• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.15 no.1
• /
• pp.195-202
• /
• 2011

RFID(Radio Frequency IDentification) is a system to identify objects and its usage is being extended to distribution, healthcare, and air&port etc. RFID is a contactless system environment, and reducing tag authentication time is important because multiple tags are identified at the same time. Studies about RFID system so far is, however, mostly to improve security vulnerability in the tag authentication process. Therefore, this paper suggests an efficient scheme to decrease the time of tag authentication which is also safe for the security of tag authentication process. The proposed scheme cuts down on the tag ID search time because it searches only the classified relevant ID in the database, which is one of many components of RFID system, by using identification bits for tag ID search. Consequently, the suggested scheme decreases process time for tag ID authentication by reducing the processing time and the load of the database. It also brings performance improvement of RFID system as it improves the energy applicability of passive tag.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2022.11a
• /
• pp.104-106
• /
• 2022

유무인 선박이 혼재된 운항 환경에서 발생 할 수 있는 보안 위협을 식별하고 안전한 M-S2X 통신 환경 마련을 위한 상호인증 요구사항을 분석하였다.

• Proceedings of the Korea Multimedia Society Conference
• /
• 2003.11b
• /
• pp.969-973
• /
• 2003

지리적으로 분산되어 있는 이기종의 분산 컴퓨팅 자원과 대규모 데이터를 효과적으로 활용하기 위해서 최근에 GRID 컴퓨팅 환경에 대한 연구가 매우 활성화되고 있다. 이러한 GRID 환경을 구현하기 위해 필요한 부분중의 하나가 사용자와 자원간의 인증에 관련된 문제이다. 현재 Globus Toolkit은 PKI(Public Key Infrastructure)를 기본으로 하는 보안정책을 사용하고 있다. 이 정책은 인증과정에 적지않은 오버헤드가 발생되는 문제점을 가지고 있다. 이에 본 논문에서는 사용자와 자원간의 직접적인 인증으로 인해 발생하는 성능상의 비효율성을 줄이기 위해 사용자가 자원에 접속 하기전 AIS서버(Authentification Information Server)를 이용하여 미리 인증을 거친후, 자원에 접근한 때는 기 발급된 식별자로 인증 될 수 있도록 처리해주는 메커니즘을 제안한다.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.10 no.6
• /
• pp.1070-1075
• /
• 2006

TETRA system provides the radio authentication service which permits only authorized radio to access network. Radio authentication is the process which checks the sameness of authentication-key(K) shared between radio and authentication center by challenge-response protocol. TETRA standard authentication protocol can prevent the clone radio to copy ISSI from accessing network, but can't prevent the clone radio to copy ISSI & authentication-key. This paper analyzes authentication-key generation/delivery/infection model in TETRA authentication system and analyzes the threat of clone radio caused by authentication-key exposure. Finally we propose the new authentication protocol which prevent the clone radio to copy ISSI & authentication-key from accessing network.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.4 no.2
• /
• pp.3-16
• /
• 1994

본 논문의 저자들은 이전에 디지틀 이동통신 시스템을 위한 키분배 프로토콜을 제안한 바있다. 그러나 이 프로토콜에서는 사용자 인증에 RSA방식을 사용하므로 기존의 키분배 프로토콜과 비교하여 여전히 많은 지수승 연산처리가 요구된다. 따라서 본 논문에서는 스마트 카드를 이용하는 보다 효율적인 세가지의 키분배 프로토콜을 새로이 제안한바 있다. 프로토콜 은 Schnorr 의 개인식별 방식을 변형시켜 얻은 개인식별 방식과 의 키분배 방식을 결합한 것이고, 프로토콜에서의 개인식별방식과 Okamoto 의 변형 키분배 방식을 결합한 것이다. 이와는 달리, 프로토콜은 Fiat-Shamir 의 개인식별 방식과 이 개인식별 방식을 기본으로 새롭게 구성한 키분배 방식을 결합한 것이다. 끝으로 지금까지 제안됐던 프로토콜과 본 논문에서 새롭게 제안하는 프로토콜에 대해 안정성과 효율성을 비교했다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2019.10a
• /
• pp.442-445
• /
• 2019

