• Journal of National Security and Military Science
• /
• s.9
• /
• pp.207-240
• /
• 2011

There are many information assurance schemes(i.e., evaluation criteria and methodology) for security assurance of information systems, since the security is one of the most important characteristics in the modem information systems. However, there are confusions among schemes and redundancies of assurance. In this paper, we survey and classify conventional information assurance schemes by view points of assurance targets, life-cycles and nations. We propose three new information assurance schemes as the result of survey. Those are as follows: the schemes of the assurance on the requirement itself which is evaluated and certificated after standardizing the security requirements about the organizations and the applications, on the developing information system, and on the accreditation and certification about new information system. This will be helpful to set up a security assurance of National Defense.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.36 no.3C
• /
• pp.133-139
• /
• 2011

Nowadays, it is considered as an important task to protect digital contents from illegal use and reproduction. In many cases, there are secure servers to authenticate the allowed users and the user authentication process is performed by communication between the servers and users. However, if the number of users and contents are increased, the servers should treat a large amount of authentication loads and the authentication cost will be considerably increased. Moreover, this scheme is not adequate for some players in which only a limited function of communication is deployed. In order to solve this problem, this paper proposes an authentication method which can certificate both the digital contents and players, and prevent illegal reproduction without the certification server. The proposed scheme is secure in the replay attack, the man in the middle attack, and data substitution attack.

• Journal of Internet Computing and Services
• /
• v.15 no.2
• /
• pp.129-142
• /
• 2014

Latest in Smart Grid projects are emerging as the biggest issue that smart meter should meet the security goal and the SW upgrade for compliance with future standard. However, unlike regular equipment, Smart meters should be designed in accordance with the regulation of legal metrology instrument in order to establish a fair trade-based business and unauthorized changes, it is not allowed and it is strictly limited by law. Therefore, this paper propose a new scheme of certification regarding type approval and verification for legal smart meter as analyzing the requirements of a smart meter regarding upgrade and security. This analysis shows that the proposed scheme comply with the regulation and the specification of smart meter by applying it to smart meter with smart card.

• The Journal of the Korea Contents Association
• /
• v.14 no.11
• /
• pp.533-540
• /
• 2014

As for the application system or the user authentication scheme that is used in the system, various technologies including simple ID/PW, certificate, fingerprint/iris, phone, security card, and OTP are being used. But simple ID/PW and phone certification lack security features. As for the certificate, fingerprint/iris, and security card/OTP, the weakness in security has been quite strengthened, but there are costs and complexity involved to use these. This paper proposes a new measure of much safer and low-cost user authentication that improves the security level and uses mobile external storage media such as USB that people commonly have.

• Journal of Korea Multimedia Society
• /
• v.13 no.8
• /
• pp.1202-1211
• /
• 2010

The connection between devices in Ad-hoc network a network based on trust. Because a temporary device frequently join or leave, the authentication and security technology should be prepared for malicious device of a third-party attacks. The authentication scheme with the existing certification and ID, and the security technology using symmetric key and the public key is used. Therefore, in this paper we proposed two devices not having shared information use to generate each other's authentication ID. The use of authentication ID can establish the mutual trust and, provide security and efficiency for communication uses to generate a symmetric key.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.31 no.1C
• /
• pp.93-101
• /
• 2006

Proxy signature schemes based on delegation of warrant are frequently studied in these days. Proxy signature schemes that used in these days have some problems about the security. Especially, it is difficult to prevent misuse of certification and private key. In this thesis, we propose the more stronger security structure by turning the point from original signer with proxy signer to original signer with verifier, and the proposed protocol is more stronger than previous scheme and can be applied to various PKI based application.

• Convergence Security Journal
• /
• v.11 no.6
• /
• pp.37-44
• /
• 2011

VANET(Vehicular Ad-hoc Network) is a kind of ad hoc networks consist of intelligence vehicular ad nodes, and has become a hot emerging research project in many field. It provide traffic safety, cooperative driving and etc. but has also some security problems that can be occurred in general ad hoc networks. Also, in VANET, vehicles shoul d be able to authenticate each other to securely communicate with network-based infrastructure, and their locations and identifiers should not be exposed from the communication messages. This paper proposes V2I(Vehicular to Infra structure) authentication protocol that anonymity and untraceability of vehicular using Error Correcting Code that ge nerate encoding certification using generation matrix. The proposed scheme based on ECC resolves overhead problems of vehicular secure key management of KDC.

• Convergence Security Journal
• /
• v.12 no.6
• /
• pp.77-84
• /
• 2012

Recent Security Programs are widely used to improve the security of Client Systems in the Web authentication. Security Program is provide the function of the Keyboard Security and Certificate Management, Vaccines, Firewall. in particular, This Security Program has been used Financial Institutions and Government Agencies, and some private corporate Home Page. and ActiveX is used to install the Security Program. but Security Programs caused by several security vulnerabilities and problems as they appear, are threat to the stability of the Client System. Therefore, This paper will be analyzed through Case Studies and Experiments to the Vulnerabilities and Problems of Security Program and This Is expected to be utilized to further improve the performance of the Security Program and the building of a new Certification Scheme for material in the future.

• New & Renewable Energy
• /
• v.9 no.1
• /
• pp.33-43
• /
• 2013

The objective of this paper is to provide a review on the latest development on the main initiative and approaches for the sustainability criteria for biofuels. A large number of national and international initiative lately experienced rapid development in the review of the biofuels targets announced in the European Union (EU), United States (US) and other countries worldwide. The global biofuel targets are likely to have a strong impact on land use and agricultural markets. Although biofuels production provides new options for using agricultural crops, there are environmental, social and economic concerns associated with biofuel production. The diversity of feedstock, large number of biofuels pathway an their complexity lead to a high uncertainty over the greenhouse gas (GHG) performances of biofuels, in terms of GHG emission reductions compared to the fossil fuels, expecially if land use change is involved. This paper describes an overview of current status of ongoing certification initiative in Europe and worldwide for biofuels sustainability. It also provides mandatory requirements as part of an sustainability scheme in EU, United Kingdom, US and international approaches and should be reviewed to introduce based on global trends in Korea.

• Journal of the Korean housing association
• /
• v.24 no.1
• /
• pp.11-20
• /
• 2013

The purpose of the study was to develop a classification of management for the qualitative improvement of the management of multi-family housing. The date were analyzed using the Excel program in terms of frequency and, criticality analysis in order to draw items stage by stage. The process of research was as follows: The first process drew classification of types using the content analysis of the documented studies. The second process examined subcategories according to classification of types via interviews of supervisors. Further, the criticality analysis between the two items was examined. Additionally, when this study surveys and analyzes the satisfactions and importance of management on the basis of the classification, it can have an effect on management by reflecting the result. In conclusion, the classification of the management of multi-family housing will make up the improvement scheme of supplement education, certification related management and management regulations on the characteristics of multi-family housing by types of houses in the future.