• Journal of the Korea Society of Computer and Information
• /
• 제13권6호
• /
• pp.217-224
• /
• 2008

EThis paper is study regarding banking institution and DoS attack regarding government organization which occurred in 2008. We used a tool aggressive actual DoS You install the N-IDS which used Snort in networks in order to detect a DoS attack. Storages of Winpcap and a packet to detect a packet and MySQL, HSC, to analyze. We install NET Framework etc. E-Watch etc. analyzes Packet regarding a DoS attack of a hacker and TCP, UDP etc. information, Port, MAC and IP information etc. through packet analysis tools. There is a meaning you analyze data regarding the cyber DoS, DDoS attack that is dysfunction of Ubiquitous Information Society, and it generates forensics data regarding an invader and back-tracking analysis data, and to ensure safe Internet information system through this paper study.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• 제8권6호
• /
• pp.1096-1101
• /
• 2004

By a tremendous expansion of Internet users, there's a number effects that cause the phenomenon of bottlenecked switching packets from routers. In order to tear down this problem, distributed system is applicable to almost every highly performed router systems. The main processor of distributed system, which manages routing table, commands IPC to delivering the forwarding table line processor that eases functionalities of the router. This makes the system having wired-speed forwarding function based on the hardware so that the performance of the network can be enhanced. Therefore, IPC, which assign a part of router, is necessary to exchange data smoothly and the constitution of IPC using Ethernet is widely adapted as a method for saving investment. In this paper, R-IPC mechanism improve the packet-processing rate over 10% through changed from defect of conventional Ethernet IPC, that is, 2 layer processing to TCP/IP or UDP/ IP into 1 layer processing for efficient packet forwarding.

• Korean Journal of Remote Sensing
• /
• 제17권3호
• /
• pp.243-251
• /
• 2001

GPS is one of today's most widely used surveying techniques. But, users can't acquire an enough accuracy in applications of the navigation or geodesy by the GPS positioning technique because of the effects of the ionosphere and troposphere. The solution of these restrictions in the DGPS technique that is to eliminate the common errors and can achieve a high accuracy. Although of sufficient density for good DGPS, accuracy of positioning is just not dense enough to provide complete coverage for real-time positioning, because distances between base and rover is short. In this paper, we suggest Realtime Long-Distance Transmission Method of DGPS Error Correction Signal, which consist of TCP, UDP and IP, which allows a user to increase the distance at which the rover receiver is located from the base, due to radio modem.

• Proceedings of the Korean Information Science Society Conference
• /
• 한국정보과학회 2000년도 가을 학술발표논문집 Vol.27 No.2 (3)
• /
• pp.126-128
• /
• 2000

본 논문은 무선 랜 환경에서 Mobile IP를 기반으로 하는 이동 호스트가 핸드오프를 수행할 때 발생될 수 있는 패킷 손실 제거하고, 멀티미디어 데이터의 특성을 고려한 핸드오프 프로토콜을 제안한다. 제안된 핸드오프 프로토콜은 Mobile IP의 확장으로 무선 랜 기술을 이용하며, 현재 FA(Foreign Agent)가 아닌 이동 호스트가 방문할 FA에 패킷을 버퍼링함으로써 패킷 손실을 제거하고, 버퍼링된 패킷의 포워딩 시간을 최소로 한다. 제안된 핸드오프 프로토콜은 ns-2(network)에서 시뮬레이션 되었고, 멀티미디어 데이터 통신에 사용되는 UDP의 성능이 향상됨을 보여주었다.

• The Transactions of the Korea Information Processing Society
• /
• 제7권8S호
• /
• pp.2774-2782
• /
• 2000

