• ETRI Journal
• /
• 제32권4호
• /
• pp.634-637
• /
• 2010

This letter presents a model for a dynamic collaboration (DC) platform among cloud providers (CPs) that prevents adverse business impacts, cloud vendor lock-in and violation of service level agreements with consumers, and also offers collaborative cloud services to consumers. We consider two major challenges. The first challenge is to find an appropriate market model in order to enable the DC platform. The second is to select suitable collaborative partners to provide services. We propose a novel combinatorial auction-based cloud market model that enables a DC platform among CPs. We also propose a new promising multi-objective optimization model to quantitatively evaluate the partners. Simulation experiments were conducted to verify both of the proposed models.

• Journal of Information Processing Systems
• /
• 제15권3호
• /
• pp.538-549
• /
• 2019

Cloud computing is the concept of providing information technology services on the Internet, such as software, hardware, networking, and storage. These services can be accessed anywhere at any time on a pay-per-use basis. However, storing data on servers is a challenging aspect of cloud computing. This paper utilizes cryptography and access control to ensure the confidentiality, integrity, and proper control of access to sensitive data. We propose a model that can protect data in cloud computing. Our model is designed by using an enhanced RSA encryption algorithm and a combination of role-based access control model with extensible access control markup language (XACML) to facilitate security and allow data access. This paper proposes a model that uses cryptography concepts to store data in cloud computing and allows data access through the access control model with minimum time and cost for encryption and decryption.

• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2013년도 춘계학술발표대회
• /
• pp.636-639
• /
• 2013

With the development and rapid growth of cloud computing, lots of application services based on cloud computing have been developed. In addition, cloud-based DRM systems have been developed to support those services' copyright and privacy protection. In this paper, we propose a new cloud-based user-friendly DRM system, which allows users to execute the same contents bought at most n times at any devices with license enforcement, which checks the validation of licenses before every execution, having no smart card, which has to carry a smart card reader that seems troublesome to a user, and providing the copyright and privacy protection.

• 한국정보통신학회:학술대회논문집
• /
• 한국정보통신학회 2014년도 춘계학술대회
• /
• pp.234-237
• /
• 2014

IT 핵심 전략기술로써 클라우드 컴퓨팅 서비스가 많은 기업들 사이에서 공간 및 IT원가절감을 위한 해결책으로 관심이 커지고 있고, 이런 클라우드 서비스를 가능하게 해주는 핵심 기술로써 가상화 기술 또한 이목이 집중되고 있다. 다수의 사용자가 접속해서 서비스를 이용하고 데이터가 집중되는 만큼 데이터의 관리와 무결성, 그리고 해커에 의한 공격 등 취약점에 대한 보안과 개인정보 유출에 대한 문제점이 있다. 서비스의 확산을 위해선 방화벽과 보안솔루션 그리고 백신을 이용한 서버 및 가상화된 다수의 Host, 사용자 편의의 애플리케이션 등에 대한 보안대책과 기술이 필요하다. 본 논문에서는 다양한 가상화 기술 및 기능, 위협요소와 취약점 그리고 이를 보완하기위한 보안기술과 여러 보안솔루션의 기술에 대해서 알아보겠다.

• 한국차세대컴퓨팅학회논문지
• /
• 제13권5호
• /
• pp.80-92
• /
• 2017

클라우드 컴퓨팅의 대중화로 다양한 유형의 클라우드 서비스가 등장하고 있으며, 퍼블릭 클라우드와 프라이빗 클라우드를 결합하여 이들의 단점을 상쇄시킨 배치 모델인 하이브리드 클라우드가 최근 각광 받고 있다. 하지만 서로 다른 클라우드의 결합에 대한 복잡성 문제와 관련 솔루션 부족에 의해 기업이나 조직의 하이브리드 클라우드 도입과 클라우드 전략 확보가 늦춰지고 있는 실정이다. 이에 본 논문에서는 결합 복잡성 문제 해결을 위한 클라우드 결합기법을 제시한다. 본 논문에서 제시하는 클라우드 결합 기법은 스크립트 기반으로 클라우드 결합을 해결하며, 하이브리드 클라우드 기능을 실현하는 결합 스크립트와 이를 생성, 실행하는 프로세스, 소프트웨어 디자인 패턴을 적용한 스크립트 생성 모델로 구성되어 있다. 제시된 결합 기법을 이용하면 다양한 클라우드 서비스를 결합하여 사용자의 요구에 맞는 스크립트를 빠르게 생성할 수 있으며, 이를 통해 하이브리드 클라우드의 도입과 클라우드 전략 확보를 촉진시킬 수 있을 것으로 기대된다.

