• 한국광학회지
• /
• 제14권3호
• /
• pp.230-235
• /
• 2003

빛의 모드사이의 간섭 때문에 발생하는 스페클 패턴의 변화를 이용하여 광섬유 침입자 센서 시스템을 개발하였다. 센서 시스템은 아날로그부, 디지털 제어부 및 신호처리부로 구성되어있다. 개발된 침입자 센서 시스템은 침입자를 감지하고 침입자가 차인지 사람인지를 구별해주었다. 침입자 감지 및 침입자 식별 실험을 500 m 광섬유를 사용하여 수행하였다. 개발되어진 광섬유 침입자 센서시스템은 침입자를 매우 정확하게 감지하였으며 침입자가 차인 경우 100% 차로 인식하였으며 사람인 경우 90% 사람으로 인식하였다.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제13권5호
• /
• pp.2732-2753
• /
• 2019

With the application of wireless sensor networks in the fields of ecological observation, defense military, architecture and urban management etc., the security problem is becoming more and more serious. Characteristics and constraint conditions of wireless sensor networks such as computing power, storage space and battery have brought huge challenges to protection research. Inspired by the danger theory in biological immune system, this paper proposes an intrusion detection model for wireless sensor networks. The model abstracts expressions of antigens and antibodies in wireless sensor networks, defines meanings and functions of danger signals and danger areas, and expounds the process of intrusion detection based on the danger theory. The model realizes the distributed deployment, and there is no need to arrange an instance at each sensor node. In addition, sensor nodes trigger danger signals according to their own environmental information, and do not need to communicate with other nodes, which saves resources. When danger is perceived, the model acquires the global knowledge through node cooperation, and can perform more accurate real-time intrusion detection. In this paper, the performance of the model is analyzed including complexity and efficiency, and experimental results show that the model has good detection performance and reduces energy consumption.

• 한국정보통신학회논문지
• /
• 제15권10호
• /
• pp.2171-2180
• /
• 2011

센서네트워크의 다양한 응용분야에서 보안성은 대단히 중요하다. 침입탐지는 공격에 대한 방어기법 중의 하나 이지만 기존의 정형화된 침입탐지기술은 제한된 자원으로 운영되는 센서네트워크에는 적절하지 않다. 본 논문에서는 전송되는 패킷의 이상행위를 관찰하는 침입탐지시스템에서 탐지노드의 선정 및 운영에 관한 방법과 함께 침입탐지시스템의 수명을 최대화하는 노드 스케줄링 방안을 제안하였다. 제안된 최적화식에 대하여 유전자 알고리즘을 이용한 해를 개발하고 시뮬레이션을 수행하여 효율성을 확인하였다.

• 센서학회지
• /
• 제10권3호
• /
• pp.163-172
• /
• 2001

넓은 지역에 걸친 침입자의 침투를 감시하기 위하여 수십 km의 광섬유 길이 전체를 감지부로 사용할 수 있는 광섬유 BOTDA (Brillouin Optical Time Domain Analysis) 센서를 개발하였다. 광섬유 BOTDA 센서는 한 개의 레이저 다이오드와 두 개의 광전 변조기(electro-optic modulator)를 사용하여 간단하게 구성하였다. 침입자에 의한 광섬유의 변형률 변화를 탐지하는 실험을 수행하기 위하여 광학테이블 위에 광섬유에 변형률을 인가하기 위한 실험장치를 설치하여 실험을 수행하였다. 이 실험으로부터 시간간격 1.5 초동안 광섬유 약 4.81 km의 길이를 거리분해능 3 m로 침입자를 탐지할 수 있음을 확인하였다.

• 한국컴퓨터정보학회논문지
• /
• 제11권6호
• /
• pp.211-219
• /
• 2006

무선 네트워크의 확대로 무선 트래픽에 대한 침입 탐지/차단 시스템의 필요성이 강조되고 있다. 본 연구에서는 캠퍼스 망에서 무선망을 통하여 유선망을 공격하는 트래픽들을 탐지하고 분석된 결과를 통합적으로 관리하여 공격 트래픽을 효과적으로 차단하는 시스템을 제안한다. 제안하는 시스템은 무선 트래픽의 침입 탐지를 위해 기존의 W-Sensor 기능을 소프트웨어 형태로 개발하고 탐지된 공격 트래픽을 차단하는 통합 보안 관리 시스템 W-TMS를 개발하여 연동하게 하였다. 개발된 W-Sensor SW를 통해 무선 트래픽의 공격에 대해 효율적인 탐지 기능을 수행하고 변화되는 공격 유형에 대해 신속하게 대응할 수 있다. 또한 노트북 등에 SW를 설치함으로써 기존 AP 기반 시스템에 비해 이동성을 증가시킬 수 있다.

