• The KIPS Transactions:PartC
• /
• v.18C no.2
• /
• pp.79-88
• /
• 2011

It is necessary for us to enhance the security service on smart phone by using voice data on authentication procedure. In this study, a voice data based one-time password generation mechanism is designed and implemented for enhancing user authentication on smart phone. After receiving a PIN value from the server, a user inputs his/her own voice biometric data using mike device on smart phone. And then this captured a voice biometric data will be used to generate one-time token on server side after verification procedures. Based on those mutual authentication steps, a voice data based one-time password(V-OTP) will be generated by client module after receiving the one-time token from the server finally. Using proposed voice one-time password mechanism, it is possible for us to provide more secure user authentication service on smart phone.

• Journal of the Korea Convergence Society
• /
• v.10 no.12
• /
• pp.63-69
• /
• 2019

Using a smartphone allows quick and easy authentication and payment. However, smartphone security threats are evolving into a variety of new hacking technologies, and are changing to attacks specific to the mobile environment. Therefore, there is a demand for an authentication method suitable for a mobile environment. In order to solve security weaknesses in knowledge-based authentication, many companies provide two-step authentication services such as OTP(One Time Password) to provide authentication services such as finance, games, and login. Although OTP service is easy to use, it is easy to duplicate random number table and has a disadvantage that can be reused because it is used as valid value within time limit. In this paper, we propose a mechanism that enables users to quickly and easily authenticate with high security using the authentication method that recognizes special characters through smartphone's dedicated application.

• Journal of Digital Convergence
• /
• v.10 no.5
• /
• pp.215-222
• /
• 2012

A smart phone has functions of both telephone and computer. The wide spread use of smart phones has sharply increased the demand for mobile commerce. The smart phone based mobile services are available anytime, anywhere. In commercial transactions, a digital signature scheme is used to make legally binding signature to prove both integrity of commercial document and verification of the signer. Smart phones are more risky compared with personal computers on the problems of how to protect privacy information. It's also easy to let proxy user to authenticate instead of the smart phone owner. In existing password or token based schemes, the ID is not physically bound to the owner. Thus, those schemes can not solve the problem of proxy authentication. To utilize the smart phone as the platform of mobile commerce, a study on the new type of authentication scheme is needed where the scheme should provide protocol to get legally binding signature and not to authenticate proxy user. In this paper, we create the mobile ID by using both the USIM and voice template of the smart phone owner. We also design and implement the user authentication scheme based on the mobile ID.

• TTA Journal
• /
• s.167
• /
• pp.124-127
• /
• 2016

Smart Connectivity를 위한 IoT, 네트워킹, 보안 솔루션을 제공하는 (주)브로드웨이브는 자사만의 경쟁력을 통해 벤처기업 인증, 이노비즈기업 인증, 기업부설연구소 설립 등 내실있는 기업으로 발돋움하고 있다. 특히, 개방과 공유로써 성공적인 IoT 비즈니스를 만들기 위해 국제 표준 기반의 개방형 IoT 서비스 개발에 주력하고 있다. 이의 일환으로, 사용하지 않는 중고 스마트폰을 활용하여 IoT 표준화를 통해 다른 스마트폰이나 PC, 노트북 간의 게이트웨이로서 기능케 하는 기술을 개발 중이다. 이를 위해서는 많은 전문가로부터 다양한 관점을 전달받는 것이 중요했고, 고민 끝에 TIA의 중소 중견기업을 위한 표준 자문서비스의 도움을 청하게 되었다.

• Convergence Security Journal
• /
• v.14 no.2
• /
• pp.11-16
• /
• 2014

Recently, request of IPTV was increase. It is a multi-screen service by used TV, PC, and smart-phones. Especially, IPTV and smart-phone linked multi-screen service are very growth by user's recommends. Now, IPTV have a security service partial and multi-screen service. But smart-phone and multi-screen service don't have security service. And authentication service for smart-phone and IPTV linked multi-screen service is don't.. Therefore, We propose that user authentication system for multi-screen service with IPTV and multi-device linked authentcation services. Our proposed system base on Kerberos, so proposal is easy and fast about user authentication. This have simple procedures and more secure services against of PKI. So, our system can support secure multi-screen services against various security threats in multi-screen environments.

