• Proceedings of the Korea Information Processing Society Conference
• /
• 2009.11a
• /
• pp.607-608
• /
• 2009

최근 7.7 DDoS 대란과 폭발적인 SPAM 발송과 같은 다양한 봇넷의 악성행위는 정보 시스템에 막대한 악영향을 미친다. 특히, 봇넷의 구조적 특징인 좀비PC의 제어는 네트워크 환경에서는 다양한 악성 행위를 유발한다. 때문에, 봇넷 탐지와 관련한 다양한 연구가 시도되었지만, 탐지의 한계점을 지니고 있다. 즉, 기존의 봇넷 탐지 방법은 임의의 임계값을 설정하고, 그 값을 벗어나는 시점에서 경고를 보내어 탐지하게 된다. 하지만, 전문가에 의한 임계값 설정은 자칫 오탐율과 미탐율을 야기할 수 있다. 따라서, 본 논문에서는 봇넷 탐지를 보다 능동적으로 하기 위하여 특정 타임 윈도우 구간동안의 봇넷이 유발하는 네트워크 트래픽을 분석하고 마르코프 체인을 응용한 학습을 하여 능동적으로 적용 가능한 임계값을 측정 방법론에 대하여 고찰하고자 한다.

• Journal of Forest and Environmental Science
• /
• v.39 no.1
• /
• pp.49-54
• /
• 2023

For unknown reasons, a few trees in a private chestnut orchard in Icheon si, Gyunggi-do suffered leaf chlorosis and growth decline. Based on symptoms, phytoplasma was a probable cause. Leaf samples were collected from two symptomatic and non-symptomatic trees in the orchard for phytoplasma detection. An amplicon of about 1.2 bp size was obtained from both symptomatic trees by PCR with the universal 16S rDNA primers. Sequences of these amplicons were found to have 99% nucleotide sequence identity to the corresponding genomic region of 16SrIII (X-disease group). More than 100 phytoplasma isolates, such as Candidatus phytoplasma pruni, Milkweed yellows phytoplasma, Goldenrod yellows phytoplasma, Tsuwabuki witches'-broom phytoplasma, Candidatus Phytoplasma trifolii, etc. were involved in the list. Phylogenetic analysis revealed that the sequence obtained in this study closely clustered with Candidatus phytoplasma groups. While one of the amplicons shared 91% identity with the Candidatus phytoplasma castaneae, the other shared only 47%. It needs further analysis and investigation to determine the exact taxonomy. Meanwhile, based on the analysis of the sequences, chlorosis, and small leaves were associated with phytoplasma.

• Journal of Korea Multimedia Society
• /
• v.8 no.4
• /
• pp.461-472
• /
• 2005

In this paper, we propose face feature extraction algorithm through stereo image's matching value. The proposed algorithm detected face region by change the RGB color space of skin color information to the YCbCr color space. Applying eye-template from extracted face region geometrical feature vector of feature about distance and lean, nose and mouth between eye extracted. And, Proposed method could do feature of eyes, nose and mouth through stereo image's matching as well as 2D feature information extract. In the experiment, the proposed algorithm shows the consistency rate of 73% in distance within about 1m and the consistency rate of 52%in distance since about 1m.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.14 no.5
• /
• pp.197-202
• /
• 2014

It is used the important method that Oriental doctor determines patient's disease status observing patient's state of tongue in Oriental medicine clinic. In this paper, it developed the how to use the pulse diagnosis and tongue diagnosis based on s mart based electronic acupuncture. It will do objective judgment without wrong diagnosis. In this paper, we developed the algorithm that it automatically determines patient health condition and smart electronic acupuncture kit using fuzzy logic and fuzzy reasoning system were completed. In this paper, Simulation results proved that acupuncture is effective than the traditional method of using electronic intelligence.

• Analytical Science and Technology
• /
• v.15 no.3
• /
• pp.221-228
• /
• 2002

AMX is one of extremely high mutagenic compound produced from the reaction of the chlorine and the organic compound during the disinfection of tap water. In this paper, the chemical derivatization of MX with 2% sulfuric acid-methanol, iso-propanol, sec-butanol and n-butanol derivatives for the GC/MS analysis were tested or compared. Limit of detection for the EI and NCI mode were 25 pg and 1.25 pg, respectively. The good linear calibration curve was obtained the range of 25~2500 pg by EI and NCI

