• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제12권4호
• /
• pp.1832-1853
• /
• 2018

The personal health record (PHR) system is a promising application that provides precise information and customized services for health care. To flexibly protect sensitive data, attribute-based encryption has been widely applied for PHR access control. However, escrow, exposure and abuse of private keys still hinder its practical application in the PHR system. In this paper, we propose a coordinated ciphertext policy attribute-based access control with user accountability (CCP-ABAC-UA) for the PHR system. Its coordinated mechanism not only effectively prevents the escrow and exposure of private keys but also accurately detects whether key abuse is taking place and identifies the traitor. We claim that CCP-ABAC-UA is a user-side lightweight scheme. Especially for PHR receivers, no bilinear pairing computation is needed to access health records, so the practical mobile PHR system can be realized. By introducing a novel provably secure construction, we prove that it is secure against selectively chosen plaintext attacks. The analysis indicates that CCP-ABAC-UA achieves better performance in terms of security and user-side computational efficiency for a PHR system.

• 대한전자공학회:학술대회논문집
• /
• 대한전자공학회 2003년도 하계종합학술대회 논문집 I
• /
• pp.569-572
• /
• 2003

The broadband wireless access industry, which provides high-tate network connections to stationary sites, has matured to the point at which it now has a standard for second-generation wireless metropolitan area networks. IEEE Standard 802.16, with its WirelessMAN air interface, set the stage for widespread and effective deployments worldwide. This paper presents an implementation of media access control that can be applied to BWA (Broadband Wireless Access) system. Medium access control (MAC) is a key issue in multi-access networks where a common channel is shared by many users. The designed MAC prototype roughly consists of MAC Hardware and MAC Software. The MAC Hardware part includes timing process, MAC transmission control, MAC reception control, and CRC/HCS process. The MAC Software part includes control of MAC signaling, network interface, and Physical (PHY) control. The designed MAC protocol will be integrated with the PHY of BWA in future and we can test overall system performance of MAC and PHY.

• 대한전자공학회논문지TC
• /
• 제44권10호
• /
• pp.169-177
• /
• 2007

기존의 무선 액세스 기반의 이동 라우터들은 일반적으로 망에 대한 가입자의 연결을 공유하여 여러 사용자가 동시에 네트워크에 접속할 수 있도록 하는 네트워크 주소 및 포트간 변환(NAPT) 기술을 기반으로 동작한다. 그러나 NAPT는 구조적으로 망에 대해 각 사용자가 보이지 않게 하는 사용자 기반의 연결공유 기술이 된다. 이 논문에서 우리는 서비스 제공자 기반의 wireless broadband unlicensed nomadic access relay station(WiNNERS)을 제안한다. 이 시스템은 와이브로 망 서비스 제공자가 비인가 대역 사용자에게 마치 자신의 망 가입자처럼 서비스를 제공할 수 있도록 하여 비즈니스 영역을 더욱 확장할 수 있게 한다. 또한 WiNNERS는 서비스 제공자가 망 쪽에서 비인가 대역 사용자의 각각을 직접 관리할 수 있는 능력을 제공한다. 이러한 직접적인 관리를 통하여 서비스 제공자는 비인가 대역 사용자에 대하여 융통성을 가지고 용이하게 QoS, 액세스 제어, 과금 등을 관리할 수 있게 될 것이다. WiNNERS는 비인가 대역 사용자를 구별하기 위해서, 와이브로 시스템에서 서비스 플로우 관리를 위해 정의된 연결식별자를 사용하여 각 사용자 단말로부터 망의 access control router(ACR)까지의 가상 터널을 구성한다. 이와 같은 방법을 사용하여, 제안하는 서비스 제공자 기반의 릴레이 스테이션은 최소한의 변경만으로 와이브로 시스템에 포함되어 언급한 기능들을 제공할 수 있게 된다.

• 대한전자공학회:학술대회논문집
• /
• 대한전자공학회 2008년도 하계종합학술대회
• /
• pp.359-360
• /
• 2008

As broadband wireless access systems are widely accepted, VoIP service over the wireless network is being requested. Because previous VoIP implementations are designed to provide service over wired network, they does not consider security problem sufficiently that is one of the most vulnerable aspects of wireless communication. Therefore, this paper describes how to implement secure VoIP service over wireless network with minimum overhead.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제11권5호
• /
• pp.2646-2659
• /
• 2017

Equipped with the advantages of flexible access control and fine-grained authentication, attribute based signcryption is diffusely designed for security preservation in many scenarios. However, realizing efficient key evolution and reducing the calculation costs are two challenges which should be given full consideration in attribute based cryptosystem. In this paper, we present a key-policy attribute based signcryption scheme (KP-ABSC) with delegated computation and efficient key updating. In our scheme, an access structure is embedded into user's private key, while ciphertexts corresponds a target attribute set. Only the two are matched can a user decrypt and verify the ciphertexts. When the access privileges have to be altered or key exposure happens, the system will evolve into the next time slice to preserve the forward security. What's more, data receivers can delegate most of the de-signcryption task to data server, which can reduce the calculation on client's side. By performance analysis, our scheme is shown to be secure and more efficient, which makes it a promising method for data protection in data outsourcing systems.

