• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2003.10a
• /
• pp.652-655
• /
• 2003

This paper represents the electronic money market forecast. The cash, check and traditional settlement means transfer the electronic money with information technique. This paper forecasts not only the use of electronic money markets but also the scale of electronic money. So, the purpose of this study is to forecast and analyze the present situation of electronic money market.

• Proceedings of the KIEE Conference
• /
• 2000.07d
• /
• pp.3103-3105
• /
• 2000

본 논문은 RF/ID 카드를 이용한 도어락 시스템의 개발에 관한 것이다. 기존 기계적 도어락 시스템의 보안과 편리성을 도모하기 위해 전자식 도어락가 현재 널리 쓰이고 있다. 대부분의 도어락 시스템이 버튼식이지만 현재 RF/ID 카드를 많이 쓰는 추세이다. RF/ID카드는 비접촉식으로 보안성과 그 신뢰성이 뛰어나며 안테나 설계와 Tag의 특성에 따라서 그 통신 범위도 작게는 몇Cm에서 크게는 몇십m 까지 된다. 따라서 그 응용 범위 또한 광범위해서 사람. 개체. 물류등의 개체인식에 널리 쓰이고 있다. 본 논문은 이러한 RF/ID 카드를 소규모 도어락 시스템을 요구하는 가정, 또는 오피스텔과 같은 곳에서 쓰일 수 있는 도어락 시스템을 개발하였다.

• The KIPS Transactions:PartC
• /
• v.19C no.1
• /
• pp.39-46
• /
• 2012

In this paper, we propose a key distribution scheme for flexible chipset pairing conditional access system. Chipset pairing conditional access system is the implementation of CA (Conditional Access) module by using both embedded secure chip in a Set-Top Box(STB) and smartcard, and the secure chip embedded in a STB forms a secure channel between the smartcard and the STB. In short, it is the system that a smartcard outputs encrypted CW (Control Word) to the STB, and the STB decrypts an encrypted CW by using the embedded secure chip. The drawback of this chipset pairing conditional access system is that one smartcard is able to be used for only one specified STB since it is the system using the STB bound to a smartcard. However, the key distribution scheme proposed in this paper overcomes a drawback of current chipset pairing conditional access system by using Chinese Remainder Theorem(CRT). To be specific, with this scheme, one smartcard can be used for multiple, not single, STBs, and applied to current chipset pairing without great changes.

• Journal of the Korea Society of Computer and Information
• /
• v.14 no.3
• /
• pp.133-138
• /
• 2009

Recently Lin et al. proposed the remote user authentication scheme using smart cards. But the proposed scheme has not been satisfied security requirements considering in the user authentication scheme using the password based smart card. In this paper, we showed that he can get the user's password using the off-line password guessing attack on the scheme when the adversary steals the user's smart card and extracts the information in the smart card. Also, we proposed the seven security requirements for evaluating remote user authentication schemes using smart card. As a result of analysis, in Lin et al's scheme we have found the deficiencies of security requirements. So we suggest the improved scheme, the mutual authentication scheme that does not store the user's password verifier in server and can authenticate each other at the same time between the user and server.

• 전자공학회논문지 IE
• /
• v.43 no.1
• /
• pp.46-51
• /
• 2006

Recently, smart card system which is known as easy to portable and also safe from physical, electrical, and software attack is observed to manage information that becomes the target of security in safety. And java card graft upon java technology to smart card platform is having very good advantage with object-oriented techniques and also, java card have the open type OS that can show the same action in different hardware characteristic which allows various application programs. In this paper, we introduced independent execution characteristic of java platform because being set to each smart card was uncomfortable till now and we designed access control member card that allows several administrators in different access privilege by single card using java card. Several administrators can approach to various information of file type that is included on issued card to user by using different PIN. In the proposed method, confirmation of personal information, administration contents update, demand by contents, is possible by single card. At this moment, wish to do safer user certification that improve security limitation which is from PIN, used for user certification, and signature data. In the proposed method, as design and implementation of utilization technology of java card, biometrics, user certification which uses multi PIN, provide that more safety and conveniently.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2009.04a
• /
• pp.1470-1473
• /
• 2009

