션키 재사용을 통한 고속 핸드오프 방식 연구)

  • Choi, Yu-Mi;Chung, Min-Young;Choo, Hyun-Seung
    • The KIPS Transactions:PartC
    • /
    • v.12C no.4 s.100
    • /
    • pp.481-488
    • /
    • 2005
  • The Mobile W provides an efficient and scalable mechanism for host mobility within the Internet. However, the mobility implies higher security risks than static operations in fixed networks. In this paper, the Mobile IP has been adapted to allow AAA protocol that supports authentication, authorization, and accounting(AAA) for security and collection for accounting information of network usage by mobile nodes(MNs). For this goal, we Propose the boundary tone overlapped network structure while solidifying the security for the authentication of an MN. That is, the Proposed scheme delivers the session keys at the wired link for MN's security instead of the wireless one, so that it provides a fast and seamless handoff mechanism. According to the analysis of modeling result, the proposed mechanism compared to the existing session key reuse method is up to about $40\%$ better in terms of normalized surcharge for the handoff failure rate that considers handoff total time.