• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.13 no.5
• /
• pp.39-48
• /
• 2003

AAA(Authentication, Authorization, Accounting) protocol is a framework that propose functions of AAA on multiple networks and platforms. AAA protocol is extending from previous RADIUS protocol to Diameter protocol. There are some Diameter applications for variety purpose. Diameter CMS Application makes Diameter messages more secure by using PKI. Diameter CMS Application establish DSA(Diameter Security Association) for end to end security. However the Application has some problems to establish DSA(Diameter Security Association), which can make Diameter system unstable. If one system lose DSA information for some system error - for example, reboot -, the secure communication between two nodes may not be possible. At the application such as MIP, even user registration can't be done. In this paper, we propose a mechannism for DSA re-establishment, and also show the result of the implementation.

• Proceedings of the IEEK Conference
• /
• 2004.08c
• /
• pp.585-587
• /
• 2004

Diameter base protocol is intended to provide an AAA framework for applications such as IP mobility. Currently Diameter base protocol is standardized to RFC 3588, but there are some problems. One of them, path authorization is already argued at IETF WG Mailing List. According to RFC 3588, path authorization function causes inefficient data traffic and conflicts with RFC 3588 itself. In this paper, we analysis these problems about path authorization function and propose more improved solution.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.29 no.3C
• /
• pp.426-435
• /
• 2004

The DIAMETER protocol provides Authentication, Authorization, and Accounting (AAA) transactions across the Internet. SIP(Session Initiation Protocol) will be used for new types of signaling, such as instant messaging and application level mobility across networks. And SIP will be a major signaling protocol for next generation wireless networks. But the Digest authentication scheme is not using a secure method of user authentication in SIP, and it is vulnerable to man-in-the-middle attacks or dictionary attacks. This study focused on designing a SIP proxy for interworking with AAA server with respect to user authentication and security analysis. We compared and analyzed the security aspects of the scenarios and propose two proposals that a response which include the user address and password-based mutual authentication and key agreement protocol. It is claimed to be more secure against common attacks than current scenarios.

• Proceedings of the IEEK Conference
• /
• 2002.07c
• /
• pp.1944-1947
• /
• 2002

The importance of security in WLAN(Wireless LAN) service is very critical, so IEEE organization has made the IEEE 802.1x standard. The IEEE 802.1x standard uses the EAP as authentication protocol which requires AAA(Authentication, authorization, and Accounting) server for authentication & accounting. for the reliable and scalable AAA service, the Diameter protocol has more advanced characteristics than existing radius protocol. So the Diameter protocol can be used for WLAN service provider who has large scale WLAN system and a large number of subscriber. This paper proposes the design of Diameter AAA server for the authentication and accounting of WLAN system which is adopting IEEE 802.1x standard.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.13 no.2
• /
• pp.107-114
• /
• 2003

In this paper, we propose an efficient mutual authentication and key distribution protocol for cdma2000 packet data service which uses Mobile U access method with DIAMETER AAA(Authentication, Authorization and Accounting) infrastructure. The proposed scheme provides an efficient mutual authentication between MN(Mobile Node) and AAAH(home AAA server), and a secure session-key distribution among Mobile If entities. The proposed protocol improves the efficiency of DIAMETER AAA and satisfies the security requirements for authentication and key distribution protocol. Also, the key distributed by the proposed scheme can be used to generate keys for packet data security over 1xEV-DO wireless interface, in order to avoid a session hijacking attack for 1xEV-DO packet data service.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2003.11b
• /
• pp.1313-1316
• /
• 2003

최근에 공공장소에서의 보다 안정적이고 고속의 무선 인터넷 접속에 대한 욕구가 커지면서 무선랜에 대한 수요가 많아지고 있고, 유무선 사업자들은 무선랜 시장을 선점하기 위해서 서비스를 서두르고 있다. 이와 같은 무선랜환경에서 안전하게 사용자를 인증하고 서비스를 제공하기 위한 AAA 프로토콜로 Diameter Protocol 표준이 정의되었다. 이와 같은 Diameter base Protocol 표준의 관리를 위한 MIB 구조가 Diameter Base MIB에 정의되어 있다. 본 논문에서는 무선단말 사용자를 인증시켜 주고 무선랜서비스를 허가해주는 Diameter Server 를 관리하기 위한 관리 시스템을 위의 MIB 을 기준으로 해서 설계하고 구현하였다.

