• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.6 no.2
• /
• pp.766-783
• /
• 2012

Recently, many malicious users have attacked web browsers using JavaScript code that can execute dynamic actions within the browsers. By forcing the browser to execute malicious JavaScript code, the attackers can steal personal information stored in the system, allow malware program downloads in the client's system, and so on. In order to reduce damage, malicious web pages must be located prior to general users accessing the infected pages. In this paper, a novel framework (JsSandbox) that can monitor and analyze the behavior of malicious JavaScript code using internal function hooking (IFH) is proposed. IFH is defined as the hooking of all functions in the modules using the debug information and extracting the parameter values. The use of IFH enables the monitoring of functions that API hooking cannot. JsSandbox was implemented based on a debugger engine, and some features were applied to detect and analyze malicious JavaScript code: detection of obfuscation, deobfuscation of the obfuscated string, detection of URLs related to redirection, and detection of exploit codes. Then, the proposed framework was analyzed for specific features, and the results demonstrate that JsSandbox can be applied to the analysis of the behavior of malicious web pages.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.10 no.7
• /
• pp.3353-3370
• /
• 2016

The way of combination of Product Perfect Codes (PPCs) is based on the theory of short codes constructing long codes. PPCs have larger embedding rate than Hamming codes by expending embedding columns in a coding block, and they have been proven to enhance the performance of the F₅ steganographic method. In this paper, the proposed modified product codes called MPCs are introduced as an efficient way to embed more data than PPCs by increasing 2^r₂-1-r₂ embedding columns. Unlike PPC, the generation of the check matrix H in MPC is random, and it is different from PPC. In addition a simple solving way of the linear algebraic equations is applied to figure out the problem of expending embedding columns or compensating cases. Furthermore, the MPCs over ℤ₄ have been proposed to further enhance not only the performance but also the computation speed which reaches O(n₁+σ). Finally, the proposed ℤ₄-MPC intends to maximize the embedding rate with maintaining less distortion , and the performance surpasses the existing improved product perfect codes. The performance of large embedding rate should have the significance in the high-capacity of covert communication.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.10 no.7
• /
• pp.3319-3338
• /
• 2016

Cloud storage is becoming more and more popular because of its elasticity and pay-as-you-go storage service manner. In some cloud storage scenarios, the data that are stored in the cloud may be shared by a group of users. To verify the integrity of cloud data in this kind of applications, many auditing schemes for shared cloud data have been proposed. However, all of these schemes do not consider the access authorization problem for users, which makes the revoked users still able to access the shared cloud data belonging to the group. In order to deal with this problem, we propose a novel public auditing scheme for shared cloud data in this paper. Different from previous work, in our scheme, the user in a group cannot any longer access the shared cloud data belonging to this group once this user is revoked. In addition, we propose a new random masking technique to make our scheme preserve both data privacy and identity privacy. Furthermore, our scheme supports to enroll a new user in a group and revoke an old user from a group. We analyze the security of the proposed scheme and justify its performance by concrete implementations.

• Journal of the Korean Society for Precision Engineering
• /
• v.26 no.10
• /
• pp.129-133
• /
• 2009

Considerable attention has been focused on digital X-ray systems with transmission. However, only a few attempts have been made using X-ray backscatter systems. This study developed a Data Acquisition System (DAS) for backscattered X-rays. The imaging system used X-ray backscatter at low energy levels, which has unique advantages in terms of acquiring information that cannot be obtained using the transmission system. Such systems are of potential benefit in the medical, industrial, security and military fields because of its practical benefits and the low doses used. The developed system is a similar body scan system. Experiments were carried out using a several metal materials and a fish, which produces results similar to those obtained using the human body during X-ray testing.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.4 no.6
• /
• pp.1273-1293
• /
• 2010

Immune-inspired intrusion detection is a promising technology for network security, and well known for its diversity, adaptation, self-tolerance, etc. However, scalability and coverage are two major drawbacks of the immune-inspired intrusion detection systems (IIDSes). In this paper, we propose an IIDS framework, named GEP-IIDS, with improved basic system elements to address these two problems. First, an additional bio-inspired technique, gene expression programming (GEP), is introduced in detector (corresponding to detection rules) representation. In addition, inspired by the avidity model of immunology, new avidity/affinity functions taking the priority of attributes into account are given. Based on the above two improved elements, we also propose a novel immune algorithm that is capable of integrating two bio-inspired mechanisms (i.e., negative selection and positive selection) by using a balance factor. Finally, a pruning algorithm is given to reduce redundant detectors that consume footprint and detection time but do not contribute to improving performance. Our experimental results show the feasibility and effectiveness of our solution to handle the scalability and coverage problems of IIDS.

