• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.4
• /
• pp.863-872
• /
• 2015

Kernel rootkit is recognized as one of the most severe and widespread threats to corrupt the integrity of an operating system. Without an external monitor as a root of trust, it is not easy to detect kernel rootkits which can intercept and modify communications at the interfaces between operating system components. To provide such a monitor isolated from an operating system that can be compromised, most existing solutions are based on external hardware. Unlike those solutions, we develop a kernel introspection system based on the ARM TrustZone technology without incurring extra hardware cost, which can provide a secure memory space in isolation from the rest of the system. We particularly use a secure timer to implement an autonomous switch between secure and non-secure modes. To ensure integrity of reference, this system measured reference from vmlinux which is a kernel original image. In addition, the flexibility of monitoring block size can be configured for efficient kernel introspection system. The experimental results show that a secure kernel introspection system is provided without incurring any significant performance penalty (maximum 6% decrease in execution time compared with the normal operating system).

• Annual Conference of KIPS
• /
• 2024.05a
• /
• pp.321-322
• /
• 2024

다양한 방면에서 사용되는 임베디드 시스템의 메모리 취약성에 대한 관심이 많아짐에 따라 임베디드 시스템의 메모리 보호와 관련하여 많은 연구가 진행 중이다. 스택 카나리는 효율적인 메모리 보호 기법으로써 널리 사용되지만 물리 메모리가 제한적이고 사용자 권한 분리를 지원하지 않는 임베디드 시스템에서는 기존 방식을 활용한 스택 카나리를 적용하는 것에 한계가 있다. ARM의 TrustZone은 일반 실행 환경과 신뢰 실행 환경으로 분리하여 일반 실행 환경에서 신뢰 실행 환경의 데이터나 코드에 접근하지 못 하도록 막는다. 그렇기 때문에 ARM의 TrustZone에 암호화 키를 저장하거나 보안이 중요한 동작을 TrustZone에서 실행하는 연구가 많다. 본 논문에서는 ARM의 TrustZone을 활용하여 임베디드 시스템에서 스택 카나리 기법의 한계를 보완 할 수 있는 방법을 제안한다.

• Journal of the Korean housing association
• /
• v.26 no.1
• /
• pp.61-70
• /
• 2015

The purpose of this study was to provide information on how to expend participation in and raise awareness of the Green Parking Project. A survey was conducted for this study among two groups. One group consisted of 38 residents of the Green Parking Zone in Nam-gu, Ulsan, and the other group consised 129 residents with no experience with the Green Parking Project. For analysis, the frequency and means were calculated, and t-test, analysis of variance, and chi-square test were performed. The results showed, first, that general residents tended to think that parking on the street in front of one's house is a divine right, while residents living the Green Parking Zone thought that the street is a public space. Second, general residents regarded fences as means of security to protect their private property, while people living in the Green Parking Zone tended to think of their yards as semi-private spaces and allowed access to neighbors. Third, general residents had concerns about maintenance and administration fees, noise and dust, security of houses, and privacy. However, residents of the Green Parking Zone evaluated those conditions positively. Fourth, people who were well-informed about the Green Parking Project had low anxiety about security and invasion of privacy, results from the project. Therefore, effective public relations are very important for expanding participation and raising awareness.

• The KIPS Transactions:PartC
• /
• v.16C no.2
• /
• pp.189-198
• /
• 2009

Mobile RFID system is a next generation technology which combines the existing RFID systems with mobile systems. It is newly expected to provide additional services and will be broadly used in everyday life; however, it sometimes causes the privacy or security problems generated by existing RFID systems and the additional privacy or security problems. Moreover, even if many methods have been proposed to solve those problems, it is still difficult to adapt to reality or to guarantee the security perfectly. Therefore, in this paper, we propose the secure and practicable privacy protection mechanism suitable to mobile RFID systems. proposing mechanism is applicable the mechanism to Private Zone of mobile RFID systems which require to protect the privacy. This mechanism suggests that own tagging-products needed to protect privacy using mobile reader of personal don't provide any information to other readers except their own reader. In addition to, proposing mechanism is the efficient mechanism which largely reduces the process to maintain the synchronization when happen to the DoS attack or system error.

• Journal of Information Technology Services
• /
• v.10 no.4
• /
• pp.243-258
• /
• 2011

With increasing interest in ubiquitous computing technology, an infrastructure for the short-distance wireless communication has been extended socially, bringing spotlight to the security system using the image or location. In case of existing security system, there have been issues such as the occurrences of blind spots, difficulty in recognizing multiple objects and storing of the unspecified objects. In order to solve this issue, zone-based location-estimation search system for the image have been suggested as an alternative based on the real-time location determination technology combined with image. This paper intends to suggest the search service for the image zone-based location-estimation. For this, it proposed the location determination algorism using IEEE 802.15.4/ZigBee's RSSI and for real-time image service, the RTP/RTCP protocol was applied. In order to combine the location and image, at the event of the entry of the specified target, the record of the time for image and the time of occurrence of the event on a global time standard, it has devised a time stamp, applying XML based meta data formation method based on the media's feature data based in connection with the location based data for the events of the object. Using the proposed meta data, the service mode which can search for the image from the point in time when the entry of the specified target was proposed.

