• Proceedings of the Korean Information Science Society Conference
• /
• 2002.10c
• /
• pp.613-615
• /
• 2002

IPsec 기술은 양단간 보안은 물론, 모드, 암호 프로토콜, 다양한 암호화 알고리즘들의 조합을 통하여 다양하고 계층적인 보안 서비스를 제공한다. 또한, 보안 정책 시스템은 패킷 처리에 관한 지칭은 물론, IPsec의 핵심 요소인 Security Association을 협상하기 위한 보안 기반 규칙을 제공한다. 하지만 인터넷의 확장과 더불어 발생한 IP 주소 부족 문제를 해결하기 위한 NAT로 인하여 IPsec과 같은 단대단 통합 보안 서비스를 제공하는데 치명적인 장애가 발생하게 되었다. 또한 서로 다른 네트워크의 정책 서버간 보안 정책 협상도 NAT에 의한 주소 변환으로 인하여 불가능하게 되었다. 따라서 본 논문에서는 NAT상에서의 효율적인 보안 정책 협상과 인증서 발급을 위한 SPS-ALG (Security Policy System-Application Level Gateway)를 제안한다.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.28 no.11A
• /
• pp.867-875
• /
• 2003

Current end-to-end congestion control depends only on the information of end points (using three duplicate ACK packets) and generally responds slowly to the network congestion. This mechanism can't avoid TCP global synchronization in which TCP congestion window size is fluctuated during congestion period. Furthermore, if RTT(Round Trip Time) is increased, three duplicate ACK packets are not correct congestion signals because congestion might already disappear and the host may send more packets until it receives three duplicate ACK packets. Recently there are increasing interests in solving end-to-end congestion control using AQM(Active Queue Management) to improve the performance of TCP protocols. AQM is a variation of RED-based congestion control. In this paper, we first evaluate the effectiveness of the current AQM schemes such as RED, CHOKe, ARED, FRED and SRED, over traffic with different rates and over traffic with mixed responsive and non-responsive flows, respectively. In particular, CHOKe mechanism shows greater unfairness, especially when more unresponsive flows exist in a shared link. We then propose a new AQM scheme using CHOKe mechanism, called DQC(Double Queue CHOKe), which uses two FIFO queues before applying CHOKe mechanism to adaptive congestion control. Simulation shows that it works well in protecting congestion-sensitive flows from congestion-causing flows and exhibits better performances than other AQM schemes. Also we use partial state information, proposed in LRURED, to improve our mechanism.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.31 no.10B
• /
• pp.857-865
• /
• 2006

In order to test and evaluate the various functions and services of NGN would be promised, a specified methodology is needed and a development for the identification of testing object, configuration and test traffic are required. Simulation and analytical modeling methodshave used for IP performance testing, but further study issue still remains. This paper proposes new evaluation methodology to achieve an objective approach rather than a subjective and isolated, based on the real-field environment, for NGN network. For this purpose, background traffic pattern to interfere test traffic was specified and it was tested in actual NGN testbed with systems having NGN technology, such as per bandwidth and packet size. The results shows the suggested methodology is appropriate, comparing with parameters which are Delay, Jitter and Loss the current approach for the end-to-end performance evaluation on NGN.

• Journal of the Institute of Electronics Engineers of Korea TC
• /
• v.40 no.10
• /
• pp.59-66
• /
• 2003

We propose the novel optical burst switching scheme to guarantee a minimum bandwidth for multiple classes. To date, QoS studies on OBS network are capable of differentiating two classes, but have difficulties in providing a minimum bandwidth lot several classes because of lower classes' collision with the highest class bursts in the networks. To solve that problem, in our proposed scheme we assign time zones in a data channel for each class periodically, making one burst have top priority at least its zone. Also, the new burst assembling algorithm, as well as the way of managing data channel, is necessarily proposed to coordinate with the proposed OBS scheme. Through the evaluation, we show that the worst-case end-to-end delay is small enough and the received bandwidth of the lower classes is still assured regardless of the traffic load of the highest class.