• The Korean Journal of Health Service Management
• /
• v.5 no.1
• /
• pp.1-13
• /
• 2011

The purpose of this paper was to evaluate performance of information system for one national university hospital in order to identify the factors influencing performance of information system. KPIs were collected for 181 users of information system (41 doctors, 104 nurses, and 11 medical supporting staffs, and 25 administrative staffs) from August 10 to 24, 2010. The results were as follows: Average performance score for input layer was 3.16; average performance score for process layer was 3.35; and average performance score for business layer was 3.57. Scores for input layer was lowest for nurses and scores for process and business layer were lowest for doctors. Results from the path analysis showed that system quality, demographic characteristics, and security significantly influenced management process but these factors except demographic characteristics influenced user satisfaction; and management process also significantly influenced user satisfaction.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.11 no.11
• /
• pp.5625-5641
• /
• 2017

Certificateless public key cryptography resolves the certificate management problem in traditional public key cryptography and the key escrow problem in identity-based cryptography. In recent years, some good results have been achieved in speeding up the computation of bilinear pairing. However, the computation cost of the pairing is much higher than that of the scalar multiplication over the elliptic curve group. Therefore, it is still significant to design cryptosystem without pairing operations. A multi-signer universal designated multi-verifier signature scheme allows a set of signers to cooperatively generate a public verifiable signature, the signature holder then can propose a new signature such that only the designated set of verifiers can verify it. Multi-signer universal designated multi-verifier signatures are suitable in many different practical applications such as electronic tenders, electronic voting and electronic auctions. In this paper, we propose a certificateless multi-signer universal designated multi-verifier signature scheme and prove the security in the random oracle model. Our scheme does not use pairing operation. To the best of our knowledge, our scheme is the first certificateless multi-signer universal designated multi-verifier signature scheme.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.12 no.9
• /
• pp.4271-4294
• /
• 2018

Communication cost is the most important factor in Wireless Sensor Networks (WSNs), as exchanging control keying messages consumes a large amount of energy from the constituent sensor nodes. Time-based Dynamic Keying and En-Route Filtering (TICK) can reduce the communication costs by utilizing local time values of the en-route nodes to generate one-time dynamic keys that are used to encrypt reports in a manner that further avoids the regular keying or re-keying of messages. Although TICK is more energy efficient, it employs no re-encryption operation strategy that cannot determine whether a healthy report might be considered as malicious if the clock drift between the source node and the forwarding node is too large. Secure SOurce-BAsed Loose Synchronization (SOBAS) employs a selective encryption en-route in which fixed nodes are selected to re-encrypt the data. Therefore, the selection of encryption nodes is non-adaptive, and the dynamic network conditions (i.e., The residual energy of en-route nodes, hop count, and false positive rate) are also not focused in SOBAS. We propose an energy efficient selection of re-encryption nodes based on fuzzy logic. Simulation results indicate that the proposed method achieves better energy conservation at the en-route nodes along the path when compared to TICK and SOBAS.

• Journal of Hydrogen and New Energy
• /
• v.18 no.2
• /
• pp.207-215
• /
• 2007

The rapid changes of energy environment such as high oil price, united nations framework convention on climate change, and the hydrogen economy have been happening to provide national energy security in the 21st century, we need to build strategic approach for coping with energy environment. From a long-term viewpoint of energy technology development, it's time to develop energy technology with selection and specification. In this study, we build energy technology roadmap for establishing the hydrogen economy with a long-term strategy. We analyze economic spin-offs and commercial potential for establishing energy technology roadmap of energy technology development for establishing the hydrogen economy.

• Human Ecology Research
• /
• v.56 no.2
• /
• pp.123-131
• /
• 2018

This study investigated associations between attachment and friendship. This study also examined the mediating effects of empathy on the association between two variables. Participants consisted of $4^{th}$ to $6^{th}$ grade elementary school children including 173 boys and 141 girls. Two elementary schools were located in Seoul and Bucheon. Children participated in a peer nomination interview. They nominated their three most liked peers. Children's responses to the best friend of the peer nomination identified the children's best friends. A Friendship Quality Scale measured children's positive friendship quality and friendship satisfaction. Children completed the Inventory of the Parent and Peer Attachment Scale that assessed maternal and paternal attachment. In addition, they completed a children's version of the Empathy Quotient that measured empathy. Pearson's correlation and Structural Equation Modeling were used to analyse the data. The results indicated that attachment had a direct influence on friendship network. Children who had the high levels of attachment security had large friendship network. However, attachment did not have a significant effect on friendship quality. Moreover, empathy had mediating effects on the association between attachment and friendship quality as well as the friendship network. The results of this research highlight the importance of attachment and empathy on children's friendship.