• 한국정보통신학회논문지
• /
• 제21권7호
• /
• pp.1411-1419
• /
• 2017

PKI(Public Key Infrastructure) 인증은 개인키 소지(possession)와 개인키 보호 패스워드 지식(knowledge)이라는 2 요소 인증(2 factor authentication) 능력과 안전한 공개키 암호 프로토콜을 통해 인터넷 거래의 신뢰 인프라 구축에 많은 기여를 해왔다. 하나의 인증서로 모든 PKI 사이트를 접근할 수 있는 점도 PKI 인증의 활성화에 기여하였다. 그럼에도 불구하고 인증서 인프라 구축 비용, 인증서 관리에 따른 사용자 불편함, 그리고 개인키 보호 패스워드 관리의 어려움 등에 따른 여러 가지 문제점들이 노출되어 왔다. 최근에 주목받고 있는 FIDO(Fast IDentity Online) 인증은 PKI 인증과 같이 공개키 암호 프로토콜에 기초한 강력한 인증 서비스를 제공하면서도 사용자별 인증서 발급이 불필요하고, 생체 인증 등과 결합하여 안전하고 편리한 인증 서비스 제공을 추구하고 있다. 본 논문은 PKI 인증과 FIDO 인증의 동작 방식을 구체적으로 비교하여 각각의 장단점을 분석하고, 그에 따른 각각의 응용 분야를 제시하는 데 목적이 있다.

• 디지털산업정보학회논문지
• /
• 제11권3호
• /
• pp.53-62
• /
• 2015

Recently, number of tablet or Smartphone users increased significantly in domestic and around the world. But violation of personal information such as leakage, misuse and abuse are constantly occurring by using mobile devices which is very useful in our society. Therefore, in this paper it will talk about the problems in the network environment of the mobile environment such as tablet and Smartphone, Mobile Malware, hacking of the public key certificate, which could be potential threat to mobile environment. This thesis will research for people to use their mobile devices more reliable and safer in mobile environment from invasion and leakage of personal information. In order to use Smartphone safely, users have to use Wi-Fi and Bluetooth carefully in the public area. This paper will research how to use App safely and characteristic of risk of worm and Malware spreading. Because of security vulnerabilities of the public key certificate, it will suggest new type of security certification. In order to prevent from the information leakage and infect from Malware in mobile environment without knowing, this thesis will analyze the improved way to manage and use the mobile device.

• 무역상무연구
• /
• 제70권
• /
• pp.159-179
• /
• 2016

Companies do not be resolved by the FTA services of external aid should be operational by assigning dedicated personnel inside the company. FTA is a choice, not an essential trade agreement requirements. If the exporter contracts to provide a certificate of origin in trade agreements, it shall issue a certificate of origin of goods originating management is performed. When considering the future trend of spreading wide FTA, it should be extended to one year to take advantage of the FTA Certificate of Origin environments utilizing a comprehensive environment for regional countries that require proof of origin between certain countries, such as current. FTA utilization of the future is to utilize the GVC(Global Value Chain) efficiently. In other words, the expansion of the consumer market and take advantage of an efficient production base across borders. These environmental changes are needed development of the FTA utilization promotion and FTA experts. The experts studying how to procure raw materials or intermediate goods exports in a variety of regional foreign countries, to meet the rules of origin is required for a successful FTA utilization. One of the objectives of Origin managers are qualified experts in the country of origin can take advantage of the FTA plan. Therefore, managers of origin shall collect their ability to expand the understanding and information about the industry as an international business perspective beyond the Certificate of Origin. In addition, it should be in their best learning expertise for the introduction and development of country of origin control system in an effort to effectively perform its international FTA utilization. Once the FTA is more widespread in the future and build a common origin information it must not be disconnected until the export enterprises from terminal manufacturers systematically. Therefore origin management is preferred by expanding the knowledge base of teaching and learning in the common sense to the universal subject of specialization from professional schools to promote the relevant departments so that they can be opened in a college or university. An FTA hub linking East and West, also need the confidence that in order to become a center of Glabal Supply Chain Using an FTA Certificate of Origin and stable environment for importers to import products from the country offers. Certificate of Origin and all of them thoroughly exporters and companies related to the administration of origin and should create an atmosphere that can effectively respond to the origin verification. Korea shall endeavor to elicit a geopolitical value (FTA Hub), as well as securing a competitive advantage in the global industry leverage, trading at a reasonable price competitive products thereby enhancing production and economic growth through the FTA.

• 한국정보보호학회:학술대회논문집
• /
• 한국정보보호학회 2002년도 종합학술발표회논문집
• /
• pp.495-498
• /
• 2002

The need for network protection, accounting and resource management in foreign administrative domain requires appropriate security services. In this paper, we propose an access control protocol to support the authentication between mobile node and visiting subnet. Our hybrid way of approach aims to reduce computational overhead and minimize the use of network bandwidth. We also propose non-certificate based public-key cryptography to provide non-repudiation, which does not require CRL retrieval and certificate validation.

