• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.16 no.6
• /
• pp.287-294
• /
• 2016

APT attack aimed at the interruption of information and communication facilities and important information leakage of companies. it performs an attack using zero-day vulnerabilities, social engineering base on collected information, such as IT infra, business environment, information of employee, for a long period of time. Fragmentary response to cyber threats such as malware signature detection methods can not respond to sophisticated cyber-attacks, such as APT attacks. In this paper, we propose a cyber intrusion detection model for countermeasure of APT attack by utilizing heterogeneous system log into big-data. And it also utilizes that merging pattern-based detection methods and abnormality detection method.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2014.04a
• /
• pp.499-501
• /
• 2014

현재 IT기술과 자동차기술을 융합한 지능형 자동차에 대한 연구가 활발히 진행 중에 있으며 많은 새로운 서비스 모델들이 개발 중에 있다. 지능형자동차에 대한 개발이 활발하게 이루어지면서 자동제어 센서를 이용한 다양한 서비스가 제공이 되고 있다. 이러한 지능형 자동차가 자동제어센서를 이용한 서비스가 제공되면서 다양한 보안위협 요소가 도출되고 있다. 본 논문에서는 지능형 자동차의 외부에서 자동제어센서에 침입하여 지능형자동차의 보안위협 요소를 분석하고 지능형 자동차의 보안 솔루션의 모델에 대한 기법을 제안하고자 한다. 솔루션 모델의 경우 네트워크 침입 탐지 및 방지시스템을 이용한 기법으로 제안한다.

• Proceedings of the Korean Society for Noise and Vibration Engineering Conference
• /
• 2010.10a
• /
• pp.187-192
• /
• 2010

In this paper, intrusion detection technique based on the sound field variation of audio frequency in the security space is proposed. The sound field formed by sound source can be detected with the microphone when the obstacle or intruder is positioned. The sound field variation due to the intruder is based on the interference of audio wave. With the help of numerical simulation of sound field formations, the increase or decrease of sound pressure level is analyzed not only the obstacle, but also the intruder. Even the microphone is positioned behind the source, sound pressure level can be increase or decrease due to the interference. Frequency response test is performed with Gaussian white noise signal to get the whole frequency response from 0 to half of sampling frequency. There are three security cases. Case 1 is the situation of empty space with and without intruder, case 2 is the situation of blocking obstacle with and without intruder, and case 3 is the situation of side blocking obstacle with and without intruder. At each case, the frequency response is obtained first at the security space without intruder, and second with intruder. From the experiment, intruder size of $50cm{\times}50cm$ can be successfully detected with the proposed technique. Moreover, the case 2 or case 3 bring about bigger sound field variation. It means that the proposed technique have the potential of more credible security sensing in real situation.

• Transactions of the Korean Society for Noise and Vibration Engineering
• /
• v.21 no.3
• /
• pp.212-219
• /
• 2011

In this paper, intrusion detection technique based on the sound field variation of audio frequency in the security space is proposed. The sound field formed by sound source can be detected with the microphone when the obstacle or intruder is positioned. The sound field variation due to the intruder is mainly caused by the interference of audio wave. With the help of numerical simulation of sound field formations, the increase or decrease of sound pressure level is analyzed not only by the obstacle, but also by the intruder. Even the microphone is positioned behind the source, sound pressure level can be increased or decreased due to the interference of sound wave. Frequency response test is performed with Gaussian white noise signal to get the whole frequency response from 0 to half of sampling frequency. There are three security cases. Case 1 is the situation of empty space with and without intruder, case 2 is the situation of blocking obstacle with and without intruder, and case 3 is the situation of side blocking obstacle with and without intruder. At each case, the frequency response is obtained first at the security space without intruder, and second with intruder. From the experiment, intruder size of diameter of 50 cm pillar can be successfully detected with the proposed technique. Moreover, the case 2 and case 3 bring about bigger sound field variation. It means that the proposed technique have the potential of more credible security guarantee in real situation.

• Journal of the Korean Institute of Intelligent Systems
• /
• v.26 no.5
• /
• pp.361-367
• /
• 2016

The intruder detection system using digital PIR sensor has the problem that it can't recognize human correctly. In this paper, we suggest a new intruder detection system based on analog PIR sensor to get around the drawbacks of the digital PIR sensor. The analog type PIR sensor emits the voltage output at various levels whereas the output of the digitial PIR sensor is binary. The signal captured using analog PIR sensor is sampled, and its frequency feature is extracted using FFT or MFCC. The extracted features are used for the input of neural networks. After neural network is trained using various human and pet's intrusion data, it is used for classifying human and pet in the intrusion situation.

