• 한국통신학회논문지
• /
• 제28권1B호
• /
• pp.87-93
• /
• 2003

정보보호 기술이 부분적, 폐쇄적, 개별적 개발에서 개방적, 광역적, 통합적으로 변모해 감에 따라 각각의 보안시스템을 구조적으로 통일하고 분산된 관리 방법을 일원화하기 위한 연구의 필요성이 증대되었다 그러나 아직까지는 각각의 보안시스템을 하나로 통합시켜 관리할 수 있는 공통된 프레임워크가 존재하지 않는다 따라서 이 논문에서는 각각의 보안 시스템을 체계적으로 관리하고 분산된 관리 방법을 일원화 할 수 있는 정책기반 네트워크 보안 관리 모델을 제시한다.

• International Journal of Computer Science & Network Security
• /
• 제23권6호
• /
• pp.77-83
• /
• 2023

This research is conducted to minimize the potential security risks of conducting online exams to an acceptable level as vulnerabilities and threats to this type of exam are presented. This paper provides a general structure for the risk management process and some recommendations for increasing the level of security.

• ETRI Journal
• /
• 제43권5호
• /
• pp.932-940
• /
• 2021

Currently, research on network functions virtualization focuses on using microservices in cloud environments. Previous studies primarily focused on communication between nodes in physical infrastructure. Until now, there is no sufficient research on group key management in virtual environments. The service is composed of microservices that change dynamically according to the virtual service. There are dependencies for microservices on changing the group membership of the service. There is also a high possibility that various security threats, such as data leakage, communication surveillance, and privacy exposure, may occur in interactive communication with microservices. In this study, we propose an ID-based group key exchange (idGKE) mechanism between microservices as one group. idGKE defines the microservices' schemes: group key gen, join group, leave group, and multiple group join. We experiment in a real environment to evaluate the performance of the proposed mechanism. The proposed mechanism ensures an essential requirement for group key management such as secrecy, sustainability, and performance, improving virtual environment security.

• International Journal of Computer Science & Network Security
• /
• 제22권4호
• /
• pp.329-339
• /
• 2022

Small cells, particularly femtocells, are regarded a promising solution for limited resources required to handle the increasing data demand. They usually boost wireless network capacity. While widespread usage of femtocells increases network gain, it also raises several challenges. Interference is one of such concerns. Interference management is also seen as a main obstacle in the adoption of two-tier networks. For example, placing femtocells in a traditional macrocell's geographic area. Interference comes in two forms: cross-tier and co-tier. There have been previous studies conducted on the topic of interference management. This study investigates the principle of categorization of interference management systems. Many methods exist in the literature to reduce or eliminate the impacts of co-tier, cross-tier, or a combination of the two forms of interference. Following are some of the ways provided to manage interference: FFR, Cognitive Femtocell and Cooperative Resource Scheduling, Beamforming Strategy, Transmission Power Control, and Clustering/Graph-Based. Approaches, which were proposed to solve the interference problem, had been presented for each category in this work.

• 디지털융복합연구
• /
• 제10권2호
• /
• pp.217-223
• /
• 2012

네트워크 로봇은 기존의 독립 로봇을 네트워크를 연결함으로써 서버와의 통신을 통해 언제 어디서나 다양한 서비스를 제공할 수 있다. 이러한 네트워크 로봇은 기존의 유 무선 네트워크 기술을 그대로 사용하여 실시간 서비스를 제공할 수 있다는 장점이 있지만 네트워크 보안 취약점으로 인하여 보안 취약점 문제가 발생할 수 있다. 그러므로 네트워크 로봇 환경에서는 다양한 통신 매체나 프로토콜에 관계없이 보안 기능을 만족할 수 있는 인증 프레임워크가 정립되어야만 한다. 본 논문에서는 네트워크 로봇 환경에서 발생할 수 있는 보안 취약점을 분석하고 이에 대한 대응방안을 정립한 후, 네트워크 로봇 환경에 적용할 수 있는 인증 프레임워크를 살펴보았다.

• 한국멀티미디어학회논문지
• /
• 제18권5호
• /
• pp.631-640
• /
• 2015

Recently CCTV system is installed widely purpose to enhanced physical security, gathering criminal evidence and management of facilities. In spite of supporting strong management function, CCTV system has weak security function. Therefore high security management function is required. Generally it's not easy to control the devices under NAT using a NMS(Network Management System). So we design and implement alive check algorithm of CCTV devices under NAT using DVRNS address resolution and TCP session check. We evaluated and analyzed of developed system on real environment which includes about 100 DVRs under NAT. As a result of test, it showed that device alive check and DVRNS address resolution were well performed without any error.

• International Journal of Computer Science & Network Security
• /
• 제22권5호
• /
• pp.11-16
• /
• 2022

The main purpose of the study is to determine the main elements of the state management of the development of national cybersecurity. Cybersecurity ensures the protection of the properties of information resources and the operability of technical and software users and is directed against relevant cyber incidents. Therefore, today it is impossible to ignore the importance of public administration of the processes taking place in it. The methodological support of our study is determined by its goals and objectives and is based on the use of a combination of general scientific and special methods of scientific knowledge, which ensured the completeness and reliability of the results obtained. The article has limitations and concerns the lack of practical implementation of the research results. The study is purely theoretical to reflect the main aspects of the modern system of state management of the development of national cybersecurity. Further research requires an analysis of the world experience of state management of the development of national cybersecurity.

• International Journal of Computer Science & Network Security
• /
• 제24권5호
• /
• pp.73-78
• /
• 2024

COVID-19 pandemic outbreak increased the use of Internet of Medical Things (IoMT), but the existing IoMT solutions are not free from attacks. This paper proposes a secure and resilient framework for IoMT, it computes the risk using Risk Impact Parameters (RIP) and Risk is also calculated based upon the Threat Events in the Internet of Medical Things (IoMT). UICC (Universal Integrated Circuit Card) and TPM (Trusted Platform Module) are used to ensure security in IoMT. PILAR Risk Management Tool is used to perform qualitative and quantitative risk analysis. It is designed to support the risk management process along long periods, providing incremental analysis as the safeguards improve.

• 한국정보보호학회:학술대회논문집
• /
• 한국정보보호학회 1994년도 종합학술발표회논문집
• /
• pp.316-323
• /
• 1994

• 정보보호학회논문지
• /
• 제20권5호
• /
• pp.111-124
• /
• 2010

원격 검침 시스템(AMI : Advanced Metering Infrastructure)은 최근 활발히 추진 중인 스마트그리드의 핵심 인프라로, 구축비용 절감 및 운영의 효율성을 위해 무선 통신 기술 도입이 적극적으로 검토되고 있다. 하지만, AMI에 무선 통신 기술 적용 시 무선 통신의 보안 취약점 때문에 다양한 보안 위협이 발생 가능하기 때문에 이에 대한 대응책이 필요하다. 본 논문에서는 Binary CDMA 망을 이용한 AMI 네트워크 무선망 구조를 제시하고, 이에 대한 보안 대책으로 BSIM(Binary Subscriber Identity Module)을 중심으로 사용자 인증 및 무선 구간 암호화를 수행함으로써 AMI 무선 구간의 보안 위협을 감소시키는 방안에 대해 연구한다.