• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.21 no.2
• /
• pp.101-110
• /
• 2011

Recently, an attack to an application incapacitates the intrusion detection rule, the defense policy for a network and database and induces intrusion incidents. Thus, it is necessary to study integration security to ensure the security of an internal network and database from that attack. This article is about building an integration security system to prevent an attack to an application set with intrusion detection rules. It responds to network-based attack through detection, disperses attack with the internal integration security system through virtual clustering and load balancing, and sets up defense policy for attacking destination packets, analyzes and records attack packets, and updates rules through monitoring and analysis. Moreover, this study establishes defense policy according to attacking types to settle access traffic through virtual machine partition policy and suggests an integration security system applied to prevent attack and tests its defense. The result of this study is expected to provide practical data for integration security defense for hacking attack from outside.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2007.05a
• /
• pp.1096-1097
• /
• 2007

We address the data confidentiality for wireless broadband (WiBro) networks. In WiBro, as the channel is wireless in nature, it suffers from passive and active attack. Passive attack, for example is to decrypt traffic based on statistical analysis and active attack is to modify traffic or inject new traffic from unauthorized mobile stations. Due to high mobility, frequent session key distribution is a bottleneck for the mobile stations. In aspect of WiBro, there is a communication between mobile station to base station, and also in mobile station to mobile station. It is expected to ensure data confidentiality while maintaining minimum overhead for the resource constrained mobile stations. In this paper, we proposed a security framework based on the concept of hyper-encryption to provide data confidentiality for wireless broadband networks.

• Journal of the military operations research society of Korea
• /
• v.17 no.1
• /
• pp.159-176
• /
• 1991

The probability of target survival is the most important factor in the target assignment, Most of the studies about it have assumed the case of one target and ane weapon type. Therefore, they can not be applied to the real situation. In this paper. the quantity and type of enemy assets of the friendly force are considered simultaneously. Considered defense type is the coordinated defense with no impact point prediction. The objective function is to minimize the expected total survival value of targets which are scattered in the defense area. The rules of aircraft assignment are as follows : first, classify targets into several groups, each of those has the same desired damage level secondly. select the critical group which has the least survival value in accordance with the additional aircraft assignment, and finally. assign the same number of attack assets against each target in the critical group. In this paper, the attack assets, the escort assets, and the defense assets are considered. The model is useful to not only the simple aircraft assignment problem but also the complicated wargame models.

• Proceedings of the Korean Society of Computer Information Conference
• /
• 2011.06a
• /
• pp.71-74
• /
• 2011

2030년까지 한국에 Smart Grid를 구축할 계획을 가지고 추진하고 있다. Smart Grid는 지능형 전력망으로 기존의 전력망에 IT를 접목시켜 통신을 실시하여 양방향성을 가지게 된다. 기존의 전력망에 부가될 IT전기기기들은 기존에 IT가 지니고 있는 취약점들이 있어 기존의 Smart Grid공격에 노출되어 있다. 본 논문에서는 한국보다 먼저 구축되어서 활용되고 있는 미국의 Smart Grid에 대한 공격사례를 분석한다. 그리고 한국 Smart Grid에 대한 전기IT기기의 취약점을 분석하여, 한국 Smart Grid에 대한 예상 공격을 분석하고, 보안 대책을 제시한다. 본 논문은 한국 Smart Grid에 안정성과 보안성을 갖춘 기술 자료로 활용할 것이다.

• Journal of the Korea Society of Computer and Information
• /
• v.24 no.9
• /
• pp.35-42
• /
• 2019

In this paper, we propose an approach to apply network-based moving target defense into Internet of Things (IoT) networks. The IoT is a technology that provides the high interconnectivity of things like electronic devices. However, cyber security risks are expected to increase as the interconnectivity of such devices increases. One recent study demonstrated a man-in-the-middle attack in the statically configured IoT network. In recent years, a new approach to cyber security, called the moving target defense, has emerged as a potential solution to the challenge of static systems. The approach continuously changes system's attack surface to prevent attacks. After analyzing IPv4 / IPv6-based moving target defense schemes and IoT network-related technologies, we present our approach in terms of addressing systems, address mutation techniques, communication models, network configuration, and node mobility. In addition, we summarize the direction of future research in relation to the proposed approach.

• International Journal of Computer Science & Network Security
• /
• v.21 no.12spc
• /
• pp.415-426
• /
• 2021

The implementation of iris biometrics on smartphone devices has recently become an emerging research topic. As the use of iris biometrics on smartphone devices becomes more widely adopted, it is to be expected that there will be similar efforts in the research community to beat the biometric by exploring new spoofing methods and this will drive a corresponding requirement for new liveness detection methods. In this paper we addresses the problem of presentation attacks (Spoofing) against the Iris Recognition System on mobile devices and propose novel Presentation Attack Detection (PAD) method which suitable for mobile environment.

