• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.6
• /
• pp.1343-1354
• /
• 2018

OAuth 2.0 bearer token and JWT(JSON web token), current standard technologies for authentication and authorization, use the approach of sending fixed token repeatedly to server for authentication that they are subject to eavesdropping attack, thus they should be used in secure communication environment such as HTTPS. In OAuth 2.0 MAC token which was devised as an authentication scheme that can be used in non-secure communication environment, server issues shared secret key to authenticated client and the client uses it to compute MAC to prove the authenticity of request, but in this case server has to store and use the shared secret key to verify user's request. Therefore, it's hard to provide stateless authentication service. In this paper we present a randomized token authentication scheme which can provide stateless MAC token authentication without storing shared secret key in server side. To remove the use of HTTPS, we utilize secure communication using server certificate and simple signature-based login using client certificate together with the proposed randomized token authentication to achieve the fully stateless authentication service and we provide an implementation example.

• Journal of the Institute of Electronics and Information Engineers
• /
• v.50 no.3
• /
• pp.179-186
• /
• 2013

PACS is a medical system for digital medical images, and PACS expand to web-based service using public network, DICOM files should be protected from the man-in-the-middle attack because they have personal medical record. To solve the problem, we designed flexible secure transmission system using IPSec and adopted to a web-based three-dimensional medical image system. And next, we performed the performance evaluation changing integrity and encryption algorithm using DICOM volume dataset. At that time, combinations of the algorithm was 'DES-MD5', 'DES-SHA1', '3DES-MD5', and '3DES-SHA1, and the experiment was performed on our test-bed. In experimental result, the overall performance was affected by encryption algorithms than integrity algorithms, DES was approximately 50% of throughput degradation and 3DES was about to 65% of throughput degradation. Also when DICOM volume dataset was transmitted using secure transmission system, the network performance degradation had shown because of increased packet overhead. As a result, server and network performance degradation occurs for secure transmission system by ensuring the secure exchange of messages. Thus, if the secure transmission system adopted to the medical images that should be protected, it could solve server performance gradation and compose secure web PACS.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.13 no.4
• /
• pp.55-60
• /
• 2013

Smart client is a term describing an application environment which delivers applications over a web HTTP connection and does not require installation and/or updates. The term "Smart Client" is meant to refer to simultaneously capturing the benefits of a "thin client" (zero-install, auto-update) and a "fat client" (high performance, high productivity). A "Smart Client" application can be created in several very different technologies. Over the past few years, ITS has started to move towards smart clients, also called rich clients. The trend is a move from traditional client/server architecture to a Web-based model. More similar to a fat client vs. a thin client, smart clients are Internet-connected devices that allows a user's local applications to interact with server-based applications through the use of Web services. Smart Client applications in BIT bridge the gap between web applications and desktop applications. They provide the benefits of a web applicationwhile still providing the snappy look and feel inherent to desktop applications.

• Journal of the Institute of Electronics Engineers of Korea CI
• /
• v.39 no.6
• /
• pp.36-46
• /
• 2002

This paper proposes an integrated scheduling mechanism for embedded system with real-time web server to meet the characteristics of real time task. The proposed scheduling mechanism may solve the so-called priority inversion problem in scheduling between urgent web requests and tasks with low priorities. The priority inversion problem happens because of operating two independent schedulers, web scheduler and operating system scheduler in a system without considering the requirements of each other. In the proposed mechanism, two schedulers are integrated in an operating system and the integrated scheduler schedules tasks for urgent web requests with real time characteristics and other application tasks together. Since all tasks are scheduled by one unified scheduler that knows the characteristics of tasks, the tasks are scheduled with their absolute priorities and thus the priority inversion problem can be eliminated. The performance is measured on a prototype embedded system with the proposed algorithm.

• Journal of the Korean Geophysical Society
• /
• v.4 no.3
• /
• pp.145-162
• /
• 2001

With the rapid advance of internet service and the corresponding migration of service environment from the text-based one to WWW (World Wide Web) environment, the number of internet users is growing rapidly due to its easy usage. Accordingly, usage of internet as services for sending electronic mails to the other patry over the network is becoming increasingly prevalent. Web-based electronic mailing system is comprised of a server and a client The former provides the users with e-mail accounts and services, while the latter serves as a user interface. In other words, it enales those public users who dos not own e-mail accounts on the existing mail server to have an access to hte mailing service through the web. In this paper, we designed a effective web-based electronic mailing system which is based on the internet explorer and linux operating system, which overcomes limitations of the existing e-mail systes and this facilitates the development of a stable e-mail system by being able to avoiding the low system performance due to the bursty characteristics of e-mail messages and the increasing number of users.