• International Journal of Quality Innovation
• /
• 제7권2호
• /
• pp.69-82
• /
• 2006

Organisations worldwide strive to develop their management systems for business functions, ranging from quality and environment to safety, information security and social responsibility. During the latest decade a considerable amount of these efforts has been concentrated on introducing and applying standards such as the ISO 9001 and ISO 14001. The need for Integrated Management Systems (IMS) often arises as a result of decisions to implement Environmental Management System (EMS) and/or an occupational health and safety management system in addition to a Quality Management System (QMS). At the end of 2003, approximately 3200 organisations in Sweden had an ISO 9001 certificate, and approximately 3400 organisations had a certificate based on an EMS. Dealing with separate management systems and ensuring that they align with the organisation's strategies and goals, has proved difficult. Owing to the large number of organisations certified according to multiple types of systems, an increasing number of organisations are establishing IMS. There are examples of companies, which chose to integrate EMS and QMS into a co-ordinated implementation approach, and although sparse, the research within this area indicates potential benefits of using an integrated approach. This paper presents both a theoretical and an empirical investigation with the aim to elucidate problems related to the integration of management systems. Furthermore, the paper will present recommendations for succeeding in such integrations and, hence, contributing to an increased understanding on how IMSs should be designed and implemented.

• 정보보호학회논문지
• /
• 제14권6호
• /
• pp.15-24
• /
• 2004

인터넷과 정보통신의 발달과 더불어, 공개키 기반구조를 이용한 전자상거래가 광범위하게 사용하고 있으며, 또한 웹 응용 및 DB 시스템에 대한 접근제어에 관한 연구가 활발히 진행되고 있다. 공개키 인증서에 대한 검증방법으로는 CRL, OCSP, SCVP 등의 방법이 있으나, PKI 기반구조에서 사용되고 있는 인증서 검증방법이 권한제어를 필요로 하는 PMI 시스템에서 적용되기 위해서는 두개의 인증서에 대한 검증방법이 서로 연계되어야 한다. 왜냐하면 속성인증서는 권한제어를 위한 사용자의 속성정보를 저장하고 있는 반면에, 서명, 암호화 기능 등에 사용될 수 있는 공개키 정보를 포함하지 않고 있기 때문이다. 본 논문에서는 이와 같은 PKC와 PMI 간의 인증서 사용에서의 문제점을 분석하고 이를 해결하기 위하여 PMI 기반에서의 속성인증서를 중심으로 한 통합인증서 검증모델을 제안한다.

• 품질경영학회지
• /
• 제33권2호
• /
• pp.13-21
• /
• 2005

Most organizations adopt a process-based approach to manage their operations and now business process management(BPM) is a well-established concept. Because ISO 9001:2000 has been influenced by BPR and it also emphasizes process based, BPM can get together with ISO 9001:2000. Korea Institute of Science and Technology Information has taken ISO 9001:2000 certificate in November 11, 2003 and now implements quality management systems based on BPMS. We call it KQMS(KISTI Quality Management System). KQMS based on BPMS is a new example in field of ISO quality management and is expected to support process management well.

• 정보보호학회논문지
• /
• 제18권5호
• /
• pp.83-91
• /
• 2008

ISO/IEC 9594-8은 공개키 인증서 프레임워크와 속성 인증서 프레임워크를 정의하고 있다. 속성 인증서 프레임워크에서 권한 관리 기반 구조(PMI)를 다루고 있다. 권한 관리 기반 구조에서는 권한 관리를 위하여 속성 인증서를 사용함에 있어서 권한의 할당 및 명세를 독립적으로 하기 위하여 역할 할당 인증서와 역할 명세 인증서를 사용한다. 역할 명세 인증서는 권한의 명세를 포함하며, 네트워크 환경의 권한 관리를 위한 내용을 담고 있다. 신뢰도가 낮은 네트워크 환경의 권한 관리는 잠재적으로 장애가능성이 있는 노드와 에지를 포함하는 환경에서 권한 정보 전송의 신뢰성과 효율성을 얻고자하는 것이다. 각 노드는 수집된 역할 명세 관계 정보를 기반으로 하여 계층적으로 연결된 역할 명세의 권한 구조 트리를 구성한다. 본 논문에서는 역할 명세 인증서의 트리 구조화를 통한 권한 관리 비용을 계산하고 권한의 생산 및 갱신에 따른 오버헤드를 줄이도록 한다. 규모 확장성을 위해 멀티캐스팅 패킷을 사용하며, 네트워크 통신의 패킷 손실률과 네트워크에 참가 및 이탈을 반복하는 컴퓨팅 노드의 신뢰도를 감안하여 관련 성능을 분석하여, 제안된 구조의 권한 관리 기법이 보다 나은 성능을 가짐을 보인다.

• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2005년도 추계학술발표대회 및 정기총회
• /
• pp.659-662
• /
• 2005

Most organizations adopt a process-based approach to manage their operations and now business process management(BPM) is a well-established concept. Because ISO 9001:2000 has been influenced by BPR and it also emphasizes process based. BPM can get together with ISO 9001:2000. Korea Institute of Science and Technology Information has taken ISO 9001:2000 certificate in November 11, 2003 and now implements quality management systems based on BPMS. We call it KQMS(KISTI Quality Management System). KQMS based on BPMS is a new example in field of ISO quality management and is expected to support process management well.

• 정보처리학회논문지C
• /
• 제18C권6호
• /
• pp.379-388
• /
• 2011

의료정보는 환자에게 중요한 개인정보로써 반드시 보호돼야 한다. 특히 전자의무기록에 접근할때, 의료인의 강화된 신원확인에 대한 인증방식이 필요하다. 기존의 공인인증서 기반 인증모델은 개인키 관리, 권한위임 등 문제점으로 전자의무기록의 특성을 반영하지 못했다. 본 논문에서는 전자의무기록 시스템에 의료인이 접근하는 경우 지문인식 기반 인증 모델을 적용하여 강화된 인증방식을 제안한다. 전자의무기록의 지문인증 모델은 의료업무의 특성을 반영하여 개인키 관리, 권한위임 문제를 원천적으로 해결하였다.