• Journal of the Korea Convergence Society
• /
• v.9 no.4
• /
• pp.9-14
• /
• 2018

Recently, as the internet speed is getting faster, in the cloud environment, the service receiving device is changing from a general PC to a compact device such as a mobile phone or a tablet PC. Since handheld devices such as mobile phones or tablet PCs are often used in wireless rather than wired, there are many problems that personal information may be exposed maliciously from a third party. In this paper, we propose a user privacy protection scheme through a duplicate duplicate key generation process which can safely protect user 's privacy from third party among cloud services being served through various wireless media. The proposed scheme is used to synchronize the duplicated key between the server and the intermediary device, and aims at shortening the time of the authentication process protecting the user 's privacy. In this case, the proposed scheme uses Interleave() function and random number to synchronize the server and the intermediary device, so it can safely prevent the malicious attack of the third party.

• Proceedings of the Korea Multimedia Society Conference
• /
• 2003.05b
• /
• pp.283-286
• /
• 2003

디지털 데이터의 복제가 확산됨에 따라 여러 가지 멀티미디어 데이터에 대한 소유권 문제와 이를 효율적으로 보호할 수 있는 기술이 요구되고 있다. 원영상과 삽입될 워터마크 영상을 웨이블릿 분해하고 인간 시각시스템을 사용하여 삽입하고 추출하였다. 삽입된 영상의 인증을 위한 방법으로 통계학적 접근 방법을 제시한다. 본 논문에서 제안한 방법은 영상의 화질이 우수하였으며 외부의 공격에도 강인성이 뛰어나고, 검출된 워터마크의 시각적인 인지도가 높음을 알 수 있다.

• Proceedings of the Korea Institutes of Information Security and Cryptology Conference
• /
• 2006.06a
• /
• pp.373-376
• /
• 2006

전자봉인 장치는 능동형 RFID 장치로서, 화물 컨테이너의 문에 설치되어 컨테이너가 정당한 사용자가 아닌 다른 사용자가 개봉하였다는 사실을 인지하도록 하는 역할을 하는 장치이다. 전자 봉인장치는 RFID를 이용하므로 허용된 사용자 외에는 그 정보를 식별 할 수 없도록 할 필요가 있으며, 오랜 시간 고정된 장소에 존재하기 때문에 물리적으로 공격당하여 컨테이너의 내용물을 훔치거나 다른 물건으로 바꾸어 넣은 후 기존의 봉인의 내용을 복사한 새로운 봉인을 설치함으로서 봉인이 깨졌었다는 사실을 인지하지 못하도록 만드는 일을 막을 수 있어야만 한다. 본 논문에서는 리더와 태그가 통신하는 그 내용을 제 삼자가 인식하지 못하도록 함과 동시에, 봉인의 내용을 복사하더라도 원래 봉인을 대체할 수 없도록 하는 방법에 대해 제안 하고자 한다.

• Proceedings of the Korean Society of Broadcast Engineers Conference
• /
• 2016.11a
• /
• pp.103-106
• /
• 2016

인터넷 사용의 발달로 디지털 미디어 영상에 대한 불법 복제, 불법 배포 등의 문제가 완연해짐에 따라 영상의 제작자의 소유권과 저작권을 보호할 수 있는 워터마크 기법이 많이 연구되고 있다. 워터마크 시스템은 워터마크 삽입 후, 삽입정보를 알 수 없어야하는 비가시성 특성과 여러 공격에도 훼손되지 않고 추출될 수 있는 강인함을 가지고 있어야 한다. 이에 본 논문은 이산 웨이블릿 변환(DWT)으로 생성되는 부대역의 점유 주파수대역 특성과 공격이 이 부대역들에 미치는 영향을 분석하고, 이를 사용하여 디지털 워터마킹을 수행하였을 때 추출률을 최고로 하기 위해서는 변환된 부대역이 특정 범위내의 해상도를 가져야 한다는 것을 보인다. 본 연구는 실험적 방법으로 모든 부분연구는 실험에 의해서 결정된다.

