• 전기학회논문지
• /
• 제66권12호
• /
• pp.1899-1904
• /
• 2017

This paper presents a new one-time password approach generated based on $4{\times}4$ pattern schedule. It demonstrates generation of passkey from initial seed of random codes and mapping out in table pattern schedule which will produce a new form of OTP scheme in protecting information or data. The OTP-2FA has been recognized by many organizations as a landmark to authentication techniques. OTP is the solution to the shortcomings of the traditional user name/password authentication. With the application of OTP, some have benefited already while others have had second thoughts because of some considerations like cryptographic issue. This paper presents a new method of algorithmic approach based on table schedule (grid authentication). The generation of OTP will be based on the random parameters that will be mapped out in rows and columns allowing the user to form the XY values to get the appropriate values. The algorithm will capture the values and extract the predefined characters that produce the OTP codes. This scheme can work in any information verification system to enhance the security, trust and confidence of the user.

• 정보보호학회논문지
• /
• 제9권2호
• /
• pp.73-82
• /
• 1999

이동하는 모빌노드(mobile node)의 인증 기법 중에, 홈 에이전트(home agent)와 모빌노드, 외부 에이전트(foreign agent)를 거치는 triangle 인증 기법이 있다. 이 기법의 문제점은, 모빌노드의 이동이 빈번하게 발생되면 인증 절차 또한 비례적으로 이루어져야 하므로 무선통신 환경상의 통신 오버헤드가 증가하게 된다. 이러한 문제점을 개선하기 위해서 본 논문에서는, 고차잉여류의 개념에 근거한 다중서명방식을 이용하여 모빌노드가 이동할 때마다 필요했던 홈 에이전트와 외부 에이전트간의 인증을 생략한 자체 인증 방식을 제안하고자 한다. In an open network computing environment a host cannot to identity its users correctly to network services. In order to prevent this thing we present the design of a authentication scheme 솟 using the notion of rth -residuosity problem and discrete logarithm problem which is proposed by S. J. Park et al. The proposed scheme described here is efficient method for mutual authentication without leakage of users identity in mobile communication system that ensure user anonymity and untraceability.

• Advances in environmental research
• /
• 제12권2호
• /
• pp.113-122
• /
• 2023

Biometric authentication has become an essential part of modern-day security systems, especially in financial institutions like banks. A face recognition-based ATM is a biometric authentication system, that uses facial recognition technology to verify the identity of bank account holders during ATM transactions. This technology offers a secure and convenient alternative to traditional ATM transactions that rely on PIN numbers for verification. The proposed system captures users' pictures and compares it with the stored image in the bank's database to authenticate the transaction. The technology also offers additional benefits such as reducing the risk of fraud and theft, as well as speeding up the transaction process. However, privacy and data security concerns remain, and it is important for the banking sector to instrument solid security actions to protect customers' personal information. The proposed system consists of two stages: the first stage captures the user's facial image using a camera and performs pre-processing, including face detection and alignment. In the second stage, machine learning algorithms compare the pre-processed image with the stored image in the database. The results demonstrate the feasibility and effectiveness of using face recognition for ATM authentication, which can enhance the security of ATMs and reduce the risk of fraud.

• 산업공학
• /
• 제16권4호
• /
• pp.496-506
• /
• 2003

This study examines the background and necessity of the product certification (KS) and the system authentication (ISO 9000), and their characteristic so as to compare and analyze the possibility of interaction of product certification and system authentication. It tries to suggest an efficient operation system as an integrated management system and analyzes the certification case of K, a manufacturer of kitchen utensils. We believe that the study will help companies minimize their expenses and efforts to establish, operate, and maintain the corporate standard system. In addition, to effectively achieve our goal, we have also made a study of both literature and case and suggested technical guidance to get integrated management system certification. By these methods, we analyzed the effects and problems that come with the introduction and application of the integrated system of product certification and system authentication in order to set up a system to fit to the mechanism of Korean companies. Moreover, we have suggested the model of integrated operation and the benefits that come after acquiring certification.

• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2005년도 추계학술발표대회 및 정기총회
• /
• pp.973-976
• /
• 2005

In IEEE 802.15.4 (Low-Rate Wireless Personal Area Network) specification, a successful reception and validation of a data or MAC command frame can be confirmed with an acknowledgment. However, the specification does not support security for acknowledgment frame; the lack of a MAC covering acknowledgments allows an adversary to forge an acknowledgment for any frame. This paper proposes an identity authentication mechanism at the link layer for acknowledgment frame in IEEE 802.15.4 network. With the proposed mechanism there is only three bits for authentication, which can greatly reduce overhead. The encrypted bit stream for identity authentication will be transmitted to device by coordinator within association process. Statistical method indicates that our mechanism is successful in handling MAC layer attack.

