• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.12 no.8
• /
• pp.3946-3965
• /
• 2018

Network anomaly detection in Software Defined Networking, especially the detection of DDoS attack, has been given great attention in recent years. It is convenient to build the Traffic Matrix from a global view in SDN. However, the monitoring and management of high-volume feature-rich traffic in large networks brings significant challenges. In this paper, we propose a moving window Principal Components Analysis based anomaly detection and mitigation approach to map data onto a low-dimensional subspace and keep monitoring the network state in real-time. Once the anomaly is detected, the controller will install the defense flow table rules onto the corresponding data plane switches to mitigate the attack. Furthermore, we evaluate our approach with experiments. The Receiver Operating Characteristic curves show that our approach performs well in both detection probability and false alarm probability compared with the entropy-based approach. In addition, the mitigation effect is impressive that our approach can prevent most of the attacking traffic. At last, we evaluate the overhead of the system, including the detection delay and utilization of CPU, which is not excessive. Our anomaly detection approach is lightweight and effective.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.11 no.12
• /
• pp.2265-2270
• /
• 2007

This paper discusses a tester of functionality and call processing performance, based on the MEGACO/H.248 protocol that both IETF and ITU-T recommend as a media gateway control protocol, of both a media gateway controller and an access gateway which constitute a next generation convergence network. Effective methods, a functional architecture and implementation for such testification are provided. Especially included are not only a virtual emulation function of analog subscriber lines connecting to an access gateway, but also a tester emulated as a counter system of the protocol for the testifying a media gateway controller and an access gateway system.

• The KIPS Transactions:PartC
• /
• v.15C no.6
• /
• pp.557-566
• /
• 2008

NGN(Next Generation Network) is a communication network which can make use of broadband and QoS-enabled transport technologies. One of the main service issues over NGN is a multimedia service, such as IPTV, using a multicast method. And overlay multicast technology is one of the promising solutions instead of traditional multicast technology which has a few problems, and supports flexibility and scalability for multicast services. Also, the main controversial topic in NGN and overlay multicast is QoS. In the present paper, we designed an agent in each receiver's network, and a manager which is in a source network and which manages the whole multicast network. Both of them are communicating with each other and applying resource policies to their multicast network. This mechanism enables overlay multicast to support QoS, focusing on RACF(Resource and Admission Control Functions) in NGN QoS architecture.

• Journal of the Korea Institute of Military Science and Technology
• /
• v.21 no.6
• /
• pp.826-841
• /
• 2018

The military satellite communication of ROK military, ANASIS is designed for analog data such as voice and streaming data. ANASIS cannot fully support ALL-IP communications due to its long propagation delay. The next generation satellite communication system is being designed to overcome the limitation. Next generation satellite communications system considers both high-speed and low-speed networks to support various operating environment. The low-speed satellite supports both broadband and narrow-band communication. This network works as the infrastructure for of wide-area internetworking over multiple AS's in the terrestrial network. It requires minimum satellite frequency and minimum power and works without PEP and router. In this paper, we propose a network operation structure to enable the inter-operation between high and low-speed satellite networks. In addition, we propose a data link protocol for low speed satellite networks.

• Proceedings of the KIEE Conference
• /
• 2005.07a
• /
• pp.217-219
• /
• 2005

배전계통의 소극적인 원격감시제어 만이 가능한 소규모 배전자동화 시스템이 1998년 처음 설치된 이후로 지금에 이르기까지 한국의 배전자동화 시스템은 종합 배전자동화로 이름만 변모 한 것이 아니라 기술수준과 표현능력에 있어서 비약적인 발전을 거듭하고 있다. 선로운영자의 계통상황 인식을 수월하게 하기위한 실지도상의 선로 표현창과 함께 기술검토를 위한 단선도 창이 추가되었고, 이를 통해 배전망 최적운영을 위한 다수의 기술검토용 운영프로그램들이 포함되어지고 있다. 본 논문에서는 고장발생시 그 위치를 추정하는 알고리즘을 연구하고 이를 배전자동화 시스템에 시험 적용한 사례를 소개한다.