• Journal of the Korea Society of Computer and Information
• /
• v.10 no.3 s.35
• /
• pp.133-141
• /
• 2005

Digital contents can be distributed via internet without qualify defect and this will bring a great loss to the contents provider. Therefore, it is necessary to investigate on the key exchanging protocol to protect the digital contents effectively. In this study we propose the key exchanging protocol based on password to send the digital contents efficiently. The stability suggested here is based on the difficulty of the discrete algebra and Diffie-Hellman problem and also it provides a secure safety against various attacks such as a guess attack on the password.

• Journal of Digital Convergence
• /
• v.10 no.6
• /
• pp.231-239
• /
• 2012

This paper tries to solve the problems which previous methods have such as the WCDRM(Watermark and Cryptography DRM) and the model using smart card for protecting digital contents. This study provides a contents distribution model to protect the rights of author, distributor, and user as well as user's information by using technologies such as cryptography, DRM(Digital Right Management), access control, etc. The proposed system is evaluated as the most safety model compared with previous methods because it not only solves the problems which the previous methods have, but also protects four type of risks such as use of contents which other mobile devices download, the attack on the key to decode the message, the attack on leaking the contents, and the internal attack such as an illegal reproduction.

• Journal of the Korea Convergence Society
• /
• v.3 no.1
• /
• pp.19-25
• /
• 2012

This paper tries to solve the problems which previous methods have such as the WCDRM(Watermark and Cryptography DRM) and the model using smart card for protecting digital contents. This study provides a contents distribution model to protect the rights of author, distributor, and user as well as user's information by using technologies such as cryptography, DRM(Digital Right Management), access control, etc. The proposed system is evaluated as the most safety model compared with previous methods because it not only solves the problems which the previous methods have, but also protects four type of risks such as use of contents which other mobile devices download, the attack on the key to decode the message, the attack on leaking the contents, and the internal attack such as an illegal reproduction.

• Journal of Digital Convergence
• /
• v.11 no.11
• /
• pp.675-682
• /
• 2013

This paper tries to solve the problems which previous methods have the model using smart card for protecting digital contents. This study provides a contents distribution model to protect the rights of author, distributor, and user as well as user's information by using technologies such as cryptography, DRM(Digital Right Management), access control, etc. The proposed system is evaluated as the most safety model compared with previous methods because it not only solves the problems which the previous methods have, but also protects four type of risks such as use of contents which other mobile devices download, the attack on the key to decode the message, the attack on leaking the contents, and the internal attack such as an illegal reproduction.

• Convergence Security Journal
• /
• v.19 no.1
• /
• pp.3-10
• /
• 2019

The 5G network is a next-generation converged network that combines various ICT technologies to realize the need for high speed, hyper connection and ultra low delay, and various efforts have been made to address the security vulnerabilities of the previous generation mobile networks. However, the standards released so far still have potential security vulnerabilities, such as USIM deception and replication attack, message re-transmission attack, and race-condition attack. In order to solve these security problems, this paper proposes a new 5G-AKA protocol with PUF technology, which is a physical unclonable function. The proposed PUF-based 5G-AKA improves the security vulnerabilities identified so far using the device-specific response for a specific challenge and hash function. This approach enables a strong white-list policy through the addition of inexpensive PUF circuits when utilizing 5G networks in areas where security is critical. In addition, since additional cryptographic algorithms are not applied to existing protocols, there is relatively little burden on increasing computational costs or increasing authentication parameter storage.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.23 no.11
• /
• pp.1451-1461
• /
• 2019

DNS spoofing is an attack in which an attacker intervenes in the communication between client and DNS server to deceive DNS server by responding to a fake IP address rather than actual IP address. It is possible to implement a pharming site that hacks user ID and password by duplicating web server's index page and simple web programming. In this paper we have studied web spoofing attack that combines DNS spoofing and pharming site implementation which leads to farming site. We have studied DNS spoofing attack method, procedure and farming site implementation method for portal server of this university. In the case of Kyungsung Portal, bypassing attack and hacking were possible even though the web server was SSL encrypted and secure authentication. Many web servers do not have security measures, and even web servers secured by SSL can be disabled. So it is necessary that these serious risks are to be informed and countermeasures are to be researched.