• Title/Summary/Keyword: HTTP protocol

Search Result 201, Processing Time 0.026 seconds

Two-Pathway Model for Enhancement of Protocol Reverse Engineering

  • Goo, Young-Hoon;Shim, Kyu-Seok;Baek, Ui-Jun;Kim, Myung-Sup
    • KSII Transactions on Internet and Information Systems (TIIS)
    • /
    • v.14 no.11
    • /
    • pp.4310-4330
    • /
    • 2020
  • With the continuous emergence of new applications and cyberattacks and their frequent updates, the need for automatic protocol reverse engineering is gaining recognition. Although several methods for automatic protocol reverse engineering have been proposed, each method still faces major limitations in extracting clear specifications and in its universal application. In order to overcome such limitations, we propose an automatic protocol reverse engineering method using a two-pathway model based on a contiguous sequential pattern (CSP) algorithm. By using this model, the method can infer both command-oriented protocols and non-command-oriented protocols clearly and in detail. The proposed method infers all the key elements of the protocol, which are syntax, semantics, and finite state machine (FSM), and extracts clear syntax by defining fine-grained field types and three types of format: field format, message format, and flow format. We evaluated the efficacy of the proposed method over two non-command-oriented protocols and three command-oriented protocols: the former are HTTP and DNS, and the latter are FTP, SMTP, and POP3. The experimental results show that this method can reverse engineer with high coverage and correctness rates, more than 98.5% and 99.1% respectively, and be general for both command-oriented and non-command-oriented protocols.

An Implementation of Web-based Client/Server Architecture using Distributed Objects (분산 객체를 이용한 웹기반 클라이언트 / 서버 구조의 구현)

  • 박희창;이태공
    • Journal of the military operations research society of Korea
    • /
    • v.23 no.2
    • /
    • pp.25-44
    • /
    • 1997
  • Internet users been rapidly increased due to the convenient GUI environment. Current Web-based HTTP/CGI client/server architecture has several problems such as the CGI bottleneck, no maintaince of state, and no load balancing. However, with Java and CORBA technologies called“Object Web technology”, we can solve them because Java is not only a mobile code but also a platform-independent code, and CORBA has ability to build distributed object and language-independent object model. The goal of “Object Web technology”is to create multivendor, multiOS, multilanguage“legoware”using objects. This paper implement“Book Search System”which is Web-based client/server architecture using distributed objects. Environments of this implementation are Hangul Windows NT(included IIS) server, Hangul Windows 95 client, Visigenic's VisiBroker for Java 1.2 which is a product of CORBA 2.0, HTTP protocol on TCP-IP-based, Sybase SQL Anywhere 5.0 database server, and the interface between application server and database is JDBC-ODBC bridge middleware.

  • PDF

Design and Implementation of Filtering Management Scheme for Synchronization in the Realtime RFID Middleware System (실시간 RFID 미들웨어시스템에서의 동기화를 고려한 필터링관리 기법의 설계 및 구현)

  • Park, Byoung-Seob
    • The Journal of the Korea Contents Association
    • /
    • v.7 no.8
    • /
    • pp.50-58
    • /
    • 2007
  • We design a filtering management scheme with synchronization function under a realtime RFID middleware system for larger-scale data processing. The application interface(AI) is to support a various access protocol, HTTP, XML, JMS, and SOAP for the RFID applications. Generally, the synchronization problem is occurred in multiple accessing of clients for single filtering file. In this paper, we implement a filtering management scheme supporting the synchronization using the filter management process, and then demonstrate the RFID middleware filtering scheme.

Design and Implementation of SOAP-based Marketplace Agent (SOAP을 기반으로 한 마켓플레이스 에이전트 설계와 구현)

  • 최유순;소경영;신현철;한성국;박종구
    • Journal of the Korea Institute of Information and Communication Engineering
    • /
    • v.6 no.2
    • /
    • pp.190-199
    • /
    • 2002
  • It is being continued that studies is to supply users with various web service easily and simply. XML, extensible mark up language for web has been developed, and WSDL is provided for web service to UDDI registry in order to more efficient usage. SOAP protocol can be used for firewall endpoint because it uses HTTP as transfer mechanism. In this paper, we are studied dealing with installing agent in marketplace and communicating among service supplier and UDDI. Then agent through SOAP to provide exact and prompt service to demands of users.

Technique of JAVA in GIS on the WWW (WWW의 GIS에 있어서 JAVA 활용기법)

  • Kang, In-Joon;Lee, Jun-Seok;Choi, Chul-Ung
    • Journal of Korean Society for Geospatial Information Science
    • /
    • v.4 no.1 s.6
    • /
    • pp.17-21
    • /
    • 1996
  • To realize GIS on internet two methods are possible. One is using java language and the other is using window API that interface with internet WWW HTTP protocol. GIS program needs to extract, classify, store in various geospatial data. But WWW HTML are statical and Impossible to input multi points and area selectioning. This study applied JAVA in Web GIS so that may handle various geographic data on internet, communicate interactively GUI interface and present, modify and powered with various means of cartographic visualization

  • PDF

A SOAP Architecture based on Components (컴포넌트를 기반으로 한 SOAP 구조)

  • Lee, Hee-Kwon;Seo, Hee-Suk;Kim, Hee-Wan
    • Journal of the Korean Society for Industrial and Applied Mathematics
    • /
    • v.10 no.1
    • /
    • pp.71-82
    • /
    • 2006
  • SOAP presents a protocol to realize efficient call of each components. It is based on XML and HTTP communications and existed on the network system. In this paper, An example of the system is given through XML web service and components which are consist of .net structure. We built a Knowledge Management System which shows various uses of components. A pattern is proposed to create objects though reuse of existing components.

