• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.22 no.2
• /
• pp.283-293
• /
• 2012

A new type of malware that extracts personal and account data over an extended period of time and that apparently is resistant to detection by vaccines has been identified. Generally, a malware is installed on a computer through network-to-network connections by utilizing Web vulnerabilities that contain injection, XSS, broken authentication and session management, or insecure direct-object references, among others. After the malware executes registration of an arbitrary service and an arbitrary process on a computer, it then periodically communicates the collected confidential information to a hacker. This paper is a systematic approach to analyzing a new type of malware called "winweng," a kind of worm that frequently made appearances during the first half of 2011. The research describes how the malware came to be in circulation, how it infects computers, how its operations expose its existence and suggests improvements in responses and countermeasures. Keywords: Malware, Worm, Winweng, SNORT.

• Convergence Security Journal
• /
• v.22 no.1
• /
• pp.71-79
• /
• 2022

The smart grid system has emerged to maximize energy efficiency through real-time information exchange between power providers and consumers by combining information technology and power supply systems. The authentication schemes using blockchain in a smart grid system have been proposed, which utilize an edge server's architecture to collect and store electric power-related information and process data between a central cloud server and smart grid-IoT devices. Although authentication schemes are being proposed to enhance security in the smart grid environment, many vulnerabilities are still reported. This paper presents a new mutual authentication scheme to guarantee users' privacy and anonymity in a smart grid based on edge computing using blockchain. In the proposed scheme, we use the smart contract for the key management's efficiency, such as updating and discarding key materials. Finally, we prove that the proposed scheme not only securely establishes a session key between the smart grid-IoT device of the user and the edge server but also guarantees anonymity.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.40 no.5
• /
• pp.914-923
• /
• 2015

Recently, as the number of smart devices (such as smart TV or Web based IPTV) increases, the way of digital broadcast contents is changed. This change leads that conventional broadcast media accepts Web platform and its services to provide more quality contents. Based on this change, in education field, education broadcasting also follows the trend. The traditional education broadcasting platforms, which just delivered the lecture in one-way, are utilized the Web technology to make interaction between teacher and student. Current education platforms, however, are insufficient to satisfy users' demands for two-way interactions. This paper proposes a new remote collaborative learning platform which able to provide high interactivity among users. Based on new functional requirements from original use case, the platform provides collaborative contents sharing and collaborative video streaming techniques by utilizing WebRTC (Web Real-Time Communication) technology. The implementation demonstrates the operability of proposed system.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.19 no.10
• /
• pp.661-667
• /
• 2018

Recently, the smart home market is growing due to the development of wireless communication technology and sensor devices, and various devices are being utilized. Such an IoT environment collects various vast amount of device information for intelligent services, receives services based on user information, controls various devices, and provides communication between different types of devices. However, with this growth, various security threats are occurring in the smart home environment. In fact, Proofpoint and HP warned about the cases of damage in a smart home environment and the severity of security vulnerabilities, and cases of infringement in various environments were announced. Therefore, in this paper, we have studied secure mutual authentication method between smart nodes used in smart home to solve security problems that may occur in smart home environment. In the case of the proposed thesis, security evaluations are performed using random numbers and frequently updated session keys and secret keys for well-known vulnerabilities that can occur in IoT environments and sensor devices such as sniffing, spoofing, device mutual authentication, And safety. In addition, it is confirmed that it is superior in security and key management through comparison with existing smart home security protocol.

• Journal of Digital Convergence
• /
• v.17 no.11
• /
• pp.349-355
• /
• 2019

The virtual reality training has been suggested as an intervention to improve physical function. But, the effects of virtual reality training focused on improving ADL in patients with acute stroke are unclear. Purpose of this study was to examine the effect of virtual reality training on hand function and activities of daily living (ADL) in patients with acute stroke. Sixteen patients with acute stroke were included in this study. The experimental group (VRA group) received 30 minutes of virtual reality training focused on ADL for each session, while the control group received 30 minutes of conventional virtual reality training. To examine the hand function and ADL of the subjects, the study used Jebsen-Tylor Hand Function Test (JTHFT) and Korean Modified Barthel Index (K-MBI), respectively. Both groups showed significant improvements in hand function of affected and unaffected sides, and in K-MBI total score before and after the intervention. The experimental group showed significantly greater improvements in the self-care domain of K-MBI after intervention than the control group. These findings suggest that the virtual reality training focused on ADL may have a better effect on self-care than conventional virtual reality training in patients with acute stroke.