• Proceedings of the Korean Society of Computer Information Conference
• /
• 2019.01a
• /
• pp.211-212
• /
• 2019

서로 다른 지역에서 서로 다른 과정의 실습 중심의 정보보호 단기 교육을 진행하기 위하여 SaaS 기반 가상훈련 시스템을 사용하였다. 본 논문에서는 SaaS 기반 가상훈련 시스템을 이용한 정보보호 실습 교육의 장단점을 정리한다. 강사 및 수강생들은 교육 과정 중 데스크톱 가상화를 사용하여 실습 환경을 구축하는 시간을 절약할 수 있었다. 또한, 원격 실습 지원, 진행 상황 확인도 가능하였다. 관리자는 강사 및 장소와 무관하게 균등한 실습 교육을 제공할 수 있다는 점이 가장 큰 장점이었다. 향후에는 서버 가상화와 데스크톱 가상화가 결합된 하이브리드 형태의 실습 환경 개발을 고려할 필요가 있다.

• The Journal of the Korea Contents Association
• /
• v.12 no.2
• /
• pp.19-29
• /
• 2012

Currently, cloud computing technology is being supplied in various service forms and it is becoming a ground breaking service which provides usage of storage service, data and software while user is not involved in technical background such as physical location of service or system environment. cloud computing technology has advantages that it can use easily as many IT resources as it wants freely regardless of hardware issues required by a variety of systems and service level required by infrastructure. Also, since it has a strength that it can choose usage of resource about business model due to various internet-based technologies, provisioning technology and virtualization technology are being paid attention as main technologies. These technologies are ones of important technology elements which help web-based users approach freely and install according to user environment. Therefore, this thesis introduces software-related technologies and architectures in an aspect of grid for building up high availability cloud computing environment by analysis about cloud computing technology trend.

• The Sea:JOURNAL OF THE KOREAN SOCIETY OF OCEANOGRAPHY
• /
• v.27 no.3
• /
• pp.127-143
• /
• 2022

Recently, many attempts to run numerical ocean models in cloud computing environments have been tried actively. A cloud computing environment can be an effective means to implement numerical ocean models requiring a large-scale resource or quickly preparing modeling environment for global or large-scale grids. Many commercial and private cloud computing systems provide technologies such as virtualization, high-performance CPUs and instances, ether-net based high-performance-networking, and remote direct memory access for High Performance Computing (HPC). These new features facilitate ocean modeling experimentation on commercial cloud computing systems. Many scientists and engineers expect cloud computing to become mainstream in the near future. Analysis of the performance and features of commercial cloud services for numerical modeling is essential in order to select appropriate systems as this can help to minimize execution time and the amount of resources utilized. The effect of cache memory is large in the processing structure of the ocean numerical model, which processes input/output of data in a multidimensional array structure, and the speed of the network is important due to the communication characteristics through which a large amount of data moves. In this study, the performance of the Regional Ocean Modeling System (ROMS), the High Performance Linpack (HPL) benchmarking software package, and STREAM, the memory benchmark were evaluated and compared on commercial cloud systems to provide information for the transition of other ocean models into cloud computing. Through analysis of actual performance data and configuration settings obtained from virtualization-based commercial clouds, we evaluated the efficiency of the computer resources for the various model grid sizes in the virtualization-based cloud systems. We found that cache hierarchy and capacity are crucial in the performance of ROMS using huge memory. The memory latency time is also important in the performance. Increasing the number of cores to reduce the running time for numerical modeling is more effective with large grid sizes than with small grid sizes. Our analysis results will be helpful as a reference for constructing the best computing system in the cloud to minimize time and cost for numerical ocean modeling.

• ETRI Journal
• /
• v.36 no.5
• /
• pp.741-751
• /
• 2014

Smart TV is expected to bring cloud services based on virtualization technologies to the home environment with hardware and software support. Although most physical resources can be shared among virtual machines (VMs) using a time sharing approach, allocating the proper amount of memory to VMs is still challenging. In this paper, we propose a novel mechanism to dynamically balance the memory allocation among VMs in virtualized Smart TV systems. In contrast to previous studies, where a virtual machine monitor (VMM) is solely responsible for estimating the working set size, our mechanism is symbiotic. Each VM periodically reports its memory usage pattern to the VMM. The VMM then predicts the future memory demand of each VM and rebalances the memory allocation among the VMs when necessary. Experimental results show that our mechanism improves performance by up to 18.28 times and reduces expensive memory swapping by up to 99.73% with negligible overheads (0.05% on average).

• Journal of Digital Convergence
• /
• v.14 no.10
• /
• pp.303-310
• /
• 2016

Due to the ossification of the Internet, it is difficult to accommodate variety services. One of the efficient solution to this problem is network virtualization. It allows multiple parallel virtual networks to run on the shared physical infrastructure. It needs new resource allocation mechanism to share efficient physical resources. In this paper, we present efficient bandwidth allocation algorithm for virtual network request with high service priority. Our proposed algorithm can withdraw allocated bandwidth from low-level priority virtual network and maintain low-level virtual network service. We evaluated the performance of our proposed algorithm using simulation and found the improvement of approximately 8% acceptance rate.

