• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.32 no.6
• /
• pp.1069-1080
• /
• 2022

Zero trust, which means never trust anything before verifying it, is emerging as a hot issue in security field. After authenticating users, zero trust establishes network boundaries so that only networks in the trusted range can be accessed. This concept is also consistent with the concept of SDP, which performs pre-verification and creates a network boundary with a dynamic firewall so that clients can access only as many as they have permission to connect. Therefore, we recommend the SDP model as an example of how zero trust can be achieved in a zero trust architecture. In this paper, we point out the areas where SDP needs to be modified for zero trust and suggest ways to overcome them. In addition, we propose an onboarding method, which is one of the processes for becoming an SDP entity, and present performance measurement results.

• Journal of the Institute of Electronics and Information Engineers
• /
• v.52 no.6
• /
• pp.144-150
• /
• 2015

A system for providing a distributed device resource-object-connection service based on a service delivery platform (SDP) is described. The system includes an SDP and proxy. The SDP configures to define distributed service functions as enablers, generates a convergence service by combining the enablers, and provides the generated convergence service. The proxy configures to connect a distributed device and an SDP to allow the SDP to use the distributed device as a resource, and define and use the distributed device as an enabler. The system are capable of defining distributed service functions as well as distributed sensors as enablers, and thereby allowing the distributed sensors to be used in the same sense as service-function enablers.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.32 no.12B
• /
• pp.750-757
• /
• 2007

This paper analyzes spam threats and proposes key exchange scheme for user authentication and SDP encryption to protect potential spam threats in SIP-based VoIP services. The existing HTTP digest authentication scheme exchanges many message because challenge is sent for every establishment of the session and doesn't provide a confidentiality of SDP. To protect SPIT, our scheme exchanges initial nonce and a session master key for authentication and SDP encryption during registration. In our scheme, the challenge and response procedure is not necessary and the communication overhead is much less than applying S/MIME or TLS.

• The Transactions of the Korea Information Processing Society
• /
• v.7 no.11S
• /
• pp.3668-3674
• /
• 2000

Recently Technology regarding VoIP (Voice over IP) is emerging over the market of the IP network. So far nothing is unfortunately there any attempt to try any research with respect to the development of the protocol stack relating to such control of gateway as MGCP, MEGACO, SIP, SDP. The reasons come from the low level of infrastructue, the shortage of the time and technology required at the moment, and so on. In this regards, this paper is focused on developing a protocol stack made with encoder/decoder, the generator of the header file etc, based on the protocol grammars of MGCP, SDP supported by IETF. For the sake of it, first develops the syntax analyzer, encoder/decoder, header file generator for encoding/decoding as applying the method of syntax-directed to each protocol grammar.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.21 no.2
• /
• pp.15-26
• /
• 2021

Recently, as the introduction of cloud, mobile, and IoT has become active, there is a growing need for technology development that can supplement the limitations of traditional security solutions based on fixed perimeters such as firewalls and Network Access Control (NAC). In response to this, SDP (Software Defined Perimeter) has recently emerged as a new base technology. Unlike existing security technologies, SDP can sets security boundaries (install Gateway S/W) regardless of the location of the protected resources (servers, IoT gateways, etc.) and neutralize most of the network-based hacking attacks that are becoming increasingly sofiscated. In particular, SDP is regarded as a security technology suitable for the cloud and IoT fields. In this study, a new access control system was proposed by combining SDP and hash tree-based large-scale data high-speed signature technology. Through the process authentication function using large-scale data high-speed signature technology, it prevents the threat of unknown malware intruding into the endpoint in advance, and implements a kernel-level security technology that makes it impossible for user-level attacks during the backup and recovery of major data. As a result, endpoint security, which is a weak part of SDP, has been strengthened. The proposed system was developed as a prototype, and the performance test was completed through a test of an authorized testing agency (TTA V&V Test). The SDP-based access control solution is a technology with high potential that can be used in smart car security.

• Journal of the Institute of Electronics Engineers of Korea TC
• /
• v.38 no.3
• /
• pp.19-27
• /
• 2001

Accordingly it is very important to not only develop the stack of protocol, but also try an international standardization regarding the standard protocol of VoIP. Has compared to the advanced countries having already some success in commercialization, Korea is relatively much less involved in relation to this technology and endeavors. In this regards, this paper is focused on developing a protocol stack made with encoder/decoder, the generator or the header file, syntax analyzer etc. based on the protocol grammars of Session Description Protocol supported by IETF RFC2327. For the sake of it, first describe the SDP BNF grammar based on IETF RFC2327 Augmented BNF. And then we produce the Abstract Syntax Tree, header file generator for encoding/decoding as applying the method of syntax directed to SDP protocol grammar.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.18 no.4
• /
• pp.805-810
• /
• 2014

