• Journal of Information Processing Systems
• /
• v.16 no.2
• /
• pp.301-317
• /
• 2020

An enterprise patch-management system (PMS) typically supplies a single point of failure (SPOF) of centralization structure. However, a Blockchain system offers features of decentralization, transaction integrity, user certification, and a smart chaincode. This study proposes a Hyperledger Fabric Blockchain-based distributed patch-management system and verifies its technological feasibility through prototyping, so that all participating users can be protected from various threats. In particular, by adopting a private chain for patch file set management, it is designed as a Blockchain system that can enhance security, log management, latest status supervision and monitoring functions. In addition, it uses a Hyperledger Fabric that owns a practical Byzantine fault tolerant consensus algorithm, and implements the functions of upload patch file set, download patch file set, and audit patch file history, which are major features of PMS, as a smart contract (chaincode), and verified this operation. The distributed ledger structure of Blockchain-based PMS can be a solution for distributor and client authentication and forgery problems, SPOF problem, and distribution record reliability problem. It not only presents an alternative to dealing with central management server loads and failures, but it also provides a higher level of security and availability.

• Smart Media Journal
• /
• v.4 no.4
• /
• pp.33-38
• /
• 2015

Cloud storage server do not detect duplication of conventionally encrypted data. To solve this problem, Convergent Encryption has been proposed. Recently, various client-side deduplication technology has been proposed. However, this propositions still cannot solve the security problem. In this paper, we suggest a secure source-based deduplication technology, which encrypt data to ensure the confidentiality of sensitive data and apply proofs of ownership protocol to control access to the data, from curious cloud server and malicious user.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2010.05a
• /
• pp.585-588
• /
• 2010

Recently, there is increasing concern about smart phone due to the release of Iphone and Android phone. Like the normal desktop application, using multimedia contents will have important role for smart phone application. The multimedia contents mentioned here mean Image and Video. The famous codecs for Image and video are Jpeg Mpeg and h.264, which is popular recently as a vedeo codec because of its high compression ratio compared with the other video codecs. In this paper, we will use Jpeg and H.264 encoded raw sequences. This paper will suggest how to decode and display effectively Jpeg and H.264 raw sequences arrived from socket stream. And we will show you the simulation result.

• Convergence Security Journal
• /
• v.20 no.1
• /
• pp.41-47
• /
• 2020

In the corporate information system environment, detecting and controlling suspicious behaviors occurring at the end point of the actual business application is the most important area to secure the organization's business environment. In order to accurately detect and block threats from inside and outside, it is necessary to be able to monitor all areas of all terminals in the organization and collect relevant information. In other words, in order to maintain a secure business environment of a corporate organization from the constant challenge of malicious code, everything that occurs in a business terminal such as a PC beyond detection and defense-based client security based on known patterns, signatures, policies, and rules that have been universalized in the past. The introduction of an EDR solution to enable identification and monitoring is now an essential element of security. In this study, we will look at the essential functions required for EDR solutions, and also study the design and development plans of smart EDR systems based on active and proactive detection of security threats.

• Journal of the Korea Society of Computer and Information
• /
• v.17 no.2
• /
• pp.105-112
• /
• 2012

The purpose of this paper is to suggest a method that .NET smart web development is enhanced through Managed Hybrid Web to improve the problems of UI development and representation in Hybrid Web. Improvement of structured system design of Managed Hybrid Web can enhance the efficiency and extendability of the interface objects. In particular, Source convenience is further enhanced regarding to coexistence of the objects if a client and server technique is applied to the class generation ways. It comes to the conclusion that the application of the user interface has the free representation ways, and the extension of representation ways can be achieved by each part independence.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2012.05a
• /
• pp.141-143
• /
• 2012

There are services, which can only verify simple objects ahead, to help visually impaired people using ultrasonic wave or RFID tag. Specially, RFID cannot manage emergency situations, since it is can only verify short distances. The purpose of the thesis is to design a device to provide locations in real time visually and audibly to the guardian of the user using Android Platform.

