• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 한국해양정보통신학회 2004년도 춘계종합학술대회
• /
• pp.733-738
• /
• 2004

In a distributed network system, Kerberos certification mechanism is operated by a user in local area on the premise reliability of Kerberos server in another area. But it has a demerit. If security information of certification server between Kerberos servers is released, Kerberos server can not guarantee the reliability. To solve this problem, the proposed mechanism prevents password speculating attack by increasing the random of password certifier through use of distributed password in stead of certification center and certification which was presented by existing Kerberos mechanism. Besides, it used password based certification method which uses secret distributed technique

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 한국정보통신학회 2017년도 추계학술대회
• /
• pp.341-342
• /
• 2017

Control and development systems such as air traffic control systems, road traffic systems, and Korea Hydro &Nuclear Power are the infrastructure facilities of the country, and if the malicious hacking attacks proceed, the damage is beyond imagination. In fact, Korea Hydro & Nuclear Power has been subjected to a hacking attack, causing internal information to leak and causing social problems. In this study, we analyze the environment of the development control system and analyze the status of the convergence security research, which is a recent issue, and propose a strategy system for stabilizing various power generation control systems and propose countermeasures. We propose a method to normalize and integrate data types from various physical security systems (facilities), IT security systems, access control systems, to control the whole system through convergence authentication, and to detect risks through fusion control.

• Korean Journal of Organic Agriculture
• /
• 제16권3호
• /
• pp.259-274
• /
• 2008

This study was designed to analyze the possibility to enter the Chinese market aggressively by giving light on the factors which have effects on the continuous intention of Shanghai consumers to purchase environment-friendly foods, and the purchase of Korean environment-friendly foods. The objects of analysis were the 209 consumers living in Shanghai, China. As for the analysis method, the frequency, percentage, crossing analysis, $X^2$-test and logistic regression analysis were carried out, making use of SPSS PC+ 13.0. The study results are as follows. Firstly, it was identified that the decisive factors, such as good taste, health of family, freshness, food shop in a department store, international quality authentication, diversity of items and number of family members, had effects on the possibility that the consumers in Shanghai, China would purchase environment friendly foods continuously, showing the meaningful variables. Secondly, as for the decisive factors having effects on the possibility to buy Korean environment friendly foods continuously, it was identified that good taste, health of family, freshness and price cutting were the meaningful variables. Therefore, it is necessary that to set up a export promotion strategy to make the Shanghai consumers get interested in Korean environment-friendly foods and choose to buy the foods.

• Journal of the Korea Society of Computer and Information
• /
• 제20권1호
• /
• pp.143-151
• /
• 2015

Biometric technology has been proposed as a new means to replace conventional PIN or password because it is hard to be lost and has the low possibility of illegal use. However, unlike a PIN, password, and personal information there is no way to modify the exposure if it is exposed and used illegally. Therefore, the existing single modality with single biometrics is critical when it expose. However in this paper, we use a multi-modality and multi-biometrics to authenticate between users and TTP or between users and financial institutions. Thereby, we propose a more reliable method and compared this paper with existed methods about security and performance in this paper.

• The Journal of the Korea institute of electronic communication sciences
• /
• 제14권4호
• /
• pp.657-662
• /
• 2019

The power consumption of wearable sensors and electrocardiogram regulators should be very low to extend the network lifetime and anticipated QoS( : Quality of Service) control such as error correction and authentication of data processed by WBAN( : Wireless Body Area Network) nodes is important. Therefore, QoS control is the most urgent concern to implement WBAN in health monitoring regulations. For optimal QoS control, we compare the energy efficiency and the average number of transmissions with IEEE 802.15.6 and the error correction method considering energy efficiency. The performance of the proposed error correction technique shows that the energy efficiency and the transmission rate are improved by adjusting the coding rate appropriately using the channel estimation.

• Proceedings of Korean Society of Archives and Records Management
• /
• 한국기록관리학회 2019년도 춘계학술대회
• /
• pp.61-67
• /
• 2019

Recently, the central government organizations have changed their Business Management System to the cloud-based On-nara Document 2.0. According to this, the National Archives of Korea is spreading a cloud-based records management system. With the development of digital technology, including cloud computing, preservation and utilization of records must be redesigned continuously to be effective and efficient. It is needed that the process and method of the electronic records management will change from simple digitization of paper-based recording to digital technology. This article offers opinions related to the logical transfer, storage and redundancy elimination of digital objects, machine-readable format, big-data analysis, templates of official documents, and authenticity authentication system based on universally unique identifiers (UUID) and hash value.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• 제16권4호
• /
• pp.139-146
• /
• 2006

A Signcryption proposed by Yuliang Zheng in 1997 is a hybrid public key primitive that combines a digital signature and a encryption. It provides more efficient method than a straightforward composition of an signature scheme with a encryption scheme. In a mobile communication environment, the authenticated key agreement protocol should be designed to have lower computational complexity and memory requirements. The password-based authenticated key exchange protocol is to authenticate a client and a server using an easily memorable password. This paper proposes an secure Authenticated Key Exchange protocol using Signcryption scheme. In Addition we also show that it is secure and a more efficient that other exiting authenticated key exchange protocol.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• 제21권2호
• /
• pp.49-60
• /
• 2011

Instant Messenger is one of the most popular communication service when translating message or data each other through Internet. For digital crime investigation, therefore, it is obviously important to obtain communication trace and contents derived from Instant Messenger. This is because that gathering traditional communication histories also have been important until now. However, extracting communication trace and contents are not easy because they are generally encrypted or obfuscated in local system, futhermore, sometimes they are located at server computer for Instant Messenger. This paper researches on extracting communication histories against NateOn, BuddyBuddy, Yahoo! messenger and Mi3 messenger, and obtaining user password or bypassing authentication system to Instant Messenger Service when a user use auto-login option.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• 제20권4호
• /
• pp.53-62
• /
• 2010

In VANETs (Vehicular Ad hoc NETwork), conditional anonymity must be provided to protect privacy of vehicles while enabling authorities to identify misbehaving vehicles. To this end, previous systems provide a mechanism to revoke the anonymity of individual messages. In VANET, if we can trace the movement path of vehicles, it can be useful in determining the liability of vehicles in car accidents and crime investigations. Although route tracing can be provided using previous message revocation techniques, they violate privacy of other vehicles. In this paper, we provide a route tracing technique that protects privacy of vehicles that are not targeted. The proposed method can be employed independently of the authentication mechanism used and includes a mechanism to prevent authorities from abusing this new function.

• International Journal of Computer Science & Network Security
• /
• 제21권1호
• /
• pp.107-118
• /
• 2021

The term Internet of Things (IoTs) refers to the future where things are known daily through the Internet, whether in one way or another, as it is done by the method of collecting various information from various sensors to form a huge network through which people, things and machines are helped to make a link between them at all time and anywhere. The IoTs is everywhere around us such as connected appliances, smart homes security systems and wearable health monitors. However, the question is what if there is a malfunction or outside interference that affects the work of these IoTs based devises? This is the reason of the spread of security causes great concern with the widespread availability of the Internet and Internet devices that are subject to many attacks. Since there aren't many studies that combines requirements, mechanisms, and the attacks of the IoTs, this paper which explores recent published studies between 2017 and 2020 considering different security approaches of protection related to the authentication, integrity, availability and confidentiality Additionally, the paper addresses the different types of attacks in IoTs. We have also addressed the different approaches aim to prevention mechanisms according to several researchers' conclusions and recommendations.