• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.5 no.5
• /
• pp.447-453
• /
• 2004

In this paper, we propose a new system to block harmful Internet information based on IP spoofing. The proposed system is located on a organization's internal network and monitors all outgoing traffic and lets all this traffic go outside. Once the proposed system detects a host's access to a harmful site, it sends the host a pseudo RST packet that pretends to be the response from the harmful site, and prevents the connection between the host and the harmful site. The proposed software system is installed on only a server, and need not be installed on user hosts at all. Thus we can maintain and upgrade the blocking system easily. The performance evaluation of the proposed system shows that it effectively blocks the access to the harmful sites. Since the proposed system is based on IP spoofing, it can be used badly as a hacking tool. Finally we propose some methods to eliminate this possibility.

• Journal of Korea Multimedia Society
• /
• v.10 no.12
• /
• pp.1632-1644
• /
• 2007

Wireless Mesh Networks aim to attain large connectivity with minimum performance degradation, as network size is increase. As such, scalability is one of the main characteristics of Wireless Mesh Networks that differentiates it from other wireless networks. This characteristic creates the need for bandwidth efficiency strategies to ensure that network performance does not degrade as the size of the network increase. Several researches have been done to realize mesh networks. However, the researches conducted were mostly focused on a per TCP/IP layer basis. Also, the studies on bandwidth efficiency and bandwidth improvement are usually dealt with as separate issues. This paper aims to simultaneously study bandwidth efficiency and improvement. Aside from optimizing the bandwidth given a fixed capacity, the capacity is also increased using results of physical layer studies. In this paper, the capacity is improved by using the concept of non-overlapping channels for wireless communication. A channel allocation scheme is conceptualized to choose the transmission channel that would optimize the network performance parameters with consideration of chosen Quality of Service (QoS) parameters. Network utility maximization is used to optimize the bandwidth after channel selection. Furthermore, a routing scheme is proposed using the results of the network utilization method and the channel allocation scheme to find the optimal path that would maximize the network gain.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.17 no.2
• /
• pp.515-524
• /
• 2013

For the development of reliable software, Software testing is the most important. Recently small changes of the software according to the importance of regression testing is growing. To verify Application of a large number of nodes, Network simulator environment is required. This paper proposed interface module between network framework for sensor network application and co-simulator to unit test sensor network application. To conclude, developer can focus on sensor network application implementation only, so the improved integrated simulator contributes to increase development productivity.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.21 no.8
• /
• pp.18-25
• /
• 2020

With the development of water internet technology, data communication between objects is expanding. Research related to data communication technology between vehicles that incorporates related technologies into vehicles has been actively conducted. For data communication between mobile terminals, data stability, reliability, and real-time performance must be guaranteed. The 5 GHz Wi-Fi band, which is advantageous in bandwidth, communications speed, and wireless saturation of the wireless network, was selected as the data communications network between vehicles. This study analyzes how to design and implement a 5 GHz Wi-Fi network in a vehicle network. Considering the characteristics of the mobile communication terminal device, a continuous variable communications structure is proposed to enable high-speed data switching. We simplify the access point access procedure to reduce the latency between wireless terminals. By limiting the Transmission Control Protocol Internet Protocol (TCP/IP)-based Dynamic Host Configuration Protocol (DHCP) server function and implementing it in a broadcast transmission protocol method, communication delay between terminal devices is improved. Compared to the general commercial Wi-Fi communication method, the connection operation and response speed have been improved by five seconds or more. Utilizing this method can be applied to various types of event data communication between vehicles. It can also be extended to wireless data-based intelligent road networks and systems for autonomous driving.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.6 no.5
• /
• pp.673-681
• /
• 2011

Among the network information services combined with a number of security technologies and required security policies, Infrastructure as a Service, a hardware plat-form service of Cloud Computing, has been provided since 2011. It is more or less similar to the existing central concentration method services, in terms of the specifications and technical aspects for given hardware category, but it is entirely different from them in that it overcomes the spatial limitations of specific network and targets the public network. Information security technology has also been prospering so that it could ensure the stability of offered hardware plat-forms. As currently supported hardware, Internet Data Center has been provided by virtualizing the previously offered servers and discs (backup discs), but the hardware plat-forms offered are somewhat limited. Meanwhile, the areas of security fields for offered services are confined to the center or include the TCP/IP-based SSL (Secure Sockets Layer) for the public network connected with clients, which shows that microscopic access security policies have been used. Therefore, this study was aimed to provide a realistic security mechanism for realizing defense policy, by expanding service areas into security devices and suggesting Diskless and Stateless security policy based high-speed synchronous network infrastructure.

