• Title/Summary/Keyword: Security design

Search Result 3,411, Processing Time 0.03 seconds

Design of high-speed RSA processor based on radix-4 Montgomery multiplier (래딕스-4 몽고메리 곱셈기 기반의 고속 RSA 연산기 설계)

  • Koo, Bon-Seok;Ryu, Gwon-Ho;Chang, Tae-Joo;Lee, Sang-Jin
    • Journal of the Korea Institute of Information Security & Cryptology
    • /
    • v.17 no.6
    • /
    • pp.29-39
    • /
    • 2007
  • RSA is one of the most popular public-key crypto-system in various applications. This paper addresses a high-speed RSA crypto-processor with modified radix-4 modular multiplication algorithm and Chinese Remainder Theorem(CRT) using Carry Save Adder(CSA). Our design takes 0.84M clock cycles for a 1024-bit modular exponentiation and 0.25M cycles for a 512-bit exponentiations. With 0.18um standard cell library, the processor achieves 365Kbps for a 1024-bit exponentiation and 1,233Kbps for two 512-bit exponentiations at a 300MHz clock rate.

Design of MD5 Hash Processor with Hardware Sharing and Carry Save Addition Scheme (하드웨어 공유와 캐리 보존 덧셈을 이용한 MDS 해쉬 프로세서의 설계)

  • 최병윤;박영수
    • Journal of the Korea Institute of Information Security & Cryptology
    • /
    • v.13 no.4
    • /
    • pp.139-149
    • /
    • 2003
  • In this paper a hardware design of area-efficient hash processor which implements MD5 algorithm using hardware sharing and carry-save addition schemes is described. To reduce area, the processor adopts hardware sharing scheme in which 1 step operation is divided into 2 substeps and then each substep is executed using the same hardware. Also to increase clock frequency, three serial additions of substep operation are transformed into two carry-save additions and one carry propagation addition. The MD5 hash processor is designed using 0.25 $\mu\textrm{m}$CMOS technology and consists of about 13,000 gates. From timing simulation results, the designed MD5 hash processor has 465 Mbps hash rates for 512-bit input message data under 120 MHz operating frequency.

Efforts against Cybersecurity Attack of Space Systems

  • Jin-Keun Hong
    • Journal of Positioning, Navigation, and Timing
    • /
    • v.12 no.4
    • /
    • pp.437-445
    • /
    • 2023
  • A space system refers to a network of sensors, ground systems, and space-craft operating in space. The security of space systems relies on information systems and networks that support the design, launch, and operation of space missions. Characteristics of space operations, including command and control (C2) between space-craft (including satellites) and ground communication, also depend on wireless frequency and communication channels. Attackers can potentially engage in malicious activities such as destruction, disruption, and degradation of systems, networks, communication channels, and space operations. These malicious cyber activities include sensor spoofing, system damage, denial of service attacks, jamming of unauthorized commands, and injection of malicious code. Such activities ultimately lead to a decrease in the lifespan and functionality of space systems, and may result in damage to space-craft and, lead to loss of control. The Cybersecurity Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) matrix, proposed by Massachusetts Institute of Technology Research and Engineering (MITRE), consists of the following stages: Reconnaissance, Resource Development, Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access, Discovery, Lateral Movement, Collection, Command & Control, Exfiltration, and Impact. This paper identifies cybersecurity activities in space systems and satellite navigation systems through the National Institute of Standards and Technology (NIST)'s standard documents, former U.S. President Trump's executive orders, and presents risk management activities. This paper also explores cybersecurity's tactics attack techniques within the context of space systems (space-craft) by referencing the Sparta ATT&CK Matrix. In this paper, security threats in space systems analyzed, focusing on the cybersecurity attack tactics, techniques, and countermeasures of space-craft presented by Space Attack Research and Tactic Analysis (SPARTA). Through this study, cybersecurity attack tactics, techniques, and countermeasures existing in space-craft are identified, and an understanding of the direction of application in the design and implementation of safe small satellites is provided.