• Journal of Internet Computing and Services
• /
• v.16 no.1
• /
• pp.75-82
• /
• 2015

Major corporations and portals have implemented a link server that connects Content Management Systems (CMS) to the physical address of content in a database (DB) to support efficient content use in web-based environments. In particular, a link server automatically connects the physical address of content in a DB to the content URL shown through a web browser screen, and re-connects the URL and the physical address when either is modified. In recent years, the number of users of digital content over the web has increased significantly because of the advent of the Big Data environment, which has also increased the number of link validity checks that should be performed in a CMS and a link server. If the link validity check is performed through an existing URL-based sequential method instead of petabyte or even etabyte environments, the identification rate of dead links decreases because of the degradation of validity check performance; moreover, frequent link checks add a large amount of workload to the DB. Hence, this study is aimed at providing a link server that can recognize URL link deletion or addition through analysis on the B-tree-based Information Identifier count per interval based on a large amount of URLs in order to resolve the existing problems. Through this study, the dead link check that is faster and adds lower loads than the existing method can be performed.

• Proceedings of the Korean Society of Precision Engineering Conference
• /
• 2003.06a
• /
• pp.1266-1269
• /
• 2003

Many studies have indicated that most of a product's cost is fixed early in its lift cycle, before the original design cycle is complete. This implies that we should consider various aspects of product lift cycle at the design stage. This means the need of collaboration in design stage. Because the Internet provides instant access to a wealth of design information, the Internet is used by the collaborative design team members as a medium to share data, information and knowledge, and in some cases for product data management and project management by integrating the Web with appropriate technologies. This paper presents a real-time collaborative design system for powerful interaction performance, based on the Internet and Web technologies. Using The system use the client/server architecture and the purpose of the system is to provide a method that enables real-time view, review and modification of the 3D model through the Internet.

• Proceedings of the Korean Society of Precision Engineering Conference
• /
• 2003.06a
• /
• pp.1739-1742
• /
• 2003

This paper introduces a Web-based vibration analysis system for rotary-type refrigerator compressors. Concern for vibration reduction in compressors has been growing for many years. What is important in vibration reduction is to easily predict the vibration without using a physical compressor. The dynamic model of the compressor is represented as a multi-body dynamic system. Solving the dynamic model is run on a high-performance server. The interfaces of the system are accessible via Web browsers, such as Netscape or Explorer. Anyone who wants to analyze the vibration of the rotary compressor or share the results data can access the system over the Internet regardless of their OS, platform. or location.

• Korean Journal of Computational Design and Engineering
• /
• v.8 no.3
• /
• pp.175-183
• /
• 2003

This paper introduces a Web-based vibration analysis system for rotary-type refrigerator compressors. Concern for vibration reduction in compressors has been growing for many years. What is important in vibration reduction is to easily predict the vibration without using a physical compressor. The dynamic model of the compressor is represented as a multi-body dynamic system. Solving the dynamic model is run on a high-performance server. The interfaces of the system are accessible via Web browsers, such as Netscape or Explorer. Anyone who wants to analyze the vibration of the rotary compressor or share the results data can access the system over the Internet regardless of their OS, platform, or location.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2002.11b
• /
• pp.1193-1196
• /
• 2002

본 연구는 접속 요구가 많은 웹 서버의 부하를 두개의 웹 서버로 분산시켜 보다 효율적인 웹 서비스를 제공함과 동시에, 두 웹 서버의 용도에 맞게 재전송 타임아웃(RTO:Retransmission Timeout)을 독립적으로 설정하여 네트워크의 효율성을 제고하기 위해 시도되었다. 이를 위해 Linux 기반의 PC에 라우터를 구축하고, 접속의 요구에 따라 두개 중 하나의 Web 서버에 접속되게끔 라우터를 설정하였다. 웹 서버는 내부 접속용과 외부 접속용으로 구분하였으며, 각각의 서버마다 재전송 타임아웃(RTO:Retransmission Timeout)값을 다르게 설정하여 네트워크에서의 지연(delay)을 최적화시켜 클라이언트의 요청에 대한 응답시간을 최소화시켰다. 전송거리가 짧은 내부 접속용 웹 서버에는 패킷 손실이 거의 없으므로 작은 RTO 값을 설정하고, 외부 접속용 웹 서버에는 큰 RTO 값을 설정하였는데 RTT(Round Trip Time:응답시간)와 Tput(Throughput:처리율)의 출력 결과를 통해 Web 서버의 성능 향상을 확인 할 수 있다.