• Journal of the Korea Society of Computer and Information
• /
• v.6 no.2
• /
• pp.90-96
• /
• 2001

The development of network and the other communication-network can generate serious social problems. So. it is highly required to control security of network. These problems related security will be developed and keep up to confront with anti-security part such as hacking. cracking. In this paper. the proposed multiple nonlinear S-box function which is capable to cipher regardless of key distribution or key-length for these definite problem is proposed and designed in hardware. The proposed multiple nonlinear S-box function increase secret level from using a nonlinear function in multiply for key data utilized in cryptography that generates MDP and MLP in maximum is proposed to prevent cryptography analysis. The designed the multiple nonlinear S-box function in this paper performed synthesization and simulation using Synopsys Ver. 1999.10 and VHDL

• The Journal of Information Systems
• /
• v.26 no.1
• /
• pp.75-91
• /
• 2017

Purpose Fintech has been recently drawing extensive attention all over the world as the innovative trend that will change the future of the global financial industry. However, fintech has been mostly focusing on the payment service in the embryonic stage in Korea. This paper will investigate the approach to increase the intention to use for those who do not use fintech at present. Design/methodology/approach This paper empirically analyzes the impact of innovation of users and the perceived ease-of-use and security on the intention to use through the perceived usefulness and confidence. The 255 survey responses were used to verify research hypotheses through covariate structural equation model. Findings According to the analysis results, it was found that innovation had a significant impact on the perceived usefulness, but had no significant impact on confidence. The perceived usefulness had a significant impact on perceived usefulness and confidence. Moreover, the perceived usefulness and confidence had a significant impact on the intention to use. Meanwhile, it was identified that the security perceived by those who do not use fintech had a negative impact on perceived usefulness, confidence, and intention to use related to fintech. Accordingly, fintech service providers need to determine an approach to help customers to have a positive perception on the security of fintech.

• Convergence Security Journal
• /
• v.1 no.1
• /
• pp.57-68
• /
• 2001

Computer security is considered important because of the side effect generated from the expansion of computer network and rapid increase of the use of computer. Intrusion Detection System(IDS) has been an active research area to reduce the risk from intruders. In this paper, the Hybrid Intrusion Detection System(HIDS) based biometric immuntiy collects and filters audit data by misuse detection is innate immune, and anomaly detection is acquirement immune in multi-hosts. Since, collect and detect audit data from one the system in molt-hosts, it is design and implement of the intrusion detection system which has the immuntiy the detection intrusion in one host possibly can detect in multi-hosts and in the method of misuses detection subsequently.

• Convergence Security Journal
• /
• v.6 no.1
• /
• pp.13-23
• /
• 2006

It is more desirable to execute AV software on server systems rather than on clients for the minimization of damages due to malicious codes. AV software on server system, however, may aggravate the load of server system. In this paper, we propose a new AV software executed on server system without additional loads with a monitor and multi-agent model. The new AV software supports dynamic load balancing that reflects the features of AV engine, and thus it can be executed efficiently on server systems. The results of performance evaluation on the AV software attest to the strong points of the new AV software.

• Convergence Security Journal
• /
• v.10 no.2
• /
• pp.27-35
• /
• 2010

We implemented an application system which is able to verify visitor identification for remote bundle control based on OSGi and web camera control using embedded linux system. This system are designed open Oscar framework by porting java on the embedded linux system and implemented web camera system in local area networks. Also This system can verify information of visitor from receiving the data of RFID reader and designed the wireless internet system in home. Basically, in this paper we expect that home network system development and the period of application service development are reduced with integrated service provision based on OSGi.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.9 no.1
• /
• pp.181-187
• /
• 2005

This paper proposes and implements a service model to transfer messages safely for PDA on CDMA wireless network and a secure massage transfer protocol which considers characteristics of PDA. Proposed service uses SMS(Short Message Service) connect to a off-line client device with the wired network for data communication. After receiving SMS message, client device processes the SMS message and creates a data channel through RAS(Remote Access Service), then the data of the server can be pushed to clients. The implemented security protocol can provide safe data transmission on each communication line through two way channels(SMS and data). Also, by using security nonce table, this protocol can reduce a number of transmissions for exchanging a safe session key, so intensity of encryption can be increased.

