• Proceedings of the Korean Information Science Society Conference
• /
• 2002.04a
• /
• pp.811-813
• /
• 2002

WAP은 WAP Forum에서 제정한 무선 환경에서의 데이터 통신을 위한 표준 프로토콜이다. WAP에서는 보안 통신을 위한 프로토콜로서 WTLS(Wireless Transport Layer Security)를 제안하고 있다. 이것은 TCP/IP 상의 TLS(Transport Layer Security)를 바탕으로 무선 환경에 맞게 최적화한 것이다. 그러나, WAP은 기본적으로 게이트웨이 모델에 따른 프로토콜이라는 점과 무선 구간에서의 전송 효율을 높이기 위한 인코딩 기능 때문에 게이트웨이에서 클라이언트와 서버 사이에 교환되는 정보가 노출되는 이른바 종단간의 보안 (End-to-End Security)문제가 존재한다. 이러한 이유로 유선에서와는 달리 안전한 종단간 보안을 제공하지 못하고 있다. 이에 본 논문에서는 기존 TLS와 WTLS를 합친 새로운 TLS(Transport Layer Security)-Plus 프로토콜을 제안하여 무선 환경에서 무선 단말기에 부담을 주지 않는 안전한 종단간 보안을 제공하려고 한다.

• THE INTERNATIONAL COMMERCE & LAW REVIEW
• /
• v.68
• /
• pp.23-42
• /
• 2015

According to the increasing attention to safety and security in maritime shipping, there are diverse security systems in international logistics activities. Although prior studies on maritime transport and port security reviewed security policy and practices in order to provide useful insights for strategic agenda, a few focused on attitude to respond it. Moreover, there are no prior study on a comparative study between continents. To tackle this, this paper compared confrontation attitude to maritime transport and port security between South Korea and European Union. Results identified that maritime shipping security incorporates container cargo security management, logistics security management, logistics security certificate system, and environmental impacts management caused by maritime shipping. Further, the comparison between two countries suggests that South Korea need to take more positive attitude to respond, such as investment in equipment and technologies for maritime shipping security, construction of comprehensive management system, political supports for logistics security, and training and education for safety and security. The results provide useful insights for strategic review of security systems in South Korea, and to help strategic agenda for future improvement.

• Journal of the Korea Society of Computer and Information
• /
• v.22 no.10
• /
• pp.93-100
• /
• 2017

Current internet has evolved from the sharing and efficiency aspects of information, it is still vulnerable to the fact that the Internet is not secure in terms of security and is not safe to secure of security mechanism. Repeating patches on continuous hacking are continuously demanding additional resources for network or system equipment, and consequently the costs continue to increase. Businesses and individuals alike are speeding up the damage caused by crime like of ransomware, not jusy simple attacks, and businesses and individuals need to respond to cyber security. In addition, the ongoing introduce of security device, and separate of networks for secure transmission of contents in the existing TCP/IP system, but it is still lacking in security. To complement the security implications of this existing TCP/IP Internet Protocol, we intend to propose a Secure Contents Transport System (SCTS) on the network using the CCN concept.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.5 no.1
• /
• pp.65-84
• /
• 1995

The information security is needed to guarantee the safety and the confidence to users in open system. This paper analyzes transport layer security protocol and security association protocol, which are standards proposed by ISO/IEC, to provide a security service in the transport layer and particulars, not in the standard, are defined for development. And this paper suggests a development model and develps security system based upon the suggested model. The ONP of USL is used as the development environment.

• Journal of KIISE
• /
• v.45 no.1
• /
• pp.76-85
• /
• 2018

Governments and public agencies try to use the cloud to carry out their work and provide public services. However, a public cloud is vulnerable to security side because it has a structure to support services using public networks (i.e, the internet). Thus, this paper finds the general security vulnerabilities of a network and compares and analyzes the characteristics of transport protocols (UDP, TCP, SCTP, and MPTCP) on the basis of their security vulnerabilities. This paper uses a reliability and security factor for the comparative analysis, evaluates the security exposure, and chooses a suitable protocol considering the security of the transport protocols in the cloud circumstance.

