• Journal of information and communication convergence engineering
• /
• v.10 no.4
• /
• pp.337-342
• /
• 2012

The medical industries are integrated with information technology with mobile devices and wireless communication. The advent of mobile healthcare systems can benefit patients and hospitals, by not only providing better quality of patient care, but also by reducing administrative and medical costs for both patients and hospitals. Security issues present an interesting research topic in wireless and pervasive healthcare networks. As information technology is developed, many organizations such as government agencies, public institutions, and corporations have employed an information system to enhance the efficiency of their work processes. For the past few years, healthcare organizations throughout the world have been adopting health information systems (HIS) based on the wireless network infrastructure. As a part of the wireless network, a mobile agent has been employed at a large scale in hospitals due to its outstanding mobility. Several vulnerabilities and security requirements related to mobile devices should be considered in implementing mobile services in the hospital environment. Secure authentication and protocols with a mobile agent for applying ubiquitous sensor networks in a healthcare system environment is proposed and analyzed in this paper.

• The Journal of the Korea Contents Association
• /
• v.4 no.1
• /
• pp.67-75
• /
• 2004

In this paper, we design an authentication model based mobile PKI (Public Key Infrastructure). The authentication mood consists of Root-CA Home-network agent and Foreign-network agent. CA will going to gave the delegation ticket to Home-Agent or Foreign-Agent when they request. The authentication mode information security is various characteristic more then high speed, mobile network and low cost more then previous structure of assure information security.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2002.11a
• /
• pp.893-898
• /
• 2002

Integration with CORBA and mobile agent is improving various kinds problems that are happening in distributed system. This technology is guarantee the interoperability to other agent platforms and extend the mobile agent system but appears various kinds problems of suity. In this paper, we propose the mobile agent security system that is based on CORBA security service specification and MASIF. Since Proposed system is based on CORBA and MASIF, it is extend the large scale of distributed system and interoperable with other agent platforms.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2002.04a
• /
• pp.553-556
• /
• 2002

인터넷과 World Wide Web의 폭발적인 성장은 네트워크에 많은 정보와 리소스를 제공하고 있다. 그렇지만, 대부분의 사용자들에게 있어서 인터넷 리소스의 사용은 Bandwidth에 의하여 많은 제한을 받고 있다. 그러나 애플릿 방식을 통해서 HTML이 가지고 있는 정적인 면과 CGI의 bandwidth에 따르는 성능 저하 문제를 해결할 수 있다. Mobile Agent는 사용자의 특정 목적을 성취하기 위해서 사용자의 컴퓨터에서 출발하여 네트워크를 이동하면서 작업을 수행한다. 이렇게 수행할 수 있는 코드가 네트워크를 통하여 전송되고, 네트워크에서 수행되기 때문에, 자연스럽게 mobile code의 보안에 중요한 문제가 발생한다. 본 연구에서는 이러한 Mobile Agent를 사용하는 분산 웹 환경에서, Mobile Agent를 호스트와 Agent를 보호할 수 있는 방안을 모색보고, Mobile Agent 의 개념과 Mobile Agent를 구성하면서 생기는 문제를 기술하고, 이러한 문제를 해결하기 위해서 연구중인 방법을 제시하고, 제시된 방법 중에서 현실적으로 적용 가능한 방법을 사용하여 이동 에이전트의 보안 시스템을 설계해 보도록 한다.

• Proceedings of the Korea Multimedia Society Conference
• /
• 2003.05b
• /
• pp.259-262
• /
• 2003

인터넷과 World Wide Web의 폭발적인 성장은 네트워크에 많은 정보와 리소스를 제공하고 있다 그렇지만, 대부분의 사용자들에게 있어서 인터넷 리소스의 사용은 Bandwidth에 의하여 많은 제한을 받고 있다. 그러나 애플릿 방식을 통해서 HTML이 가지고 있는 정적인 면과 CGI의 bandwidth에 따르는 성능 저하 문제를 해결할 수 있다. Mobile Agent는 사용자의 특정 목적을 성취하기 위해서 사용자의 컴퓨터에서 출발하여 네트워크를 이용하면서 작업을 수행한다. 이렇게 수행할 수 있는 코드가 네트워크를 통하여 전송되고, 네트워크에서 수행되기 때문에, 자연스럽게 mobile code의 보안에 중요한 문제가 발생한다. 본 연구에서는 이러한 Mobile Agent를 사용하는 분산 웹 환경에서, Mobile Agent를 호스트와 Agent를 보호할 수 있는 방안을 모색보고, Mobile Agent 의 개념과 Mobile Agent를 구성하면서 생기는 문제를 기술하고, 이러한 문제를 해결하기 위해서 연구중인 방법을 제시하고, 제시된 방법 중에서 현실적으로 적응 가능한 방법을 사용하여 이동 에이전트의 보안 시스템을 설계해 보도록 한다.