• Journal of Korea Multimedia Society
• /
• v.19 no.12
• /
• pp.1981-1991
• /
• 2016

In recent, the advancement of wearable devices and wireless body area networking technologies motivate researchers to pay attention to remote healthcare system for monitoring patients health and disease progression effectively. However, in order to implement a practical remote healthcare system, we must consider the security and privacy of patient's personal health information transmitted to healthcare servers through the network. Hence, in this paper, we propose a secure health data transmission protocol in remote healthcare monitoring system to protect patient's health information and prevent privacy from eavesdropping on the network. To achieve our security goals, we design an efficient secure protocol based on the identity-based cryptography with key evolution technique, and then confirm the superiority and the efficiency of the proposed protocol as compared with the existing protocol of Yang et al.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2003.05a
• /
• pp.469-472
• /
• 2003

The computational cost of encryption is a barrier to wider application of a variety of data security protocols. Virtually all research on Elliptic Curve Cryptography(ECC) provides evidence to suggest that ECC can provide a family of encryption algorithms that implementation than do current widely used methods. This efficiency is obtained since ECC allows much shorter key lengths for equivalent levels of security. This paper suggests how improvements in execution of ECC algorithms can be obtained by changing the representation of the elements of the finite field of the ECC algorithm. Specifically, this research compares the time complexity of ECC computation eve. a variety of finite fields with elements expressed in the polynomial basis(PB) and normal basis(NB).

• Annual Conference of KIPS
• /
• 2017.04a
• /
• pp.266-269
• /
• 2017

최근, 기업 및 사용자들은 클라우드 서비스의 필요성에 대한 인식이 확산되고 있다. 반면에 클라우드 보안 기술에 대한 관심의 부재는 클라우드 서비스를 도입하는데 어려움으로 작용하고 있다. 클라우드 컴퓨팅 환경에서는 기존의 컴퓨터 네트워크 환경과 다르게 서버 가상화, 네트워크 가상화, 스토리지 가상화와 같은 부분들이 가상화되어 서비스 및 자원을 공유하여 활용한다. 따라서 가상화 기반 취약점이 발생할 수 있으며 기존 보안장비의 한계점으로 인한 새로운 보안위협이 발생하고 있다. 특히, 방대한 양의 데이터를 클라우드 컴퓨팅 중 하나인 클라우드 스토리지를 통해 저장을 하게 되고 이러한 데이터를 겨냥한 공격이 이루어질 경우, 데이터 손실 및 유출 등 심각한 위험이 발생할 수 있다. 본 논문에서는 클라우드 스토리지 환경에서 문제점들에 대한 대응을 위해 ISO/IEC에서 제시한 스토리지 보안위협과 ITU-T, ENISA, CSA에서 제시한 클라우드 컴퓨팅 보안위협을 이용하여 클라우드 스토리지 관련 보안위협 유형 분석을 수행하고 이에 대응하는 보안 아키텍처를 설계하며 이에 대한 안전성 분석을 수행한다.

• Journal of Information Processing Systems
• /
• v.6 no.2
• /
• pp.177-184
• /
• 2010

Secure routing is vital to the acceptance and use of Wireless Sensor Networks (WSN) for many applications. However, providing secure routing in WSNs is a challenging task due to the inherently constrained capabilities of sensor nodes. Although a wide variety of routing protocols have been proposed for WSNs, most do not take security into account as a main goal. Routing attacks can have devastating effects on WSNs and present a major challenge when designing robust security mechanisms for WSNs. In this paper, we examine some of the most common routing attacks in WSNs. In particular, we focus on the wormhole routing attack in some detail. A variety of countermeasures have been proposed in the literature for such attacks. However, most of these countermeasures suffer from flaws that essentially render them ineffective for use in large scale WSN deployments. Due to the inherent constraints found in WSNs, there is a need for lightweight and robust security mechanisms. The examination of the wormhole routing attack and some of the proposed countermeasures makes it evident that it is extremely difficult to retrofit existing protocols with defenses against routing attacks. It is suggested that one of the ways to approach this rich field of research problems in WSNs could be to carefully design new routing protocols in which attacks such as wormholes can be rendered meaningless.