• Proceedings of the Korean Society of Broadcast Engineers Conference
• /
• 2009.01a
• /
• pp.400-403
• /
• 2009

EAP (Extensible Authentication Protocol) is often used as an authentication framework for two-party protocol which supports multiple authentication algorithms known as "EAP method". And PKMv2 in 802.16e networks use EAP as an authentication protocol. However, this framework is not efficient when the EAP peer executing handover. The reason is that the EAP peer and EAP server should re-run EAP method each time so that they authenticate each other for secure handover. This makes some delays, so faster re-authentication method is needed. In this paper, we propose a new design of the PKMv2 framework which provides fast re-authentication. This new framework and usage of the keys which used as a short-term credential bring better performance during handover process.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2005.05a
• /
• pp.1461-1464
• /
• 2005

In contrast with conventional networks, mobile ad hoc networks usually do not provide online access to trusted authorities or to centralized servers, and they exhibit frequent partitioning due to link and node failures and node mobility. For these reasons, traditional security solutions that require online trusted authorities or certificate repositories, but those are not well-suited for securing ad hoc networks. Moreover, a fundamental issue of securing mobile ad hoc networks is to ensure mobile nodes can authenticate each other. Because of its strength and efficiency, public key and digital signature is an ideal mechanism to construct the authentication service. Although this is already mature in the internet application, providing public key based authentication is still very challenging in mobile ad hoc networks. In this paper I propose a secure public key authentication service based on clustering model and trust model to protect nodes from getting false public keys of the others efficiently when there are malicious nodes in the network.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2005.11a
• /
• pp.765-768
• /
• 2005

유비쿼터스 컴퓨팅은 가상공간이 아닌 현실세계의 어디서나 컴퓨터 사용이 가능해야 하는 확실한 특징을 가지고 있으며, 고정 이동, 유선 무선, 통신 방송이라는 영역을 넘어 이용장소에 관계없이 상시 접속이 가능한 모바일 특성을 갖춘 브로드밴드 네트워크 기반을 갖는다. 이런 환경이 가져다 주는 많은 이점이 있을 수 있지만, 그에 따른 많은 문제점이 야기될 수 있다. 그 예로 유비쿼터스 컴퓨팅 환경내에 접속할 때와 접속한 후 그 내부에서의 신분확인 및 권한인증 문제를 들수 있으며, 본 논문은 이 문제를 해결하기 위한 미들웨어 모델에 대해 논한다.

• Journal of the Institute of Convergence Signal Processing
• /
• v.14 no.1
• /
• pp.21-26
• /
• 2013

The objective of this study was to develop a system for handwriting recognition in three dimensions (3D) to authenticate users. While previous studies have used a stylus pen for two-dimensional input on a tablet, this study uses the Wii Remote controller because it can capture 3D human motion and could therefore be more effective means of recognition. The information obtained from a Wii Remote controller included x and y coordinates, acceleration (x, y, z), angular velocity (pitch, yaw, roll), twelve input buttons, and time. The proposed system calculates distances using six features extracted after preprocessing the data. In an experiment where 15 subjects wrote "AIZU" 10 times, we obtained a 94.8% identification rate using a combination of writing velocity, the peak value of pitch, and the peak value of yaw. This suggests that this system holds promise for handwriting-based authentication in the future.

• Proceedings of the Korean Information Science Society Conference
• /
• 2007.10d
• /
• pp.556-559
• /
• 2007

Due to its ease of deployment, low cost, self-configuring and self-healing capabilities, Wireless Mesh Networks (WMNs) have emerged as a key technology to be used in a wide scale applications in personal, local, campus, and metropolitan areas. Security and more specifically privacy is an important issue in this type of multi-hop WMN which has given a little attention in the research community. We focus on privacy compromise of a mesh client in a community mesh network that may lead an attacker to reveal mesh clients identity. his other profiles and gain information about mobility. In this paper. we have presented an authentication mechanism with the aid of blind signature that ensures a mesh client to anonymously authenticate itself with a nearby mesh router and thereby preserve identity privacy We have also presented the security and performance analysis of the proposed scheme.

• Journal of the Korea Society of Computer and Information
• /
• v.20 no.12
• /
• pp.61-66
• /
• 2015

In this paper, we draw a security assessment by analyzing possible vulnerabilities of the designated PC service which is supposed for strengthening security of current online identification methods that provide various areas such as the online banking and a game and so on. There is a difference between the designated PC service and online identification methods. Online identification methods authenticate an user by the user's private information or the user's knowledge-based information, though the designated PC service authenticates a hardware-based unique information of the user's PC. For this reason, high task significance services employ with online identification methods and the designated PC service for improving security multiply. Nevertheless, the security assessment of the designated PC service has been absent and possible vulnerabilities of the designated PC service are counterfeiter and falsification when the hardware-based unique-information is extracted on the user's PC and sent an authentication server. Therefore, in this paper, we analyze possible vulnerabilities of the designated PC service and draw the security assessment.

• The Journal of the Korea Contents Association
• /
• v.4 no.3
• /
• pp.53-60
• /
• 2004

In this paper we present user authentication and key distribution using threshold PKC(Public Key Cryptosystem), which is secure against the dictionary attack. The n servers hold a t-out-of-n sharing of the dealer's secret key. When the server authenticate a user, at least f of them cooperate they can reconstruct password verifier.

• The Journal of Korea Institute of Information, Electronics, and Communication Technology
• /
• v.7 no.1
• /
• pp.45-49
• /
• 2014

In this paper, we propose a secure and efficient RFID-based patient authentication protocol to not only authenticate patients' authenticity but also protect patients' personal medical informations for u-Healthcare environments. Since the proposed RFID-based patient authentication protocol provides strong security and efficiency, it can be used practically for patient authentication and personal medical information protection on the high technology medical environments such as u-Hospital and u-Healthcare.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.35 no.1B
• /
• pp.42-52
• /
• 2010

Recently, Ahn et al proposed an improved authentication protocol using the hash function in RFID environment. Their proposed protocol provide the following three merits; it reduces the computational costs of RFID tag. itrfduces the communication overhead between the reader and the tag. it protects the user privacy. However, this paper points out that does not authenticate the legality of the RFID reader and database. this paper proposes an improved mutual authentication protocol that can provide the mutual authenticaion.

• Journal of Information Processing Systems
• /
• v.8 no.1
• /
• pp.145-158
• /
• 2012

Hyperelliptic Curve Cryptosystem (HECC) is well suited for all kinds of embedded processor architectures, where resources such as storage, time, or power are constrained due to short operand sizes. We can construct genus 3 HECC on 54-bit finite fields in order to achieve the same security level as 160-bit ECC or 1024-bit RSA due to the algebraic structure of Hyperelliptic Curve. This paper explores various possible attacks to the discrete logarithm in the Jacobian of a Hyperelliptic Curve (HEC) and addition and doubling of the divisor using explicit formula to speed up the scalar multiplication. Our aim is to develop a cryptosystem that can sign and authenticate documents and encrypt / decrypt messages efficiently for constrained devices in wireless networks. The performance of our proposed cryptosystem is comparable with that of ECC and the security analysis shows that it can resist the major attacks in wireless networks.