• The KIPS Transactions:PartC
• /
• v.11C no.3
• /
• pp.301-308
• /
• 2004

Misuse IDS is known to have an acceptable accuracy but suffers from high rates of false alarms. We show a behavior based alarm reduction with a memory-based machine learning technique. Our extended form of IBL, (XIBL) examines SNORT alarm signals if that signal is worthy sending signals to security manager. An experiment shows that there exists an apparent difference between true alarms and false alarms with respect to XIBL behavior This gives clear evidence that although an attack in the network consists of a sequence of packets, decisions over Individual packet can be used in conjunction with misuse IDS for better performance.

• Journal of the Korean Institute of Gas
• /
• v.5 no.1
• /
• pp.1-6
• /
• 2001

The main objective of this study is to determine if the sources of AE in corroded specimens of aluminum could be identified iron the characteristics of the waveform signals recorded during fatigue loading. Coupons of notched 2024-T3 aluminum with or without corrosion (at the notch) were subjected to fatigue loading and the AE signals were recorded using non-resonant, flat, wide-band transducers. The time history and power spectrum of each individual wave signal recorded during fatigue crack growth were examined and classified according to their special characteristics. Five distinct types of signals were observed regardless of specimen condition. The waveform and power spectra were shown to be dependent on specimen condition. During the initial phase of crack growth, the signals obtained in the as-received specimens are most probably due to transgranular cleavage caused by extrusion and intrusion under fatigue loading. In the corroded specimen the signal are probably generated by intergranular cleavage due to embrittlement of grain boundary neat the pitting tip. The need for additional research to further validate these findings is indicated.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.18 no.7
• /
• pp.224-236
• /
• 2017

This study analyzed the characteristics of traffic accidents among elderly drivers according to area type in Gyeonggido(urban areas, urban-rural complex areas, and rural areas). Traffic accidents caused by unsafe driving are common in all three types of areas. In urban areas and urban-rural complex areas, traffic accidents were more frequent due to traffic violations and intersection accidents, while rural areas were more affected by central lines. Urban areas and urban-rural complex areas require simpler signal exposures, such as a simple straight line, left turn, or straight line and left turn signal rather than complex signal operations, such as overlaps in a signal operation. Improvement of non-signal intersections and unprotected traffic signal processing is also needed. In order to prevent the intrusion of the central line in rural areas, the center line guard rail should be prevented from penetrating the center line, and the influence of the vehicle headlamp should be reduced in the opposite direction. It is necessary to improve the visibility by using fluorescent letters to enlarge the font size of traffic signs and road signs, particularly to increase visibility at night and prevent traffic accidents at sunset. Minimal, simplified should be provided rather than complex phrases and information.

• Journal of the Korean Society of Visualization
• /
• v.1 no.1
• /
• pp.98-106
• /
• 2003

A PLLIF (Planar Liquid Laser Induced Fluorescence) technique has been known to be a useful tool for the measurement of the spray patterns for various spray injectors because it can obtain two-dimensional images with high spatial resolutions without any intrusion on the spray field. In case of dense spray, however, the secondary emission as well as the extinction of an incident laser beam or a fluorescence signal can cause errors in quantifying a mass distribution. Unfortunately, a like-doublet injector which has a dense spray zone at the center may not be a good example or the application of the PLLIF technique. Therefore, we took PLLIF data for the like-doublet injector with a 12 bit color CCD camera by varying laser power, and then assessed their accuracy by comparing with the data obtained with a mechanical patternator and a PDPA (Phase Doppler Particle Analyzer). The experimental results showed that the gray level of fluorescence signal increases nonlinearly due to a secondary emission at the dense spray zone but this nonlinearity can be avoided by reducing the incident laser beam power. In addition, the mass flux distribution of the spray could be obtained by using the mass concentration data from PLLIF technique and the velocity profiles of liquid drops, and this distribution showed good agreement with that of mechanical pattemator. Therefore, it is possible that the PLLIF technique can be successfully applied to finding the mass distributions of like-doublet injectors.

• Journal of the Korean Society for Nondestructive Testing
• /
• v.23 no.2
• /
• pp.140-147
• /
• 2003

A detection technique is studied to determine the location and the weight of an intruder into infrastructure using fiber optic ROTDR (Rayleigh optical time domain reflectometry) sensor. Fiber optic sensing plates buried in sand are prepared to measure the intruder effects. The signal of ROTDR was analyzed to confirm the detection performance. The constructed ROTDR system could be used up to 12km at the pulse width of 30ns. The location error was less than 3m and the weight could be detected into three levels of grade, such as 20kgf, 40kgf and 60kgf.