• International Journal of Computer Science & Network Security
• /
• v.21 no.7
• /
• pp.119-124
• /
• 2021

Today, both sides of modern culture are decisively invaded by digitalization. Authentication is considered to be one of the main components in keeping this process secure. Cyber criminals are working hard in penetrating through the existing network channels to encounter malicious attacks. When it comes to enterprises, the company's information is a major asset. Question here arises is how to protect the vital information. This takes into account various aspects of a society often termed as hyper connected society including online communication, purchases, regulation of access rights and many more. In this research paper, we will discuss about the concepts of MFA and KBA, i.e., Multi-Factor Authentication and Knowledge Based Authentication. The purpose of MFA and KBA its utilization for human.to.everything..interactions, offering easy to be used and secured validation mechanism while having access to the service. In the research, we will also explore the existing yet evolving factor providers (sensors) used for authenticating a user. This is an important tool to protect data from malicious insiders and outsiders. Access Management main goal is to provide authorized users the right to use a service also preventing access to illegal users. Multiple techniques can be implemented to ensure access management. In this paper, we will discuss various techniques to ensure access management suitable for enterprises, primarily focusing/restricting our discussion to multifactor authentication. We will also highlight the role of knowledge-based authentication in multi factor authentication and how it can make enterprises data more secure from Cyber Attack. Lastly, we will also discuss about the future of MFA and KBA.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.15 no.1
• /
• pp.61-66
• /
• 2019

FinTech has expanded to the extent that not only businesses but almost everyone can feel the impact. The spread of the scope of use has introduced a variety of new financial services that are changing the way we live. In these environments, it is important to develop reliable security measures to protect against cyber attacks. The number of mobile financial transactions in the financial sector is also increasing, making security vulnerable. In this study, we studied security through mutual authentication method that can safely handle financial security and focused on FinTech's security processing through multi-party mutual authentication method that strongly prevents leakage of information even in the event of continuous and sophisticated attacks.

• The KIPS Transactions:PartC
• /
• v.17C no.1
• /
• pp.37-46
• /
• 2010

In an IPTV system, the rights of the content and service provider can be protected by using Conditional Access System (CAS) and Digital Right Management (DRM). In case of the CAS, only the authorized user who has structured authentication keys can decrypt the encrypted content. However, since the CAS establishes a secure channel only between content provider and Smart Card (SC), it cannot protect the system against McCormac Hack attack which eavesdrops on unsecure channel between SC and Set-Top Box (STB) and SC cloning attack. In this paper, we propose a robust multi-STB assisted SC / STB authentication protocol which can protect the IPTV system against not only McCormac Hack attack, but also SC cloning attack. The previous works which bind a STB and a SC during the SC registration phase against the SC cloning attack does not support multi-STB environments. The proposed system which dynamically updates the STB information in subscriber management system using the bi-directional channel characteristic of IPTV system can support the user's multi-STB device effectively.

• Proceedings of the Korean Institute Of Construction Engineering and Management
• /
• autumn
• /
• pp.598-601
• /
• 2003

As the scale of construction work is enlarged, complicated and diversified, construction information from the large number of construction sites is happened and reported to the head office. To control much information generated in construction sites simultaneously, the necessity of supporting system which can extract necessary information is increased. However, compare with large companies, medium-sized companies's organization of head office and management system is weak, so it's difficult to manage multi-projects. Among these site managements, resource management is an important management area. But, resource planning is based on experience and judgement and have not associated with schedule information. So when schedule if changed, the plan must be amended manually. This study investigates material-planning model for multi-project management which is connected with daily report system and scheduling software.