• Journal of Korean Society for Quality Management
• /
• v.35 no.3
• /
• pp.37-46
• /
• 2007

Our society is increasingly dependent on the Internet, and this trend will be accelerating in the ear of All-IP convergence. As the core infrastructure of the All-IP convergence, the next generation Internet should enable end-to-end Quality of Service(e2e QoS). For that purpose, major international standardization institutes such as ITU(International Telecommunication Union) and IETF(Internet Engineering Task Force) are building the concept and architecture of the Next Generation Network(NGN). However, these institutes focus only on technical issues, and leave many business/policy-oriented challenges unresolved. For example, the standards raised by ITU assume that the entire service delivery process for e2e QoS services is perfectly working. But required is a standardized business interface and process for seamless inter-operations across many stakeholders including ISPs(Internet Service Providers), CPs(Content Providers), so on. On the other hand, TMF(TeleManagement Forum) and QuEST(Quality Excellence for Suppliers of Telecommunication) Forum, global consortiums of telecom operators and vendors, present sets of interface rules and process which playa crucial role as de facto standards: for example, NGOSS/eTOM and TL9000 authorization system. However, these standards focus on telephone services, and provide little principle for the next generation Internet. Our study seeks a way to combine these two strains for a successful implementation of NGN. In particular, we find a missing link in the NGN architecture and the elements that could be complemented with the help of NGOSS/eTOM and TL9000. Finally, presented is a strategic direction that our standardization policy should purse in order to reinforce our global leadership for the next generation Internet.

• Proceedings of the Korean Information Science Society Conference
• /
• 2001.10c
• /
• pp.175-177
• /
• 2001

전화 서비스를 교환 기능에서 분리하여 생성, 수행, 관리하는 개념으로 서비스를 전달계층으로부터 분리하여 제어계층에 두어 다양하고 유연한 서비스를 제공 가능하게 함으로써 망의 지능을 실현하게 하는 것을 지능망과 급속도로 팽창하고 있는 인터넷 망과의 연동은 차세대 ALL-IP망으로 가기 위해 과도기적으로 필요한 과정이다. 이 논문에선 SIP 기반으로 NGN에서의 지능망 서 비스 구조를 제안한다.

• Journal of Information Processing Systems
• /
• v.6 no.3
• /
• pp.323-334
• /
• 2010

The broadcasting & telecommunication services in the future will be converged and be serviced on mobile devices. However, the current ICT infrastructure does not fully meet the future demand for those converged, realistic, intelligent, and personalized services. The Korean government is going to establish a high speed next generation network called UBcN (Ultra-Broadband Convergence Network) by 2013. The Korean government has announced a multi-year plan to establish an UBcN network and to discover and stimulate new converged services for an UBcN in January, 2009. The author of this paper has taken part in formulating development plans since the early stages of planning. In this paper, Korea's development plans for the next generation network and their development strategies are analyzed and discussed based on the author's experience. The paper also discusses the expected impacts of the plan for the future ICT industry, and the implications of government-driven development plans.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2012.10a
• /
• pp.797-799
• /
• 2012

The cognitive radio (CR) network has been studied in the form of open source by vast number of communities, and the potential expectation is very high since the CR is based on reprogrammable platform. However, as the peer-to-peer software has been abused, so high is the chance that the CR network can be abused public wide. Consequently, the benefit from the study of next-generation wireless network can be at risk because law breakers could abuse the CR. In this contribution, we analyze the issues and the problems of the CR and discuss an efficient measure against security attacks.

• Journal of Korea Society of Industrial Information Systems
• /
• v.18 no.6
• /
• pp.39-49
• /
• 2013

In recent, many countries and research institutes have been studying how to construct the high-speed subscriber access network. Task Force team of IEEE 802.3ah has accomplished the standardization of EPON which is the next generation subscriber access network. EPON doesn't still have the bandwidth enough to support the new service(e.g various multimedia service) which demands the high bandwidth. For these new multimedia services,10G EPON is the next generation subscriber access network which expanded the up-down bandwidth range of 1G EPON 10 times in order to support demanding high bandwidth. We have proposed the model which can accommodate IEEE 802.1 AVB traffics smoothly in 10G EPON and suggesting the Intra-ONU scheduling model which makes this model operate effectively.