In this paper, the characteristics of a series-fed dipole pair antenna with an end-aligned strip pair director are studied. In the proposed SDP antenna, two strip dipole antennas with different lengths and a ground reflector are connected trough a coplanar stripline. The strip pair director placed above the second dipole element are two rectangular-shaped strips and is aligned at the ends of the two arms of the second dipole. The variations on the antenna performance for different lengths and widths of the director are analyzed, and optimal design parameters for the enhancement of the bandwidth are obtained. The optimized SDP antenna is fabricated on an FR4 substrate, and the experimental results show that the antenna has a frequency band of 1.65-2.95 GHz for a VSWR < 2, which shows enhanced bandwidth compared to the conventional SDP antenna.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2013.05a
• /
• pp.56-58
• /
• 2013

In this paper, a design method to obtain a band rejection characteristic in the 2.4-2.484 GHz WLAN band is studied for a series-fed dipole pair (SDP) antenna operating in the band of 1.7-2.7 GHz for mobile communication base station applications. The band rejection characteristic is achieved by inserting U-shaped slots on the coplanar strip line connecting the two dipole elements of the SDP antenna. The effects of the location and dimension of the slots on the band rejection characteristics are examined. The optimized SDP antenna with WLAN band rejection is fabricated on an FR4 substrate and the experimental results show that the antenna has a desired band rejection performance with a frequency band of 1.65-2.78 GHz (51.0%) for a VSWR < 2, and a rejection band of 2.39-2.54 GHz.

• Journal of Animal Science and Technology
• /
• v.63 no.5
• /
• pp.1076-1085
• /
• 2021

The study was conducted to evaluate the effects of spray-dried plasma (SDP) supplementation during late gestation and lactation on productive performance and immune responses of sows and their litters. Twelve sows (227.78 ± 2.16 kg average body weight; 2.0 average parity) were randomly allotted to two dietary treatments: a basal diet (CON) and the basal diet supplemented with 1% SDP. Sows were fed experimental diets from d 30 before farrowing to weaning of their piglets. Blood samples were collected from sows on d 1, 3, and 7 of lactation and from two randomly selected nursing pigs per litter on d 3 and 7 after birth, and d 1, 3, and 7 after weaning. Productive performance and immune responses of sows and their piglets were measured. There was a trend of less body weight loss in sows supplemented with SDP (p < 0.10) during the lactation period and a trend of greater (p < 0.10) average daily gain in SDP piglets compared to those in the CON group. Sows in the SDP group tended to have lower (p < 0.10) serum concentrations of tumor necrosis factor-α (TNF-α), transforming growth factor-β1 (TGF-β1), and cortisol on d 3 and lower serum concentration of TNF-α on d 7 compared with sows in CON group. In comparison with CON piglets, piglets from SDP sows tended to have lower (p < 0.10) serum concentrations of TNF-α, TGF-β1, and cortisol on d 7 after birth, lower (p < 0.10) serum TNF-α and C-reactive protein on d 3 and 7 after weaning, and greater (p < 0.10) average daily gain after weaning. Moreover, weaned pigs from sows fed SDP had significantly lower (p < 0.05) serum concentrations of cortisol and TGF-β1 on d 3 and 7 postweaning, respectively, than CON piglets. In conclusion, SDP supplementation in sow diets from late gestation to weaning improved the productive performance of sows and their offspring; the beneficial effects of SDP may be mediated in part through modulation of immune responses of both sows and piglets.

• 한국정보통신설비학회:학술대회논문집
• /
• 2004.08a
• /
• pp.137-141
• /
• 2004

네트워크 사용자의 급속한 증가로 네트워크 내의 부하를 감당하기에는 많은 어려움을 가져왔다. 이와 같은 이유로 기존의 TCP/IP에서 세션을 통하여 노드들 간의 통신을 연결하는 방식에서 현재는 하나의 채널을 통해 고속의 I/O가 가능하도록 하는 기술이 많이 연구되고 있다. 그 대표적인 것으로 인피니밴드가 있다. 인피니밴드는 프로세싱 노드와 입출력 장치 사이의 통신, 프로세스간 통신에 대한 산업 표준이 되고 있고 프로세싱 노드와 입출력 장치를 연결하기 위해 스위치 기반의 상호 연결은 전통적인 버스 입출력을 대체하는 새로운 입출력 방식이 사용된다. 또한 인피니밴드에서는 현재 많은 이슈가 되고 있는 RDMA 방식을 이용해 원격지 서버들 간에 직접 메모리 접근 방식을 통해 CPU와 OS의 로드를 최소화하고 있다. 본 논문에서는 RDMA를 적용한 새로운 채널 기반 네트웍의 프로토콜인 SDP(Socket Direct Protocol)를 구현하여 SDP_STREAM의 패킷 처리량에 대한 성능을 평가한다. 그리고 이에 대한 성능 평가를 위해서 Netperf 툴을 이용했다. 특히 Zero-Copy방식을 사용하지 않는 일반적인 소켓 API을 이용한 TCP_STREAM과 Zero-Copy방식을 이용한 SDP_STREAM의 패킷 처리량을 비교했으며 성능 평가 결과는 기존의 TCP_STREAM 패킷 처리량에 비해 약 3배 이상 향상된 결과를 나타냈다.