• 한국정보통신학회:학술대회논문집
• /
• 한국해양정보통신학회 2009년도 추계학술대회
• /
• pp.857-860
• /
• 2009

Intrusion detection in Wireless Sensor Network (WSN) is of practical interest in many applications such as detecting an intruder in a battlefield. The intrusion detection is defined as a mechanism for a WSN to detect the existence of inappropriate, incorrect, or anomalous moving attackers. For this purpose, it is a fundamental issue to characterize the WSN parameters such as node density and sensing range in terms of a desirable detection probability. In this paper, we consider this issue according to two WSN models: homogeneous and heterogeneous WSN.

• 한국정보과학회:학술대회논문집
• /
• 한국정보과학회 2008년도 한국컴퓨터종합학술대회논문집 Vol.35 No.1 (A)
• /
• pp.134-137
• /
• 2008

A novel Intrusion Detection and Response System (IDRS) for IP based Ubiquitous Sensor Networks (IP-USN) is proposed. According to the best of our knowledge this is the first security framework for any kind of IP based sensor devices. The proposed scheme is fast, lightweight in terms of computation and memory, which make it appropriate for resource constrained sensor devices.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제12권12호
• /
• pp.5819-5840
• /
• 2018

Considering the topology of hierarchical tree structure, each cluster in WSNs is faced with various attacks launched by malicious nodes, which include network eavesdropping, channel interference and data tampering. The existing intrusion detection algorithm does not take into consideration the resource constraints of cluster heads and sensor nodes. Due to application requirements, sensor nodes in WSNs are deployed with approximately uncorrelated security weights. In our study, a novel and versatile intrusion detection system (IDS) for the optimal defense strategy is primarily introduced. Given the flexibility that wireless communication provides, it is unreasonable to expect malicious nodes will demonstrate a fixed behavior over time. Instead, malicious nodes can dynamically update the attack strategy in response to the IDS in each game stage. Thus, a multi-stage intrusion detection game (MIDG) based on Bayesian rules is proposed. In order to formulate the solution of MIDG, an in-depth analysis on the Bayesian equilibrium is performed iteratively. Depending on the MIDG theoretical analysis, the optimal behaviors of rational attackers and defenders are derived and calculated accurately. The numerical experimental results validate the effectiveness and robustness of the proposed scheme.

• 대한전자공학회:학술대회논문집
• /
• 대한전자공학회 2004년도 학술대회지
• /
• pp.876-879
• /
• 2004

The buried fiber optic cable as a distributed intrusion sensor for detecting and locating intruders along the long perimeters is proposed. Phase changes resulting from either the pressure of the intruder on the ground immediately above the buried fiber or from seismic disturbances in the vicinity are sensed by a phase-sensitive optical time-domain reflectometer. Light pulses from a Er:fiber cw laser with a narrow, <3kHz-range, spectral width and a frequency drift of < 1 MHz/min are injected into one end of the fiber, and the backscattered light from the fiber is monitored with a photodetector. Results of preliminary studies, measurement of phase changes produced by pressure and seismic disturbances in buried fiber optic cables and simulation of ${\varphi}-OTDR$ response over long fiber paths, to establish the feasibility of the concept are described. The field experiments indicate adequate phase changes, more than 1t-rad, are produced by intruders on foot and vehicle for burial depths in the 0.2 m to 1 m range in sand, clay and fine gravel soils. The simulations predict a range of 10 km with 35 m range resolution and 30 km with 90 m range resolution. This technology could in a cost-effective manner provide enhanced perimeter security.

• 한국수자원학회:학술대회논문집
• /
• 한국수자원학회 2020년도 학술발표회
• /
• pp.114-114
• /
• 2020

Water contamination in a water distribution network (WDN) is harmful since it directly induces the consumer's health problem and suspends water service in a wide area. Actions need to be taken rapidly to countermeasure a contamination event. A contaminant source ident ification (CSI) is an important initial step to mitigate the harmful event. Here, a CSI approach focused on determining the contaminant intrusion possible location and time (PLoT) is introduced. One of the methods to discover the PLoT is an inverse calculation to connect all the paths leading to the report specification of a sensor. A filtering procedure is then applied to narrow down the PLoT using the results from individual sensors. First, we spatially reduce the suspect intrusion points by locating the highly suspicious nodes that have similar intrusion time. Then, we narrow the possible intrusion time by matching the suspicious intrusion time to the reported information. Finally, a likelihood-score is estimated for each suspect. Another important aspect that needs to be considered in CSI is that there are inherent uncertainties, such as the variations in user demand and inaccuracy of sensor data. The uncertainties can lead to overlooking the real intrusion point and time. To reflect the uncertainties in the CSI process, the Monte-Carlo Simulation (MCS) is conducted to explore the ranges of PLoT. By analyzing all the accumulated scores through the random sets, a spread of contaminant intrusion PLoT can then be identified in the network.