• The KIPS Transactions:PartC
• /
• v.12C no.5 s.101
• /
• pp.623-632
• /
• 2005

In ad-hoc network, there is no fixed infrastructure such as base stations or mobile switching centers. The security of ad-hoc network is more vulnerable than traditional networks because of the basic characteristics of ad-hoc network, and current muting protocols for ad-hoc networks allow many different types of attacks by malicious nodes. Malicious nodes can disrupt the correct functioning of a routing protocol by modifying routing information, by fabricating false routing information and by impersonating other nodes. We propose a routing suity mechanism based on one-time digital signature. In our proposal, we use one-time digital signatures based on one-way hash functions in order to limit or prevent attacks of malicious nodes. For the purpose of generating and keeping a large number of public key sets, we derive multiple sets of the keys from hash chains by repeated hashing of the public key elements in the first set. After that, each node publishes its own public keys, broadcasts routing message including one-time digital signature during route discovery and route setup. This mechanism provides authentication and message integrity and prevents attacks from malicious nodes. Simulation results indicate that our mechanism increases the routing overhead in a highly mobile environment, but provides great security in the route discovery process and increases the network efficiency.

• Journal of the Korean Society for information Management
• /
• v.26 no.2
• /
• pp.27-41
• /
• 2009

With explosive growth in the area of the Internet and IT services, various types of digital contents are generated and circulated, for instance, as converted into digital-typed, secure electronic records or reports, which have high commercial value, e-tickets and so on. However, because those digital contents have commercial value, high-level security should be required for delivery between a consumer and a provider with non face-to-face method in online environment. As a digital contents, an e-ticket is a sort of electronic certificate to assure ticket-holder's proprietary rights of a real ticket. This paper focuses on e-ticket as a typical digital contents which has real commercial value. For secure delivery and use of digital contents in on/off environment, this paper proposes that 1) how to generate e-tickets in a remote e-ticket server, 2) how to authenticate a user and a smart card holding e-tickets for delivery in online environment, 3) how to save an e-ticket transferred through network into a smart card, 4) how to issue and authenticate e-tickets in offline, and 5) how to collect and discard outdated or used e-tickets.

• The Journal of Society for e-Business Studies
• /
• v.17 no.4
• /
• pp.57-68
• /
• 2012

As the functions and technology of IT security solution has been diversified and complicated, it is necessary to make the functions standardized. The common criteria (CC) evaluation and certification scheme was introduced with this background in 2000. For over 10 years after the introduction of CC evaluation and certification scheme, many security solution vendors have developed functions following the security functional requirement in CC. Most of CC evaluators and developers think that CC has helped to enhance the security of the solution. So, it is a right time to prove the affirmative effects of CC in quantity. In this research, we compare two cases, the security status of the solution before and after the experience of CC evaluation, and analyze the results. We made the questionnaire for the domestic solutions vendors. We show that CC has made positive effects on the security of the solution quantitatively using statistical analysis. This research is meaningful security enhancement of domestic security solutions.

• Journal of Digital Convergence
• /
• v.16 no.3
• /
• pp.201-210
• /
• 2018

WorldJob+, being operated by The Human Resources Development Service of Korea, provides a recruitment support services to overseas companies wanting to hire talented Korean applicants and interns, and support the entire course from overseas advancement information check to enrollment, interview, and learning for young job-seekers. More than 300,000 young people have registered in WorldJob+, an overseas united information network, for job placement. To innovate WorldJob+'s services for young job-seekers, Splunk, a powerful platform for analyzing machine data, was introduced to collate and view system log files collected from its website. Leveraging Splunk's built-in data visualization and analytical features, WorldJob+ has built custom tools to gain insight into the operation of the recruitment supporting service system and to increase its integrity. Use cases include descriptive and predictive analytics for matching up services to allow employers and job seekers to be matched based on their respective needs and profiles, and connect jobseekers with the best recruiters and employers on the market, helping job seekers secure the best jobs fast. This paper will cover the numerous ways WorldJob+ has leveraged Splunk to improve its recruitment supporting services.