• Journal of Institute of Control, Robotics and Systems
• /
• v.11 no.9
• /
• pp.816-821
• /
• 2005

The remote operation of $4\~5$ cranes for container loading/unloading at a port by one operator will dramatically improve loading/unloading efficiency through productivity increase, cost reduction, and so on. This study develops a remote crane control system for container loading/unloading yard cranes. First, a wireless video and audio system to transmit views and sounds of the working field is designed by using 3 web cameras and a microphone. Next, a RSVP-based multi-path reservation method is presented with a view to improving the quality of service in the communication network for remote control. Simulation results show that a RSVP-based multi-path reservation can enhance the reservation success rate in the TCP/IP network.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2006.05a
• /
• pp.1105-1108
• /
• 2006

IPv6의 도입으로 인해 상당기간 IPv4와 공존해야 한다. 따라서 IPv4와 IPv6간 변환 기술이 필요로 하게 되었으며 이에 여러 가지 변환 기술이 제안되어 두 프로토콜간 통신이 가능하게 되었다. 그 중 NAT-PT는 IPv6 기반의 네트워크와 IPv4 기반의 네트워크간에 직접 통신이 가능하도록 해주는 메커니즘이다. 그러나 IPsec 프로토콜의 인증 값 계산에는 TCP/UDP/ICMP 검사합 값을 포함해서 IP 주소가 사용되기 때문에 NAT-PT에는 IPsec 프로토콜을 적용할 수 없다는 보안상의 문제가 발생하였다. 따라서 본 논문에서는 NAT-PT와 IPsec의 특성을 살펴보고, NAT-PT의 보안상 문제점을 고찰하였으며 NAT-PT에 IPsec을 적용할 수 있는 방안을 제안하였다.

• Proceedings of the KIPE Conference
• /
• 2001.12a
• /
• pp.63-66
• /
• 2001

This paper aims at developing remote control system to control and monitor distributed various devices such as photovoltaic Inverter system through internet. TCP/IP (Transmission Control Protocol/Internet Protocol) and photovoltaic inverter system operated in a row are adopted for network management protocol and applied device, respectively. For controlling and monitoring distributed devices in real-time, java-environment software is constructed. Also, HelloDevice, general-use interface controller between network device and applied device is proposed. Finally, serial communication such as RS-232C is used between controller and applied device.

• Electronics and Telecommunications Trends
• /
• v.14 no.6 s.60
• /
• pp.51-63
• /
• 1999

IPSEC (Internet Protocol Security) is a network layer security protocol that is designed to support secure TCP/IP environment over the Internet considering flexibility, scalability, and interoperability. IPSEC primarily supports security among hosts rather than users unlike the other security protocols. Recently, IPSEC is emphasized as one of the important security infrastructures in the NGI (Next Generation Internet). It also has suitable features to implement VPN (Virtual Private Network) efficiently and its application areas are expected to grow rapidly. In this paper, the basic concepts and related standard documents of IPSEC will be introduced.

• Proceedings of the KIEE Conference
• /
• 2008.07a
• /
• pp.1706-1711
• /
• 2008

This paper proposes a new Web based-control concept & design method and implementation of LonWorks network system for a large scale renewable energy energy control and monitoring system in building. The Experimental LonWorks network system using LonWorks/Ethernet(Web) server is designed and fabricated. This article addresses issues in architecture of LonWorks/Ethernet sever, embedded processors architecture for converting LonTalks protocol to Modbus protocol and software, and Internet technologies. It is also verified that the multi-induction motor control and monitoring system using LonWorks/Ethernet server have available, interoperable, reliable performance characteristics from the experimental results, Especially, The seamless integration of TCP/IP networks with control networks allows access to any control point from anywhere. Thus, the results provide a available technical data for remote distributed control system of industrial and buildings field.