• IEIE Transactions on Smart Processing and Computing
• /
• v.2 no.5
• /
• pp.282-296
• /
• 2013

With the emergence of cloud computing, more and more sensitive user data are outsourced to remote storage servers. The privacy of users' access pattern to the data should be protected to prevent un-trusted storage servers from inferring users' private information or launching stealthy attacks. Meanwhile, the privacy protection schemes should be efficient as cloud users often use thin client devices to access the data. In this paper, we propose a lightweight scheme to protect the privacy of data access pattern. Comparing with existing state-of-the-art solutions, our scheme incurs less communication and computational overhead, requires significantly less storage space at the user side, while consuming similar storage space at the server. Rigorous proofs and extensive evaluations have been conducted to show that the proposed scheme can hide the data access pattern effectively in the long run after a reasonable number of accesses have been made.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2006.05a
• /
• pp.593-596
• /
• 2006

최근 스마트 클라이언트 기술에 대한 관심이 비약적으로 증가하고 있다. 인터넷 상에서 이뤄지는 입력, 출력 정보는 인터넷을 통해 서버에 저장되며, 이와 같은 정보 전달을 위해 웹 브라우저를 이용한다. 그러나 웹 브라우저는 단지 페이지를 사용자에게 전송하고, 이를 받아본 사용자는 브라우저 자체의 기능 미비로 인해 페이지의 내용 또는 하이퍼링크를 탐색하거나 입력, 수정, 삭제된 데이터를 전송하는 용도에 머물고 있으며, 특히 브라우저를 이용해서 양식을 표현하고자 할 경우 사용자 친화적인 화면으로 구현하기 위해서는 개발자의 많은 노력이 필요했다. 따라서, 본 논문에서는 브라우저 보다 기능과 인터페이스 구성이 뛰어난 스마트 클라이언트 어플리케이션을 이용한 비이민비자 신청서 시스템을 구현하였다. 이러한 결과 사용자 친화적인 화면을 구성하는데 비용이 적게 들었고 스마트 클라이언트 어플리케이션을 이용하기 때문에 배포 문제가 해결되었으며, 보안성이 증가하게 되었다.

• Proceedings of the Korean Information Science Society Conference
• /
• 2011.06b
• /
• pp.185-188
• /
• 2011

스마트폰의 대중화로 인해 사용자의 다양한 요구사항이 발생하고 있고, 스마트폰 용 어플리케이션에 대한 개발이 활발히 수행되고 있으나 하드웨어와의 밀접한 관계 및 재사용성의 요구를 반영하고 있지 못하므로 향후 수요를 감안하여 객체지향 개발방법론을 적용한 체계적인 접근이 필요하다. 본 논문에서는 대표적인 스마트폰 플랫폼인 안드로이드와 아이폰 플랫폼의 수명주기, 하드웨어, 어플리케이션 간의 관계를 통해 스마트폰 어플리케이션 개발절차를 도출하도록 시도하였으며, 객체지향 개발방법론 중에서 Reference Model 중심의 안드로이드 플랫폼과 Rich Client를 지원하는 아이폰 플랫폼에 각각 스마트폰 플랫폼에 준한 하드웨어 특성을 고려하여 특화된 CBD(Component Based Development)기반인 마르미-EM방법론과 서비스 기반의 어플리케이션을 지향하고 있는 MVC(Model-View-Control)패턴이 적용된 SaaS(Software-as-a-Service) 개발방법론을 적용하여 어플리케이션 개발 절차를 비교한다. 이를 통하여 개발방법론의 절차상의 차이점, 강점 및 보완 사항을 분석하고 방법론별 특징을 토대로 향후 보완점을 제안한다.

• Proceedings of the KAIS Fall Conference
• /
• 2010.11a
• /
• pp.12-15
• /
• 2010

본 논문은 스마트 폰 상의 SNS(Social Network Service)를 이용하여 집단의 지식과 지혜를 공유할 수 있는 질의응답 시스템을 제안한다. 질의응답 시스템은 이미 많은 사용자가 확보된 트위터 서비스를 기반으로 한다. 또한 트위터에서 제공하는 API를 이용하여 Client간에 질문과 답변을 보다 쉽게 할 수 있으며 일반 트위터 사이트에서도 공유가 가능하기 때문에 다양한 경로로 질의응답 데이터에 접근 할 수 있다. 따라서 본 시스템은 확장과 호환에서도 효율적으로 이용할 수 있다.