• Annual Conference of KIPS
• /
• 2015.10a
• /
• pp.430-432
• /
• 2015

스마트폰의 보급과 소프트웨어 개발기술의 발전으로 다양한 어플리케이션이 출시되고 사용되어지고 있다. 특히, 스마프폰을 통해 모바일 쇼핑뿐 아니라 개인간 거래가 활성화되고 있다. 하지만 사용자가 많아지면서 인터넷 사기 범죄도 증가하고 있는 추세이다. 사용자간의 교류가 많은 어플리케이션은 인증이 중요하다. 본 논문에서는 스마트폰 어플리케이션에서 활용하는 인증의 종류를 알아보고 모바일 중고 거래 어플리케이션의 사용자 인증의 종류와 신뢰도 측정방법을 비교 분석하고, 문제점을 파악하였다.

• Annual Conference of KIPS
• /
• 2012.11a
• /
• pp.920-922
• /
• 2012

현재 많은 사람들이 스마트폰을 이용하고 있으며 스마트폰을 활용한 IT 기술들이 나날이 발전하고 있다. 또한 스마트폰을 이용 하여 사람들이 생활하는데 있어서 더욱 더 편리한 생활을 할 수 있도록 서비스 환경을 제공해준다. 그 중 대표적인 기술이 U-Health(Ubiquitous-Health) 기술 이며 U-Health 기술은 건강증진과 고령화 사회를 대비하기 위한 효과적인 문제해결 방안으로 주목받고 있다. U-Health 서비스는 스마트폰의 각종 센서를 활용하여 환자의 건강 상태를 체크하고 실시간으로 업데이트 하여 환자의 상태를 더욱 효율적으로 관리할 수 있다. 그러나 환자와 병원 서버 간에 데이터 단일화, 통신문제 등으로 인해서 아직까지는 많이 활용되고 있지 않는 현실이다. 또한 스마트폰으로 인한 환자의 개인신상 정보가 쉽게 노출될 수 있다는 단점이 있다. 따라서 본 논문에서는 NFC(Near Field Communication) 기반에서 환자와 병원간에 신뢰성 있는 데이터 전송을 위한 인증 시스템을 설계 하였다.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.22 no.2
• /
• pp.327-336
• /
• 2012

In this paper, we propose user authentication methods using a microphone and a speaker in smart phones. The proposed methods guarantee that the user is located close to the target device by transmitting the challenge via an audio channel. We propose two authentication methods; user authentication for a PC or a website using a smart phone as a hardware token, and user authentication to log on to a smart phone using a PC as a token. Because our methods use typical peripheral devices such as a microphone and a speaker, they do not require any special-purpose hardware equipment. In addition, the elderly and the handicapped can easily use our methods because the methods are activated by simple operations.

• The KIPS Transactions:PartC
• /
• v.18C no.5
• /
• pp.293-302
• /
• 2011

The various information services can be delivered by smartphone through advanced high-speed mobile communication. A smartphone is a mobile device that offers more powerful computing capacity than feature phone. Therefore this device can provide such as web surfing, editing documents, playing video, and playing games. A lot of personal information stored on smartphone. Because it has High usability. Personal information Leaks if the smart phone is lost or stolen may become a big problem. In this paper we have analyzed existing method for providing secure storage and user authentication on mobile platform and derived security requirement. Therefore we propose the following scheme that satisfy security requirement. Proposed scheme providing secure storage with preventing authentication bypass, and availability from damaged data to access secure area.

• Journal of IKEEE
• /
• v.19 no.4
• /
• pp.617-624
• /
• 2015

In this paper, an adult authentication system based on authentication certificate was designed and implemented using smartphone and near-field communication. It has three advantages. First, it achieves easy, convenient, and fast authentication by using smartphone and near-field communication. Second, it achieves extremely high security and reliability by exploiting authentication certificate. Third, it achieves extremely low risk of personal information leakage by generating and sending only virtual identification code. Finally, it has a proper legal basis by Digital Signature Act. It consists of adult authentication module, near-field communication control module, policy server module, and database server module. A prototype of the proposed system was designed and implemented, and it was verified to have correct operation.