• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.31 no.6B
• /
• pp.551-560
• /
• 2006

Security in WPAN is one of the most fundamental issues to overcome the barrier of wireless environment. Although piconet security mechanisms have been defined in the WPAN standards, many remains open and are left for implementation. Koinonia is a high-rate Wireless Personal Area Network (WPAN) technology, and is developed for multimedia traffic transmission in personal area. In Koinonia WPAN, a piconet consists of one master and more than one slave, and piconet security mechanisms is not defined at all. Therefore, we propose a robust piconet security mechanism for secure communications between slaves in a piconet. Based on security requirements analysis, our proposed protocols are shown to meet the security needs for Koinonia high-rate WPAN.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.11 no.2
• /
• pp.73-82
• /
• 2001

In this paper we propose an efficient authentication and key agreement protocol which has been designed specifically for use with low powered computationally weak equipment such as Cellular phone and PDA(Personal Digital Assistant). Imple-menting the protocol based on the Rabin cryptosystem provides the efficiency requirements for mobile communications including minimum number of passes and low computational lead. The paper outlines the new protocol, examines it s various aspects, and compares them to those representative authentication and key agreement protocols.

• The KIPS Transactions:PartC
• /
• v.10C no.6
• /
• pp.747-754
• /
• 2003

Thia paper suggests a milti user-authentication system comprises that DNA biometric informatiom, owner's RFID(Radio Frequency Identification) smartcard of hardware token, and PKI digital signqture of software. This system improved items proposed in [1] as follows : this mechanism provides one RFID smartcard instead of two user-authentication smartcard(the biometric registered seal card and the DNA personal ID card), and solbers user information exposure as RFID of low proce when the card is lost. In addition, this can be perfect multi user-autentication system to enable identification even in cases such as identical twins, the DNA collected from the blood of patient who has undergone a medical procedure involving blood replacement and the DNA of the blood donor, mutation in the DNA base of cancer cells and other cells. Therefore, the proposed system is applied to terminal log-on with RFID smart card that stores accurate digital DNA biometric information instead of present biometric user-authentication system with the card is lost, which doesn't expose any personal DNA information. The security of PKI digital signature private key can be improved because secure pseudo random number generator can generate infinite one-time pseudo randon number corresponding to a user ID to keep private key of PKI digital signature securely whenever authenticated users access a system. Un addition, this user-authentication system can be used in credit card, resident card, passport, etc. acceletating the use of biometric RFID smart' card. The security of proposed system is shown by statistical anaysis.

• Journal of the Korea Fashion and Costume Design Association
• /
• v.9 no.3
• /
• pp.59-73
• /
• 2007

The purpose of this study is to find out the promotion methods for successful management of 'the fashion saho internet shopping mall' with a small capital. This study analyze the research reports, the news items, the documents on the internet shopping mall and data on promotion method which are offered by the hosting companies of the internet shopping mall like 'Cafe 24', 'Make shop', 'Whoismall' and the promotion consulting companies like 'Whoisad', 'Naver keyword shop'. And also analyze the data that interviewed the administrator of internet shopping mall and directly observed the famous internet shopping mall sites. Generally speaking, the promotion mix, marketing communication program can classify 'advertisement', 'publicity', 'personal selling', and 'sales promotion'. This study analyze the research materials on the basis of advertisement, publicity, personal selling, and sales promotion. The result are as follows. 1. The promotion methods at the stage of information the shopping mall site to the consumer are advertisement, and publicity. ${\bigcirc}$ The methods of advertisement are 'searching engine registration', 'advertisement of key word', 'advertisement of overture', 'advertisement of banner', 'advertisement cooperation marketing', 'advertisement of e-mail'. ${\bigcirc}$ The methods of publicity are using 'cafe', 'blog', 'Naver information site', 'community bulletin board', 'the fashion magazine or a press report' and 'cosponsorship'. 2. The main promotion methods at the stage of inducing the purchase are 'personal selling', and various 'sales promotion'. ${\bigcirc}$ 'Personal selling' at the shopping mall have an effect on the communication at bulletin board over the internet and the telephone. ${\bigcirc}$ 'Sales promotion' are attempted by 'VMD', 'deposit system', 'sale', etc.

• Journal of Convergence for Information Technology
• /
• v.11 no.11
• /
• pp.66-74
• /
• 2021

With the development of the Internet, user authentication technology that proves me online is improving. Existing ID methods pose a threat of personal information leakage if the service provider manages personal information and security is weak, and the information subject is to the service provider. In this study, as online identification technology develops, we propose a DID-based self-authentication model to prevent the threat of leakage of personal information from a centralized format and strengthen sovereignty. The proposed model allows users to directly manage personal information and strengthen their sovereignty over information topics through VC issued by the issuing agency. As a research method, a self-authentication model that guarantees security and integrity is presented using a decentralized identifier method based on distributed ledger technology, and the security of the attack method is analyzed. Because it authenticates through DID Auth using public key encryption algorithms, it is safe from sniffing, man in the middle attack, and the proposed model can replace real identity card.