• The Journal of Korean Academy of Prosthodontics
• /
• v.39 no.5
• /
• pp.463-476
• /
• 2001

Since the treatment of edentulous patients with osseointegrated implant was first introduced more than 30 years ago, implant therapy has become one of the most important dental treatment modalities today. Based on the previous experience and knowledge, $Br{\aa}nemark\;Novum^{(R)}$ protocol was introduced with the concept of simplifying surgical and prosthetic technique and reducing healing time recently. This protocol recommends the installation of three 5mm wide diameter futures in anterior mandible and the prefabricated titanium bars for superstructure fabrication. This study was designed to analyze the stress distribution at fixture and superstructure area according to changes of fixture number, diameter and superstructure materials. Four 3-dimensional finite element models were fabricated. Model 1 - 5 standard fixtures (13mm long and 3.75mm in diameter) & superstructure consisted of type IV gold alloy and resin Model 2- 3 wide diameter fixtures (13mm long and 5.0mm in diameter) & superstructure consisted of type IV gold alloy and resin Model 3-3 wide diameter fixtures (13mm long and 5.0mm in diameter) & superstructure consisted of titanium and resin Model 4-3 wide diameter fixtures (13mm long and 5.0mm in diameter) & superstructure consisted of titanium and porcelain A 150N occlusal force was applied on the 1st molar of each model in 3 directions - vertical($90^{\circ}$), horizontal($0^{\circ}$) and oblique($120^{\circ}$). After analyzing the stresses and displacements, following results were obtained. 1. There were no significant difference in stress distribution among experimental models. 2. Model 2, 3, 4 showed less amount of compressive stress than that of model 1. However, tensile stress was similar. 3. Veneer material with a high modulus of elasticity demonstrated less stress accumulation in the superstructure. Within the limites of this study, $Br{\aa}nemark\;Novum^{(R)}$ protocol demonstrated comparable biomechanical properties to conventional protocol.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.30 no.1C
• /
• pp.99-106
• /
• 2005

This Paper suggests the cooperation scenarios between Diameter protocol and Mobile IPv6 protocol. First, this paper designs cooperation scenarios and designs mobility support technology based on the designed scenarios. This paper deanes the interfaces between mobile node and local AAA client using ICMPv6 messages. In addition, this paper designs handoff procedures according to the area, which mobile node moves to.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2004.05a
• /
• pp.1141-1144
• /
• 2004

Diameter Base 프로토콜은 Diameter 노드라면 반드시 지원해야 하는 기본 프로토콜이다. 현재 Diameter Base 프로토콜은 IETF RFC 3588로 표준화되었으나 여전히 논의되어야 할 문제점이 존재하며 IETF WG Mailing List에서 이에 관한 논의가 진행되고 있다. 경로 권한 검증 문제는 이미 IETF WG Mailing List에서 일부 언급되었으나 충분한 논의가 이루어지지 못한 상태이다. 따라서 RFC 3588 내에서 정의한 내용들에 서로 모순되고 비효율적인 기능들이 존재한다. 본 논문에서는 RFC에 새롭게 추가된 기능인 경로 권한 검증 기능의 문제점에 대해 분석하여 표준에 벗어나지 않으며 보다 효율적으로 개선된 방안을 제시한다.

• The KIPS Transactions:PartC
• /
• v.15C no.5
• /
• pp.429-438
• /
• 2008

NGN is a packet-based converged network to support session and non-session services in QoS-enabled broadband transport network. QoS based resource control must be defined to support differentiated services for various network users in NGN. We designed and implemented DIAMETER protocol as the Rs interface, and also defined mapping rules between DIAMETER information elements and SDP(Session Description Protocol) attributes for QoS based resource control in NGN. We selected and implemented DIAMETER protocol among alternate resource control protocols in ITU-T as the Rw interface because of simple interworking method with Rs interface and adequate AAA functionality. We defined mapping rules of messages and information elements between Rs and Rw interfaces for resource control from a service layer to a transport layer. Based on the mapping rule of QoS information elements and the interworking method between Rs and Rw interfaces, we built up a test-bed that support differentiated delivery services.