• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제10권3호
• /
• pp.1229-1248
• /
• 2016

With the feature of convenience and low cost, remote healthcare monitoring (RHM) has been extensively used in modern disease management to improve the quality of life. Due to the privacy of health data, it is of great importance to implement RHM based on a secure and dependable network. However, the network connectivity of existing RHM systems is unreliable in disaster area because of the unforeseeable damage to the communication infrastructure. To design a secure RHM system in disaster area, this paper presents a Secure VANET-Assisted Remote Healthcare Monitoring System (SVC) by utilizing the unique "store-carry-forward" transmission mode of vehicular ad hoc network (VANET). To improve the network performance, the VANET in SVC is designed to be a two-level network consisting of two kinds of vehicles. Specially, an innovative two-level key management model by mixing certificate-based cryptography and ID-based cryptography is customized to manage the trust of vehicles. In addition, the strong privacy of the health information including context privacy is taken into account in our scheme by combining searchable public-key encryption and broadcast techniques. Finally, comprehensive security and performance analysis demonstrate the scheme is secure and efficient.

• ETRI Journal
• /
• 제41권4호
• /
• pp.465-472
• /
• 2019

The major challenge in wireless body area networks (WBAN) is setting up a protected communication between data consumers and a body area network controller while meeting the security and privacy requirements. This paper proposes efficient and secure data communication in WBANs using a Twofish symmetric algorithm and ciphertext-policy attribute-based encryption with constant size ciphertext; in addition, the proposed scheme incorporates policy updating to update access policies. To the best of the author's knowledge, policy updating in WBAN has not been studied in earlier works. The proposed scheme is evaluated in terms of message size, energy consumption, and computation cost, and the results are compared with those of existing schemes. The result shows that the proposed method can achieve higher efficiency than conventional methods.

• 대한전자공학회논문지TC
• /
• 제38권11호
• /
• pp.9-18
• /
• 2001

인터넷을 이용한 대부분의 VPN(Virtual Private Network)은 기업 데이터만을 보호하는 형태로 구성되어 있다. 그러므로 다양한 형태의 VPN 구성이 필요하다. 최근에 SCG(Secure Communication Group) 개념을 이용하여 VPN을 구성하는 방법이 연구되고 있다. 본 논문에서는 SCG 구성 방법인 Path-definition 방식과 Arca-definition 방식의 문제점을 분석하고, 인트라넷 VPN 환경에서 SCG 개념을 사용한 VPN 중 적용 가능한 여러 형태의 VPN 모델을 검토한다. 그리고 인터넷에 Area-definition 방식을 적용하고 SCG number를 이용한 계층적 VPN 구성 방법을 제안한다. 제안한 방식의 특성을 각 entity가 관리해야 할 키수 및 인증 회수에 대해 정량적으로 분석하고, 본 방식이 유효함을 나타낸다.

• Current Photovoltaic Research
• /
• 제10권2호
• /
• pp.56-61
• /
• 2022

Recently, the expansion of the domestic solar market due to the promotion of eco-friendly and alternative energy-related policies is promising, and it is expected to lead the high-efficiency/high-power module market based on M10 or larger cells to reduce LCOE, 540-560W, M12 based on M10 cells Compared to the existing technology with an output of 650-700W based on cells, it is necessary to secure competitiveness through the development of modules with 600W based on M10 cells and 750W based on M12 cells. For the development of high efficiency/high-power n-type bifacial, it is necessary to secure a lightweight technology and structure due to the increase in weight of the glass to glass module according to the large area of the module. Since the mechanical strength characteristics according to the large area and high weight of the module are very important, design values such as a frame of a new structure that can withstand the mechanical load of the Mechanical Load Test and the location of the mounting hole are required. In this study, a structural analysis design model was introduced to secure mechanical reliability according to the enlargement of the module area, and the design model was verified through the mechanical load test of the actual product. It can be used as a design model to secure the mechanical reliability required for PV modules by variables such as module area, frame shape, and the location and quantity of mounting holes of the structural analysis model verified. A relationship of output drop can be obtained.

• 한국재난정보학회 논문집
• /
• 제17권4호
• /
• pp.897-903
• /
• 2021

연구목적: 최근 국내외에서 해킹으로 피해자의 데이터를 암호화하고 이를 풀어주는 대가로 금전적 대가를 요구하는 랜섬웨어 피해가 증가하고 있다. 이에 다양한 방식의 대응기술과 솔루션에 대한 연구개발이 진행되고 있으며, 본 연구에서는 데이터를 저장하는 저장장치에 대한 보안 연구개발을 통해 근본적인 대응방안을 제시하고자 한다. 연구방법: 동일한 가상환경에 보안 저장영역과 일반 저장영역을 생성하고 접근 프로세스를 등록하여 샘플 데이터를 저장하였다. 저장된 샘플 데이터의 침해 여부를 확인하기 위해 랜섬웨어 샘플을 실행하여 침해 여부를 해당 샘플 데이터의 Hash 함수를 확인하였다. 접근 제어 성능은 등록된 접근 프로세스와 동일한 이름과 저장위치를 통해 샘플 데이터의 접근 여부를 확인하였다. 연구결과: 실험한 결과 보안 저장 영역의 샘플 데이터는 랜섬웨어 및 비인가된 프로세스로부터 데이터의 무결성을 유지하였다. 결론: 본 연구를 통해 보안 저장영역의 생성과 화이트리스트 기반의 접근 제어 방법이 중요한 데이터를 보호하는 방안으로 적합한 것으로 평가되며, 향후 기술의 확장성과 기존 솔루션과의 융합을 통해 보다 안전한 컴퓨팅 환경을 제공할 수 있을 것으로 기대된다.

