• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.26 no.2
• /
• pp.301-314
• /
• 2016

Juels and Sudan's fuzzy vault scheme has been applied to various researches due to its error-tolerance property. However, the fuzzy vault scheme does not consider the difference between people's preferences, even though the authors instantiated movie lover' case in their paper. On the other hand, to make secure and high performance face authentication system, Nyang and Lee introduced a face authentication system, so-called fuzzy face vault, that has a specially designed association structure between face features and ordinary fuzzy vault in order to let each face feature have different weight. However, because of optimizing intra/inter class difference of underlying feature extraction methods, we can easily expect that the face authentication system does not successfully decrease the face authentication failure. In this paper, for ensuring the flexible use of the fuzzy vault scheme, we introduce the bucket structure, which differently implements the weighting idea of Nyang and Lee's face authentication system, and three distribution functions, which formalize the relation between user's weight of preferences and system implementation. In addition, we suggest a matchmaker scheme based on them and confirm its computational performance through the movie database.

• Korean Security Journal
• /
• no.54
• /
• pp.101-125
• /
• 2018

In the police, crime intelligence is the basis of decision making for police's original activities in response to crime. Police decision making is done in various ways such as investigation and prevention of individual cases, allocation of resources, organization prioritization, etc. The purpose of this study was to investigate the activities of the UK policing in analyzing crime intelligence and to reflect them in the policing and to draw implications for the comparison with the Korean police. The UK operates a central police agency based on the local police system, and establishes a National Intelligence Model (NIM) system that operates crime intelligence throughout the country. In order to respond to crimes and risks through coordination and cooperation, rather than by centralized police activities, the intelligence department of the police agencies should not only prevent and suppress crime through the analysis of integrated crime information, but also make police decision-making. In contrast, the Korea police operate crime intelligence, such as statistics, case intelligence, and there is no integrated way to use it. In addition, there are few cases in which the organizational decision - making based on crime intelligence is utilized efficiently and systematically. For development, it is necessary to construct an integrated management system and analysis organization for crime intellgence. Criminal Intelligence Analysis Organizations should seek to reorganize the role of the current intelligence department or to operate a separate analysis system through the information system while maintaining the current role of each department.

• Journal of Korean Society of Disaster and Security
• /
• v.5 no.2
• /
• pp.49-59
• /
• 2012

The safety management of the emergency exit, by directly related to the $civil^{\circ}$Øs dead in the fire situation, have limited by which the fire station take the on-side and control-centered way of business processing, it is expect to the effects in which the citizen have to concern and to take part. From 2010 years in the back-ground, it is operated nationally the report and reward system on an illegal behavior of the emergency exit, it is happened to the unfit operating situation in the mission and direction of the system up which the exit paparazzi act with intent to receive the reward payments. The study suggests solution through analyzing the illegal emergency exit operation result of sixteen counties and the Seoul metropolitan from year 2010 to 2011. Firstly, the report destination is adjusted to the multiple use establishments and the large-scale multiple use facilities over the limit level is limited under five times the report events of the same people in the minor endorsement. And the fine incomes should be invested to the disaster prevention acting related with the exit. Secondly, for upgrade of the report accuracy, a reporter is received the possible information for the confirmation of an illegal act, has become to lead the pre-monitoring act which the reporter is can to take the safety education and to guide the information about season and vulnerable business location. Finally, considering the support way about the encounter facility, the fire officer is not happen to occur the repetitive report in the same place, is related to the volunteer service system the report acts, consider as the volunteer service time, and must support them to act as the disaster prevention volunteer.

• Journal of Software Assessment and Valuation
• /
• v.15 no.2
• /
• pp.111-119
• /
• 2019

The existing smart grid device authentication system is concentrated on DCU, meter reading FEP and MDMS, and the authentication system for smart meters is not established. Although some cryptographic chips have been developed at present, it is difficult to complete the PKI authentication scheme because it is at the low level of simple encryption. Unlike existing power grids, smart grids are based on open two-way communication, increasing the risk of accidents as information security vulnerabilities increase. However, PKI is difficult to apply to smart meters, and there is a possibility of accidents such as system shutdown by sending manipulated packets and sending false information to the operating system. Issuing an existing PKI certificate to smart meters with high hardware constraints makes authentication and certificate renewal difficult, so an ultra-lightweight password authentication protocol that can operate even on the poor performance of smart meters (such as non-IP networks, processors, memory, and storage space) was designed and implemented. As a result of the experiment, lightweight cryptographic authentication protocol was able to be executed quickly in the Cortex-M3 environment, and it is expected that it will help to prepare a more secure authentication system in the smart grid industry.

