• Proceedings of the KIEE Conference
• /
• 2005.05a
• /
• pp.224-226
• /
• 2005

Grid computing enables the fundamental computing shift from a localized resource computing model to a fully-distributed virtual organization with shared resources. In the grid computing environment, grid users usually get access rights by mapping their credential to local account. The mapped total account is temporally belongs to grid user. So, data on the secondary storage, which is produced by grid operation, can increase the load of system administration or can issue grid user's privacy. In this paper, we design a data management system for grid user to cover these problems. This system implements template account mechanism and manages local grid data.

• Journal of Auto-vehicle Safety Association
• /
• v.13 no.1
• /
• pp.31-37
• /
• 2021

SCMS is a security credential management system for V2X communication, which performs generation/ provision/validation of device's security certificates. In this paper, we will explain about the main functions of SCMS and the role of each institution, and propose the following improvement measures in the process of establishing the Korean V2X security certification system. First, connection scheme of ERA (Enrollment certificate RA) between SCMS and Vehicle Manager Information System (VIMS) will be proposed. Second part is the problem of certificate revocation and proposal of improvements.

• Journal of Industrial Convergence
• /
• v.21 no.5
• /
• pp.133-142
• /
• 2023

In recent years, the problem of academic credential falsification is not simply the manipulation of certificates generated by educational institutions, but also the difficulty of trusting automated relationship verification and verification itself, such as falsely recording completion as graduation while still in school. This is due to the lack of sharing of educational background databases among university institutions and the establishment/operation of independent systems that make it difficult to track educational backgrounds. This study designs and implements an E-AV model for academic credential verification centered on university institutions. It summarizes and stores the linked information on the existing academic background in an encrypted database and implements it with web standard technology considering the compatibility and scalability of the existing system. The results of sample data verification show that it improves safety against forgery and complies with storage space and execution performance. This study aims to contribute to the improvement of online verification services such as academic records management in domestic universities.

• Journal of information and communication convergence engineering
• /
• v.6 no.3
• /
• pp.348-352
• /
• 2008

In distributed computing paradigm, mobile surrogate systems migrates from on host in a network to another. However, Mobile surrogate system have not gained wide acceptance because of security concerns that have not been suitably addressed yet. In this paper, we propose a security framework based on Grid Proxy Gateway for mobile Grid service. The current Grid Security Infrastructure is extended to mobile computing environments. The surrogate host system designed for mobile Personal Digital Assistant (PDA) users can access the certified host and get his proxy credential to launch remote job submission securely.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.1
• /
• pp.111-122
• /
• 2018

Using OAuth protocol, third-party applications on the Android operating system use user's credentials or access tokens that have access authority on user's resources to gain user's account and personal information from account information providers. These credentials and token information are stored in the device by the OAuth data management method provided by the Android operating system. If this information is leaked, the attacker can use the leaked credential and token data to get user's personal data without login. This feature enables the digital forensic investigator to collect data directly from the remote server of the services used by the target of investigation in terms of collecting evidence data. Evidence data collected at a remote location can be a basis for secondary warranties and provide evidence which can be very important evidence when an attacker attempts to destroy evidence, such as the removal of an application from an Android device. In this paper, we analyze the management status of OAuth tokens in various Android operating system and device environment, and show how to collect data of various third party applications using it. This paper introduces a method of expanding the scope of data acquisition by collecting remote data of the services used by the subject of investigation from the viewpoint of digital forensics.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2023.05a
• /
• pp.17-18
• /
• 2023

Since March 15, 2022, the korea coast guard has revised the qualification standards for VTSO so that they can take the VTSO recruitment test under the korea coast guard without boarding experience to diversify their recruitment routes. By this study, we looked into VTS working circumstances and reviewed important provisions about enactment and revision of VTS regulations and VTS certificate system so far to compare and analyze pros and cons of each control task performance method by illustrations which are occasions in both home and foreign control operation. And also, I suggest ways to improve VTSO task in future make a VTSO credential demonstration system settle down successfully.

• Journal of Navigation and Port Research
• /
• v.33 no.4
• /
• pp.283-288
• /
• 2009

To improve maritime security and enhance international shipping commerce within US ports in addition to ISPS (International Ship and Port Facility Security Code), the TWIC (Transportation Worker Identification Credential) program is working on the maritime field from the October 15, 2008 in the United States. In this paper, the program is reviewed and investigated in terms of goal, benefit, solution, and related legislation so forth In addition, other maritime security programs including MMD (Merchant Mariner Document), FAST (Free and Secure Trade), SIDA (Security Identification Display Areas). and Air Cargo security program was analyzed and compared in order to obtain relationship and difference with the program in terms of enrollment frequency, list and method of security check, and profile of each program As a result of this paper, the program is mostly to improve maritime security, protect individual privacy, and enhance commerce rather than other programs.

• Journal of KIISE:Information Networking
• /
• v.30 no.3
• /
• pp.387-396
• /
• 2003

In this paper, we present more efficient Protocol than that of Ford and Kaliski. We use RSA in the roaming protocol and it Plays decisive role to reduce the total time cost. We show that our protocol is safe from various attacks. We present the performance of our protocol and verify that This protocol needs fewer secure channel like SSL than other protocols.

• Asian Oncology Nursing
• /
• v.10 no.1
• /
• pp.103-111
• /
• 2010

Purpose: This study was undertaken to establish the framework for development of the curriculum of genetics in Nursing Education. Methods: The Internet search, literature review of the US system of genetic nurses, genetic graduate nursing education programs and curricula for nurse in Korea were reviewed and analyzed. Results: American Nurses genetic system consists of APNG and the GCS and all the APNG credential provided by the GNCC of ISONG. The curriculums of genetic nursing education in the US are mainly conducted in of master's program and genetically related subjects consists of basic genetics subjects, basic applied genetics subjects, genetics in nursing subjects and practical training subjects. Lastly a genetic nursing education program in Korea 44 hr of lectures and practical training of 4 hr is composed of basic genetics, genetic cancer, genetics in nursing and practicum in the computer lab and online include family history assessment, pedigree construction, breast and colorectal cancer risk calculations, and ELSI discussions. Conclusion: This study suggested that genetic nursing education course needs in master's program as detailed subjects. Also the establishment of the genetic nurse system is an urgent needed.

• Journal of Korea Multimedia Society
• /
• v.14 no.8
• /
• pp.1029-1040
• /
• 2011

Electronic identity (e-ID) card based on smartcard is a representative identity credential for on-line and off-line personal identification. The e-ID card can store the personal identity information securely, so that the information can be accessed fast, automated identity verification and used to determine the cardholder's authorization to access protected resources. Due to such features of an e-ID card, the number of government organizations and corporate enterprises that consider using e-ID card for identity management is increasing. In this paper, we present an authentication framework for access control system using e-ID cards by discussing the threat environment and security requirement against e-ID card. Specifically, to accomplish our purpose, we consider the Personal Identity Verification system as our target model.