• Journal of Digital Contents Society
• /
• v.6 no.1
• /
• pp.19-24
• /
• 2005

Mobile service is able to offer the elastic service to anyone regardless of the place and the tin. With this characteristics, the ubiquitous service could be also provided even to the place which the access was limited with the existing line service, which could improve the mutual connection and could result in the service extension Mobile communication companies, which realized the limit of sale only by telephone conversation, have made an effort to develop wireless internet with concentration as its alternation. Especially concentrating their effort both to the development of distinctive and various contents and to tin development of system for mobile service such as the mobile banking, mobile game and etc., they have done their best to secure the number of the people using the wireless internet. This study is to propose the electronic account system based on the mobile as a case study of contents production for such a mobile service. This system has its advantage to perform the financial management immediately when the income and outcome happen without limitation of the time and space. The information could be stored, searched and modified by using of the mobile phone for this system was made up for the weak point of the financial management for wired internet.

• Journal of the Institute of Electronics Engineers of Korea TC
• /
• v.41 no.9
• /
• pp.67-71
• /
• 2004

Because the Internet diffusion has been increased, the service that used at the offline has been applied to the online, the saving time and portability has been emphasized, and the service has been increased from the wire to the wireless by the development of the mobile communication technology. There are a Pocket PC, Palm and so forth as devices that are used for it and the services are already used. However, because it is used at only limited operating systems like PCs have, there is the restriction to use for much more users. In order to allow various devices used by much more people the access services, the WPKI authentication should be implemented for devices using Linux OS.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.11 no.2
• /
• pp.171-179
• /
• 2011

In these days, various wireless internet services are possible since the advanced wireless networks enable to transfer more data than before and smarter devices have developed to display the multimedia information more efficiently. Therefore, Korean MIPS such as SKT and LGT provide many kinds of advanced services such as wireless on-line shopping, mobile banking system and etc using 2.5 generation wireless network technology and smartcards. In a transportation system, a cellular phone can be used as a useful payment tool since most people always keep it and a mobile payment system has developed as infrastructure for wireless on-line services. In this paper, a mobile transportation payment system is introduced. A driver needs to pay a toll fee when he/she uses the highways. Recently, a high pass system has introduced, in which a vehicle can pass a toll gate without stopping to pay the fee to a counter. The payment is done automatically by an attached payment device. We have developed an advanced mobile system in which a smartcard embedded cellular phone is used as a payment device. The personnel and financial information is stored at a smartcard and the communication between the phone and OBU(On Board Unit) is done by Bluetooth.

• Annual Conference of KIPS
• /
• 2005.05a
• /
• pp.1213-1216
• /
• 2005

인터넷을 통한 자동화된 업무가 증가함에 따라서, 공공 컴퓨터들에 대한 의존도가 높아지고 있다. 그러나 오늘날 웹메일, 옥션, 인터넷 뱅킹, 휴대폰 결제등과 같은 위한 원격 서비스들은 사용자의 신원을 증명하기 위해 사용자의 아이디와 패스워드 또는 주민등록번호를 요구한다. 하지만 안전하지 못한 채널로 전송되는 사용자의 정보는 공격자에 의해서 도청및 재사용될 가능성이 매우 높다. 본 논문에서는 위와 같이 보안이 취약한 환경에서 안전한 사용자 인증이 성공적으로 이루어 질 수 있는 새로운 인증 시스템을 제안하고자 한다. 제안 시스템은 현대의 일반 사용자들이 항상 소지하는 휴대폰의 SMS(Simple Message Service)와 일회용 패스워드(OTP : One Time Password)를 기반으로 한다.

• Annual Conference of KIPS
• /
• 2003.05a
• /
• pp.51-54
• /
• 2003

인터넷 사용이 보편화되면서 웹을 통한 광고, 사이버 쇼핑, 인터넷 뱅킹 등 다양한 서비스가 네트워크를 이용하여 제공되면서 웹 보안에 대한 필요성이 증가하고 있다. 또한, 시스템을 다양한 유형의 해킹 위협과 외부의 불법적인 침입으로부터 정보자산의 보호를 위한 감시시스템을 요구하게 된다. 본 논문의 웹 침입 탐지 도구는 웹에 대한 개별적인 모니터링을 통해 소요되는 자원 및 인력의 손실을 방지할 수 있도록 하여 보안 수준을 향상시켜는 것이다. 웹 감시 시스템은 웹 환경에서의 보안 취약성과 정보 노출에 대한 문제점의 원인을 분석하고 보안의 빠른 지원을 결정하기 위해서 모니터링을 이용하여 정보 보안 취약성과 정보 노출을 보호하는데 그 목적이 있다.