A Design and Implementation of Access Control Mechanism based on the Integrated Information Model (통합 전보 모델을 이용한 접근제어 메커니즘 설계 및 구현)

  • Kang, Chang-Goo;Park, Jin-Ho;Choi, Yong-Rak
    • The Transactions of the Korea Information Processing Society
    • /
    • v.4 no.9
    • /
    • pp.2354-2365
    • /
    • 1997
  • This paper presents a design of an access control mechanism that can resolves the complicated problems of access control requirements in modern information communication applications. In this paper, we proposed an integrated information model which can satisfy the combined goals of confidentiality, integrity and availability of any resource. We defined an integrated information model from the view points of identity-based, rule-based and role-based policy and implemented six access control operations. The proposed integrated information model can protect to unauthorized access to any resource based on the multilevel security policies of security label, integrity level, role and ownership.

  • PDF

Design and Implementation of Traceback Simulator for Distributed Reflector DoS Attack on Computer Network (네트워크 분산반사 서비스 거부 공격(DRDoS)에 대한 역추적 시뮬레이터 설계 및 구현)

  • Lee, Hyung-Woo
    • The Journal of Korean Association of Computer Education
    • /
    • v.8 no.1
    • /
    • pp.65-72
    • /
    • 2005
  • In this study, we suggest a new mechanism on the design and implementation of IP Traceback system against DDos/DRDoS by Zombie and Reflector attack based on spoofed IP packets. After analysis and comparing on the state-of-arts of several IP traceback mechanisms, we can find their own pros and cons primitives. And then we performed simulations on reflector based DRDoS network packets. In first, we suggest a NS-2 based IP traceback module and implement it for finding its real DRDoS attacker. As a results, we can find advanced new IP traceback scheme for providing enhanced proactive functionality against DRDoS attack.

  • PDF

An Efficient Hardware Implementation of AES-based CCM Protocol for IEEE 802.11i Wireless LAN Security (IEEE 802.11i 보안용 AES 기반 CCM 프로토콜의 효율적인 하드웨어로 구현)

  • Hwang, Seok-Ki;Lee, Jin-Woo;Kim, Chay-Hyeun;Song, You-Su;Shin, Kyung-Wook
    • Proceedings of the IEEK Conference
    • /
    • 2005.11a
    • /
    • pp.591-594
    • /
    • 2005
  • This paper describes a design of AES-based CCM Protocol for IEEE 802.11i Wireless LAN Security. The CCMP core is designed with 128-bit data path and iterative structyre which uses 1 clock cycle per round operation. To maximize its performance, two AES cores are used, one is for counter mode for data confidentiality and the other is for CBC(Cipher Block Chaining) mode for authentication and data integrity. The S-box that requires the largest hardware in AES core is implemented using composite field arithmetic, and the gate count is reduced by about 23% compared with conventional LUT-based design. The CCMP core designed in Verilog-HDL has 35,013 gates, and the estimated throughput is about 768Mbps at 66-MHz clock frequency.

  • PDF

Execution Technology for Collaborative Business Process among Manufacturing Enterprises (제조기업 간 협업프로세스 실행 기술)

  • Kim, Hyun-Woo;Kim, Bo-Hyun;Baek, Jae-Yong;Jung, So-Young;Choi, Hon-Zong
    • Korean Journal of Computational Design and Engineering
    • /
    • v.15 no.3
    • /
    • pp.204-211
    • /
    • 2010
  • Recently, business process management has become an important concept to define and execute business process. During the execution of the collaborative business processes defined by the consensus with manufacturing enterprises, a lot of variations can be occurred by various internal and external factors related to business. From this reason, manufacturing enterprises have tried to seek for a technology to define and execute the collaborative business process systematically under the dynamic situations approving process variation. This study defines the collaborative business process among manufacturing enterprises at first and proposes its execution technology under the dynamic situations. Here, the proposed execution technology includes the authority management of each process, sub-process, and activity for security, the forced execution of the incomplete process containing the undefined sub-process, the re-execution in a certain range of business process for correcting errors, and the dynamic selection of sub-process. Furthermore, this study implements a prototype system to check the validity of its application under the dynamic situations.