Release 99 UMTS/GPRS는 Mobile IP 서비스를 제공하기 위한 방안으로서 단계별로 3가지 망 구조를 제안하고 있다. 1단계 망 구조에서 GGSN(Gateway GPRS Support Node)과 FA(Foreign Agent)간 인터페이스는 구현사항으로 기술하고 있으며, GGSN과 FA를 동일 플랫폼에서 구현하는 경우와 별도 플랫폼에서 구현하는 경우를 둘 다 고려하고 있다. 그러나 후자의 경우에 필요한 인터페이스는 표준화 대상에서 제외하고 있다. 따라서 GGSN과 FA를 별도의 플랫폼에서 구현하기 위해서 proprietary한 인터페이스 새로이 정의되어야 한다. 이를 위해 본 논문에서는 GGSN과 FA간 새로운 Gi+ 인터페이스를 정의하고, 이를 실현하기 위해 기본적으로 필요한 데이터 트래픽 프로토콜 구조와 신호 프로토콜 구조를 제안하였다. 그리고 GPRS의 GTP(GPRS Tunneling Protocol)ID를 세션 구별자로 사용하고, Gi+ 세션을 관리하기 위해 GGSN에 단말의 상태 관리 모델을 적용하는 SIAM(Session Identifier Adaptation Mechanism)을 설계 하였다. SIAM의 장점은 GGSN과FA 사이에 Mobile IP 신호 전송은 UDP를, 그리고 데이터 트래픽 전송은 IP-in-IP를 사용할 수 있게 함으로서 Gi+ 인터페이스 구현의 용이성을 제공한다.

• International Journal of Control, Automation, and Systems
• /
• 제3권1호
• /
• pp.122-129
• /
• 2005

We describe the MiniWeb[7] TCP/IP stack (mIP), which is an extremely small implementation of the TCP/IP protocol suite running 8 or 32-bit micro controllers intended for embedded control systems, and satisfying the subset of RFC1122 requirements needed for host­to-host interoperability over different platforms. Our TCP/IP implementation does sacrifice some of TCP's mechanisms such as fragmentation, urgent data, retransmission, or congestion control. Our implementation is applicable to web based controllers. The network protocols are tested in operational networks using CommView and Dummynet where the various operational parameters such as bandwidth, delay, and queue sizes can be set and controlled.

• Journal of Korea Society of Industrial Information Systems
• /
• 제10권2호
• /
• pp.67-75
• /
• 2005

In this paper, we design and implement real time IP security packet analyzer on IPv4 and IPv6 network. This packet analyzer sniffs and analyzes the packets generated by the protocols that are used by IPsec, IKE, IPv4 and IPv6 such as AH, ESP, ISAKMP, IP, ICMP and so on. The purpose of this analyzer is to check current security status of the network automatically. In this paper we provide implementation details and the examples of security evaluation by using our security packet analyzer system.

• The Journal of the Korea Contents Association
• /
• 제5권2호
• /
• pp.115-121
• /
• 2005

In the present internet environment, various traffic flooding attacks and worm attacks cause economical loss. If IPv4 is substituted by IPv6 because of the lack of IP address, it will be more serious. Therefore, we design and implement the traffic analysis tool which can detect attacks by expecting them encountered in the IPv6 environment. Proposed tool is composed of packet generation module, packet gathering module, discrimination module, and display module in X-windows. As a simulation result, it is proved that it can effectively detect DAD-NA message attack, TCP SYN flooding attack, UDP flooding attack and ICMP flooding attack in the IPv6 environment.

• Journal of Internet Computing and Services
• /
• 제12권6호
• /
• pp.19-33
• /
• 2011

The need for application traffic classification becomes important for the effective use of network resources. The header-based identification method uses the header signature {IP address, port number, transport layer protocol TCP/UDP)}extracted from Internet application server to overcome some limitations overhead, payload encryption, etc.) of previous methods. A lots signature is extracted because this method uses header information of server. So, we need a maintenance method to keep essential signatures. In this paper, we represent the signature maintenance method using properties of identified traffic and history of the signature. Also, we prove the feasibility and applicability of our proposed method by an acceptable experimental result.

• Journal of the Institute of Electronics Engineers of Korea TC
• /
• 제47권12호
• /
• pp.69-77
• /
• 2010

This paper presents a fast IP mobility management scheme in heterogeneous networks using the multiple wireless network interlaces. More specifically, in order to minimize the packet loss and handover latency due to handover, the E-HMIPv6, IETF HMIPv6 has been extended, is presented where the multiple tunnels between E-MAP and mobile node are dynamically constructed. E-HMIPv6 is composed of the extension of IETF HMIPv6 MAP, handover procedure, and simultaneous multiple tunnels. In order to demonstrate superior to the proposed method, the NS-2 simulation has done for performance evaluation of TCP and UDP-based application comparison with the existing mobility management method.