• Annual Conference of KIPS
• /
• 2002.04b
• /
• pp.891-894
• /
• 2002

최근 일반인들을 대상으로 인터넷 서비스가 보편화되면서 인터넷 뱅킹이나 전자 상거래등을 통해 구매정보나 지불 정보 혹은 개인 신상 정보 등과 같은 중요한 정보의 전송에 보안의 중요성이 더욱 증대되어지고 있는 실정이다. 본 논문에서는 자바 카드와 ECC/ECDSA 알고리즘을 소개하고, 현재 자바 카드에서 지원하지 않는 ECC/ECDSA 알고리즘을 설계하여 자바 카드에 장착하였다. 그러므로 자바 카드를 이용하여 중요한 정보를 암호화/복호화 할 수 있도록 구현하였다. 또한, 인증서에서 사용하는 키들을 자바 스마트 카드를 사용하여 제공하는 방법을 제안하였다.

• The Journal of Society for e-Business Studies
• /
• v.21 no.4
• /
• pp.41-53
• /
• 2016

Today, leading smartphone manufacturers offer biometric technologies such as fingerprints, voice recognition, and iris patterns in their flagship models. These biometric technologies are used for authentication. Biometric authentications are widely used in device security and even in financial transaction. This paper examines cases where a user uses biometric authentication during financial transaction (both online and smartphone banking), and explains biometric for non-repudiation by digital signature. Finally, the paper also explains technical and legal requirements for biometric authentication in the area of financial services.

• Convergence Security Journal
• /
• v.18 no.3
• /
• pp.27-35
• /
• 2018

The certificate is electronic information issued by an accredited certification body to certify an individual or to prevent forgery and alteration between communications. Certified certificates are stored in PCs and smart phones in the form of encrypted files and are used to prove individuals when using Internet banking and smart banking services. Among the rapidly growing Android-based malicious applications are malicious apps that leak personal information, especially certificates that exist in the form of files. This paper proposes a method for judging whether malicious codes leak certificates by using DroidBox, an Android-based dynamic analysis tool.

• Annual Conference of KIPS
• /
• 2008.11a
• /
• pp.527-530
• /
• 2008

SOA는 최근 급부상한 기술로 발전된 웹서비스 기술과 접목되면서 특히 실시간 기업에게 각광받고 있다. 이에 따라 SOA를 위한 민첩성과 빠른 적응력이 충족되는 구체적인 기법 연구가 많은 진행 중에 있다. 이는 SOA에서의 테스트 역시 마찬가지이며, 본 논문에서는 민첩성과 적응력을 높일 수 있는 SOA를 위한 테스트케이스 생성 기법을 제안한다. SOA는 기존의 컴포넌트 기반의 개발과는 관점의 차이 때문에 절차나 기법의 접근 방법이 다를 수 있다. 따라서 본 논문에서는 SOA의 서비스를 하부 계층인 컴포넌트로 분할하여 기존의 연구를 활용한 후, 다시 서비스 단위로 합성하여 서비스의 테스트케이스를 생성한다. 그리고 제시한 기법을 인터넷 뱅킹 시스템의 계좌잔액조회 서비스에 적용함으로써 서비스 단위의 테스트케이스 생성 사례를 보인다. 제안 기법을 통해 서비스 단위의 테스트를 체계적으로 할 수 있으며, 빠른 릴리즈를 실현하여 SOA의 민첩성과 적응력을 높일 수 있다.

• Journal of Information Technology Services
• /
• v.7 no.2
• /
• pp.77-93
• /
• 2008

According to the statistics revealed by Bank of Korea on March, 2007, Internet banking transactions outnumbered face-to-face banking services in Korea. Internet banking is becoming essential in every financial service sectors. For people with disabilities, Internet banking is more meaningful because they do not need to visit the bank, thereby saving inconvenient trips. Governments in many countries are working on setting standards and laws on the web accessibility for people with disabilities. Korea government enacted Korea Disability Discrimination Act in 2007. This paper examined the web accessibility compliance of Internet banking sites. Twenty one Internet banking sites were selected from the list in the Korea Federation of Banks's Web sites. We examined four major checkpoints that are considered crucial among the fourteen checkpoints in "Internet Web Contents Accessibility Guidelines" which was amended by Ministry of the information and Communication in 2005. The results showed that all of the twenty one Internet banking sites didn't meet the four major checkpoint requirements. Moreover, only one banking site satisfied alt-text requirement that is considered the most fundamental among the checkpoints.