• Journal of Korea Multimedia Society
• /
• v.15 no.2
• /
• pp.242-249
• /
• 2012

Recently, value added location based service and convergence monitoring and control system is growing. The cases include increasing usage of smart-phone for taking picture, wireless network, GPS and digital map. Especially, Smart-phone is appropriate for using image information and location information. However it is possible to be exploited for forgery and manipulation. So we experimented on transferring modified data on the smart-phone as image and location information in EXIF and researched the technology for data verification. In addition, we have designed security monitoring and control prototype considering axis-address matching analysis used geocoding, watermarking verification, encryption.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.16 no.12
• /
• pp.2649-2656
• /
• 2012

Today, many enterprises have invested heavily for the part of information security in order to protect the internal critical information assets and the business agility. However, there is a big problem that big budget and too many manpower are needed to set the internal corporate network up to the same high level of defense for all of part. On the distributed enterprise networks in this paper, a defense model for effective and rapid response on the IP spoofing attack was designed to protect the enterprise network through the exchange of information between the trust hosts when an attacker attacked any target system using other trusted host.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.12 no.3
• /
• pp.195-200
• /
• 2012

Smart Phone devices offer convenience for users, but present a new set of security issues due to loss or malicious code. In this paper, a mobile cloud system environment is used with existing smart phones in an attempt to solve the problems in a banking environment. In order to prevent financial damages due to loss or personal information leakage by malicious code, a mobile cloud computing service that provides control and protection of personal information in environment that ensures individual authentication is used. Existing ID / Password with certificate, with the way smart phone dual password authentication scheme using the gyro sensors proposed.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.39C no.8
• /
• pp.738-745
• /
• 2014

Recently, mobile users continuously increase, and mobile applications also increase As mobile applications increase, the mobile users used to store sensitive and private information such as Bank information, location information, ID, password on their mobile devices. Therefore, recent malicious application targeted to mobile device instead of PC environment is increasing. In particular, since the Android is an open platform and includes security vulnerabilities, attackers prefer this environment. This paper analyzes the performance of malware detection system applying linear SVM machine learning classifier to detect Android malware application. This paper also performs feature selection in order to improve detection performance.

• Journal of Sensor Science and Technology
• /
• v.16 no.4
• /
• pp.277-285
• /
• 2007

In this paper, we outline the research issues that we are pursuing towards building of location aware environments for mainly ubiquitous healthcare applications. Such location aware application can provide what is happening in this space. To locate an object, such as patient or elderly person, the active ceiling-mounted reference beacons were placed throughout the building. Reference beacons periodically publish location information on RF and ultrasonic signals to allow application running on mobile or static nodes to study and determine their physical location. Once object-carried passive listener receives the information, it subsequently determines it's location from reference beacons. The cost of the system was reduced while the accuracy in our experiments was fairly good and fine grained between 7 and 12 cm for location awareness in indoor environments by using only the sensor nodes and wireless sensor network technology. Passive architecture used here provides the security of the user privacy while at the server the privacy was secured by providing the authentication using Geopriv approach. This information from sensor nodes is further forwarded to base station where further computation is performed to determine the current position of object.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.12 no.8
• /
• pp.4021-4037
• /
• 2018

In network intrusion detection research, two characteristics are generally considered vital to building efficient intrusion detection systems (IDSs): an optimal feature selection technique and robust classification schemes. However, the emergence of sophisticated network attacks and the advent of big data concepts in intrusion detection domains require two more significant aspects to be addressed: employing an appropriate big data computing framework and utilizing a contemporary dataset to deal with ongoing advancements. As such, we present a comprehensive approach to building an efficient IDS with the aim of strengthening academic anomaly detection research in real-world operational environments. The proposed system has the following four characteristics: (i) it performs optimal feature selection using information gain and branch-and-bound algorithms; (ii) it employs machine learning techniques for classification, namely, Logistic Regression, Naïve Bayes, and Random Forest; (iii) it introduces bulk synchronous parallel processing to handle the computational requirements of large-scale networks; and (iv) it utilizes a real-time contemporary dataset generated by the Information Security Centre of Excellence at the University of Brunswick (ISCX-UNB) to validate its efficacy. Experimental analysis shows the effectiveness of the proposed framework, which is able to achieve high accuracy, low computational cost, and reduced false alarms.