• Journal of Information Processing Systems
• /
• 제12권3호
• /
• pp.511-524
• /
• 2016

The Virtual Local Area Network (VLAN) has been used for a long time in campus and enterprise networks as the most popular network virtualization solution. Due to the benefits and advantages achieved by using VLAN, network operators and administrators have been using it for constructing their networks up until now and have even extended it to manage the networking in a cloud computing system. However, their configuration is a complex, tedious, time-consuming, and error-prone process. Since Software Defined Networking (SDN) features the centralized network management and network programmability, it is a promising solution for handling the aforementioned challenges in VLAN management. In this paper, we first introduce a new architecture for campus and enterprise networks by leveraging SDN and OpenFlow. Next, we have designed and implemented an application for easily managing and flexibly troubleshooting the VLANs in this architecture. This application supports both static VLAN and dynamic VLAN configurations. In addition, we discuss the hybrid-mode operation where the packet processing is involved by both the OpenFlow control plane and the traditional control plane. By deploying a real test-bed prototype, we illustrate how our system works and then evaluate the network latency in dynamic VLAN operation.

• Journal of Korea Society of Industrial Information Systems
• /
• 제6권1호
• /
• pp.1-6
• /
• 2001

This paper proposes a method to reduce the timing gap which causes a type of attack to a network-based intrusion detection system. For this, an intrusion defection system is used in order to measure the round trip tin to the destination system, and the measured round trip time is used for estimation of packet's real arrival time to destination. Socket programings are used on the LAN environments to evaluate the performance of the proposed method. The test results show that an estimation method which uses the latest round trip time has the best performance, and the timing gap can be significantly reduced with small overheads.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제9권8호
• /
• pp.3040-3053
• /
• 2015

Wideband code division multiple access (WCDMA), high speed packet access (HSPA) and HSPA+ are third generation partnership project (3GPP) standards. These systems are the major wireless communication standards. In order to test the performance of WCDMA/HSPA/HSPA+ signal in a base station, the measurement hardware is required to the evaluation of the transmitted signals. In this paper, the algorithm for the performance measurement of the WCDMA/HSPA/HSPA+ is proposed. Also, the performance of the measurement algorithm is used to evaluate the generated signal by the WCDMA/HSPA/HSPA+ signal generator. Generally, the algorithm of normal modems cannot be applied to the measurement system because the signal measurement equipment needs to guarantee the high accuracy. So, the WCDMA/HSPA/HSPA+ signal measurement algorithm for the accurate measurement is proposed. By the simulation, it is confirmed that the proposed measurement algorithm has good performance compared with the specification. Therefore, the proposed algorithm can be usefully applied to verify the performance of the measurement using the simulation.

• Convergence Security Journal
• /
• 제5권2호
• /
• pp.1-8
• /
• 2005

Network event analysis gives useful information on the network status that helps protect attacks. It involves finding sets of frequently used packet information such as IP addresses and requires real-time processing by its nature. Apriori algorithm used for data mining can be applied to find frequent item sets, but is not suitable for analyzing network events on real-time due to the high usage of CPU and memory and thus low processing speed. This paper develops a network event audit module by applying association rules to network events using a new algorithm instead of Apriori algorithm. Test results show that the application of the new algorithm gives drastically low usage of both CPU and memory for network event analysis compared with existing Apriori algorithm.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• 제27권10A호
• /
• pp.951-961
• /
• 2002

In general, there is discontinuity phenomenon like a black screen and an irregular sound for repeated play of a finite digital stream. In this paper, for repeated play we analyze the relation between source and stream time causes this phenomenon. We obtain the time relation between video frame rate, audio frame rate, and TS packet transmission rate to eliminate this phenomenon. Using this time relation, we propose a new generation method of elementary stream (ES) and transport stream (TS) to eliminate discontinuity phenomenon. The test results of the generate ES and TS using the proposed method show that the discontinuity phenomenon can be eliminated for repeated play of a finite proposed stream.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• 제9권8호
• /
• pp.1683-1690
• /
• 2005