Design of Efficient Hacking Prevention Systems Using a Smart Card (스마트카드 기반의 효율적인 해킹 방지 시스템 설계)

  • 황선태;박종선
    • Journal of Information Technology Applications and Management
    • /
    • v.11 no.2
    • /
    • pp.179-190
    • /
    • 2004
  • This paper describes the design of hacking prevention systems using a smart card. It consists of two parts, i.e., PC authentication and Keyboard-buffer hacking prevention. PC authentication function is a procedure to handle the access control to the target PC. The card's serial number is used for PIN(Personal Identification Number) and is converted into hash-code by SHA-1 hash-function to verify the valid users. The Keyboard-buffer hacking prevention function converts the scan codes into the encoded forms using RSA algorithm on the Java Card, and puts them into the keyboard-buffer to protect from illegal hacking. The encoded information in the buffer is again decoded by the RSA algorithm and displayed on the screen. in this paper, we use RSA_PKCS#1 algorithm for encoding and decoding. The reason using RSA technique instead of DES or Triple-DES is for the expansion to multi-functions in the future on PKI. Moreover, in the ubiquitous computing environment, this smart card security system can be used to protect the private information from the illegal attack in any computing device anywhere. Therefore, our security system can protect PC user's information more efficiently and guarantee a legal PC access authority against any illegal attack in a very convenient way.

  • PDF

Analysis on Ubiquitous Home Services in Domestic Future Housing - Comparison with Research Results on Demand of Ubiquitous Home Services - (국내 미래주택관에서 구현하는 유비쿼터스 홈 서비스 현황 분석 - 유비쿼터스 홈 서비스 요구도 관련 연구 결과와 비교를 중심으로 -)

  • Lee, Yong-Min;Kwon, Oh-Jung
    • Korean Institute of Interior Design Journal
    • /
    • v.19 no.2
    • /
    • pp.252-262
    • /
    • 2010
  • With the introduction of the ubiquitous technology, the housing culture centers have demonstrated future housing image or technology. But Ubiquitous Home Services in the future housing were more focused on implementation of environment for the future than exhibition that consumers can experience. The purpose of this study was to identify ubiquitous home services which were realized in domestic future housing and to compare those with results of previous researches on demand for u-services. For this study, field study was conducted with 3 domestic future housings and 14 previous studies on demand of u-services were analyzed by the standard of residents demand. The results of the study showed that u-services for housework and leisure life more than those for security and health, were applied in the future housing. However, residents prefered u-services for security and control of indoor environment to those for housework and leisure life. As a result, it was found thatu-services which residents needed mainly were discordant with those that were displayed frequently in future housing. Also developing u-services reflected the needs of residents, a test bed has to be established in the future housing and then pre-evaluaiton can be conducted.

A Study on the Active Plan of Internet Fashion Shopping-Mall (인터넷 패션 쇼핑몰의 활성화 방안에 관한 연구)

  • Jang, Dong-Rim;Kim, Yoon
    • The Research Journal of the Costume Culture
    • /
    • v.8 no.3
    • /
    • pp.360-373
    • /
    • 2000
  • The purpose of this thesis is to analyze the present conditions and problems of the Internet Fashion Shopping-Mall, grope for as active plan to the Internet Fashion Shopping-Mall as a strategic method of fashion industry. The fashion industry of Internet Electronic Commerce has good prospect, and I propose the following some strategic plans of Internet Fashion Shopping-Mall. On the basis of my study, as a means of technology supplement, Virtual Reality System, such as 3D System or the newest Electronic Dressing Room System to solve the problem of products'an actual feeling, should be needed for consumers to feel as they really put the clothes on. Second, to offer more diversity programs, such as consumer sensitivity program, additional service, fashion news, life information and so on, are needed for companies to come over again the consumers to connect to the shopping-mall site. And, to build more perfect security terms of payment systems, such as ICash, Disital Cash, Net Check, Internet Insurance and so on, should be introduced for consumers to pay and furnish their personal information. If these technological developments are realized, Internet Fashion Shopping-Mall products will be a great success.

  • PDF