• Journal of Korea Multimedia Society
• /
• v.16 no.1
• /
• pp.87-99
• /
• 2013

The demands of IC card payment system has been increased according to the rapid advancement of the IT convergence application technologies. Recently IC card payment systems are in demands of the usage space at anytime and anywhere by developing the wireless communication technology and its related multimedia processing technology. Therefore the security of IC card payment system becomes more important and necessary. There are many fault analysis methods to evaluate the security and safety of information systems according to their characteristics and usages. However, the only assessment method to evaluate the security of information systems is not enough to analyse properly on account of the various types and characteristics of information systems by the progress of IT convergence and their applications. Therefore, this paper proposes an integrative method of the Fault Tree Analysis (FTA) and Fault Modes and Effect Analysis/Criticality (FMEA/C) based on criticality to evaluate and improve the security of IC card payment system as an illustration.

• The KIPS Transactions:PartC
• /
• v.11C no.6 s.95
• /
• pp.755-764
• /
• 2004

Recently 'Banking IC Card Standard' and EMV Standard by the domestic standard is selected, and it is situation that is developing infrastructure vigorously to alternate Magnetic Stripe card by IC card. This paper analyzes EMV standard that is selecting public key cipher, and research wishes to study unexhausted EMV PKI relatively than internet PKI, WAP PKI etc. This paper propose utilizable EMV base Payment PKI model in IC card base payment system development, and developed EMV CA system with this. Also, this paper supplemented IC card Authentication mechanism that is defined in EMV standard, and propose 'Efficient smart card Authentication mechanism' to improve performance of this mechanism, and estimate performance.

• Proceedings of the Korean Information Science Society Conference
• /
• 2004.10c
• /
• pp.385-387
• /
• 2004

최근 지하철이나 버스 등의 교통수단을 이용하기 위해 비접촉식 카드를 이용한 IC카드 Reader가 많이 사용되고 있다. 이러한 IC카드 Header는 ID를 인증하기 위한 UserID를 Reader내부에 저장하고 있으며 UserID가 바뀔 때 마다 상위 시스템(서버)으로부터 전송받아 최신의 UserID를 가지고 있어야 한다. 교통시스템에서 사용되는 통신매체는 환경의 특수함으로 인해 낮은 전송속도를 이용하여 통신하고 있고, 그로인해 UserID를 전송할 때 시간이 많이 소모된다. UserID를 전송하는 동안에는 IC카드 Reader의 사용이 제한되기 때문에 UserID는 IC카드 Reader가 사용되지 않는 시간에 전송하고 있다. 많은 양의 UserID를 IC카드 Reader에 빠르게 전송하기 위해 UserID의 특성을 이용한 엔코딩(encoding) 기법을 적용 하여 UserID의 크기를 줄여 전송함으로써 전송시간을 줄이는 방법을 제안하였다.

• Journal of Biomedical Engineering Research
• /
• v.24 no.6 s.81
• /
• pp.533-541
• /
• 2003

In the paper. the health card system to integrate several cards into one card for protecting patient's privacy and security problems is proposed. Firstly, it is defined the minimal data set for integrating several patient cards into one card using IC card, and developed the issuing system to issue the integrated patient IC card. In order to secure and certificate a patient's personal information. the integrated patient IC card has applied 3-DES and the PKI certificate authority based Windows 2000 is established. The receipt and reservation system for taking care of a healthcare has developed to cooperate with the existing hospital computer system. The integrating patient IC card system proposed in this paper is implemented to 11 hospitals and used for 1.000 patients. On the result of the simulation. the proposed system can receive or reserve for a patient to take care of healthcare in the simulated hospitals and also establish the basis of the mechanism to share a medical information.

• Journal of KIISE:Computer Systems and Theory
• /
• v.30 no.9
• /
• pp.494-503
• /
• 2003

In this paper, we propose the implementation techniques of IC card chipset that is compatible with international standard ISO-7816 and supports WindowsCE operating system to expropriate various electronic cash and credit card. This IC card interface chip set is composed with 32 bit ARM720T Core and AES(Advanced Encryption System) cryptography module for electronic commerce. Six IC card interfaces support T=0, T=1 protocol and two of them are used to interface with user card directly, the others are used for interface with SAM card. In addition, It supports a LCD controller and USB interface for host. We improved the performance about 70% than software based It card chip set and verified using Hynix 0.35um process.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.12 no.3
• /
• pp.23-37
• /
• 2002