• Proceedings of the Korean Geotechical Society Conference
• /
• 2008.10a
• /
• pp.992-1006
• /
• 2008

The tunnel type spillways is under construction to increasing water reservoir capacity in Dae-am dam. Cutting-slope adjacent to outlet of spillways had been originally designed to be 63 degrees and about 65m in height. Examination is carried out in preceding construction that it is caused to some problems possibility which of machine for slope cutting couldn't approach to the site, blasting for cutting slope might have negative influence on highway and roads nearby, and fine view along the Tae-hwa river would be eliminated. In order to establish stability of tunnel and more friendly natural environment that we are carry out detailed geological surface survey and analysis of slope stability. So, we are design and construct for tunnel excavation with possible method that it is keep up natural slope. The result of survey and analysis that natural slope was divided 3 zone(A, B, C zone). In A and B zone, in first removed floating rock, high tensile tension net is install that it prevent of release and falling of rock, in order to security during under working. In addition to, pre-stressed rock anchor is install purpose of security during tunnel excavation because of fault zone near vertical developed above excavation level. Zone C is relatively good condition of ground, design is only carry out random rock bolt. All zone are designed and constructed drainage hole for groundwater and surface water is easily drain. Desinged slpoe is harmony with near natural environment. Successfully, construction is completed.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.16 no.4
• /
• pp.737-744
• /
• 2012

Recently VoIP has provided voice(both wired and wireless from IP-based) as well as the transmission of multimedia information. VoIP used All-IP type, Gateway type, mVoIP etc. Wired and wireless VoIP has security vulnerabilities that VoIP call control signals, illegal eavesdropping, service misuse attacks, denial of service attack, as well as wireless vulnerabilities etc. from WiFi Zone. Therefore, the analysis of security vulnerabilities in wired and wireless VoIP and hacking incidents on security measures for research and study is needed. In this paper, VoIP (All-IP type, and for Gateway type) for system and network scanning, and, IP Phone to get the information and analysis of the vulnerability. All-IP type and Gateway type discovered about the vulnerability of VoIP hacking attacks (Denial of Service attacks, VoIP spam attacks) is carried out. And that is a real VoIP system installed and operated in the field of security measures through research and analysis is proposed.

• Journal of Korean Society of societal Security
• /
• v.2 no.4
• /
• pp.75-81
• /
• 2009

This paper presents the geotechnical characteristics of tunnel co \l apse based on the case studies. For domestic cases, most collapses are likely to happen along the weakest zone of shear strength due to the change of stresses induced by excavation specially when soft or weathered rock exist in front of a tunnel. In other words, the collapse of a tunnel occurs along the highly weathered fractured zone due to blasting and excavation. In Europe, collapses have been occurred by one joint group even though the ground is relatively fresh and for the rocks of which RQD is over 50%. In addition, the amount of ground water flow does not seem to be seriously affected by the RQD range.

• Convergence Security Journal
• /
• v.9 no.1
• /
• pp.11-17
• /
• 2009

The object of this paper is to design a school-zone safety management system based on context-aware, integrated with computing technology. When it occurs to kidnap of elementary school students, the monitoring device creates context information through a combination object extraction and context-aware technology and alarm administrator about an emergency situation. In addition, the proposed system that requires a human perspective, a railroad crossing, statistics research of traffic, and a variety of applications such as factory automation systems can be used to be the best choice.

• International Journal of Computer Science & Network Security
• /
• v.24 no.3
• /
• pp.142-150
• /
• 2024

A conceptual model represents an understanding of a system that is going to be developed, which in this research, a driving simulation software to study driver behavior at signalised intersections. Therefore, video observation was conducted to study driver compliance behaviour within the dilemma zone at signalised intersection, with regards to driver's distance from the stop line during yellow light interval. The video was analysed using Thematic Analysis and the data extracted from it was analysed using Chi-Square Independent Test. The Thematic Analysis revealed two major themes which were traffic situation and driver compliance behaviour. Traffic situation is defined as traffic surrounding the driver, such as no car in front and behind, car in front, and car behind. Meanwhile, the Chi-Square Test result indicates that within the dilemma zone, there was a significant relationship between driver compliance behaviour and driver's distance from the stop line during yellow light interval. The closer the drivers were to the stop line, the more likely they were going to comply. In contrast, drivers showed higher non-compliant behavior when further away from stop line. This finding could help in the development of conceptual model of driving simulation with purpose in studying driver behavior.