• Proceedings of the Korea Information Processing Society Conference
• /
• 2019.10a
• /
• pp.375-378
• /
• 2019

ThingsBoard에서 사용되는 엑세스 토큰 인증 방식에 블록체인 메커니즘을 적용하여 디바이스의 무결성을 강화한다. 인증에 사용되는 데이터는 보호되어야 하고, 빠르게 제공되어야하기 때문에 제안 인증 방식에 퍼미션드 블록체인을 사용한다. 본 논문은 실험을 통해 블록체인 기반의 제안 인증 방식이 디바이스의 무결성을 강화하면서도 큰 성능저하를 발생시키지 않는 것을 검증한다.

• KIPS Transactions on Computer and Communication Systems
• /
• v.8 no.6
• /
• pp.139-150
• /
• 2019

IoT(Internet of Things) security is becoming increasingly important because IoT potentially has a variety of security threats, including limited hardware specifications and physical attacks. This paper is a study on the certification technology suitable for the lightened IoT environment, and we propose a system in which many gateways share authentication information and issue authentication tokens for mutual authentication using blockchain. The IoT node can be issued an authentication token from one gateway to continuously perform authentication with a gateway in the block-chain network using an existing issued token without performing re-authentication from another gateway participating in the block-chain network. Since we do not perform re-authentication for other devices in a blockchain network with only one authentication, we proposed multi phase authentication consisting of device authentication and message authentication in order to enhance the authentication function. By sharing the authentication information on the blockchain network, it is possible to guarantee the integrity and reliability of the authentication token.

• Archives of design research
• /
• v.20 no.3 s.71
• /
• pp.97-106
• /
• 2007

This study examines whether the reinforcement theory could be effectively applied to teaching assistant robots between a robot and a student in the same way as it is applied to teaching methods between a teacher and a student. Participants interacted with a teaching assistant robot in a 3 (types of robots: positive reinforcement vs. negative reinforcement vs. both reinforcements) by 2 (types of participants: honor students vs. backward students), within-subject experiment. Three different types of robots, such as 'Ching-chan-ee' which gives 'positive reinforcement', 'Um-bul-ee' which gives 'negative reinforcement', and 'Sang-bul-ee' which gives both 'positive and negative reinforcement' were designed based on the reinforcement theory and the token reinforcement system. Subjective impressions and preferences were measured according to the types of robots and the types of participants. Participants preferred the positive reinforcement robot most, and the negative reinforcement robot least. Regarding the number of stimulus, in case of the negative reinforcement robot for honor students, the less the stimulus is, the more positive the impressions toward the robot are. The findings demonstrate that the reinforcement interaction is important and effective factor which determines children's preferences and impressions for teaching assistant robots. The results of this study can be implicated as an effective guideline to interaction design of teaching assistant robots.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.39B no.3
• /
• pp.162-168
• /
• 2014

Cross-Site Request Forgery is one of the attack techniques occurring in today's Web Applications. It allows an unauthorized attacker to send authorized requests to Web Server through end-users' browsers. These requests are approved by the Web Server as normal requests therefore unexpected results arise. The problem is that the Web Server verifies an end-user using his Cookie information. In this paper, we propose an enhanced CSRF defense scheme which uses Page Identifier and user password's hash value in addition to the Cookie value which is used to verify the normal requests. Our solution is simple to implement and solves the problem of the token disclosure when only a random token is used for normal request verification.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.37 no.6C
• /
• pp.497-501
• /
• 2012

While increasing online services with developing e-businesses, finance, game companies and others have employed OTP(One-Time Password) to overcome vulnerabilities of static passwords. Existing OTP technology has inconvenience that customers always possess reserved token since requiring the token to generate OTP. In order to supplement the issue we propose mobile OTP generated by mobile devices such as smart phones. Our mobile OTP scheme generates OTP by using a non-linear function based on pairing to eject the collision problem of S/Key scheme universally used to design OTP schemes. Our scheme based on a non-linear function over pairing can complements the collision problem and widely applied to finance and various services to increase security level of the services.

