• Journal of Digital Convergence
• /
• v.10 no.3
• /
• pp.127-135
• /
• 2012

This study improves the existing user identification method using user ID and password. The new protocol protecting unauthorized access is designed and developed using user's ID, password, and OTP for user certification as well as MAC address for computer identification on networks. The safety on trials of unauthorized certification is tested and analyzed for four types following the criterion of information acquisition.

• Proceedings of the CALSEC Conference
• /
• 2001.08a
• /
• pp.155-163
• /
• 2001

There are cases that revoke the certification because of disclosure of private key, deprivation of qualification and the expiration of a term of validity based on PKI. So, a user have to confirm the public key whether valid or invalid in the certification. There are many method such as CRL, Delta-CRL, OCSP for the cert-validation of certification. But these method many problems which are overload traffic on network and the CRL server because of processing for cert-validation of certification. In this paper we proposed the realtime cert-validation of certification method which solved problems that are data integrity by different time between transmission and receiving for CRL, and overload traffic on network and the CRL server based on DARC.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.19 no.2
• /
• pp.105-115
• /
• 2009

At the most recent, IPTV service is increasing, which isa communicative broadcasting fusion service that provides various multimedia contents interactively followed by user's request through super high-speed internet. For IPTV user service with high mobility, IPTV user's enrollment is essential. However, IPTV service provided to mobile users can't provide the certification of mobile user securely. This paper proposes light user certification protocol which can certificate mobile users by attaching RFID to IPTV STB for secure awareness of mobile users who get IPTV service. The proposed protocol prevent reply attack and man-in-the-middle attack from happening oftenin a wireless section by transmitting the result value hashed by hash function with both its' ID and random number received from tag after tag transmits random number which generated randomly in the process of certification of mobile user to IPTV STB.

• Journal of the Korean Society of Safety
• /
• v.30 no.6
• /
• pp.26-33
• /
• 2015

This study suggests systematic procedures to improve safety policies on prevention of industrial accidents associated with industrial machines and devices. Specifically, new method of cause analysis of industrial accidents associated with industrial machines and devices is suggested and the related accident data are re-analyzed. Effectiveness of direct safety regulations such as safety certification, self-declaration of conformity, safety device regulation and safety inspection of industrial machines and devices are also analyzed. Based on those analysis results, transition from the current user-oriented safety device regulation to more balanced direct regulations on both manufacturer and user is suggested. Together with severity and frequency of industrial accidents, unit severity and unit frequency need to be taken into account to further assess the risk associated with a particular industrial machine or device. Balance between safety regulations will be realized by proper adjustment of lists of safety certification and inspection, and certification and inspection standards. This will also guarantee the maximum benefit over cost in such safety regulations.

• Journal of Internet Computing and Services
• /
• v.7 no.1
• /
• pp.59-64
• /
• 2006

Harn al proposed a GKRS(Global Key Recovery System) that combines the functions of the key recovery authorities and the public key certification authorities(CA), Among other features, user dominance(i.e, a user is allowed to select his own public-private key pair and especially a public element for verifying the validity of the public-private key pair)is proposed by [1] for wide acceptance of GKRS. In this paper, we attack the RSA version of GKRS by showing that its user-dominance feature and the corresponding key verification scheme employed by the CA allow for fraud by users against CA. We propose more secure GKPS than original GKPS, The proposed system makes the probability of user fraud negligible small.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.17 no.1
• /
• pp.68-75
• /
• 2013

Recently IPTV that transmits multimedia contents in real time through internet, cable TV net and satelite net gets the limelight. But IPTV service that gives service to users by various media has a problem of not supporting user certification fully. This paper suggests a certification model which prevents getting access permission of IPTV service by sending illegal certification information by adolescent through integrating mobile communication technique with RFID(Radio Frequency IDentification) technique which is a key technique of Ubiquitous environment. This model performs the process of adult certification by keeping synchronization with user's certificaiton information that is saved in data-base of certification server and contents server after getting the system of class categorization in contents server to overcome disadvantage of simple adult certification system that is popular in the existing internet. Also, it adapts double hash chain technique not to down load illegally contents without the permission of manager even if an adolescent gets manager's approval key.

• Journal of the Korea Society of Computer and Information
• /
• v.16 no.4
• /
• pp.93-99
• /
• 2011

Recently, the development of internet technology makes user's personal data used by being saved in USB. But there is a critical issue that personal data can be exposed with malicious purpose because that personal data doesn't need to be certificate to use. This paper proposes USB security framework to prevent a duplicate use of personal data for protecting the data which in USB. The proposed USB security framework performs certification process of user with additional 4bite of user's identification data and usage choice of USB security token before certification data when the framework uses USB security product in different network. It makes communication overhead and service delay increased. As a result of the experiment, packet certification delay time is more increased by average 7.6% in the proposed USB security framework than simple USB driver and USB Token, and procedure rate of certification server on the number of USB is also increased by average 9.8%.

• The Journal of Society for e-Business Studies
• /
• v.24 no.1
• /
• pp.29-48
• /
• 2019

Recently, product design innovation to improve user experience has been perceived as a core element of enterprise competitiveness due to the fierce market competition and decrease of the technological gap between companies, but there is insufficient services to support the product experience evaluation of small and medium-sized companies (SMCs). The aim of this study is to develop a web-based product user experience evaluation and certification system supporting product design practices for SMCs. For system interface design, we conducted systematic functional requirement elicitation methods such as user survey, workflow analysis, user task definition, and function definition. Then main functions, information structure, navigation method, and detailed graphic user interfaces were developed with consideration of user interactions and requirements. In particular, it provides the databases for evaluation efficiency to support the evaluation process above a certain level of performance and efficiency, and knowledge databases to utilize in the evaluation and product design improvement. With help of the developed service platform, It is expected that the service platform would enhance SMCs' product development capability with regard to the user experience evaluation by connecting the consulting firms with SMCs.

• The KIPS Transactions:PartC
• /
• v.8C no.5
• /
• pp.517-524
• /
• 2001

There are cases that revoke the certification because of disclosure of private key, deprivation of qualification and the expiration of a term of validity based on PKI. So, a user have to confirm the public key whether valid or invalid in the certification. There are many method such as CRL, Delta-CRL, OCSP for the cert-validation of certification. But these method many problems which are overload traffic on network and the CRL server because of processing for cert-validation of certification. In this paper we proposed the realtime cert-validation of certification method which solved problems that are data integrity by different time between transmission and receiving for CRL, and overload traffic on network and the CRL server based on DARC.

• Journal of the Korean Society of Safety
• /
• v.33 no.1
• /
• pp.95-102
• /
• 2018

This study investigated the improvement of safety certification marking method and location marked on temporary equipments in order to guarantee the quality and safety of temporary equipments. The survey was performed for the stakeholder (manufacturers, lessors, and users) to find out the effective way that all stakeholder can agree each other. The main reason which users checked the safety certification making is that the mandatory safety certification marking can prevent the usage of poor and illegal temporary equipments. For the marking method, all stakeholder agreed that a depressed engraving method was an effective and usable displaying method. The opinions about the position of safety certification marking among the users, lessors, and manufacturers did not come into the agreement. The manufacturers preferred the marking position in which the engraving process is easy, but users wanted the conspicuous place such as vertical member. However, it is necessary to continuously study ways to adopt the position preferred by the users.