• Journal of Information Technology Services
• /
• v.11 no.1
• /
• pp.155-171
• /
• 2012

With the continuous and outstanding development of information technology(IT), human being is coming to the new computing era which is called cloud computing. This era brings lots of huge benefits also at the same time release the resources of IT infrastructure and data boom for man. In the future no longer, most of IT service providers, enterprises, organizations and systems will adopt this new computing model. There are three main deployment models in cloud computing including public cloud, private cloud and hybrid cloud; each one also has its own cons and pros. While implementing any kind of cloud services, customers have to choose one of three above deployment models. Thus, our paper aims to represent a practical framework to help the adopter select which one will be the best suitable deployment model for their requirements by evaluating each model comprehensively. The framework is built by applying the analytic hierarchy process(AHP), namely benefit-cost-opportunity-risk(BCOR) model as a powerful and effective tool to serve the problem. The gained results hope not only to provide useful information for the readers but also to contribute valuable knowledge to this new area. In addition, it might support the practitioners' effective decision making process in case they meet the same issue and have a positive influence on the increase of right decision for the organization.

• Annual Conference of KIPS
• /
• 2014.11a
• /
• pp.516-519
• /
• 2014

Cloud computing is an up-and-coming paradigm shift transforming computing models from a technology to a utility. However, security concerns related to privacy, confidentiality and trust are among the issues that threaten the wide deployment of cloud computing. With the advancement of ubiquitous mobile-based clients, the ubiquity of the model suggests a higher integration in our day to day life and this leads to a rise in security issues. To strengthen the access control of cloud resources, most organizations are acquiring Identity Management Systems (IDM). This paper presents one of the most popular IDM systems, specifically OAuth, working in the scope of Mobile Cloud Computing which has many weaknesses in its protocol flow. OAuth is a Delegated Authorization protocol, and not an Authentication protocol and this is where the problem lies. This could lead to very poor security decisions around authentication when the basic OAuth flow is adhered to. OAuth provides an access token to a client, so that it can access a protected resource, based on the permission of the resource owner. Many researchers have opted to implement OpenlD alongside OAuth so as to solve this problem. But OpenlD similarly has several security flows. This paper presents scenarios of how insecure implementations of OAuth can be abused maliciously. We incorporate an authentication protocol to verify the identities before authorization is carried out.

• Annual Conference of KIPS
• /
• 2018.10a
• /
• pp.497-500
• /
• 2018

데이터 센터를 기반으로 서비스를 수행하는 기업들은 비용절감을 위해 서버 가상화 기술을 이용한다. 서버 가상화를 이용하는 기업들은 대부분 하이퍼바이저 기반의 서버 가상화 기술을 사용하며, 이 경우 하드웨어 가상화를 통해 커널 단에서 많은 I/O와 리소스를 처리해야 한다. 따라서 하이퍼바이저 기반의 서비스는 느리다는 단점이 있으며 이를 해결하기 위해 컨테이너 기반의 가상화 기술을 이용할 수 있다. 하지만 컨테이너 기반의 네트워크 또한 문제점이 존재한다. 컨테이너 기반의 네트워크는 유연한 네트워크를 구성하기 어렵고, 기존의 컨테이너 네트워크 인터페이스를 활용할 경우 데이터 전송 성능이 저하된다. 본 논문에서는 컨테이너 오케스트레이션 툴인 Kubernetes와 SDN (Software-Defined Network) 기반의 가상전용 네트워크 연계 환경을 구축하고 이에 적합한 컨테이너 네트워크를 연구하여 이의 문제점을 해결한다. 즉, 가상전용 네트워크와 Kubernetes의 연계를 통해 고성능의 유연한 네트워크를 구성할 수 있는 프레임워크를 개발하여 기존 컨테이너 기반 네트워크와 비교하고 성능을 검증했다.

• Journal of Advanced Navigation Technology
• /
• v.17 no.3
• /
• pp.314-325
• /
• 2013

Smartwork is future-oriented work-environment to bring swift business transaction and convenient for users. In domestic and foreign various countries, It's already prompting introduction of smartwork. Users process work to access frequently from the outside in smartwork that's a similar client/server environment to existing Cloud Computing environment. Necessary of user authentication is increasing to be solvable to security vulnerability because there is possibility that malware flows in and leaks company's confidential information by unauthorized users especially in smartwork environment. Therefore we propose User Authentication scheme based face recognition is applicable to smartwork environment to analyze established User Authentication scheme. environment.