• Knowledge Management Research
• /
• v.24 no.4
• /
• pp.195-218
• /
• 2023

This study empirically analyzes the effect of a sports club's performance and social media operations on online information search volume, reflecting fan engagement. Additionally, it confirms that such effect can vary depending on the issuance of sports fan tokens. The analysis of the data resulted in the support of all four hypotheses presented in this study. The team's goal differentials during the games exhibited a significant and positive effect on the online information search volume by fans. Furthermore, the quantity of a team's social media posts also showed a significant and positive effect on the online information search volume. The aforementioned effects of the team's game-related performance and social media activity on the online information search volume appeared to be strengthened when the sports fan tokens of the team were issued. This study conducts an empirical analysis of fan engagement in sports clubs and delves into the marketing dimensions of sports fan tokens. By doing so, it broadens the research scope within sports marketing and offers practical insights for the development of marketing strategies by sports clubs.

• The Journal of the Korea Contents Association
• /
• v.12 no.2
• /
• pp.69-77
• /
• 2012

In the case of the password-based PKI technology, because it protects by using the password which is easy that user memorizes the private key, he has the problem about the password exposure. In addition, in the system of electronic bidding, the illegal use using the authentic certificate of the others increases. Recently, in order to solve this problem, the research about the PKI technology using the biometrics is actively progressed. If the bio information which the user inputs for the bio authentication is converted to the template, the digest access authentication in which the security is strengthened than the existing authentication technology can be built. Therefore, in this paper, we had designed and developed the system of electronic bidding which it uses the most widely used fingerprint information in the biometrics, it stores the user fingerprint information and certificate in the fingerprint security token and can authenticate the user. In case of using the system of electronic bidding of the public key infrastructure using the fingerprint information proposed in this paper the agent bid problem that it uses the certificate of the others in not only user authentication intensification but also system of electronic bidding can be concluded.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.19 no.5
• /
• pp.1117-1124
• /
• 2015

This paper explains a web session management system for mobile web environment with BYOD(Bring Your Own Device). This system operates by enhanced secure session token. This system consists of an unique identifier, time stamp, and encryption algorithm. The Unique identifier in this system classifies each mobile device for web security based on mobile environment with BYOD. And the Time stamp in this system that determine session effectiveness for web security. Also the Cipher algorithm in this system that protects session token information for web security. This paper analysis a security of session management system running on mobile web environment using the simulation techniques. The proposed method is more suitable than the other methods under enviroment mobile web environment with BYOD.

• The Journal of Society for e-Business Studies
• /
• v.27 no.1
• /
• pp.95-109
• /
• 2022

A blockchain based platform can ensure data integrity, reliability, and security by applying distributed processing and encryption technology for transaction records. In the existing knowledge sharing platform, the created knowledge could not be shared or utilized sufficiently due to information asymmetry and centralization. However little research has been done so far on this area. In this study, we will examine case studies and development potentials for blockchain based knowledge sharing platforms based on previous studies of blockchain technology, token economy, knowledge sharing, motivation theory, and social exchange theory. Blockchain based platforms can contribute to the activation of knowledge sharing, by resolving information asymmetry, simplifying unnecessary work procedures through unified knowledge sharing flow and excluded centralization of authority by decentralization, and strengthening access and utilization of the knowledge produced by the platform.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.19 no.5
• /
• pp.33-38
• /
• 2019

In this paper, we propose a new blockchain technology that could comply with GDPR. The proposed model can prevent illegal access by controlling access to the personal information according to a access policy. For example, it can control access to the information on a role-basis and information validation period. The core mechanism of the proposed model is to encrypt the personal information with public key which is associated with users attributes policy, and then decrypt it with a private key and users attributes based on a Attribute-based Encryption scheme. It can reduce a trusted third-part risk by replacing it with a number of nodes selected from the blockchain. And also the private key is generated in the form of one-time token to improve key management efficiency. We proved the feasibility by simulating the proposed model using the chaincode of the Hyperledger Fabric and evaluate the security.