• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.36 no.1A
• /
• pp.82-89
• /
• 2011

The Proxy Mobile IPv6 is a network-based localized mobility management protocol. In the PMIPv6, Mobile Nodes are topologically anchored at a Local Mobility Anchor, which forwards all data packets for registered Mobile Nodes. Since all data packets destined for the Mobile Nodes a1ways traverse the Mobile Nodes's Local Mobility Anchor, the LMA might be bottleneck and the end-to-end de1ay are increased. Therefore, in this paper, we proposed an enhanced Route Optimization scheme in Multiple Local Mobility Anchors environment. In order to rapid1y detect Route Optimization, we designed Domain Information Table in Mobility Access Gateway. Furthermore, we use Correspondent Binding Cache in Local Mobility Anchor to maintain Route Optimization information during Mobile Nodes's handover. To solve packet loss and reodering problems during handover, we propose a new buffering and forwarding scheme.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2006.05a
• /
• pp.761-764
• /
• 2006

We have developed a new remote-configurable firewall system that provides secure and easy-to-use access to home-network appliances such as network cameras, PVRs, and home file servers, through the internet. With a simple web browser operation, remote users can dynamically open and close the firewall of the home gateway. The firewall rule creation is based on an authentication of the remote client, and thus only packets from the authorized client can pass through the firewall, we analyses the sorority design for home gateway in ubiquitous surroundings.

• Journal of Information Management
• /
• v.34 no.1
• /
• pp.37-57
• /
• 2003

With rapid telecommunication development, university libraries began to provide traditional services as well as web-based services. For the web-based services, university libraries should collect, arrange, and preserve all types of information resources systematically to raise users access and convenience. Therefore, university libraries should be changed into a gateway, which emphasizes electronic collection and role of the internet. That is, university libraries should be a real space as well as a virtual space having collection ability and access paradigm. This research is intended to provide improvement plans through analyzing the collected data.

• Journal of information and communication convergence engineering
• /
• v.16 no.1
• /
• pp.31-37
• /
• 2018

In this work, we propose an analytic framework for evaluating the quality of service and dimensioning the link capacity in the gateway router of a smart farm with a greenhouse eco-management system. Specifically, we focus on the gateway router of an IoT network that provides an access service for smart farms. We design the link capacity of a gateway router that is used for the remote management of the greenhouse eco-management system to accommodate both time-critical and delay-tolerant traffic in a greenhouse LAN. For this purpose, we first investigate the ecosystem for smart farm, and we define the specification and requirements of the greenhouse eco-management system. Second, we propose a system model for the link capacity of a gateway that is required to guarantee the delay performance of time-critical applications in the greenhouse LAN. Finally, the validity of the proposed system is demonstrated through a series of numerical experiments.

• Proceedings of the Korean Information Science Society Conference
• /
• 2003.04d
• /
• pp.503-505
• /
• 2003

패킷망을 통해 음성, 영상, 데이터를 동시에 제공할 수 있는 차세대 네트워크(NGN) 개념이 제안되어 현재 네트워크 상에 전개되어 가고 있다. 하지만 NGN의 Softswitch의 구성을 위해서는 현재의 PSTN 내의 Class 4/5 switch를 NGN의 구성에 맞게 끔 Access Gateway 및 Media Gateway로 교체해 나가야 하며 교체 후에도 소비자의 새로운 서비스 신설 요구에 신속하게 부합하기 위하여 기존 시스템의 서비스 중단없이 새로운 서비스 및 신규 프로토콜을 신속히 전개할 수 있는 개념은 필수적인 요소가 되었다. 이러한 점을 지원하기 위하여 본 논문에서는 개방형 네트워크 아키텍처 접근 방식인 Active Network의 개념을 응용한 차세대네트워크 Media Gateway Controller내의 이산 메커니즘 적용 Active Packet Processor도입하였다.

• Proceedings of the Korea Society for Industrial Systems Conference
• /
• 2002.06a
• /
• pp.107-113
• /
• 2002

We have developed the MIBs for Access Gateway which is for diverse subscribers to access the core network at the NGN. We organized the subscriber and network interface Information such as xDSL, ATN, PSTN, MIBs, and so on. The MIBs are managed by EMS.

• 한국정보통신설비학회:학술대회논문집
• /
• 2003.11a
• /
• pp.123-165
• /
• 2003

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.14 no.5
• /
• pp.11-21
• /
• 2004

To authorize IPSec-VPN Client in Client-to-Gateway type of the IPSec-VPN system, it can be normally used with ID/Password verification method or the implicit authorization method that regards implicitly IPSec-VPN gateway as authorized one in case that the IPSec-VPN client is authenticated. However, it is necessary for the Client-to-Gateway type of the IPSec-VPN system to have a more effective user authorization mechanism because the ID/Password verification method is not easy to transfer the ID/Password information and the implicit authorization method has the vulnerability of security. This paper proposes an effective user authorization mechanism using an attribute certificate and designs a user authorization engine. In addition, it is implemented in this study. The user authorization mechanism for the IPSec-VPN system proposed in this study is easy to implement the existing IPSec-VPN system. Moreover, it has merit to guarantee the interoperability with other IPSec-VPN systems. Furthermore, the user authorization engine designed and implemented in this paper will provide not only DAC(Discretional Access Control) and RBAC(Role-Based Access Control) using an attribute certificate, but also the function of SSO(Single-Sign-On).

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.5 no.2
• /
• pp.101-107
• /
• 2009

In existing wireless ad-hoc networks, how to distribute network resources fairly between many users to optimize data transmission is an important research subject. However, in wireless mesh networks (WMNs), it is one of the research areas to avoid gateway bottleneck more than the fair network resource sharing. It is because WMN traffic are concentrated on the gateway connected to backhaul. To solve this problem, the paper proposes Weighted Fairness Time-sharing Access (WFTA). The proposed WFTA is a priority time scheduling scheme based on Weighted Fair Queuing (WFQ).

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2001.10a
• /
• pp.499-502
• /
• 2001

FreeS/WAN[l] 은 LINUX 상에서 네트워크 보안 프로토콜표준인 IPSEC을 구현한 공개 S/W이다. 현재 LINUX Project로 수행되고 있으며 1.91 version 까지 나와 있다. 라우터와 라우터간에 IPSEC을 사용하여 통신함으로써 access control, connectionless integrity, data origin authentication, protection against replays, confidentiality의 서비스를 보장받을 수 있고, 또한 이러한 서비스들은 IP 계층에서 제공되기 때문에 IP 계층뿐만 아니라 그 이상의 계층에 대한 보호를 제공한다. [2] 본 논문에서는 LINUX router에 FreeS/WAN IPSEC을 설치하여 Security Gateway를 구성하고, 이 Security Gateway를 통해 전형적인 가상사설망을 구성할 수 있음을 보였다. 양단의 Security Gateway에 설치되어진 FreeS/WAN으로 VPN connection을 설정하고, 인증방법으로 RSA authentication key를 setup 하였다. IPSEC을 통하여 암호화되어진 데이터로 양단의 Gateway 구간에서 보안통신이 이루어짐을 알아본다.