• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제14권10호
• /
• pp.4157-4175
• /
• 2020

Moving target defense, as a 'game-changing' security technique for network warfare, realizes proactive defense by increasing network dynamics, uncertainty and redundancy. How to select the best countermeasure from the candidate countermeasures to maximize defense payoff becomes one of the core issues. In order to improve the dynamic analysis for existing decision-making, a novel approach of selecting the optimal countermeasure using game theory is proposed. Based on the signal game theory, a multi-stage adversary model for dynamic defense is established. Afterwards, the payoffs of candidate attack-defense strategies are quantified from the viewpoint of attack surface transfer. Then the perfect Bayesian equilibrium is calculated. The inference of attacker type is presented through signal reception and recognition. Finally the countermeasure for selecting optimal defense strategy is designed on the tradeoff between defense cost and benefit for dynamic network. A case study of attack-defense confrontation in small-scale LAN shows that the proposed approach is correct and efficient.

• 한국군사과학기술학회지
• /
• 제7권4호
• /
• pp.107-113
• /
• 2004

In order to model a connection part between a control fin and actuator, the related characteristics of a dynamic stiffness were extracted from experiments. These characteristics include the static stiffness of a control fin and the dynamic stiffness of an actuator, so they are called the mixed dynamic stiffness here. This mixed dynamic stiffness is used as the boundary condition of a control fin connected to an actuator when the flutter characteristics are analyzed. The simulated stiffness of an actuator is corrected from the experiment results and the mixed dynamic is finally formulated in the domain of frequencies.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제9권12호
• /
• pp.5116-5134
• /
• 2015

In this paper, due to the network security defense is mainly static defense, a dynamic classification network security defense strategy model is proposed by analyzing the security situation of complex computer network. According to the network security impact parameters, eight security elements and classification standard are obtained. At the same time, the dynamic classification algorithm based on fuzzy theory is also presented. The experimental analysis results show that the proposed model and algorithm are feasible and effective. The model is a good way to solve a safety problem that the static defense cannot cope with tactics and lack of dynamic change.

• 한국분말재료학회지
• /
• 제15권6호
• /
• pp.458-465
• /
• 2008

The hot deformation characteristics of pure molybdenum was investigated in the temperature range of $600{\sim}1200^{\circ}C$ and strain rate range of $0.01{\sim}10.0/s$ using a Gleeble test machine. The power dissipation map for hot working was developed on the basis of the Dynamic Materials Model. According to the map, dynamic recrystallization (DRX) occurs in the temperature range of $1000{\sim}1100^{\circ}C$ and the strain rate range of $0.01{\sim}10.0/s$, which are the optimum conditions for hot working of this material. The average grain size after DRX is $5{\mu}m$. The material undergoes flow instabilities at temperatures of $900{\sim}1200^{\circ}C$ and the strain rates of $0.01{\sim}10.0/s$, as calculated by the continuum instability criterion.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제12권12호
• /
• pp.6098-6122
• /
• 2018

Cache-based side-channel attacks have achieved more attention along with the development of cloud computing technologies. However, current host-based mitigation methods either provide bad compatibility with current cloud infrastructure, or turn out too application-specific. Besides, they are defending blindly without any knowledge of on-going attacks. In this work, we present CacheSCDefender, a framework that provides a (Virtual Machine Monitor) VMM-based comprehensive defense framework against all levels of cache attacks. In designing CacheSCDefender, we make three key contributions: (1) an attack-aware framework combining our novel dynamic remapping and traditional cache cleansing, which provides a comprehensive defense against all three cases of cache attacks that we identify in this paper; (2) a new defense method called dynamic remapping which is a developed version of random permutation and is able to deal with two cases of cache attacks; (3) formalization and quantification of security improvement and performance overhead of our defense, which can be applicable to other defense methods. We show that CacheSCDefender is practical for deployment in normal virtualized environment, while providing favorable security guarantee for virtual machines.

• 한국산학기술학회논문지
• /
• 제11권9호
• /
• pp.3190-3195
• /
• 2010

고무재료의 비선형적인 특성으로 인해 고무재질 방진 마운트의 탄성계수와 감쇠계수는 주파수에 따라 달라진다. 따라서 고무재질의 방진 마운트 설계 시 마운트의 동적 특성을 반드시 고려해야만 한다. 특히, 수치해석을 수행하는데 있어 해석결과는 마운트의 동적 강성 고려 여부에 따라 크게 달라진다. 본 논문에서는 한국 해군에서 승인되어 사용되고 있는 특정 표준 마운트에 대해 실험적으로 동적 특성을 정의하였으며, 이러한 동적 특성을 적용한 경우와 적용하지 않은 경우에 대해 수행한 수치해석 결과와 실험 결과를 비교하였다.

• 제어로봇시스템학회:학술대회논문집
• /
• 제어로봇시스템학회 2002년도 ICCAS
• /
• pp.47.5-47
• /
• 2002

Some integration methods for the linear subsystems are examined and which algorithm is optimal for real-time simulation is considered. First, a number of typical integration methods for a linear time-invariant system are given. Then, the dynamic errors are shown both from the point of view of characteristic root errors and transfer function errors. After that we compute the dynamic errors of integration and choose the appropriate method for each system.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제11권2호
• /
• pp.846-864
• /
• 2017

Software Defined Network (SDN) realizes management and control over the underlying forwarding device, along with acquisition and analysis of network topology and flow characters through south bridge protocol. Data path Identification (DPID) is the unique identity for managing the underlying device, so forged DPID can be used to attack the link of underlying forwarding devices, as well as carry out DoS over the upper-level controller. This paper proposes a dynamic defense method based on Client-Puzzle model, in which the controller achieves dynamic management over requests from forwarding devices through generating questions with multi-level difficulty. This method can rapidly reduce network load, and at the same time separate attack flow from legal flow, enabling the controller to provide continuous service for legal visit. We conduct experiments on open-source SDN controllers like Fluid and Ryu, the result of which verifies feasibility of this defense method. The experimental result also shows that when cost of controller and forwarding device increases by about 2%-5%, the cost of attacker's CPU increases by near 90%, which greatly raises the attack difficulty for attackers.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제10권9호
• /
• pp.4529-4548
• /
• 2016

DDoS attacks have had a devastating effect on the Internet, which can cause millions of dollars of damage within hours or even minutes. In this paper we propose a practical dynamic defense approach that overcomes the shortage of static defense mechanisms. Our approach employs a group of SDN-based proxy switches to relay data flow between users and servers. By substituting backup proxy switches for attacked ones and reassigning suspect users onto the new proxy switches, innocent users are isolated and saved from malicious attackers through a sequence of remapping process. In order to improve the speed of attacker segregation, we have designed and implemented an efficient greedy algorithm which has been demonstrated to have little influence on legitimate traffic. Simulations, which were then performed with the open source controller Ryu, show that our approach is effective in alleviating DDoS attacks and quarantining the attackers by numerable remapping process. The simulations also demonstrate that our dynamic defense imposes little effect on legitimate users, and the overhead introduced by remapping procedure is acceptable.

• Journal of Positioning, Navigation, and Timing
• /
• 제5권1호
• /
• pp.21-28
• /
• 2016

The Wide Area Differential Global Positioning System (WADGPS) that uses a number of Global Navigation Satellite System (GNSS) reference stations are implemented with various types and provide services as it can service a wide range of areas relatively. This paper discusses a constellation design of reference stations and performance analysis of the WADGPS. It presented performance results of static and dynamic users when wide area correction algorithm was applied using eight reference stations.