• Korean Journal of Materials Research
• /
• v.19 no.1
• /
• pp.44-49
• /
• 2009

Conjugated nanocrystals using CdSe/ZnS core/shell nanocrystal quantum dots modified by organic linkers and glucose oxidase (GOx) were prepared for use as biosensors. The trioctylphophine oxide (TOPO)-capped QDs were first modified to give them water-solubility by terminal carboxyl groups that were bonded to the amino groups of GOx through an EDC/NHS coupling reaction. As the glucose concentration increased, the photoluminescence intensity was enhanced linearly due to the electron transfer during the enzymatic reaction. The UV-visible spectra of the as-prepared QDs are identical to that of QDs-MAA. This shows that these QDs do not become agglomerated during ligand exchanges. A photoluminescence (PL) spectroscopic study showed that the PL intensity of the QDs-GOx bioconjugates was increased in the presence of glucose. These glucose sensors showed linearity up to approximately 15 mM and became gradually saturated above 15 mM because the excess glucose did not affect the enzymatic oxidation reaction past that amount. These biosensors show highly sensitive variation in terms of their photoluminescence depending on the glucose concentration.

• Journal of Information Processing Systems
• /
• v.17 no.5
• /
• pp.905-917
• /
• 2021

In recent years, edge computing technology consists of several Internet of Things (IoT) devices with embedded sensors that have improved significantly for monitoring, detection, and management in an environment where big data is commercialized. The main focus of edge computing is data optimization or task offloading due to data and task-intensive application development. However, existing offloading approaches do not consider correlations and associations between data and tasks involving edge computing. The extent of collaborative offloading segmented without considering the interaction between data and task can lead to data loss and delays when moving from edge to edge. This article proposes a range segmentation of dynamic offloading (RSDO) algorithm that isolates the offload range and collaborative edge node around the edge node function to address the offloading issue.The RSDO algorithm groups highly correlated data and tasks according to the cause of the overload and dynamically distributes offloading ranges according to the state of cooperating nodes. The segmentation improves the overall performance of edge nodes, balances edge computing, and solves data loss and average latency.

• The KIPS Transactions:PartC
• /
• v.13C no.7 s.110
• /
• pp.821-830
• /
• 2006

As internet worms are spread out worldwide, the detection and filtering of worms becomes one of hot issues in the internet security. As one of implementation methods to detect worms, the Linux Netfilter kernel module can be used. Its basic operation for worm detection is a string matching where coming packet(s) on the network is/are compared with predefined worm signatures(patterns). A worm can appear in a packet or in two (or more) succeeding packets where some part of worm is in the first packet and its remaining part is in its succeeding packet(s). Assuming that the maximum length of a worm pattern is less than 1024 bytes, we need to perform a string matching up to two succeeding packets of 2048 bytes. To do so, Linux Netfilter keeps the previous packet in buffer and performs matching with a combined 2048 byte string of the buffered packet and current packet. As the number of concurrent connections to be handled in the worm detection system increases, the total size of buffer (memory) increases and string matching speed becomes low In this paper, to reduce the memory buffer size and get higher speed of string matching, we propose a string matching scheme without using buffer. The proposed scheme keeps the partial matching result of the previous packet with signatures and has no buffering for previous packet. The partial matching information is used to detect a worm in the two succeeding packets. We implemented the proposed scheme by modifying the Linux Netfilter. Then we compared the modified Linux Netfilter module with the original Linux Netfilter module. Experimental results show that the proposed scheme has 25% lower memory usage and 54% higher speed compared to the original scheme.

• Journal of Advanced Navigation Technology
• /
• v.18 no.6
• /
• pp.569-575
• /
• 2014

Since 2009 the number of users of smart phones and tablet PC is growing exponentially. In particular Apple's iOS and Google's Android OS are the heart of this remarkable growth, most of smart phone and tablet PC are designed to operate based on these two OS. Such increasing use of smart devices has led to changes in the social environment that allows, without the constraints of time and place. However, such development does not supply only ease to do something, even compared to past, financial fraud and information leakage are easier than before by variety of new types of attack for example phishing, pharming, smishing and qshing. So according to this paper, analyzes for smishing attack, propose a countermeasure system of the technical way and proved its higher performance compare to the existing method.

• Korean Journal of Microbiology
• /
• v.45 no.4
• /
• pp.425-429
• /
• 2009

Identification of virulent Bacillus cereus strains was examined by PCR using primers specific for the detection of plcR-papR, which encode regulatory proteins controlling the transcription of virulence factors in B. cereus. Total 96 strains of B. cereus that carried at least one of diarrheal toxin genes including hblACD, nheABC, and cytK showed all positive PCR products, while other 48 Bacillus strains that lacked the toxin genes were plcRpapR-negative. This PCR method targeting the plcR-papR genes appears to be simple and effective in identifying the enterotoxin genes-harboring B. cereus strains.