• International Journal of Computer Science & Network Security
• /
• v.21 no.3
• /
• pp.198-205
• /
• 2021

For twenty years, in the EU there has been a trend of a lack of maritime infrastructure and a redundance of the road one, which has a negative impact on the economy. The intermodal transport market structure in the EU has not changed over the past ten years. The stability of transport systems due to the lack of changes in the transport market remains under threat, affecting supply chains and networks through the optimization of warehousing and transportation costs. The research methodology is based on a quantitative assessment of cause-and-effect relations between economic growth and transport and logistics in the EU. A statistical analysis of security indicators, intermodal and modal transport, international trade in goods within the EU and in the world trade in goods, the dynamics of GDP of the EU countries, the level of openness of the EU economy, investment and maintenance costs of different modes of transport and infrastructure has been carried out. The results show that in 2000- 2010 there were positive changes in the transport and logistics infrastructure of the EU, which had a positive effect on trade, openness of the economy of the EU, GDP growth. However, at that time, negative effects of environmental impact and the load on road and rail transport were accumulating. Investment in different modes of transport is limited, and technical maintenance and infrastructure maintenance costs form a significant part of GDP of the EU. A slowdown in economic growth leads to budget constraints and infrastructure financing gap. As a result, the freight and passenger intermodal and modal transport market structure remains virtually unchanged. The load on rail and road transport remains stable, despite the reduced level of transport hazards. Transport productivity has declined over the past ten years. Herewith, the intensification of trade and the openness of the EU economies require constant modernization and innovative renewal. The EU policy in this direction remains normative, uncontrolled, which is reflected in investment differences within the EU and maintenance costs.

• Journal of KIISE:Information Networking
• /
• v.30 no.3
• /
• pp.377-386
• /
• 2003

In this paper, we present an application layer protocol to support secure wireless Internet services, called Application Layer Security(ALS). The drawbacks of the two traditional approaches to secure wireless applications motivated the development of ALS. One is that in the conventional application-specific security protocol such as Secure HyperText Transfer Protocol(S-HTTP), security mechanism is included in the application itself. This gives a disadvantage that the security services are available only to that particular application. The other is that a separate protocol layer is inserted between the application and transport layers, as in the Secure Sockets Layer(SSL)/Transport Layer Security(TLS). In this case, all channel data are encrypted regardless of the specific application's requirements, resulting in much waste of network resources. To overcome these problems, ALS is proposed to be implemented on top of HTTP so that it is independent of the various transport layer protocols, and provides a common security interface with security applications so that it greatly improves the portability of security applications. In addition, since ALS takes advantages of well-known TLS mechanism, it eliminates the danger of malicious attack and provides applications with various security services such as authentication, confidentiality integrity and digital signature, and partial encryption. We conclude this paper with an example of applying ALS to the solution of end-to-end security in a present commercial wireless protocol stack, Wireless Application Protocol.

• IEMEK Journal of Embedded Systems and Applications
• /
• v.16 no.3
• /
• pp.99-105
• /
• 2021

The cloud computing evolution has brought us increasing necessity to manage virtual resources. For this reason, Kubernetes has developed to realize autonomous resource management in a large scale. It provides cloud computing infrastructure to handle cluster creations and deletions in a secure virtual computing environment. In the paper, we provide a monitoring scheme in which users can observe securely encrypted protocols while each Kubernetes component exchanges their packets. Eventually, users can utilize the proposed scheme for debugging as well as monitoring.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.23 no.3
• /
• pp.531-543
• /
• 2013

The destruction and prejudice of major infrastructure such as energy, broadcast, communication and transportation could result in a threat to individual rights and liberties, as well as social and economic losses. If a traffic signal control facilities have been violated, the lives of the citizens discomfort as well as causing social disruption such as traffic accident. Because the control system is operating as a closed network and you think it is safe, the information protection system has not been built or security patches and anti-virus updates do not work properly. So, cyber attacks by security vulnerabilities are exposed. Therefore, there is a need to identify the characteristics of the system, and develop appropriate countermeasures in order to prevent cyber attacks and prejudices incidents. This paper examines the vulnerabilities of Intelligent Transport Systems and proposes the improvement of security vulnerabilities.

• International Journal of Computer Science & Network Security
• /
• v.24 no.3
• /
• pp.189-195
• /
• 2024

Road transport occupies the largest share in domestic and international transport. It is of key importance for the development of the economy, forasmuch as it provides the livelihood of the population, the development of the national economy, the possibility of establishing foreign economic relations. The purpose of the research is as follows: analysis of the current state of functioning of the road transport sector in Eastern Europe and identification of key problems and trends in its development. Research methods: Methods of grouping, comparison and generalization, correlation analisys have been used to identify the dynamics of the main indicators of road transport in Eastern Europe. The method of correlation-regression analysis has been applied to determine the impact of increasing the length of roads on the turnover of the road freight transport and the number of employed population in this area. Results. It has been found that the increase in the employed population by 96% and increase in revenues from transportation and storage of goods, postal and courier services (turnover of the road freight transport - in the original language) in the field of road transport by 82% is explained by the change in transport infrastructure capacity by increasing length of highways. According to the correlation analysis, it has been revealed that there is a high direct dependence between the length of roads and increased revenues from transportation and storage of goods in the field of road transport, as well as between the length of roads and increasing employment in this area.