• Annual Conference of KIPS
• /
• 2012.04a
• /
• pp.699-701
• /
• 2012

USB flash drive와 같은 이동형 저장매체는 한 손에 쏙 들어오는 작은 크기와 가벼운 무게로 뛰어난 휴대성을 제공하고 있다. 많은 사용자들은 자신의 데이터를 저장하기 위해 고용량을 제공하는 이동형 저장매체에 관심을 보이고 있다. 하지만 이동형 저장매체는 휴대성으로 인한 도난 및 분실당할수 있다. 개인 정보가 유출되는 등의 많은 문제들이 발생하고 있다. 인터넷의 발달과 클라우드 컴퓨팅 붐을 통하여 이동형 저장매체의 문제점을 해결할 수 있는 클라우드 스토리지 서비스가 급증하고 있다. 하지만 이러한 클라우드 스토리지 서비스는 인터넷이 가지고 있는 취약성 및 서버와 서버의 관리자의 비신뢰성 등의 문제를 가지고 있으며, 이로 인한 몇몇 사고가 발생하였다. 이러한 문제를 해결하기 위해서 클라우드 스토리지 환경에서는 데이터를 암호화 저장하고 이를 복호화 과정 없이 검색할 수 있는 검색 가능한 암호 기술의 필요성이 대두되고 있다. 하지만 기존의 검색가능 암호 기술은 사용자가 저장하고자 하는 데이터를 직접 업로드하고, 해당 자료를 필요에 따라 공유 하고, 공유대상이 변화되는 클라우드 스토리지 환경에서 비효율성을 가지고 있어 실제 서비스에 적용하기 힘든 단점을 가지고 있다. 따라서 본 논문에서는 클라우드 컴퓨팅 환경을 고려하여 검색가능한 암호화 색인 생성 및 이를 재암호화를 통해 다른 사용자와 안전하게 공유할 수 있는 검색가능한 재 암호화 시스템을 제안한다.

• Asia-pacific Journal of Multimedia Services Convergent with Art, Humanities, and Sociology
• /
• v.6 no.8
• /
• pp.499-509
• /
• 2016

The MSIP has implemented "Act on The Development of Cloud Computing and Protection of Its Users" from September 2015 and invigorated the cloud service industry. The act mainly includes the improvement cloud computing reliability and user protection for the development foundation and use activation. In order to expand the cloud market, it is important to increase the reliability of individual users. However, practical discussions and approach for cloud services adoption are still limited. In fact, there is no agreement standard for domestic cloud services. As a user agreement is not standardized, users feel difficulty compare to each agreement of cloud service provider and may be damaged because of unfair terms. Thus, it is necessary to examine the unfairness of cloud service agreement for user protection. This study analyzes domestic and foreign cloud service agreements including Practical Guide to Cloud Service Agreement of Cloud Standards Customer Council and suggests the direction of the standard agreement of cloud services.

• Annual Conference of KIPS
• /
• 2017.11a
• /
• pp.333-335
• /
• 2017

모바일 사용과 사물 인터넷 기술의 발전으로 인해 이를 적용할 수 있는 분야가 점점 다양해지고 이러한 기술들을 이용하는 사용자들의 수도 비약적으로 증가하였다. 기존에 존재하던 클라우드 컴퓨팅 기술은 사물 인터넷 환경에 방대한 데이터를 실시간으로 처리하는데 적합하지 않으며, 이러한 문제를 해결하기 위해 사용자와 조금 더 근접한 영역에서 응답 시간을 최소화하고 병목 현상을 해결할 수 있는 포그 컴퓨팅이 제안되었다. 이 논문에선 클라우드 컴퓨팅의 혼잡도 증가와 속도 감소로 인한 문제점을 극복하기 위해 포그 컴퓨팅이라는 새로운 시스템의 개념과 이에 따른 보안 이슈를 정리하고, 연구방향을 제시한다.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.23 no.2
• /
• pp.251-265
• /
• 2013

Cloud computing provided as a service type by sharing IT resources cannot be activated unless the issue of information security is solved. The enterprise attempts to maximize the efficiency of information and communication resources by introducing cloud computing services. In comparison to the United States and Japan, however, cloud computing service in korea has not been activated because of a lack of confidence in the security. This paper suggests core evaluation criteria and added evaluation criteria which is removed the redundancy of the security controls from existing ISMS for Korean cloud computing through a comparative analysis between domestic and foreign security controls of cloud certification scheme and guidelines and information security management system. A cloud service provider certified ISMS can minimize redundant and unnecessary certification assessment work by considering added evaluation criteria.

