• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.40 no.5
• /
• pp.841-850
• /
• 2015

XaaS (Everything as a Service) provides re-usable, fine-grained software components like software, platform, infra across a network. Then users usually pay a fee to get access to the software components. It is a subset of cloud computing. Since XaaS is provided by centralized service providers, it can be a target of various security attacks. Specially, if XaaS becomes the target of APT (Advanced Persistent Threat) attack, many users utilizing XaaS as well as XaaS system can be exposed to serious danger. So various solutions against APT attack are proposed. However, they do not consider all aspects of security control, synthetically. In this paper, we propose overall security checkup considering technical aspect and policy aspect to securely operate XaaS.

• Journal of the Korean Solar Energy Society
• /
• v.33 no.6
• /
• pp.62-69
• /
• 2013

In this paper, Korea Institute of Energy Research, building integrated renewable energy monitoring system that utilizes solar power generation forecast data forecast model is proposed. Renewable energy integration of real-time monitoring system based on monitoring data were building a database and the database of the weather conditions and to study the correlation structure was tailoring. The weather forecast cloud cover data, generation data, and solar radiation data, a data mining and time series analysis using the method developed models to forecast solar power. The development of solar power in order to forecast model of weather forecast data it is important to secure. To this end, in three hours, including a three-day forecast today Meteorological data were used from the KMA(korea Meteorological Administration) site offers. In order to verify the accuracy of the predicted solar circle for each prediction and the actual environment can be applied to generation and were analyzed.

• Proceedings of the KSR Conference
• /
• 2006.11b
• /
• pp.990-1003
• /
• 2006

To cope with the change of railway safety environment and to prevent the catastrophic accident, the railway safety management system was established through the legislation of railway safety rules. And to audit and evaluate the accomplishment of railway safety rules by the railway operators, the Integrated Railway Safety Audit System(IRSAS) has been conducting. This study find out the strategy to stabilize the IRSAS by applying Theory of Constraints(TOC) Thinking Process. For meeting the IRSAS's goal of effective levelling up of railway safety, the two necessary conditions, 1)the secure of substantial safety through the IRSAS and 2)the execution of efficient IRSAS, should be fulfilled. Estimated undesirable effects(UDEs) from the IRSAS were identified, and 3 of them were selected for creating the requisite conflict clouds. Entities from these conflict clouds were synthesized into a core conflict cloud that foamed the base of Current Reality Tree. The strategic direction for change extracted from the conflict cloud is the reinforcement of IRSAS preparation system including the level up of operator's self audit, the deepening of preliminary survey, the establishment of complementing system of audit check list and the build up of auditor's specialization. These injection were logically validated via a Future Reality Tree and expected to be confirmed by further progressing of IRSAS.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.29 no.2
• /
• pp.439-449
• /
• 2019

The development of information technology represented by ICBMA (IoT, Cloud, Big Data, Mobile, AI), is leading to a surge in data and a numerical and quantitative increase in data centers to accommodate it. As the data center is recognized as a social infrastructure, It is very important to identify physical security threats in advance in order to secure safety, such as responding to a terrorist attack. In this paper, we develop physical security threat breakdown structure (PS-TBS) for easy identification and classification of threats, and verify the feasibility and effectiveness of the PS-TBS through expert questionnaires. In addition, we intend to contribute to the improvement of physical security level by practical use in detailed definition on items of PS-TBS.

• Journal of KIBIM
• /
• v.13 no.4
• /
• pp.54-63
• /
• 2023

In recent years, the mandatory use of BIM has been actively promoted due to the digital transformation of the construction industry. However, the CDE (Common Data Environment) system, which is an essential element for operating BIM, has not been established in accordance with the domestic situation. To solve this problem, this study analyzed the results of previous studies, including the ISO 19650 standard and domestic CDE system requirements, and developed BIM-based collaboration functions that are suitable for the domestic construction industry through functional analysis of domestic and foreign commercial CDE solutions. And we developed a BIM collaboration framework to provide BIM-based collaboration functions as a service by using cloud technologies such as IaaS, PaaS, and SaaS to provide infrastructure resources flexibly and flexibly. The BIM collaboration framework developed in this study meets most of the CDE requirements of ISO1965, so it can secure competitiveness when bidding for overseas BIM projects. Also, because the BIM collaboration functions can be selectively applied to build a BIM-based collaboration platform, it is expected that the utilization of the BIM collaboration framework will be high, as it can minimize not only the time to build the platform but also the operating costs, and the usability is higher than that of existing commercial BIM CDE solutions.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.24 no.5
• /
• pp.795-807
• /
• 2014