• The KIPS Transactions:PartC
• /
• v.11C no.2
• /
• pp.171-176
• /
• 2004

This paper presents the design of a certain highly efficient security policy negotiation of SPS(Security Policy System) for secure network management using mobile agent system. The conventional IP security systems for secure network management have some problems. A drawback to these systems is that the required policy between each security area is different. Another problem is not possible to guarantee whether a packet is transmitted through the same path by both directions and is protected by the same policy due to the topology of the network. Unlike conventional systems, the model developed herein can be resolved by using a mobile agent technology. If each domain needs a negotiation of security policy, a mobile agent manages the result of the negotiation in the form of a passport and guarantees the authentication and reliability each other by using the passport.

• Journal of Information Processing Systems
• /
• v.3 no.2
• /
• pp.43-53
• /
• 2007

The use of agent paradigm in today's applications is hampered by the security concerns of agents and hosts alike. The agents require the presence of a secure and trusted execution environment; while hosts aim at preventing the execution of potentially malicious code. In general, hosts support the migration of agents through the provision of an agent server and managing the activities of arriving agents on the host. Numerous studies have been conducted to address the security concerns present in the mobile agent paradigm with a strong focus on the theoretical aspect of the problem. Various proposals in Intrusion Detection Systems aim at securing hosts in traditional client-server execution environments. The use of such proposals to address the security of agent hosts is not desirable since migrating agents typically execute on hosts as a separate thread of the agent server process. Agent servers are open to the execution of virtually any migrating agent; thus the intent or tasks of such agents cannot be known a priori. It is also conceivable that migrating agents may wish to hide their intentions from agent servers. In light of these observations, this work attempts to bridge the gap from theory to practice by analyzing the security mechanisms available in Aglet. We lay the foundation for implementation of application specific protocols dotted with access control, secured communication and ability to detect tampering of agent data. As agents exists in a distributed environment, our proposal also introduces a novel security framework to address the security concerns of hosts through collaboration and pattern matching even in the presence of differing views of the system. The introduced framework has been implemented on the Aglet platform and evaluated in terms of accuracy, false positive, and false negative rates along with its performance strain on the system.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.28 no.7C
• /
• pp.743-750
• /
• 2003

With the expansion of computer technology the mobility of a mobile agent code having the flexibility in the dispersive computer situation is used to set up the applications distributed on the Internet. As it also has the ability to transmit the mobile code of a mobile agent and to receive it from a far-off host, the executive circumstances of the host system in which an agent is executed have to access to an agent code and the executive state capable of executing an agent code. Therefore, it is difficult to prevent the forgery, the alteration and the wrong execution of an agent from a malicious host. This dissertation suggests the mechanism which can protect an agent from the malicious action through the executive pursuit of a code-named mobile agent. The security of this mechanism is verified through the protective process of a mobile agent in this mechanism.

• Proceedings of the Korea Contents Association Conference
• /
• 2003.11a
• /
• pp.132-139
• /
• 2003

In this paper, we design and implement the public key certification the structure of assure information security which play an important role in PKI (Public Key Infrastructure). The structure of assure information security consists of Root-CA, Home-network and Foreign-network. CA will going to gave the mandate to Home-Agent or Foreign-Agent when they request. The structure of assure information security is various characteristic : more then high speed, mobile network, and low cost more then previous structure of assure information security.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.11 no.2
• /
• pp.27-35
• /
• 2001

Based on the development of mobile communication, the future mobile communication systems are expected to provide higher quality of multimedia services for users than today\`s systems. Therefore, many technical factors are needed in this systems. Especially the secrecy and the safety would be obtained through the introduction of the security for mobile communication. In this paper, we presents a digital nominative proxy signature scheme that processes a user\`s digital signature and encryption using the proxy-agent who has more computational power than origins in mobile communication. The proposed scheme provides non-repudiation and prevents creating illegal signature by the origin and proxy-agent in a phase of proxy signature processing. Also this scheme satisfies the confidentiality and safety in the mobile communication through a confirming signature by the right receiver.