• The Transactions of the Korea Information Processing Society
• /
• v.3 no.7
• /
• pp.1834-1844
• /
• 1996

In asynchronous communication data of specific area are used as all kinds of control characters. Therefore, data of this area must be converted to other character and transmitted followed by control prefix to prevent the misconception as control characters. This paper presents several methods for character conversion that prevent the lengthening of data and enhance the overall efficiency of communication by transmitting with a certain conversion and without control prefixes on control-like characters occurring when data are transmitted with ciphering onto asynchronous communication path. For such conversion, the scope of transmitted data was sup-posed and efforts were made not to exceed that scope. Experiments showed that method is better in communication speed than the existing ones and the ciphering has no problem by confirming the randomness of ciphered data.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.23 no.5
• /
• pp.1241-1248
• /
• 1998

The multicast scheme can improve the efficiency of multimedia retrieval service system, assuming that video transmission speed is faster than the playback rate and the store-and-play scheme. To best exploit the multicast benefits under bandwidth heterogeneous environment, we develop a multicast scheduling algorithm called MTS(Maximum Throughput Scheduling) which tries to maximize the amount of information transferred at each scheduling with subgrouping method. The MTS method compromises the multiple unicast method and the multicast method with lowest transmission rate. we compare the performance of MTS with that of MMS(Most Multicasting Scheduling) and EDS(Earliest Deadine Scheduling) via computer simulation. The performance results show that the MTS requires less number of service handlers to service the same number of subscribers.

• 한국정보통신설비학회:학술대회논문집
• /
• 2009.08a
• /
• pp.81-85
• /
• 2009

본 논문은 VoIP, IPTV, VoD 등의 실시간 서비스 품질을 네트워크 노드에서 모니터링함으로써네트워크에서 발생한 품질이상을 분석할 수 있는 스위치 칩을 설계하였다. 인터넷 서비스의 특성상 단대단 서비스에 기반한 실시간서비스는 품질이상이 발생한 위치를 정확하게 분석할 수 없기 때문에 유지보수에 어려움이 있다. 이러한 문제를 해결하기 위해 본 논문에서는 실시간서비스에 해당하는 플로우를 등록하고 해당 플로우가 장치내에서 발생한 패킷손실, RTP 시퀀스 넘버를 참조하여 이전 장치에서의 패킷손실, 패킷의 IAT(Inter Arrival Time), 대역폭, 그리고 장치내 지연을 실시간으로 측정할 수 있는 기능을 가진 AVB(Audio/Video Bridge)칩을 구현하기 위해 IEEE802.1AS를 기만한 시간동기 프로토콜의 정확성을 시뮬레이션하고, FPGA를 이용하여 구현한 AVB 스위치칩에서 타임스템프의 정확성을 확인함으로써 실시간서비스의 품질을 네트워크에서 실시간으로 모니터링 할 수 있는 가능성을 확인하였다.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.29 no.8B
• /
• pp.739-746
• /
• 2004

An ATM/AAL2 is standardized to transmit delay sensitive application services, which has small size packet, efficiently. An AAL2 transmission scheme is used to deliver voice and data traffic on the lob interface between base station (Node-B) and Radio Network Controller (RNC) in UMTS network. To predict AAL2 performance, a detailed end-to-end UMTS network performance simulator was developed. We performed detailed simulation(cell packing density and bandwidth gain) for voice and data services in UTRAN. The results indicate that the maximum bandwidth gain in Node-B is about 17% and the bandwidth gain of AAL2 multiplexing in $I_{ub}$ for data services is less than that for voice service. Futhermore, the more offered load increase the more the bandwidth gain decreases in a concentrator.

• Journal of KIISE:Computing Practices and Letters
• /
• v.16 no.6
• /
• pp.717-721
• /
• 2010

In general, wireless MAC uses the ACK for reliability. Meanwhile, in wireless sensor network, data is delivered periodically and redundantly. In these situations, every ACK transmission causes the reliability flexible applications to waste some energy. IEEE 802.15.4 developed for energy efficiency has the option of using ACK or not, but there are no researches exploiting this peculiarity. In this paper, we proposed the selective unacknowledged transmission satisfying some requirements (e.g., end-to-end delivery) by removing the ACK when frames are delivered well and using the ACK when frames are delivered poorly. Also, we performed several evaluations exploiting the NS2 simulator.

• Journal of Digital Convergence
• /
• v.10 no.4
• /
• pp.251-256
• /
• 2012

In this paper, we addressed the problem of upstream bandwidth in EPONs. We presented a wavelength division EPON supporting QoS in the differentiated services framework. It was shown that the bandwidth allocation by priority scheduling, under our assumptions for traffic behavior, will result in an unexpected behavior for high priority class and we suggested the use of weighted priority scheduling to alleviate this problem. Our wavelength division EPON supporting QoS allocates effectively and fairly bandwidths and wavelengths between ONUs in the differentiated services framework. Moreover, we showed better performance in terms of average and maximum end-to-end delay, as well as network throughput, utilization compared with some other algorithms. We used simulation experiments to study the performance and validate the effectiveness of the proposed network and algorithm.