• Annual Conference of KIPS
• /
• 2012.04a
• /
• pp.518-521
• /
• 2012

N스크린 서비스는 하나의 디지털 컨텐츠를 TV, 스마트폰, 태블릿 PC나 노트북 등을 통해 일관성 있는 문맥으로 단절 없이 소비할 수 있는 환경을 마련해 준다. 현재 이 서비스는 TV와 모바일 기기의 스마트화, 클라우드 컴퓨팅의 확산, 홈 네트워킹의 발전, 모바일 웹을 위한 다양한 기술의 발전으로 그 발전 가능성이 매우 큰 서비스이다. 이런 N스크린 서비스는 단순한 연속적 상연 서비스를 넘어 다양한 기기를 동시에 사용하는 협업적 N스크린 서비스로도 진화할 것이다. 이런 환경에서 개발된 SK Planet hoppin 서비스는 TV, PC, 스마트폰, 태블릿 PC간의 연동을 통해, 기기 종류에 제약 없이 구매된 컨텐츠를 상영할 수 있는 통합 미디어를 구현하기 위해 개발되었다. 이를 위해 통신망으로 연결된 미디어 서버 및 hoppin 단말기를 위한 안드로이드 기반의 플랫폼을 개발하였으며, 크래들을 사용한 TV 연결을 통해 모바일 기기를 secondary 스크린으로도 사용될 수 있도록 했다. 이런 서비스는 현재 국내 유일의 형태이며 hoppin은 향후 협업적인 N스크린 서비스로 더욱 발전해 갈 수 있을 것이다.

• Journal of the Korea Convergence Society
• /
• v.10 no.7
• /
• pp.33-37
• /
• 2019

Nowadays, the needs for linking smart devices are growing fast because of wide spread of smart devices such as smart TV, smart phones, smart pad and so on. This paper presents a game framework for linking smart TV and smart phones and proves its applicability by developing an example contents. The problem of connection between smart devices is basically a problem of connection between heterogeneous devices. The problem is that data transmission and reception between heterogeneous devices must be considered. Therefore, the core data is implemented by adopting the concept of cloud computing and storing it in a server, and in a smart TV, playing the game by using this data. The proposed framework could be applied to a lot of applications such as computer games.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2014.05a
• /
• pp.238-240
• /
• 2014

A cloud computing include a SaaS frameworks be able to use a software as a service. Despite the existing service depending on the difference of the tenant and the use, if the service provider re-establish a service, they are required resources In terms of costs and managerial. So we propose a technique for analysis software structure using the process algebra to reuse existing software. A process algebra analyze the structure of the software, express in business process or different languages and verify that it can be reused. As CCS in a process algebra is useful to convert the business process or XML, by using this, we structure a process and propose meta storage for comparison and management a structured document.

• Proceedings of the Korean Society of Computer Information Conference
• /
• 2019.07a
• /
• pp.243-244
• /
• 2019

본 논문에서는지속 가능한 IoT Platform을 개발 하였다. 개발된 IoT(Internet of Things) Platform은 센서를 제어하는 특정 시스템과의 통신을 통한 제어 및 데이터 전달에 용이하고, 제한된 통신 환경 및 낮은 전력에서도 지속적인 작동이 가능하여 가용성(Availability)과 확장성(Extensibility)이 뛰어나다. 본 논문에서는 지속 가능한 IoT Platform의 테스트를 위해 클라우드 컴퓨팅 플랫폼인 AWS EC2(Amazon Elastic Compute Cloud, EC2)에 구축하였으며, DataBase 서버로는 오픈 소스 관계형 데이터베이스 관리 시스템인 MariaDB를 선정하였으며, 센서를 제어하는 특정 시스템인 스마트 미러 시스템(Smart Mirror System)과 미세먼지 제어 시스템(Air Quality Control System)에 기존의 Google IoT Platform에서 사용되는 MQTT Protocol(Message Queuing Telemetry Transport Protocol)와 지속 가능한 IoT Platform를 위해 개발된 TCP/IP Protocol를 사용하여 비교했다. 개발된 IoT Platform은 UTM(Unmanned Aircraft System Traffic Management)으로 확장할 계획이다.

• Knowledge Management Research
• /
• v.20 no.2
• /
• pp.59-86
• /
• 2019

As the era of the 4th Industrial Revolution evolves, not only private companies but also government agencies and institutions in public sector are adopting cloud computing services converged by new information technologies such as IoT, big data, and artificial intelligence to strengthen competitiveness and create new business values. The purpose of this study is to investigate the relationship between innovation characteristics, innovation resistance, and acceptance of innovative technologies from the perspective of cloud computing services in the public sector. In this study, we collected the survey data from 190 employees of IT division in the public sector, and analyzed the causal relationship between innovation characteristics, technostress, innovation resistance, and intention to adopt the cloud computing service that they perceived. As a result of the analysis, we demonstrated that innovation characteristics, technostress have significant effect on innovation resistance and acceptance intention, and that top executive commitment and innovation resistance also have significant effect on acceptance intention. This study provides meaningful practical implications for the staffs preparing for adoption of cloud computing services and the executives who make the final decision in public sector.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.29 no.5
• /
• pp.961-971
• /
• 2019

Isolation between virtual machines in a cloud computing environment is an important security factor. The violation of isolation between virtual machines leads to interferences of shared resources and the implementation of covert channels. In this paper, the structure of Hyper-V hypervisor is analyzed to implement covert channels between virtual machines. Hyper-V uses a mutex technique for mutual exclusion between virtual machines. It indicates that isolation of virtual machines is violated and covert channels can be implemented due to mutex. We implemented several covert channels by designing a method for searching mutex resources applicable to Hyper-V with complex architectures. The mutex-based covert channel is not hardware dependent. If the covert channel is detected or defended, the defensive technique can be avoided by using the other covert channel among several covert channels.