• 한국정보통신설비학회:학술대회논문집
• /
• 한국정보통신설비학회 2005년도 하계학술대회
• /
• pp.290-296
• /
• 2005

In this paper, we describe ubiquitous environments and the trend of convergence that is an evolution path of current telecommunication, and show the concept of broadband convergence network, service feature and evolution path. In order to converge wire and wireless communication, telecommunication and broadcasting, voice and data efficiently, broadband convergence network divides a network into service layer, control layer, transport layer, ubiquitous access and terminal layer. Broadband convergence network will be a network that can provide and control broadband multimedia services with QoS and securityof different and customized level. Then we depict characteristics and types of broadband multimedia service, and describe the characteristic of broadband convergence network. Finally, we show ubiquitous network based on the broadband convergence network to provide ubiquitous service which is a future telecommunication service. We also describe requirements of ubiquitous network such as an intelligent and context based platform, convergence terminals, ubiquitous computing devices, etc., and give various emerging technologies and those applications.

• 정보처리학회논문지C
• /
• 제12C권6호
• /
• pp.809-816
• /
• 2005

MANET(mobile ad hoc network)은 BcN(broadband convergence network)의 액세스 망 중의 하나가 될 수 있으며 이를 통해 접속되는 사용자 노드는 코어망에 멀티홉으로 접속되am로 기존과 다른 새로운 주소 자동 설정 기능이 요구된다. 이에 관련하여 기존 유선 BcN 기반 자동 주소 설정 방식에서 단말의 이동성을 감안한 독립형 MANET의 자동 주소 할당 방식들이 제안되었으나 내부 BcN 망과 연결되는 형태의 액세스 망으로서의 MANET에 관한 주소 설정 방식은 고려되지 않고 있다. 본 논문에서는 뚜선 노드들이 BcN 게이트웨이를 통해 BcN 코어망에 접속할 수 있는 하이브리드 MANET 환경에서의 전역 주소의 할당 기능이 포함된 새로운 자동 주소 할당 방식을 제안하였다. 제안된 방법은 기존 IPv6 NDP(neighbor discovery protocol) 메시지 및 추가 확장을 통해 전역 주소에 사용되는 프리픽스 정보를 모든 모바일 노드들에게 전달할 수 있도록 했으며, 메시지 브로드캐스팅을 사용하지 않음으로써 네트워크 성능에 주는 영향을 최소화하였다.

• 정보통신설비학회논문지
• /
• 제3권2호
• /
• pp.81-89
• /
• 2004

In this paper, we describe ubiquitous environments and the trend of convergence that is an evolution path of. current telecommunication, and show the concept of broadband convergence network, service feature and evolution path. In order to converge wire and wireless communication, telecommunication and broadcasting, voice and data efficiently, broadband convergence network divides a network into service layer, control layer, transport layer, ubiquitous access and terminal layer. Broadband convergence network will be a network that can provide and control broadband multimedia services with QoS and security of different and customized level. Then we depict characteristics and types of broadband multimedia service, and describe the characteristic of broadband convergence network. Finally, we show ubiquitous network based on the broadband convert- gence network to provide ubiquitous service which is a future telecommunication service. We also describe requirements of ubiquitous network such as an intelligent and context based platform, convergence terminals, ubi- quitous computing devices, etc.

• 한국통신학회논문지
• /
• 제35권6B호
• /
• pp.875-887
• /
• 2010

The workgroup of IEEE 802 proposed the IEEE 802.16 standard, also known as WiMAX, to provide broadband wireless access (BWA). The standard specifies two operational modes, one is popular PMP mode, and the other is optional mesh mode. In the mesh mode, the network entry process-NetEntry is the pivotal procedure for mesh network topology formulation and thus, influences the accessibility of whole mesh network. Unfortunately, the NetEntry process suffers from the hidden neighbor problem, in which new neighborship emerges after a new node comes in and results in possible collisions. In this paper, we propose a new SN-protected NetEntry process to address the problem. Simulation results show that the new proposed NetEntry process is more stable compared with the standard-based NetEntry process.

• 한국정보통신설비학회:학술대회논문집
• /
• 한국정보통신설비학회 2006년도 하계학술대회
• /
• pp.47-52
• /
• 2006

In this paper, we suggested new network architecture to provide seamless service between the cellular system and new wireless broadband network such as IEEE 802.16e, called WiBro. The interworking technologies are very important issue because mobile operator should provide service connectivity between various wireless networks based on different access technologies. Moreover a change and modification on legacy network should be minimized for providing interworking with new wireless broad-band network. We implemented proposed interworking architecture between 3G cellular network and 802.16e network to provide seamless service including interworking unit in real test environment. Also, we performed performance evaluation in hybrid network environments.