• Journal of the Korean Institute of Landscape Architecture
• /
• v.45 no.4
• /
• pp.71-80
• /
• 2017

Landscape design pursues a balance among different values in our society, but aesthetic value and ecological value in landscapes must bring complex relationships into harmony. Ecological aesthetics can be defined as a domain of study that manages the relationship between landscape ecology and landscape aesthetics to create aesthetically attractive and ecologically beneficial landscapes. Despite the importance of the research area, there has been limited empirical research addressing ecological aesthetics. This article aspires to connect and expand the conceptual framework to the research methodologies of ecological aesthetics. First, this study suggests a conceptual framework that examines the relationship between landscape and perceptual process in the context of ecological aesthetics. This framework stresses the importance of information and design intervention as moderators in this relationship. From this framework, three key topics in ecological aesthetics arise: (1) correlation between ecological integrity and aesthetic preference, (2) "compromised" design and management intervention principles that enhance aesthetic pleasure and still have biodiversity, and (3) the impact of information intervention in aesthetic experience. The framework indicated three domains affect each other; thus, when one domain is studied, the other two need to be considered. Secondly, several theoretical and empirical studies on ecological aesthetics will be reviewed from a methodological point of view. This will help to consider ecological aesthetics research, which has primarily been limited to theoretical discourse in empirical research.

• Korean Journal of Agricultural and Forest Meteorology
• /
• v.16 no.3
• /
• pp.157-168
• /
• 2014

From a complex systems perspective, ecohydrological systems in forests may be characterized with (1) large networks of components which give rise to complex collective behaviors, (2) sophisticated information processing, and (3) adaptation through self-organization and learning processes. In order to demonstrate such characteristics, we applied the recently proposed 'process networks' approach to a temperate deciduous forest in Gwangneung National Arboretum in Korea. The process network analysis clearly delineated the forest ecohydrological systems as the hierarchical networks of information flows and feedback loops with various time scales among different variables. Several subsystems were identified such as synoptic subsystem (SS), atmospheric boundary layer subsystem (ABLS), biophysical subsystem (BPS), and biophysicochemical subsystem (BPCS). These subsystems were assembled/disassembled through the couplings/decouplings of feedback loops to form/deform newly aggregated subsystems (e.g., regional subsystem) - an evidence for self-organizing processes of a complex system. Our results imply that, despite natural and human disturbances, ecosystems grow and develop through self-organization while maintaining dynamic equilibrium, thereby continuously adapting to environmental changes. Ecosystem integrity is preserved when the system's self-organizing processes are preserved, something that happens naturally if we maintain the context for self-organization. From this perspective, the process networks approach makes sense.

• The KIPS Transactions:PartC
• /
• v.12C no.2 s.98
• /
• pp.301-308
• /
• 2005

According to banking online transaction grows very rapidly, guarantee validity about business transaction has more meaning. To offer guarantee validity about banking online transaction efficiently, certificate status verification system is required that can an ieai-time offer identity certification, data integrity, guarantee confidentiality, non-repudiation. Existing real-time certificate status verification system is structural concentration problem generated that one node handling all transactions. And every time status verification is requested, network overload and communication bottleneck are occurred because ail useless informations are transmitted. it does not fit to banking transaction which make much account of real response time because of these problem. To improve problem by unnecessary information and structural concentration when existing real-time certificate status protocol requested , this paper handle status verification that break up inspection server by domain. This paper propose the method of real~time certificate status verification that solves network overload and communication bottleneck by requesting certification using really necessary Reduction information to certification status verification. And we confirm speed of certificate status verification $15\%$ faster than existing OCSP(Online Certificate Status Protocol) method by test.