  • PDF

Synchronization method of N-Screen service over MPEG-DASH (MPEG-DASH를 이용한 N-Screen 서비스 동기화 방안)

  • Park, JungWook;Jo, Minwoo;Kim, Kyuheon
    • Proceedings of the Korean Society of Broadcast Engineers Conference
    • /
    • 2012.11a
    • /
    • pp.203-206
    • /
    • 2012
  • 본 논문은 HTTP protocol을 이용한 미디어 Streaming 서비스 표준인 MPEG-DASH(Dynamic Adaptive Streaming over HTTP)를 기반으로 한 N-Screen 서비스 동기화 방안을 제시한다. N-Screen 서비스란 다수의 미디어 Device를 이용하여 하나의 콘텐츠들을 공유 및 전송하는 서비스를 뜻한다. 이는 MPEG-DASH 표준 기술을 활용함으로써 보다 효율적인 서비스 이용이 가능하다. DASH는 다수의 품질의 같은 영상들을 시간별로 분할하여 Server에서 보유하여 한 Device에게 네트워크 환경에 맞춰 가장 적합한 Segment들을 전달 및 전환함으로써 끊기지않는 Streaming 서비스가 가능하다. 하지만 현재 MPEG-DASH 표준기술에서는 N-Screen 서비스에 대한 활용방안 시나리오가 재정되어 있지 않아 다수의 Device에서 Segment를 끊김없는 Media Streaming 서비스를 지원하기 위한 방안이 필요하다. 이를 위해 본 논문에서는 한 Device가 다른 Device에게 N-screen을 위한 동기화 정보를 전송함으로써 특정 콘텐츠가 끊기지 않고 연이어 볼 수 있는 동기화를 이룰 수 있는 방안을 대한 서비스 시나리오를 제시한다.

  • PDF

안전한 웹 서비스를 위한 SOAP 메시지 보안기술 연구

  • 박배효;이재일
    • Review of KIISC
    • /
    • v.14 no.4
    • /
    • pp.10-18
    • /
    • 2004
  • 상호운영성, 유연성, P2P(피어투피어), 역동성, 확장성 등 웹 서비스가 지닌 다양한 특성으로 인하여 웹 서비스 보안은 안전한 웹 서비스 운영을 위한 핵심요소라 할 수 있다. 웹 서비스의 기본 구성은 서비스 수요자와 제공자, 검색소로 구성되며 WSDL(Web Service Definition Language), UDDI(University Discovery and Integration of Business for Web), SOAP(Smple Object Access Protocol)등 세 개의 표준으로 서비스는 이루어진다. 이 중에서 특히 메시지 교환을 담당하는 통신 프로토콜인 SOAP는 웹 서비스 보안의 중심에 있으며, 웹 서비스 보안은 SOAP 메시지의 사용자 인증과 무결성, 기밀성을 보장하는 것으로 정의할 수 있다. SOAP는 HTTP를 통해 일반적으로 전송되므로 HTTP 상의 모든 위협을 가지게 되며 전송계층에 기반을 둔 보안을 생각할 수 있지만, 사실상 웹 서비스는 다수의 중간 중개자를 가질 수 있는 구조이기 때문에 단대단 보안(메시지 레벨의 보안)이 반드시 필요하다. 또한, 웹 서비스 상에서 단대단 보안을 보장하기 위해서는 각 객체와 키와의 연결이 중요하며 특정 객체에게 발행한 보안토큰의 신뢰성 화보를 위한 메카니즘을 필요로 한다. 본 논문에서는 이러한 보안 요구사항을 만족하기 위하여 XML 메시지 보안을 위한 전자서명 및 암호화 표준과 SOAP을 위한 W3C, OASIS의 통합표준을 중심으로 SOAP 메시지 보안기술을 분석하고자 한다.

Protocol Implementations for Web Based Control Systems

  • Shoo Sugoog
    • International Journal of Control, Automation, and Systems
    • /
    • v.3 no.1
    • /
    • pp.122-129
    • /
    • 2005
  • We describe the MiniWeb[7] TCP/IP stack (mIP), which is an extremely small implementation of the TCP/IP protocol suite running 8 or 32-bit micro controllers intended for embedded control systems, and satisfying the subset of RFC1122 requirements needed for host­to-host interoperability over different platforms. Our TCP/IP implementation does sacrifice some of TCP's mechanisms such as fragmentation, urgent data, retransmission, or congestion control. Our implementation is applicable to web based controllers. The network protocols are tested in operational networks using CommView and Dummynet where the various operational parameters such as bandwidth, delay, and queue sizes can be set and controlled.

Research on a New Approach to Enhance IoT Security Using Blockchain Technology (블록체인 기술을 이용하여 IoT 보안 강화를 위한 새로운 접근방법 연구)

  • Hong, Sunghyuck
    • Journal of Digital Convergence
    • /
    • v.17 no.12
    • /
    • pp.235-241
    • /
    • 2019
  • The structure of the IoT can be divided into devices, gateways, and servers. First, the gateway collects data from the device, and the gateway sends data to the server through HTTP protocol, Websocket protocol, and MQTT protocol. The processing server then processes, analyzes, and transforms the data, and the database makes it easy to store and use this data. These IoT services are basically centralized structures with servers, so attacks on the entire platform are concentrated only on the central server, which makes hacking more successful than distributed structures. One way to solve this problem is to develop IoT that combines blockchain. Therefore, the proposed research suggests that the blockchain is a distributed structure, in which blocks containing small data are connected in a chain form, so that each node agrees and verifies the data with each other, thereby increasing reliability and lowering the probability of data forgery.