• Journal of KIISE:Information Networking
• /
• v.32 no.6
• /
• pp.659-667
• /
• 2005

A Mobile Ad Hoc Network(MANET) is a multi hop wireless network with no prepared base stations or centralized administrations, where flocks of peer systems gather and compose a network. Each node operates as a normal end system in public networks. In addition to it, a MANET node is required to work as a router to forward traffic from a source or intermediate node to others. Each node operates as a normal end system in public networks, and further a MANET node work as a router to forward traffic from a source or intermediate node to the next node via routing path. Applications of MANET are extensively wide, such as battle field or any unwired place; however, these are exposed to critical problems related to network management, node's capability, and security because of frequent and dynamic changes in network topology, absence of centralized controls, restricted usage on network resources, and vulnerability oi mobile nodes which results from the special MANET's character, shared wireless media. These problems induce MANET to be weak from security attacks from eavesdropping to DoS. To guarantee secure authentication is the main part of security service In MANET because networks without secure authentication are exposed to exterior attacks. In this paper, a multistage authentication strategy based on CGSR is proposed to guarantee that only genuine and veritable nodes participate in communications. The proposed authentication model is composed of key manager, cluster head and common nodes. The cluster head is elected from secure nodes, and key manager is elected from cluster heads. The cluster head will verify other common nodes within its cluster range in MANET. Especially, ID of each node is used on communication, which allows digital signature and blocks non repudiation. For performance evaluation, attacks against node authentication are analyzed. Based on security parameters, strategies to resolve these attacks are drawn up.

• Proceedings of the Korean Information Science Society Conference
• /
• 2006.10d
• /
• pp.279-282
• /
• 2006

최근 무선통신 서비스에서 이동성을 추가하여 이동 네트워크 서비스를 제공하기 위해 사용하는 MIPv6, FMIPv6는 긴 핸드오프 지연시간으로 인한 통신 품질의 저하 및 제어/관리 메시지로 인하여 다량의 데이터 패킷 손실, 고비용등과 같은 단점을 가지고 있다. 특히, 각 단말에서 시행하는 주소의 생성 및 유일성 검사를 위한 DAD(Duplication Address Detection)는 핸드오프 지연시간의 가장 큰 영향을 미치는 요소로서 이에 대한 연구가 요구된다. 본 논문에서는 L2(Layer 2)의 재결합 절차 상 MR(Mobile Router)/AR(Access Router)에서 직접 유일성 검사를 마친 후 생성된 주소를 재결합 응답 프레임에 추가시켜 할당하는 Cross-Layer방식을 제안한다. 또한 할당된 주소관리와 생성된 주소의 유일성 검사를 위한 캐쉬도입을 고려하여 성능평가를 하였다. 제안된 방식은 기존 알고리즘들보다 전체 핸드오프 지연시간이 $30{\sim}80%$정도의 감소효과를 보이고 있으며, 비용관점에서도 약 56%의 절감효과를 확인할 수 있었다.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.10 no.2
• /
• pp.75-82
• /
• 2014

MANET has various types of attacks. In particular, routing attacks using characteristics of movement of nodes and wireless communication is the most threatening because all nodes which configure network perform a function of router which forwards packets. Therefore, mechanisms that detect routing attacks and defense must be applied. In this paper, we proposed hierarchical structure attack detection techniques in order to improve the detection ability against routing attacks. Black hole detection is performed using PIT for monitoring about control packets within cluster and packet information management on the cluster head. Flooding attack prevention is performed using cooperation-based distributed detection technique by member nodes. For this, member node uses NTT for information management of neighbor nodes and threshold whether attack or not receives from cluster head. The performance of attack detection could be further improved by calculating at regular intervals threshold considering the total traffic within cluster in the cluster head.

• Journal of the Korea Society of Computer and Information
• /
• v.17 no.9
• /
• pp.57-64
• /
• 2012

The existing protocols proposed in network mobility (NEMO) environment can require many computational costs and can bring about a delay of binding update. To solve these problems, in this paper we propose an authentication protocol supporting secure seamless handover in NEMO environment. The proposed protocol can handle quickly mutual authentication between a mobile router (MR) and an access router (AR), which uses group key among ARs and a master key (MK) issuing from key issuing server (KIS) for reducing the time of binding update as much as possible. In performance, the proposed protocol can process quickly binding update with little computational cost comparison with the existing binding update protocols and it results in robustness against existing attacks.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.36 no.1A
• /
• pp.67-72
• /
• 2011

There are lots of researches for mobility of MS(mobile station) in All IP based network. Specially, NEMO(NEwork MObility) is not supporting mobility of each MS but supporting mobility of network that include group of MS. Some research try to overcome limitation of wireless with the protocol in wired state and it maintains the performance such as wire environment. There are no researches about multicast with reliability in NEMO. Therefore, this paper suggests efficient algorithm to solve problems when RMTP(Reliable Multicast Transport Protocol) apply to NEMO environment to support high reliability with multicast. And this paper shows the better performance of proposed algorithm for delay and transmission rate between AR and TLMR comparing with RMTP in NEMO.