• 한국멀티미디어학회논문지
• /
• 제19권2호
• /
• pp.308-315
• /
• 2016

With the advancement in the area of cloud storage services as well as a tremendous growth of social networking sites, permission for one web service to act on the behalf of another has become increasingly vital as social Internet services such as blogs, photo sharing, and social networks. With this increased cross-site media sharing, there is a upscale of security implications and hence the need to formulate security protocols and considerations. Recently, OAuth, a new protocol for establishing identity management standards across services, is provided as an alternative way to share the user names and passwords, and expose personal information to attacks against on-line data and identities. Moreover, OwnCloud provides an enterprise file synchronizing and sharing that is hosted on user's data center, on user's servers, using user's storage. We propose a secure Social Networking Site (SSN) access based on OAuth implementation by combining two novel concepts of OAuth and OwnCloud. Security analysis and performance evaluation are given to validate the proposed scheme.

• ETRI Journal
• /
• 제36권2호
• /
• pp.197-205
• /
• 2014

This paper proposes a novel framework for virtual content delivery networks (CDNs) based on cloud computing. The proposed framework aims to provide multimedia content delivery services customized for content providers by sharing virtual machines (VMs) in the Infrastructure-as-a-Service cloud, while fulfilling the service level agreement. Furthermore, it supports elastic virtual CDN services, which enables the capabilities of VMs to be scaled to encompass the dynamically changing resource demand of the aggregated virtual CDN services. For this, we provide the system architecture and relevant operations for the virtual CDNs and evaluate the performance based on a simulation.

• International Journal of Computer Science & Network Security
• /
• 제22권1호
• /
• pp.276-282
• /
• 2022

One of the most essential foundations upon which big institutions rely in delivering cloud computing and hosting services, as well as other kinds of multiple digital services, is the security of infrastructures for digital and information services throughout the world. Distributed denial-of-service (DDoS) assaults are one of the most common types of threats to networks and data centers. Denial of service attacks of all types operates on the premise of flooding the target with a massive volume of requests and data until it reaches a size bigger than the target's energy, at which point it collapses or goes out of service. where it takes advantage of a flaw in the Transport Control Protocol's transmitting and receiving (3-way Handshake) (TCP). The current study's major focus is on an architecture that stops DDoS attacks assaults by producing code for DDoS attacks using a cloud controller and calculating Round-Tripe Time (RTT).

• International Journal of Computer Science & Network Security
• /
• 제23권10호
• /
• pp.107-114
• /
• 2023

The study provides the identification of vulnerabilities in the security issues by Wireless Network. To achieve it the research focus on packet flow analysis, end to end data communication, and the security challenges (Cybercrime, insider threat, attackers, hactivist, malware and Ransomware). To solve this I have used the systematic literature review mechanisms and demonstrative tool namely Wireshark network analyzer. The practical demonstration identifies the packet flow, packet length time, data flow statistics, end- to- end packet flow, reached and lost packets in the network and input/output packet statics graphs. Then, I have developed the proposed model that used to secure the Wireless network solution and prevention vulnerabilities of the network security challenges. And applying the model that used to investigate the security challenges and vulnerabilities of cloud computing services is used to fulfill the network security goals in Wireless network. Finally the research provides the model that investigate the security challenges and vulnerabilities of cloud computing services in wireless networks

• 디지털융복합연구
• /
• 제11권5호
• /
• pp.63-72
• /
• 2013

클라우드 서비스는 낮은 비용과 높은 효율성으로 빠르게 변화 최적의 스마트 사회에서 필수적인 IT 인프라를 인식되고 있다. 구글, 아마존 등 해외 유수 기업에서 시작된 클라우드 서비스는 미국과 영국 등 외국 정부의 클라우드 서비스의 도입에 다양한 정책적 영향을 미쳤다. 특히, 이들 국가들은 정보자원의 효율적 관리를 위해서 클라우드 컴퓨팅의 도입과 아울러 기존 공공서비스의 클라우드 서비스로의 전환을 가속화하고 있다. 본 연구에서는 클라우드 서비스 도입을 위한 외국 정부의 다양한 사례 분석을 토대로 국내 환경에 적합한 클라우드 기반 공공서비스의 도입체계를 제안하였다.