차량 애드혹 네트워크에서 효율적인 인증을 위한 다양한 연구들이 진행되었다. 최근에 Ying과 Nayak은 이러한 문제를 해결하기 위해서 익명성을 제공하는 새로운 인증 프로토콜을 제안하였다. 본 논문에서는 Ying과 Nayak의 인증 프로토콜에 대한 리뷰를 통해서 이 프로토콜이 식별자 검증을 위한 서비스 거부 공격에 취약함을 보인다. 또한, 검증자 테이블 사용으로 인하여 Ying과 Nayak의 인증 프로토콜이 익명성을 제공하지 못함을 보인다. 즉, Ying과 Nayak의 인증 프로토콜은 보안과 프라이버시가 중요한 차량 애드혹 네트워크에 적절하지 못함을 보인다.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2022.10a
• /
• pp.107-109
• /
• 2022

This paper proposes a new security system to detect cyber-attacks based on message authentication in a in-vehicle network. In the in-vehicle network, when a sending node transmits messages in a broadcast manner, it only uses a message identifier, rather than a node's identifier. It leads to a problem not identifying the source. In the proposed system, the sending node generates a message authentication code (MAC) using a cryptographic hash function to the control data and transmits it with the control data. When generating the MAC for each message, a multidimensional chaotic map is applied to increase the randomness of the result. The receiving node compares its MAC generated from the control data in the received message with the MAC of the received message to detect whether the message transmitted from the sending node is forged or not. We evaluate the performance of the proposed system by using CANoe and CAPL (Communication Access Programming Language). Our system shows a 100% of detection rate against cyber-attacks injected.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.21 no.9
• /
• pp.1777-1787
• /
• 2017

Federated authentication (FA) is a multi-domain authentication and authorization infrastructure that enables users to access nationwide R&D resources with their home-organizational accounts. An FA-enabled user is redirected to his/her home organization, after selecting the home from an identity-provider (IdP) discovery service, to log in. The discovery service allows a user to search his/her home from all FA-enabled organizations. Users get troubles to find their home as federation size increases. Therefore, a discovery service has to provide an intuitive way to make a fast IdP selection. In this paper, we propose a discovery system which leverages geographical information. The proposed system calculates geographical proximity and text similarity between a user and organizations, which determines the order of organizations shown on the system. We also introduce a server redundancy and a status monitoring method for non-stop service provision and improved federation management. Finally, we deployed the proposed system in a real service environment and verified the feasibility of the system.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2000.10a
• /
• pp.433-438
• /
• 2000

Now, It is vulnerabilities and problems of adaption in user identification and authentication on the Web environments; the BAA(Basic Access Authentication) of HTTP1.0 is that use. ID and password is passed with clear-text between client and server, For this enhancement, the DAA(Digest Access Authentication) of HTTP1.1 is that use. password is digested by MAC(Message Authentication Code) mechanism. but, this mechanism is not adapted by venders of Web browsers. This paper propose the lava based user identification and authentication model to resolve the above problems. Proposed systems are applied to the Web environment, since it has independence to web server and client.

• Smart Media Journal
• /
• v.12 no.9
• /
• pp.38-44
• /
• 2023

In this paper, a blockchain-based platform of NFT(Non-Fungible Token) reports was proposed to ensure the reliable performance contents of field study trip. It is possible to identify and manage the personal multi biomeric authentication user ID of activity records for students in a mobile IP-based metaverse with the linkage of extended reality(XR). At this time, many quests and incentives of platform are provided to induce students to experience smart and fun field studying facilities by linking real trip experiences and virtual extended_reality studies in the metaverse interworking.