• Proceedings of the IEEK Conference
• /
• summer
• /
• pp.57-60
• /
• 2004

Next generation wireless network is evolving toward IP-based network that can various provide multimedia services. A challenge in wireless mobile Internet is support of quality of service over wireless access networks. DiffServ architecture is proposed for evolving wireless mobile Internet. In this paper we propose an algorithm for optimal buffer partitioning which requires the minimal channel capacity to satisfy the QoS requirements of input traffic. We used a partitioned buffer with size B to serve a layered traffic at each DiffServ router. We consider a traffic model with a single source generates traffic having J $(J\geq2)$ quality of service (QoS) classes. QoS in this case is described by loss probability $\varepsilon_j$. for QoS class j. Traffic is admitted or rejected based on the buffer occupancy and its service class. Traffic is generated by heterogeneous Markov-modulated fluid source (MMFS).

• Journal of the Korea Society of Computer and Information
• /
• v.14 no.5
• /
• pp.119-131
• /
• 2009

Existing proposals on route optimization for nested Network Mobility(NEMO) have a problem that it is difficult to optimize a route promptly in an environment where a MR moves frequently. Also, they have L3 handoff latency as well as route optimization latency until an optimized route is formed. In this paper, we propose a L3 handoff scheme that supports fast route optimization for nested NEMO without any additional optimization procedure. To achieve this, our proposed scheme is designed to include a procedure that an AR acquires address informations of a MR. After receiving binding update message from the MR, the AR performs the binding update procedure with the MR's HA on behalf of the MR. Packets are delivered to the AR only passing by the MR's HA after a bi-directional tunnel is formed between the AR and the HA. The result of our performance evaluation has shown that the proposed scheme could provide excellent performance compared with the RRH and the ONEMO.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.12 no.3
• /
• pp.171-177
• /
• 2012

Network mobility support has been taken into consideration for users who have multiple terminals to enjoy the seamless connectivity. This paper proposes a network mobility support scheme in the LISP architecture. During the mobile router attachment, the EID-to-RLOC mapping database is refreshed in the map server. Furthermore, map update is developed to support smooth handoff for the mobile network. An analysis of performance is given by comparing the proposed scheme with NEMO.

• The Journal of Korean Association of Computer Education
• /
• v.11 no.5
• /
• pp.67-76
• /
• 2008

Grid computing has a large scale virtual computing environment that enables a collaborative processing through sharing resources of geographically distributed organizations. In recent year, the development of wireless networks and mobile devices enables mobile devices to consider as a resource of the grids. However, there are some problems such as low performance of processors, small capacity of storages, limited capacity of battery, and low bandwidth. In this paper, to overcome these limitations occurred in mobile grid environments, we proposed a proxy-based mobile grid system. Our proposed system enables mobile devices to play roles as a resource consumer and a resource provider and to collaborate with wired grids through a mobile router. Also, we propose an adaptive job scheduling scheme to cope with context changes of mobile devices and compare our scheduling scheme with other scheduling schemes using a simulation tool, SimGrid, to verify the validity of our job scheduling scheme.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2007.05a
• /
• pp.1276-1278
• /
• 2007

무선 네트워크 기술의 발전과 이동성 지원에 대한 사용자의 요구가 증대됨에 따라 모바일 IPv6와 이를 확장한 NEMO (NEtwork Mobility) Basic Support 프로토콜이 등장하였다. 이동네트워크들이 중첩되어 구성될 경우 NBS (NEMO Basic Support) 프로토콜을 사용하는 네트워크에서는 패킷이 네트워크를 구성하는 이동라우터(MR, Mobile Router)의 홈에이전트(HA, Home Agent)를 모두 거치면서 중첩 터널링이 수행되는 핀볼라우팅 문제가 발생한다. 본 논문에서는 이러한 문제점을 해결하기 위해 중첩된 이동네트워크에서 새로운 라우팅 헤더를 사용한 경로최적화 기법을 제안한다. 제안하는 기법은 새로운 IPv6 라우팅 헤더 DH (Destination-information Header)를 정의하고 이를 라우팅 헤더 타입 2를 대신하여 사용함으로써 중첩된 이동네트워크에서의 경로최적화를 구현한다. 이 기법은 기존 기법에 비하여 최적화된 경로로 통신하여 최소 32% 뛰어난 성능향상을 확인할 수 있다.