• Journal of Information Technology Applications and Management
• /
• v.11 no.2
• /
• pp.179-190
• /
• 2004

This paper describes the design of hacking prevention systems using a smart card. It consists of two parts, i.e., PC authentication and Keyboard-buffer hacking prevention. PC authentication function is a procedure to handle the access control to the target PC. The card's serial number is used for PIN(Personal Identification Number) and is converted into hash-code by SHA-1 hash-function to verify the valid users. The Keyboard-buffer hacking prevention function converts the scan codes into the encoded forms using RSA algorithm on the Java Card, and puts them into the keyboard-buffer to protect from illegal hacking. The encoded information in the buffer is again decoded by the RSA algorithm and displayed on the screen. in this paper, we use RSA_PKCS#1 algorithm for encoding and decoding. The reason using RSA technique instead of DES or Triple-DES is for the expansion to multi-functions in the future on PKI. Moreover, in the ubiquitous computing environment, this smart card security system can be used to protect the private information from the illegal attack in any computing device anywhere. Therefore, our security system can protect PC user's information more efficiently and guarantee a legal PC access authority against any illegal attack in a very convenient way.

• The Transactions of the Korea Information Processing Society
• /
• v.7 no.11
• /
• pp.3438-3444
• /
• 2000

In this paper, we propose an efficient passwork management scheme using the Pseudopia function which performs a mukti-password management and change scheme in the cyberspace. For a givne user and a web-site, the Pseudopia automatically generates a user name and a password that can be used to establish an anonvous account at the web-site. In the proposed scheme, a user can protect his password using " the personal etropy" which relates to his own life experiences, that identified only by himself. The proposed scheme can be applied to the broad tools for the internet related applications such as electronic commerce and Internet banking system.

• The Journal of the Korea Contents Association
• /
• v.13 no.11
• /
• pp.533-540
• /
• 2013

Currently, as the Android platform only supports single-user protection, it needs security solution for multi-users. Specially, it has to protect specific applications which have personal and financial information, and be available to support authority management for contents access. Thus, this paper proposes an integrated user authority manger model for the Android platform. It helps application authority which is capable to divide into three statuses: installation, execution, deletion with the help of information technology.

• Environmental Engineering Research
• /
• v.18 no.2
• /
• pp.57-63
• /
• 2013

Arid areas have a significant problem with water supply due to climate change and high water demand. More than 3,000 years ago, Persians started constructing elaborate tunnel systems called Qanat for extracting groundwater for agriculture and domestic usages in arid and semi-arid areas and dry deserts. In this paper, it has been demonstrated that ancient methods of water management, such as the Qanat system, could provide a good example of human wisdom to battle with water scarcity in a sustainable manner. The purpose of this paper is twofold: Review of old wisdom of Qanat-to review the history of this ancient wisdom from the beginning until now and study the Qanat condition at the present time and to explore why (notwithstanding that there are significant advantages to the Qanat system), it will no longer be used; and suggestions for future water management-to suggest a number of new methods based on new materials and technology to refine and protect Qanats. With these new suggestions it could be possible to refine and reclaim this method of extracting water in arid areas. Also, a new multi-purpose water management model has been introduced based on rainwater infiltration management over the Qanat system as the model can be applied either in dry or wet cities to solve current urban water problems.

• Journal of Digital Convergence
• /
• v.10 no.6
• /
• pp.225-230
• /
• 2012

When a car accident happened, the accident vehicle should broadcast a safe message to its neighbors in multi-hop. However, the pure flooding is difficult to protect a chain-reaction collision because of the frequent collision and the communication delay. To solve this problem, we proposes a back-off algorithm applied to the estimation of the neighbor node count using the t-distribution. And we proposes a MAC protocol preventing the communication delay by separating the neighbor's count collection channel and data channel. As a result, we show the frame reception success rate of our protocol improved more 10% than the previous protocol.

• Journal of Convergence for Information Technology
• /
• v.9 no.7
• /
• pp.1-7
• /
• 2019

With the recent commercialization of the next generation of wireless 5G in everyday life, many changes have been made to organizations, industries and businesses of various sizes in various fields. However, although the improved speed and latency of 5G has improved, improvements in encryption, authentication and privacy are still required. In this paper, multiple groups of information management techniques are proposed to efficiently protect users' privacy in the heterogeneous environment of 5G. The proposed technique aims to allow distributed management of users' privacy links by clouding the privacy information generated by different heterogeneous devices to efficiently interface with different groups. Suggestion techniques process user-specific privacy information independently in a virtual space so that users can periodically synchronize their privacy information.