• Journal of Information Technology Services
• /
• v.14 no.2
• /
• pp.253-273
• /
• 2015

Cloud computing is provided on demand service via the internet, allowing users to pay for the service they actually use. Categorized as one kind of cloud computing, SaaS is computing resource and software sharing model with can be accessed via the internet. Based on virtualization technology, SaaS is expected to improve the efficiency and quality of the IT service level and performance in company. Therefore this research limited cloud services to SaaS especially focused on collaborative application service, and attempts to identify the factors which impact the performance of collaboration and intention to use. This study adopts technological factors of cloud SaaS services and factors of task characteristics to explore the determinants of collaborative performance and intention to use. An experimental study using student subjects with Google Apps provided empirical validation for our proposed model. Based on 337 data collected from respondents, the major findings are following. First, the characteristics of cloud computing services such as collaboration support, service reliability, and ease of use have positive effects on perceived usefulness of collaborative application while accessability, service reliability, and ease to use have positive effects on intention to use. Second, task interdependence has a positive effects on collaborative performance while task ambiguity factor has not. Third, perceived usefulness of collaborative application have positive effects on intention to use.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.12 no.2
• /
• pp.786-799
• /
• 2018

Recently, NFV has attracted attention as a next-generation network virtualization technology for hardware -independent and efficient utilization of resources. NFV is a technology that not only virtualize computing, server, storage, network resources based on cloud computing but also connect Multi-Tenant of VNFs, a software network function. Therefore, it is possible to reduce the cost for constructing a physical network and to construct a logical network quickly by using NFV. However, in NFV, when a new VNF is added to a running Tenant, authentication between VNFs is not performed. Because of this problem, it is impossible to identify the presence of Fake-VNF in the tenant. Such a problem can cause an access from malicious attacker to one of VNFs in tenant as well as other VNFs in the tenant, disabling the NFV environment. In this paper, we propose Auto-configurable Security Mechanism in NFV including authentication between tenant-internal VNFs, and enforcement mechanism of security policy for traffic control between VNFs. This proposal not only authenticate identification of VNF when the VNF is registered, but also apply the security policy automatically to prevent malicious behavior in the tenant. Therefore, we can establish an independent communication channel for VNFs and guarantee a secure NFV environment.

• Proceedings of the Korean Information Science Society Conference
• /
• 2011.06b
• /
• pp.90-93
• /
• 2011

항공 전자 시스템은 다양하고 중요한 임무를 수행하는 다양한 전자 장치들로 이루어지며 전자 장치들은 점차 통합 구조 시스템(IMA, Integrated Modular Avionics)으로 구성되고 있다. 이러한 통합 구조 시스템은 전자 장치의 다양한 종류와 육중한 중량을 이유로 단일 컴퓨터 환경에서 구성된다. 이러한 이유로 항공 전자 시스템에서 사용되는 응용프로그램들 또한 단일 컴퓨터에서 효율적으로 통합될 수 있어야 한다. 응용프로그램들은 각기 다른 기관에서 개발되는 경우가 많으며 그중 일부는 다른 항공 전자 시스템에 재사용 될 수 있다. 이와 같은 통합구조에서 갖는 응용프로그램들의 특성을 고려하여 시 공간적으로 분리된 파티션으로 구분하는 ARINC 653과 같은 표준이 등장 하였다. 가상화 기술은 여러 개의 가상머신을 제공하고 다양한 장치에 대하여 에뮬레이션 함으로써 하나의 가상 머신은 ARINC 653의 파티션 개념을 적용하는데 충분한 잠재력을 가지고 있다. ARINC 653을 많은 타겟 운영체제나 반 가상화 환경에서 적용된 예는 많다. 하지만 아직까지 전 가상화 환경에서 ARINC 653을 적용한 예는 없다. 따라서 본 논문에서는 두 종류의 전 가상화 환경(VMware, VirtualBox)에서 ARINC 653을 적용하기 위한 구조를 제시하고 구현한다.

• Journal of Computing Science and Engineering
• /
• v.5 no.4
• /
• pp.331-337
• /
• 2011

Recently, Virtual Desktop Infrastructure (VDI) has been widely adopted to ensure secure protection of enterprise data and provide users with a centrally managed execution environment. However, user experiences may be restricted due to the limited functionalities of thin clients in VDI. If thick client devices like laptops are used, then data leakage may be possible due to malicious software installed in thick client mobile devices. In this paper, we present Data Firewall, a security framework to manage and protect security-sensitive data in thick client mobile devices. Data Firewall consists of three components: Virtual Machine (VM) image management, client VM integrity attestation, and key management for Protected Storage. There are two types of execution VMs managed by Data Firewall: Normal VM and Secure VM. In Normal VM, a user can execute any applications installed in the laptop in the same manner as before. A user can access security-sensitive data only in the Secure VM, for which the integrity should be checked prior to access being granted. All the security-sensitive data are stored in the space called Protected Storage for which the access keys are managed by Data Firewall. Key management and exchange between client and server are handled via Trusted Platform Module (TPM) in the framework. We have analyzed the security characteristics and built a prototype to show the performance overhead of the proposed framework.

• Journal of Korea Multimedia Society
• /
• v.23 no.2
• /
• pp.328-342
• /
• 2020

As the cloud-based ICT(Information & Communication Technology) infrastructure matures, the existing monolithic software development method is evolving into a micro-service structure based on cloud native computing. To develop and operate the services efficiently under the cloud native environment, DevOps-based application development plans through MSA(Micro Service Architecture) design based are essential. A cloud native environment is an approach to developing and running applications that take advantage of cloud computing models such as automation of source distribution, container-based virtualization, application scalability, resource efficiency, and flexible maintenance through object independence. To implement this approach, the utilization of key elements such as DevOps, continuous delivery, micro service, and containers is essential, but there are not enough previous studies on case analyses or application methods of these key elements. Therefore, in this paper, we analyze the cases of application development in cloud native environment and propose the optimized application development process and development method through small and medium-sized SI projects.