• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.18 no.4
• /
• pp.111-122
• /
• 2008

Web service is defined to support interoperable machine to machine interaction over a network and defined as distributed technologies. Recently in web service environment, security has become one of the most critical issues. An attacker may expose user privacy and service information without authentication. Furthermore, the users of web services must temporarily delegate some or all of their behalf. This results in the exposure of user privacy information by agents. We propose a delegation model for providing safety of web service and user privacy in ubiquitous computing environments. In order to provide safety of web service and user privacy, XML-based encryption and a digital signature mechanism need to be efficiently integrated. In this paper, we propose web service management server based on XACML, in order to manage services and policies of web service providers. For this purpose, we extend SAML to declare delegation assertions transferred to web service providers by delegation among agents.

• Proceedings of the CALSEC Conference
• /
• 2003.09a
• /
• pp.218-223
• /
• 2003

UDDI is the open standard for distributed Web-based registry standard which supports registrations and discoveries of Web services. Recently, UDDI version 3.0 specifications were opened by OASIS UDDI Spec, technical committee. UDDI version 3.0 supports many useful functions, which are not supported in version 2.0 specification, such as nested query, enhanced find qualifiers, digital signatures subscription, etc. Despite of its merits, complexity of the standard and backward-compatibility support makes it difficult to adopt this standard in real application domains. In this paper, we develop the Registry server which support UDDI version 3.0 standard. This server is based on common RDBMS and it supports all functions of UDDI version 3.0 including backward-compatibility with version 2.0 API, XML digital signature and URI- based key schemes.

• Proceedings of the Korean Information Science Society Conference
• /
• 2000.10c
• /
• pp.195-197
• /
• 2000

J2ME(Java 2 Micro Edition)는 소비자/임베디드 디바이스 시장을 목표로 한 자바2 플랫폼으로서 이는 컨피규레이션(Configuration)과 프로파일(Profile)로 구성된다. SLDC/ MIDP(Connected Limited Device Configuration/Mobile Information Device Profile)는 그 중에서도 휴대폰과 양방향 페이저 같은 제한된 메모리를 가진 장치 위에서 사용되는 플랫폼이다. 본 논문에서는 J2ME 기반 하에서 CLDC/MIDP를 이용하여 보안모듈을 작성하고 휴대폰에서도 안전한 전자서명 및 전자지불을 가능케 하여 Mobile Commerce의 기초를 이루었다. 여기서 서명은 XML 기반으로 구성되었고, 시스템은 MIDlet으로 구현하였다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2003.05c
• /
• pp.2005-2008
• /
• 2003

M-Commerce에서 전자 서명은 필수적인 요소이다. 본 논문에서는 PKI를 기반으로 모바일 단말기에서 약정이나 계약을 체결할 수 있는 전자 서명 시스템을 설계 구현한 예를 보인다. 이를 위해 XML 구조의 계약서를 저작할 수 있는 도구를 개발하고, 계약서를 관리하는 서버와 PDA 단말기 상에서 전자 서명하는 모듈 그리고 고객이 계약을 확인할 수 있는 시스템을 구현하였다.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.13 no.9
• /
• pp.4214-4223
• /
• 2012

The argument related to the use of real and anonymous names on the Internet bulletin board has recently become a main issue. When using real names, it is possible to violate free discussion and privacy. Also, when using anonymous names, it is possible to have the reverse function of the Internet in regard to the use of malicious replies or the distribution of false ideas. Therefore, this paper has made it possible to prevent the spread of the user's personal information and execute the single log-in process by using the XML-token method which is one of the SSO technologies. Also, by issuing virtual IDs and forming the path when establishing tokens, the anonymous bulletin board which provides anonymity with a conditional tracing process has been suggested. After analyzing the performance of visitor numbers at authentication time, the anonymous bulletin board based on the group signature method showed the average response rate of 0.72 seconds, 0.18 seconds, which was suggested scheme. In the authentication time 4-5 times faster response speed, respectively. Also, since the suggested system does not have to provide a single authentication process or make the user provide his or her signature, the level of user's convenience seems to be much higher. Such a result shows that the system suggested on the anonymous bulletin board has a more appropriate level of user's convenience.

• Journal of the Korea Computer Industry Society
• /
• v.3 no.7
• /
• pp.861-870
• /
• 2002

The area of business applications in the internet are extended enormously in result of fast development of computing and communication technologies, increase of internet use, and use of intranet/extranet in enterprise information system. Widely spread the use of the internet, there are various applications for Business to Business (B to B) or Business to Customer(B to C) model that are based on the intranet or extranet. This paper designed and implemented the Web-based Electronic Bidding System for Business to Business (B to B) model. The technical issues of electronic bidding system in the internet are involved in the connection between web client and server, electronic data interchange for the contract document, and security solution during the bidding and contracting processes. The web-based electronic bidding system in this paper is implemented using Java applet and servlet as a connection interface for web client and sewer, XML/EDI-based documents for a bid and a contract, and bidding server and notary server for enhancing the security using PKI(Public Key Infrastructure)-based public key cryptography, digital signature and Certification Authority (CA).