Vehicular Ad hoc Network (VANET) has gone through a rich amount of research and currently is making its way towards the deployment. However, surprisingly it evolved to rather more applications and services-rich breed referred to as VANET-based clouds due to the advancements in the automobile and communication technologies. Security and privacy have always been the challenges for the think tanks to deploy this technology on mass scale. It is even worse that some security issues are orthogonally related to each other such as privacy, revocation and route tracing. In this paper, we aim at a specific VANET-based clouds framework proposed by Hussain et al. namely VANET using Clouds (VuC) where VANET and cloud infrastructure cooperate with each other in order to provide VANET users (more precisely subscribers) with services. We specifically target the aforementioned conflicted privacy, route tracing, and revocation problem in VANET-based clouds environment. We propose a multiple pseudonymous approach for privacy reasons and leverage the beacons stored in the cloud infrastructure for both route tracing and revocation. In the proposed scheme, revocation authorities after colluding, can trace the path taken by the target node for a specified timespan and can also revoke the identity if needed. Our proposed scheme is secure, conditional privacy preserved, and is computationally less expensive than the previously proposed schemes.

• Journal of Digital Convergence
• /
• v.19 no.8
• /
• pp.11-20
• /
• 2021

Due to the Covid-19 Pandemic, the world is facing the most serious crisis since the Great Depression, and is facing a new paradigm of the Untact era. Korea has also announced various policies and legal systems, including the 'Korean version of the New Deal', but it is conflicting between the use of information and the protection of information. In this paper, we derive thresholds by analyzing policies, statutes and technologies in the public cloud. Based on this, we propose to introduce the "Building a Nationwide Public Virtual Machine" as a key task to secure the next-generation national growth engine so that all citizens can use digital services in a secure and reliable environment with equal access to information. Through this, all citizens can use various digital new technology services only with low-priced and low-specification terminals, and by establishing a dedicated center for information protection, we want to respond to rapidly increasing security threats. It also points out that the domestic cloud-related legal system only emphasizes the use of information while overlooking the importance of security, and suggests the right direction for the legal system to move forward.

• Journal of Internet Computing and Services
• /
• v.24 no.5
• /
• pp.85-96
• /
• 2023

With advance of cloud computing technology, Blockchain as a Service of Cloud Service Provider has been utilized in various areas such as e-Commerce and financial companies to manage customer history and distribution history. However, if users' search history, purchase history, etc. are to be utilized in a BaaS in areas such as recommendation algorithms and search engine development, the users' search queries will be exposed to the company operating the BaaS, and privacy issues will be occured. Z. Guan et al. ensure the unlinkability between users' search query and search result using searchable encryption, and based on the inner product similarity, they select Top-k results that are highly relevant to the users' search query. However, there is a problem that the Top-k results selection may be not possible due to ties of inner product similarity, and BaaS over cloud is not considered. Therefore, this paper solve the problem of Z. Guan et al. using cosine similarity, so we improve accuracy of search result. And based on this, we design a BaaS with secure Top-k search that improved accuracy. Furthermore, we design a smart contracts that preserve privacy of users' search and obtain Top-k search results that are highly relevant to the users' search.

• Journal of KIISE
• /
• v.42 no.9
• /
• pp.1175-1184
• /
• 2015

Recently, there has been an explosive increase in the volume of multimedia data that is available as a result of the development of multimedia technologies. More and more data is becoming available on a variety of web sites, and it has become increasingly cost prohibitive to have a single data server store and process multimedia files locally. Therefore, many service providers have been likely to outsource data to cloud storage to reduce costs. Such behavior raises one serious concern: how can data users be authenticated in a secure and efficient way? The most widely used password-based authentication methods suffer from numerous disadvantages in terms of security. Multi-factor authentication protocols based on a variety of communication channels, such as SMS, biometric, or hardware tokens, may improve security but inevitably reduce usability. To this end, we present a data block-based authentication scheme that is secure and guarantees usability in such a manner where users do nothing more than enter a password. In addition, the proposed scheme can be effectively used to revoke user rights. To the best of our knowledge, our scheme is the first data block-based authentication scheme for outsourced data that is proven to be secure without degradation in usability. An experiment was conducted using the Amazon EC2 cloud service, and the results show that the proposed scheme guarantees a nearly constant time for user authentication.

• Journal of Advanced Navigation Technology
• /
• v.17 no.3
• /
• pp.314-325
• /
• 2013

Smartwork is future-oriented work-environment to bring swift business transaction and convenient for users. In domestic and foreign various countries, It's already prompting introduction of smartwork. Users process work to access frequently from the outside in smartwork that's a similar client/server environment to existing Cloud Computing environment. Necessary of user authentication is increasing to be solvable to security vulnerability because there is possibility that malware flows in and leaks company's confidential information by unauthorized users especially in smartwork environment. Therefore we propose User Authentication scheme based face recognition is applicable to smartwork environment to analyze established User Authentication scheme. environment.