• Journal of KIISE
• /
• v.42 no.6
• /
• pp.707-712
• /
• 2015

Mobile cloud computing is a technology that uses cloud services to overcome resource constrains of a mobile device, and it applies the computation offloading scheme to transfer a portion of a task which should be executed from a mobile device to the cloud. If the communication cost of the computation offloading is less than the computation cost of a mobile device, the mobile device commits a certain task to the cloud. The previous cost analysis models, which were used for separating functions running on a mobile device and functions transferring to the cloud, only considered the amount of data transfer and response time as the offloading cost. In this paper, we proposed a new task partitioning scheme that considers the frequency of function calls and data synchronization, during the cost estimation of the computation offloading. We also verified the energy efficiency of the proposed scheme by using experimental results.

• The Journal of the Korea Contents Association
• /
• v.13 no.8
• /
• pp.28-35
• /
• 2013

Recently, cloud data management has been actively studied along with the development of a cloud computing technology that can process large amounts of data at a lower cost. However, the existing cloud computing platforms do not guarantee interoperability according to the construction environments of users because they do not provide technical and political openness. In other words, in order for users to receive the related services, they use services provided by only one vendor. In this paper, we design and implement a storage interface that supports the international standard CDMI in order to retrieve, update, and delete data in could environments. These interfaces provide the functionality required for developers who want to build and use the cloud storage without special restrictions. In addition, we verify the operability and usability of CDMI international standard through the implementation of the proposed system.

• Journal of Korean Library and Information Science Society
• /
• v.47 no.1
• /
• pp.149-173
• /
• 2016

As cloud computing becomes more and more popular and ubiquitous, many organizations are deciding to move their whole information infrastructure to the cloud. The healthcare industry is one of those that is beginning to utilize cloud-based solutions en masse. Cloud based computing and storage offers numerous benefits including scalability, cost efficiency, and accessibility, which in turn have the potential to streamline hospital operations. Despite the potential benefits of acquiring this system, considerations must still be given to the migration of the massive amounts of personal and highly protected data to a cloud-based solution. Health care organizations must consider all matters of security, reliability, and availability, to ensure that patients' data remains compliant to the Health Insurance Portability and Accountability Act (HIPAA) compliant. This paper will examine the benefits and challenges of such operation to determine the best practices for the utilization of Electronic Medical Record (EMR) cloud based networking and storage for small to mid-sized hospitals.

• Journal of Digital Convergence
• /
• v.10 no.11
• /
• pp.343-349
• /
• 2012

Usage control models are the new breed of access control models that allow description of comprehensive policies for usage of protected content. In this paradigm, decisions regarding access to objects are not limited to request time only. It is coupled with the usage of the protected objects and becomes a continuous process carried out in parallel to the usage. The realization of usage control has been a long standing research problem to overcome the issue of loss of control in secure document dissemination. With the emergence of cloud computing, documents are stored in the cloud, the document viewers and editors themselves reside in the cloud and are accessed from thin clients such as browsers. We note that such scenarios provide an ideal opportunity for the realization of usage control for securing the usage of documents based on the stakeholders' policies. In this paper, we proposed Multimedia Content Management (MCM) for a better realization multimedia content in the cloud based applications. We designed a robust architecture to provide fine-grained control over usage of protected objects through the use of emerging cloud computing paradigm. We present the design principles for this realization and discuss our proposed architecture.

• Smart Media Journal
• /
• v.8 no.1
• /
• pp.35-42
• /
• 2019

With IoT device technology developments, such devices now can perceive the surrounding environment and operate upon the condition, but a method for efficiently processing an enormous amount of IoT device data is required. The existing cloud computing has a transmission delay problem due to load and distance. Fog Computing, an environment to control IoT devices, therefore, emerged to solve this problem. In Fog Computing, IoT devices are located close to each other to solve the shortcomings of the cloud system. While many earlier studies on Fog Computing for IoT mainly focus on its structure and framework, we would like to propose an integrated Fog Computing platform that monitors, analyzes, and controls IoT devices.

• Journal of Korea Society of Industrial Information Systems
• /
• v.16 no.3
• /
• pp.121-135
• /
• 2011

We provide an economic evaluation model to help managers make reasonable decision for the investment in the appropriate type of cloud computing. Cloud computing can be classified into public, private and hybrid architecture and we evaluate their attractiveness using traditional NPV and real option methods. We conduct economic analysis by comparing traditional software delivery model with various types of cloud computing. The work compares each mode of cloud computing against each other using passive NPV and dynamic real-option method. For more objective and conservative evaluation of investment alternatives, we eliminate conventional benefits that are often subjective or hard to measure, and count only the reduction of investment cost and maintenance cost as benefit. We argue that hybrid and public cloud computing can be undervalued without their intrinsic options such as abandonment, expansion and contraction.