대부분 기업의 중요 기술정보 유출은 내부자에 의해 이루어진다. 기업의 핵심기술 및 정보유출을 방지하기 위하여 여러 분야에서 많은 투자와 연구가 진행되고 있지만 기술발전에 따라 업무환경과 일하는 방법이 변화하여 물리적보안과 정보보안을 분리한 기존 개별 통제방식은 효용성이 떨어지고 있다. 새로운 환경에 대응하기 위하여 보안 패러다임의 전환이 필요한 시점이다. 이에 본 연구는 물리적보안과 정보보안을 융합한 신뢰할 수 있는 인증기반(스마트카드/생체정보) 보안저장매체의 요구기능, 각 기능에 필요한 요소기술에 대하여 고찰한다.

• Proceedings of the Korean Information Science Society Conference
• /
• 1999.10c
• /
• pp.549-551
• /
• 1999

웹 상에서의 전자 상거래는 고객과 상인간의 정보 보호와 대금 결제의 신뢰성이 보장되어야 한다. 스마트카드는 자체내의 메모리기능과 연산기능을 가진 IC 카드로써 사용자 인증과 개인정보 보호 기능이 탁월하다. 따라서, 신용 카드 기반의 전자 지불 프로토콜의 표준인 SET을 사용하여, 보안 기능이 뛰어난 스마트카드를 지불 수단으로 하는 안전하고 효율적인 스마트카드 전자 지불 시스템을 설계하고 자바로 구현하였다. 본 논문에서 구현한 지불 시스템은 지불 정보와 주문 정보의 기밀성을 제공하고, 공개키 기반의 암호 체계로 데이터의 무결성을 보장한다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2016.04a
• /
• pp.218-221
• /
• 2016

Global Platform는 다중 응용프로그램의 보안적 관리를 위한 IC칩 카드의 글로벌 산업표준으로써, GP 규격이 구현된 IC칩 카드는 다양한 응용분야에서 사용되는 애플리케이션을 카드에 탑재하고자 할 때 정당한 호스트와 카드임을 상호간에 입증하기 위해서 상호인증을 수행한다. 본 논문은 GP 규격에서 제시하는 카드와 호스트간의 대칭키 기반 상호인증 프로토콜에 대해서 분석하고, 카드가 생성한 난수의 유효성을 효율적으로 검증하는 방안을 제시한다.

• Journal of Korea Society of Industrial Information Systems
• /
• v.9 no.1
• /
• pp.69-76
• /
• 2004

Recently, smart cards with multi-applications loaded are becoming popular owing to many advantages. As many casual users would like to reduce the number of plastic cards, and card issuers want to upgrade the existing applications or add the new applications, and developers wish to reduce the development turn-around time, multi-applications smart cards are becoming important. In addition, many advantages exist between the business partners as smart card applications can share critical information. New operating systems such as JavaCard and MULTOS are suggested for the multi-applications smart card service recently. In this paper, after we review the principles of operations of smart card, we propose the various security mechanisms for the multi-application JavaCard service environment, which is becoming de facto standard in the industry.

• Journal of KIISE:Information Networking
• /
• v.29 no.6
• /
• pp.645-653
• /
• 2002

The WPP payment protocol uses the WAP protocol to enable credit card payment on the wireless internet. Since the security of the WAP protocol is based on the WTLS security protocol, there exists an end-to-end security weakness for the WPP payment protocol. This paper is suggesting a payment protocol, which is making use of the Public-Key Cryptosystem and the Mobile Gateway, so assuring end-to-end security independently of specific protocols. As the on-line certification authority is participating on the authentication process of the payment protocol, the suggested payment protocol enables wireless devices to get services from service providers on other domains.