• Journal of Internet Computing and Services
• /
• v.22 no.1
• /
• pp.99-107
• /
• 2021

With the recent establishment of a ubiquitous-based medical and healthcare environment, the medical information system for obtaining situation information from various sensors is increasing. In the medical information system environment based on context-awareness, the patient situation can be determined as normal or emergency using situational information. In addition, medical staff can easily access patient information after simple user authentication using ID and Password through applications on smart devices. However, these services of authentication and patient information access are staff-oriented systems and do not fully consider the ubiquitous-based healthcare information system environment. In this paper, we present a authentication service model based context-awareness system for providing situational information-driven authentication services to users who access medical information, and implemented proposed system. The authentication service model based context-awareness system is a service that recognizes patient situations through sensors and the authentication and authorization of medical staff proceed differently according to patient situations. It was implemented using wearables, biometric data measurement modules, camera sensors, etc. to configure various situational information measurement environments. If the patient situation was emergency situation, the medical information server sent an emergency message to the smart device of the medical staff, and the medical staff that received the emergency message tried to authenticate using the application of the smart device to access the patient information. Once all authentication was completed, medical staff will be given access to high-level medical information and can even checked patient medical information that could not be seen under normal situation. The authentication service model based context-awareness system not only fully considered the ubiquitous medical information system environment, but also enhanced patient-centered systematic security and access transparency.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2013.10a
• /
• pp.169-172
• /
• 2013

In this paper, we develop an application service of user authentication system using context awareness technology. The proposed security printer system service is applying 'NFC(Near Field Communication) technology', 'authentication system using communication with server, according to context awareness to application system. Our system extracts several context-awareness elements that happen through the user's printing with server communication. The proposed system property elements contain as print time, number of printing and name of document, etc. based on working memory operation as DB. This proposed system provide with context-awareness weight algorithm and analyzes the service which decides success or failure of user's printing. The develop app service is formed and applied when approved user who gets request. Approved user according to these context awareness tech will be provided with final service after authenticating again for the certain NFC card to reader. This results cab be contributed an authentication service based on context awareness weight algorithm and improved performance of management service in secure service applications.

• Journal of the Institute of Electronics Engineers of Korea CI
• /
• v.47 no.6
• /
• pp.19-27
• /
• 2010

Many security issues occur in cloud computing service environment such as authentication, access control, and so on. In this paper, we propose an effective authentication and access control model which provide integrated management and control when we access various resources in cloud computing environment. To address these problems, we suggest a context-aware single sign-on and access control system using context-awareness, integrated authentication, access control, and OSGi service platform in cloud computing environment. And we show design and implementation of context-aware single sign-on and access control system. Also we verified the flexibility and convenience of the proposed system through multi fact based integrated authentication in cloud computing environment. We could provide flexible and secure seamless security service by user context in cloud computing environment.

• Proceedings of the Korean Society of Computer Information Conference
• /
• 2014.07a
• /
• pp.5-8
• /
• 2014

본 논문에서는 오픈 소스 하드웨어를 이용한 상황인식 스마트 디지털 도어락 시스템을 제안한다. 이 시스템은 오픈 소스 하드웨어를 이용하여 효율적으로 개발기간을 단축하고, 상황인식 센서를 이용하여 사용자에게 편리성을 제공하는 것에 목적을 두고 있다. 이 시스템은 사물인터넷(IoT) 기술을 이용하여 사용자의 스마트 폰을 인식하고, 센서를 이용해 사용자가 문을 열려고 하는 행동 인식한다. 위 두 가지의 요건이 충족된다면, 사용자가 도어락에 별다른 인증 절차를 거치지 않고도 출입이 가능하며, 이러한 인증 절차의 간소화로 인해 편리성은 증대 되고, 보안성도 보다 효과적이다.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.12 no.1
• /
• pp.39-46
• /
• 2017

Today, mobile devices are becoming essential for everyday life, and integration of mobile computing, situation recognition and intellectual service accelerates mobile interaction. Surrounding intelligence detection technology is extremely important. These technologies can automatically acquire and recognize surrounding information and situations. Situation recognition can realize wide-range mobile recognition for intellectual services of users' diverse activities, by distinguishing many surrounding devices and recognizing their situations. Thus, this paper suggests application for students' mobile authentication such as college campus attendance authentication, and redesign existing plastic student ID as NFC-compatible mobile authentication system. Experiment results proved NFC-compatible mobile touch-based interactions can maximize the strengths of NFC technology because it can recognize limits in some situations such as tardiness and absences by automating student validation and preventing far-distance reading.