• Journal of the Society of Disaster Information
• /
• v.17 no.4
• /
• pp.897-903
• /
• 2021

Purpose: Recently, ransomware damage that encrypts victim's data through hacking and demands money in exchange for releasing it is increasing domestically and internationally. Accordingly, research and development on various response technologies and solutions are in progress. Method: A secure storage area and a general storage area were created in the same virtual environment, and the sample data was saved by registering the access process. In order to check whether the stored sample data is infringed, the ransomware sample was executed and the hash function of the sample data was checked to see if it was infringed. The access control performance checked whether the sample data was accessed through the same name and storage location as the registered access process. Result: As a result of the experiment, the sample data in the secure storage area maintained data integrity from ransomware and unauthorized processes. Conclusion: Through this study, the creation of a secure storage area and the whitelist-based access control method are evaluated as suitable as a method to protect important data, and it is possible to provide a more secure computing environment through future technology scalability and convergence with existing solutions.

• International Journal of Computer Science & Network Security
• /
• v.22 no.7
• /
• pp.451-458
• /
• 2022

This article is devoted to the problem of national and patriotic education of young students by means of digital technologies in the conditions of distance learning environment. It is emphasized that national and patriotic education is a powerful means of strengthening the unity and integrity of Ukraine. It is proved that national and patriotic education will be effective under the condition of systematic and purposeful activity on formation of patriotic consciousness in youth, sense of national dignity, necessity of service of ideals and values of the country. Various forms of educational work of national and patriotic orientation at Pavlo Tychyna Uman State Pedagogical University, which were conducted by digital technologies: online thematic lectures, educational classes, round tables, workshops, guest online meetings with famous researchers of historical heritage of Ukraine, online tours of historical places, virtual exhibitions of art, participation in the national-patriotic student camp "Diia" (Action) and etc. The activity of the University Library and V. O. Sukhomlinsky State Scientific and Pedagogical Library of Ukraine of the National Academy of Pedagogical Sciences of Ukraine, which has a significant impact on the formation of national consciousness and social and political activity of students by modern means of information and communication technologies. It is determined that the project "Inclusive 3D map" helps to broaden the horizons and deepen the knowledge of young students, education of a true citizen, the formation of cognitive interest in the subjects studied, motivation to study, raising awareness of Ukrainians on historical and cultural heritage. The study showed that young students take an active social attitude: they speak Ukrainian, want to live and work in Ukraine, respect their homeland, its traditions, cultural and historical past, love to travel and they are tolerant of people with special needs. Promising areas of educational work with students based on the use of a wide range of information and communication technologies, namely 3D games, TV tandems, podcasts, social networks, video resources in national and patriotic education of youth.

• Journal of Internet Computing and Services
• /
• v.23 no.5
• /
• pp.69-78
• /
• 2022

As the use of Internet of Things (IoT) devices has expanded, digital forensics coverage of the National Police Agency has expanded to smart home areas. Accordingly, most of the existing studies conducted to acquire smart home platform data were mainly conducted to analyze local data of mobile devices and analyze network perspectives. However, meaningful data for evidence analysis is mainly stored on cloud storage on smart home platforms. Therefore, in this paper, we study how to acquire stored in the cloud in a Hey Home Air environment by extracting accessToken of user accounts through a cookie database of browsers such as Microsoft Edge, Google Chrome, Mozilia Firefox, and Opera, which are recorded on a PC when users use the Hey Home app-based "Hey Home Square" service. In this paper, the it was configured with smart temperature and humidity sensors, smart door sensors, and smart motion sensors, and artifacts such as temperature and humidity data by date and place, device list used, and motion detection records were collected. Information such as temperature and humidity at the time of the incident can be seen from the results of the artifact analysis and can be used in the forensic investigation process. In addition, the cloud data acquisition method using OpenAPI proposed in this paper excludes the possibility of modulation during the data collection process and uses the API method, so it follows the principle of integrity and reproducibility, which are the principles of digital forensics.