This study examines dynamic flow control method in UDP, analyzes packet loss which is frequently used element in measuring existing dynamic flow control and characteristics of round trip time, and proposes a new method of measurement, RSST. The algorithm that uses the proposed RSST enables accurate measurement of network status by considering both the currently measured network status and the past history of network status in controlling the transmission rate. For comparison study, a network status measurement software program that displays detailed information about volume of transmission generation of network status, and flow pattern of network was developed. The performance test shows that the proposed algorithm can better adjust to network condition in terms of low pack loss rate over existing algorithms.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• 제28권12B호
• /
• pp.1091-1099
• /
• 2003

Korea National Intelligence Service has been issued on K4 Firewall Certificates, and these K4 Firewalls has b een installing all Korean public organizer. I would evaluate the performance tests between the before setting and the after setting of Packet Filtering, NAT, Proxy, and Authentication services on functions of Solaris K4 Firewall System. Also I had been created by performance test between existing 32 bit and latest 64 bit K4 Firewall System on Solaris Operating System, So that the result of improved more two times passed rate on 64bit than 32bit on Solaris K4 Firewall System, At finally, I would conclude that the change direction will be useful for research and development on K4 Firewall System and Korean Firewall System which is a very competitive system in the world.

• Journal of Communications and Networks
• /
• 제9권3호
• /
• pp.319-329
• /
• 2007

This paper presents a price-based quality-of-service (QoS) control framework for two-class network services, in which circuit-switched and packet-switched services are defined as "premium service class" and "best-effort service class," respectively. Given the service model, a customer may decide to use the other class as a perfect or an imperfect substitute when he or she perceives the higher utility of the class. Given the framework, fixed-point problems are solved numerically to investigate how static pricing can be used to control the demand and the QoS of each class. The rationale behind this is as follows: For a network service provider to determine the optimal prices that maximize its total revenue, the interactions between the QoS-dependent demand and the demand-dependent QoS should be thoroughly analyzed. To test the robustness of the proposed model, simulations were performed with gradually increasing customer demands or network workloads. The simulation results show that even with substantial demands or workloads, self-adjustment mechanism of the model works and it is feasible to obtain fixed points in equilibrium. This paper also presents a numerical example of guaranteeing the QoS statistically in the short term-that is, through the implementation of pricing strategies.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제10권10호
• /
• pp.4787-4807
• /
• 2016

Although the dense interconnection datacenter networks (DCNs) (e.g. FatTree) provide multiple paths and high bisection bandwidth for each server pair, the single-path TCP (SPT) and ECMP which are widely used currently neither achieve high bandwidth utilization nor have good load balancing. Due to only one available transmission path, SPT cannot make full use of all available bandwidth, while ECMP's random hashing results in many collisions. In this paper, we present OFPT, an OpenFlow based Parallel Transport framework, which integrates precise routing and scheduling for better load balancing and higher network throughput. By adopting OpenFlow based centralized control mechanism, OFPT computes the optimal path and bandwidth provision for each flow according to the global network view. To guarantee high throughput, OFPT dynamically schedules flows with Seamless Flow Migration Mechanism (SFMM), which can avoid packet loss in flow rerouting. Finally, we test OFPT on Mininet and implement it in a real testbed. The experimental results show that the average network throughput in OFPT is up to 97.5% of bisection bandwidth, which is higher than ECMP by 36%. Besides, OFPT decreases the average flow completion time (AFCT) and achieves better scalability.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• 제12권7호
• /
• pp.1301-1307
• /
• 2008

In this paper, we developed UHF RFID R/W system using AT91SAM7S256(ARM chip), UHF RFID R/W module (WJ7090) and wireless LAN(IEEE 802.11.a/b). And we developed a transmission/receiving packet which is send to UHF R/W module in AT91SAM7S256. In order to show the usefulness of UHF RFID R/W system, we executed a performance test. The developed UHF RFID R/W system shows better performance for reading of RFID tag and data transmission through wireless LAN.