As the world-wide use of the Internet increases rapidly due to development of computer network the Electronic Commerce for business by treating it is growing as compared to the traditional one for the information exchange in the academic and research areas. The Electronic Payment System used for EC includes the Payment Broker System and the Electronic Purse System. And usually Electronic Purse System operates with IC cards. Saving the money in IC card has a high portability and security. Therefore, the Electronic purse System based on IC card is recently issued in the EC. In this paper, we design and implement of a IC card security system for Common Electronic Purse Specifications in Internet. CEPS is a Electronic Purse System proposed VISA, and conform EMV(Europay Mastercard VISA) security structure. With our system, users easily use Electronic Purse System with only Web browser and IC card. Original EMV paid no regard to using in the Internet. But our system, conforming to CEPS and EMV, is easily used in the Internet.

• Proceedings of the Korea Multimedia Society Conference
• /
• 2000.04a
• /
• pp.95-98
• /
• 2000

인터넷상에서 전자상거래의 활성화로 인한 구매수단의 변화로 지불수단에 대한 많은 연구가 이루어지고 있다. 이에 지불수단의 근본적인 개념의 변화가 필요하다. 이에 대해 유력한 수단으로서 전자화폐 시스템은 크게 네트워크형과 IC카드형으로 나누어질 수있다. 본 논문에서는 현재 현물화폐의 대안으로 여겨지는 기존의 오프라인 IC카드형의 전자화폐 시스템에 대하여 연구하였고 이에 대하여 상호 인증방식을 첨가한 새로운 프로토콜을 제안하였다.

• The KIPS Transactions:PartA
• /
• v.19A no.1
• /
• pp.51-60
• /
• 2012

IC(Integrated circuits)card, generally be named smard card, embedded MPU(Micro Processor Unit) of small-size, memory, EEPROM, Card Operating System(COS) and security algorithm. The IC card is used in almost all industry such as a finance(credit, bank, stock etc.), a traffic, a communication, a medical, a electronic passport, a membership management and etc. Recently, a application field of IC card is on the increase by method for payments of T-commerce, as T-commerce is becoming a new growth engine of the broadcating industry by trend of broadcasting and telecommunication convergence, smart mechanization of TV. For example, we can pay in IC credit card(or IC cash card) on T-Commerce. or we can be provided TV banking service in IC cash card such as ATM. However, so far, T-commerce payment services have weakness in security such as storage and disclosure of card information as well as dropping sharply about custom ease because of taking advantage of card information input method using remote control. To solve this problem, This paper developed processing payment module for implementing TV electronic payment system using IC credit card payment standard, EMV.

• Review of KIISC
• /
• v.12 no.2
• /
• pp.1-6
• /
• 2002

인터넷의 급속한 성장으로 인하여 안정적인 보안수준을 제공하면서 사용이 편리한 사용자 인증 시스템의 필요성이 대두되었다. 90년대까지 사용자 인증 수단으로 많이 사용되던 개인장치나 비밀번호 등은 분실 가능성 및 도용의 위험이 있어 보안이 중요한 환경에서는 사용상의 제약이 따른다. 그러므로 이러한 제약을 보완할 수 있는 생체정보를 이용한 사용자 인증에 대한 관심이 꾸준히 증가하고 있으나, 생체정보는 비밀번호와 같이 사용자가 임의로 변경할 수 없으므로 외부로 유출된다면 심각한 문제가 발생할 수 있다. 본 고에서는 생체정보를 중앙 데이터베이스에 저장하지 않고 사용자가 휴대할 수 있는 IC 카드에 저장하고, 생체정보를 이용한 사용자 인증 과정도 IC 카드 내부의 프로세서를 이용하여 수행하는 Match-on-Card 기술 개발에 관하여 설명한다.

• The KIPS Transactions:PartA
• /
• v.10A no.3
• /
• pp.255-260
• /
• 2003

In recent, as a typical example of RFID, the contactless IC card is widely used in traffic, access control system and so forth. And its use becomes a general tendency more and more because of the development of RF technology and improvement of requirement for user convenience. This paper describes the hardware module to process embedded contactless protocol for implementation contactless IC card. And the hardware module consists of analog circuits and specific digital logic circuits. This paper also describes more effective design method of contactless IC card, which method separates into analog circuit parts, digital logic circuit part, and software parts according to the role of the design parts.