• Korea Trade Review
• /
• v.47 no.5
• /
• pp.253-272
• /
• 2022

As the digital era accelerates, traditional perspectives have limitations in explaining the success or failure of export performance. The purpose of this study is to analyze new factors affecting export performance from the perspective of customer experience, which has emerged as an important factor in securing a competitive advantage and generating organizational performance. After deriving hypotheses based on literature review and discussion, a research model is designed in which three factors of customer experience such as understanding customer's objectives, customer value creation capability, and customer journey management are the antecedents, and export performance is the dependent variable. This model also includes organizational agility and personal contact as the moderating variables. To verify the hypotheses, multiple regression analysis was conducted on the collected data drawn from 198 SME exporters. According to the analysis results, it was found that all three antecedents positively affected export performance. In particular, the organizational agility and personal contact were confirmed to have a moderating effect that creates better export performance by interacting with customer value creation capability. The theoretical significance of this study is to find that effective customer experience management can be a key factor in creating export performance. The results suggest that checking the overall customer journey, exporters should select and intervene to intensively manage key touch points that can have a decisive impact on the quality of customer experience. At the end of the paper, practical implications to be considered in creating export performance through effective customer experience management are presented.

• Journal of the Korea Society of Computer and Information
• /
• v.17 no.7
• /
• pp.117-128
• /
• 2012

Recently IT infrastructure plays a central role in the base of the society. However, use of personal registration number on internet sites has become a major factor increasing danger of leaking of personal information. Currently, the government is recommending various information protection services in order to prevent the collection of personal registration numbers and leaking of personal information on the internet. Among them, i-PIN service is the one recommended for minimal use of personal registration numbers on the internet. Although i-PIN can be used as a way to substitute personal registration numbers on the internet, there are certain limitations in using i-PIN as the only key to recognize individuals. This study proposes organization of web system in which self certification can be conducted using i-PIN as a tool for personal certification. Also its usability and stability have been verified through performance test when i-PIN service is linked with web service and used as personal certificate. But i-PIN service is unavailable if obstacles occur in providers of i-PIN self certification. To settle this inconvenience, the study also proposes how to cope with such obstacles.

• Journal of Internet Computing and Services
• /
• v.20 no.6
• /
• pp.119-127
• /
• 2019

This paper proposes a new authentication model to solve the problem of personal information takeover and personal information theft by service providers using centralized servers for user authentication and management of personal information. The centralization issue is resolved by providing user authentication and information storage space through a decentralize platform, blockchain, and ensuring confidentiality of information through user-specific symmetric key encryption. The proposed model was implemented using the public-blockchain Ethereum and the web-based wallet extension MetaMask, and users access the Ethereum main network through the MetaMask on their browser and store their encrypted personal information in the Smart Contract. In the future, users will provide their personal information to the service provider through their Ethereum Account for the use of the new service, which will provide user authentication and personal information without subscription or a new authentication process. Service providers can reduce the costs of storing personal information and separate authentication methods, and prevent problems caused by personal information leakage.

• The Journal of Korean Institute of Information Technology
• /
• v.17 no.5
• /
• pp.129-136
• /
• 2019

Many IoT devices like sensors lack screen and input devices, thus making them hard to meet the consent conditions that GDPR requires. This is acting as a legal barrier for further advancement in the business field. In this paper, we designed the process for consent of personal information collection that meets the legal conditions. In this design, user's personal data is received in an encrypted form by data collecting server first. The encrypted personal data can be decrypted after associating with user agent based on the consent procedure of the collection of personal information. During the consent procedure, user agent understands the privacy policy about personal information collection and offers the key to decrypt the data. This kind of personal information collection agreement procedure will satisfy the transparent and freely given consent requirements of GDPR. Thus, we can speculate from here that the proposed procedure will contribute to the evolution of IoT business area dealing with personal information.

• The Journal of Korea Institute of Information, Electronics, and Communication Technology
• /
• v.15 no.2
• /
• pp.134-143
• /
• 2022

'Data' is the key component that leads Digital Healthcare. Most of the Healthcare Data is personal information of data subject and includes Sensitive Information. It is very important for companies to use data lawfully and safely during the lifecycle of data collection, use, provision, and destruction. However, small and medium-sized enterprises(SMEs), ventures, and startups, which account for 78% of the Healthcare Services Industry, have had difficulties in performing tasks related to personal information protection. The personal Information Protection Act's requirements depending on the purpose of using Personal Information are different. Also, the requirements for each personal information lifecycle are varied. Therefore, this study suggests six purposes for companies to use healthcare data. It examines the considerations during the lifecycle in which personal information is collected to be destroyed.