• Annual Conference of KIPS
• /
• 2012.04a
• /
• pp.745-748
• /
• 2012

클라우드 컴퓨팅의 개념은 2006년에 처음 나왔다. 이것에 대한 정의는 내려졌지만 서비스 제공자들의 이해에 따라 조금씩 차이가 있다. 현재 아마존과 구글같은 글로벌 기업에서는 클라우드 서비스를 선도하고 있고, 더욱이 모바일 시장이 급성장 하고 있는 현 시대에서 모바일 클라우드는 더욱 앞서나가는 서비스 모델이 될 것으로 전망된다. 하지만 모바일기기는 분실 및 도난의 위험이 높다. 현재 사용 중인 모바일 클라우드의 인증 방법들은 기존 클라우드의 인증방법을 그대로 사용하고 있어서 타인의 모바일 기기를 악의적인 사용자가 습득할 경우 쉽게 인증을 통과 할 수 있다. 따라서 모바일 클라우드 환경에서 사용자의 인증을 더욱 안전하게 할 수 있는 방법이 필요하다. 본 논문에서는 모바일 기기를 이용하여 상황인식을 기반으로 한 인증방법을 제안한다.

• Annual Conference of KIPS
• /
• 2010.11a
• /
• pp.1126-1129
• /
• 2010

클라우드 컴퓨팅 서비스 환경에서 인증 및 접근 제어와 같은 여러 보안 이슈가 발생하고 있다. 특히, 클라우드 컴퓨팅 환경에서 다양한 자원에 접속을 할 경우, 통합적으로 관리 및 제어가 가능한 인증 및 접근제어 모델이 필요하다. 이를 해결하기 위해서, 본 논문에서는 상황인식 기반의 통합 인증(SSO) 및 접근제어 모델을 제안하고, 이를 설계 및 구현함으로써, 클라우드 컴퓨팅 환경에서 유연하고, 편리한 보안 시스템을 검증하고자 한다.

• Journal of the Institute of Electronics Engineers of Korea TC
• /
• v.46 no.2
• /
• pp.81-88
• /
• 2009

This paper proposed a session key exchange and authentication scheme on non-interactive key distribution algorithm using a community member's ID in ubiquitous networks. In ubiquitous network environment, User's context-awareness information is collected and used to provide a context-awareness service for someone who need it. However, in ubiquitous network environment, this kind of the Context-awareness information could be abused by a malicious nodes. The proposed scheme using the community member ID provides a session key exchange and mutual authentication between community members, and supports secure data communication. Also, when exchanging the session key and authenticating each other, this scheme reduces communication overhead and authentication delay compared to the AAA server scheme.

• Journal of Internet Computing and Services
• /
• v.23 no.4
• /
• pp.65-72
• /
• 2022

In this paper, a zero trust-based complex biometric authentication was proposed in a passwordless environment. The linkage of FIDO 2.0 (Fast IDENTITY Online) transaction authentication platforms was designed in conjunction with metaverse. In particular, it was applied with the location information of a smart terminal according to a geomagnetic sensor, an accelerator sensor, and biometric information for multi-factor authentication(MFA). At this time, a FIDO transaction authentication platform was presented for adaptive complex authentication with user's environment through complex authentication with secondary authentication based on situational awareness such as illuminance and temperature/humidity. As a result, it is possible to authenticate secondary users based on zero trust with behavior patterns such as fingerprint recognition, iris recognition, face recognition, and voice according to the environment. In addition, it is intended to check the linkage result of the FIDO platform for complex integrated authentication and improve the authentication accuracy of the linkage platform for transaction authentication using FIDO2.0.

• Proceedings of the Korean Information Science Society Conference
• /
• 2006.06c
• /
• pp.280-282
• /
• 2006

동적인 환경 정보를 제공하는 RFID 플랫폼 환경을 위한 보안 서비스를 제공하기 위해서는 동적인 분산 환경에 대한 고려가 필요하고, 한 번의 인증으로 여러 서비스를 이용할 수 있어야 하고, 다양한 자원의 보안 정책을 단순화 시키고, 보안 정책의 설정과 변경이 쉬워야 있어야 한다. 본 논문에서는 RFID 애플리케이션을 위한 상황 인식 보안 아키텍처로서 Single Sign-On 개념을 구현한 Kerberos를 이용한 통합 인증 모델과 단순한 권한 관리를 위해서 RBAC를 이용한 권한 관리 모델을 제시한다.