• Wind and Structures
• /
• v.34 no.5
• /
• pp.437-450
• /
• 2022

Vortex-induced vibration (VIV) is a significant concern when designing slender structures with square cross sections. VIV strongly depends on structural dynamics and flow states, which depend on the conditions of the approaching flow and shape of a structure. Therefore, the effects of the angle of attack on the coupling effects of VIV for a square cylinder are expected to be significant in practice. In this study, the aerodynamic forces for a fixed and elastically mounted square cylinder were measured using wind pressure tests. Aerodynamic forces on the stationary cylinder are firstly discussed by comparisons of variation of statistical aerodynamic force and wind pressure coefficient with wind angle of attack. The coupling effect between the aerodynamic forces and the motion of the oscillating square cylinder by VIV is subsequently investigated in detail at typical wind angels of attack with occurrence of three typical flow regimes, i.e., leading-edge separation, separation bubble (reattachment), and attached flow. The coupling effect are illustrated by discussing the onset of VIV, characteristics of aerodynamic forces during VIV, and interaction between motion and aerodynamic forces. The results demonstrate that flow states can be classified based on final separation points or the occurrence of reattachment. These states significantly influence coupling effects of the oscillating cylinder. Vibration enhances vortex shedding, which creates strong fluctuations in aerodynamic forces. However, differences in the lock-in range, aerodynamic force, and interaction process for angles of attack smaller and larger than the critical angle of attack revealed noteworthy characteristics in the VIV of a square cylinder.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.12 no.6
• /
• pp.2881-2894
• /
• 2018

Cyber attacks are increasing continuously. On average about one million malicious codes appear every day, and attacks are expanding gradually to IT convergence services (e.g. vehicles and television) and social infrastructure (nuclear energy, power, water, etc.), as well as cyberspace. Analysis of large-scale cyber incidents has revealed that most attacks are started by PCs infected with malicious code. This paper proposes a method of detecting an attack IP automatically by analyzing the characteristics of the e-mail transfer path, which cannot be manipulated by the attacker. In particular, we developed a system based on the proposed model, and operated it for more than four months, and then detected 1,750,000 attack IPs by analyzing 22,570,000 spam e-mails in a commercial environment. A detected attack IP can be used to remove spam e-mails by linking it with the cyber removal system, or to block spam e-mails by linking it with the RBL(Real-time Blocking List) system. In addition, the developed system is expected to play a positive role in preventing cyber attacks, as it can detect a large number of attack IPs when linked with the portal site.

• Journal of the Korea Institute of Military Science and Technology
• /
• v.6 no.4
• /
• pp.29-37
• /
• 2003

Using a wind tunnel testing, the aerodynamic load characteristics of an elliptic airfoil was described. The experimental data was obtained for angles of attack $-20^{\circ}$ to $+20^{\circ}$ with $2^{\circ}$ increments at a chord Reynolds number of $0.99{\times}105$ and $2.48{\times}105$. For each test case, chordwise suction pressure distributions and wake surveys were obtained. Static pressure measurements were made over a 10 sec averaging time at a 10 Hz sampling rate. For each case, wake survey was conducted with a pilot-static probe at 1.0c downstream from the trailing edge at very fine spacing to resolve the wake velocity deficit profile. As can be expected, suction pressure coefficient was increased with angle of attack. The normal force, CNmax, appeared peak value at the incidence angle of $12^{\circ}~14^{\circ}$, and the significant increase in profile drag at this range of angles of attack.

• ETRI Journal
• /
• v.33 no.6
• /
• pp.935-944
• /
• 2011

As a growing number of individuals are exposed to surveillance cameras, the need to prevent captured videos from being used inappropriately has increased. Privacy-related information can be protected through video encryption during transmission or storage, and several algorithms have been proposed for such purposes. However, the simple way of evaluating the security by counting the number of brute-force trials is not proper for measuring the security of video encryption algorithms, considering that attackers can devise specially crafted attacks for specific purposes by exploiting the characteristics of the target video codec. In this paper, we introduce a new attack for recovering contour information from encrypted H.264 video. The attack can thus be used to extract face outlines for the purpose of personal identification. We analyze the security of previous video encryption schemes against the proposed attack and show that the security of these schemes is lower than expected in terms of privacy protection. To enhance security, an advanced block shuffling method is proposed, an analysis of which shows that it is more secure than the previous method and can be an improvement against the proposed attack.