• 정보보호학회논문지
• /
• 제14권3호
• /
• pp.125-135
• /
• 2004

IEEE 802.15.3 High Rate WPAN(Wireless Personal Area Network, 이하 HR-WPAN)은 홈네트워크와 같은 개민 용도의 장치들 사이의 빠른 무선 연결을 지원하기 위해 연구되어 왔다. 장치들의 안전한 사용을 위한 보안 요구에 따라 MAC 계층에서의 대칭키 암호 시스템을 채택하고 있지만, 키를 안전하게 교환하는 방법에 대해서는 언급하고 있지않다. 또한 앞으로 도래할 유비쿼터스(Ubiquitous) 컴퓨팅 환경의 핵심 기반 기술이 된다는 점에서 하나의 Piconet으로만 구성된 단순한 토폴로지를 벗어나 Child Piconet이 복잡하게 연결된 토폴로지 상에서 같은 Piconet에 속하지 않는 DEV들 간의 Secure Relationship을 맺는 과정에 대한 연구도 필요하다. 따라서 이 논문에서는 공개키 기반 구조를 사용하여 안전한 키 교환을 통한 Secure Membership을 맺는 과정을 연구하였으며, 또한 Child Piconet이 복잡하게 연결된 토폴로지에서 DEV들 간의 Secure Relationship을 맺기 위하여 공개키 기반 구조에 계층 구조를 추가한 프로토콜을 제안하였다.

• 정보보호학회논문지
• /
• 제12권2호
• /
• pp.153-172
• /
• 2002

본 논문은 이동환경에서 다수의 이동 단말을 대상으로 안전하고 효율적인 멀티캐스트 실현하는 이동보안멀티캐스트 구조 및 프로토콜을 제안하고자 한다. 제안된 이동보안멀티캐스트 구조 및 프로토콜은 이동 단말의 움직임에 따라 적응적으로 이동보안멀티캐스트 서비스를 제공해 줌으로써, 전송지연을 낮추고 키갱신 횟수를 줄임과 동시에 이동 단말의 이동으로 인한 서비스 끊김 및 데이터 손실을 방지하여 이동보안멀티캐스트 서비스의 QoS를 높였다.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제10권1호
• /
• pp.221-237
• /
• 2016

The wireless body area networks (WBANs) consist of wearable computing devices and can support various healthcare-related applications. There exist two crucial issues when WBANs are utilized for healthcare applications. One is the protection of the sensitive biometric data transmitted over the insecure wireless channels. The other is the design of effective medical management mechanisms. In this paper, a secure medical information management system is proposed and implemented on a TinyOS-based WBAN test bed to simultaneously address these two issues. In this system, the electronic medical record (EMR) is bound to the biometric data with a novel fragile zero-watermarking scheme based on the modified visual secret sharing (MVSS). In this manner, the EMR can be utilized not only for medical management but also for data integrity checking. Additionally, both the biometric data and the EMR are encrypted, and the EMR is further protected by the MVSS. Our analysis and experimental results demonstrate that the proposed system not only protects the confidentialities of both the biometric data and the EMR but also offers reliable patient information authentication, explicit healthcare operation verification and undeniable doctor liability identification for WBANs.

• Journal of Communications and Networks
• /
• 제7권2호
• /
• pp.207-221
• /
• 2005

The proliferation of wireless local area networks (WLANs) offering high data rate in hot spot area have spurred the demand for possible WLANs and third-generation (3G) cellular network integration solutions as the initiative step towards 4G systems. This paper provides a novel architecture for seamless location-aware integration of WLANs into 3G cellular networks and also an analysis for the efficient handover techniques. We introduce location as a key context in secure roaming mechanism for context-aware interworking in 4G systems. The fast secure roaming with location-aware authentication is implemented at an entity called location-aware service (LAS) broker that utilizes the concepts of direction of user and pre-warming zone. The location-ware interworking architecture supports seamless roaming services among heterogeneous wireless networks including WLANs, wireless metropolitan area networks (WMANs), and 3G cellular networks. This paper also includes a description of procedures needed to implement efficient mobility and location management. We show how the LAS broker with pre-warming and context transfer can obtain significant lower latency in the vertical handover.

• Journal of Communications and Networks
• /
• 제17권5호
• /
• pp.453-462
• /
• 2015

Body area networks (BANs) have emerged as an enabling technique for e-healthcare systems, which can be used to continuously and remotely monitor patients' health. In BANs, the data of a patient's vital body functions and movements can be collected by small wearable or implantable sensors and sent using shortrange wireless communication techniques. Due to the shared wireless medium between the sensors in BANs, it may be possible to have malicious attacks on e-healthcare systems. The security and privacy issues of BANs are becoming more and more important. To provide secure and correct association of a group of sensors with a patient and satisfy the requirements of data confidentiality and integrity in BANs, we propose a novel enhanced secure sensor association and key management protocol based on elliptic curve cryptography and hash chains. The authentication procedure and group key generation are very simple and efficient. Therefore, our protocol can be easily implemented in the power and resource constrained sensor nodes in BANs. From a comparison of results, furthermore, we can conclude that the proposed protocol dramatically reduces the computation and communication cost for the authentication and key derivation compared with previous protocols. We believe that our protocol is attractive in the application of BANs.