• 반도체디스플레이기술학회지
• /
• 제19권2호
• /
• pp.96-99
• /
• 2020

According to brilliant development of smart devices, many related services are being devised. And, almost every service is designed to provide user-centric services based on personal information. In this situation, to prevent unintentional leakage of personal information is essential. Conventionally, ID and Password system is used for the user authentication. This is a convenient method, but it has a vulnerability that can cause problems due to information leakage. To overcome these problem, many methods related to face recognition is being researched. Through this paper, we investigated the trend of user authentication through biometrics and a representative model for face recognition techniques. One is DeepFace of FaceBook and another is FaceNet of Google. Each model is based on the concept of Deep Learning and Distance Metric Learning, respectively. And also, they are based on Convolutional Neural Network (CNN) model. In the future, further research is needed on the equipment configuration requirements for practical applications and ways to provide actual personalized services.

• Journal of Information Processing Systems
• /
• 제7권4호
• /
• pp.691-706
• /
• 2011

Since security and privacy problems in RFID systems have attracted much attention, numerous RFID authentication protocols have been suggested. One of the various design approaches is to use light-weight logics such as bitwise Boolean operations and addition modulo $2^m$ between m-bits words. Because these operations can be implemented in a small chip area, that is the major requirement in RFID protocols, a series of protocols have been suggested conforming to this approach. In this paper, we present new attacks on these lightweight RFID authentication protocols by using the Gr$\ddot{o}$bner basis. Our attacks are superior to previous ones for the following reasons: since we do not use the specific characteristics of target protocols, they are generally applicable to various ones. Furthermore, they are so powerful that we can recover almost all secret information of the protocols. For concrete examples, we show that almost all secret variables of six RFID protocols, LMAP, $M^2AP$, EMAP, SASI, Lo et al.'s protocol, and Lee et al.'s protocol, can be recovered within a few seconds on a single PC.

• 정보보호학회논문지
• /
• 제18권6A호
• /
• pp.75-83
• /
• 2008

본 논문은 AAA 기반의 MIPv6 환경 하에서 노드가 이동함에 따라, 도메인간 사용자 인증에 관한 방법을 기술한다. 기존에는 MN이 도메인간 이동하는 경우, 방문도메인의 AAA 서버를 통해 홈도메인의 AAA 서버에서 사용자를 인증하는 방법이 제안되었으나, 본 논문에서는 도메인간의 권한인증서를 이용하여 방문도메인에서 사용자인증을 수행할 수 있는 방법을 제시한다.

• 한국인터넷방송통신학회논문지
• /
• 제20권1호
• /
• pp.11-18
• /
• 2020

본 연구에서는 모바일 환경에서의 기존 맥락인증기법의 부족한 성능을 보완하고자 한다. 사용된 데이터는 GPS, CDR(Call Detail Record), App usage이며 GPS의 처리과정에서 인구밀집지역의 타인을 세밀하게 구분하고자 GPS밀도에 따른 지역구분을 시행하였다. 또한 전처리에서 데이터 수집에서 발생할 수 있는 결측치를 처리한다. 인증 모델은 두 개의 LSTM(Long-Short Term Memory)와 그들 결과를 종합하는 하나의 ANN(Artificial Neural Network)로 구성하며 이를 통해 최종적으로 인증 점수를 산출한다. 본 논문에서는 기존 연구와의 정확도를 비교하고 타인을 구별해내는데 필요한 인증 시도 횟수를 비교하여 평균 11.6%의 정확도 향상과 검증 데이터의 약 60%에 대하여 더 적은 시도에 구별해 낼 수 있었다.

• 디지털융복합연구
• /
• 제18권11호
• /
• pp.227-232
• /
• 2020

이메일을 사용하는데 있어서 가장 큰 애로사항으로 확인되지 않은 발신자를 걸러내기 힘들다는 것이다. 이에 본 연구에서는 최근 인증 수단으로 많이 활용되고 있는 블록체인 기술을 활용하여 이메일 집단 인증 API를 설계하였다. 제안한 모델로는 관계 연관성 네트워크를 통하여 노드-노드 가중치 지수를 구하였고, 이메일 신뢰도 모형을 설계한 후 Rotten Tomato 방식의 신뢰도 계산 모델을 구하였다. 이를 바탕으로 시스템 구조를 설계하고, 체인 코드 메소드를 정의한 후 API를 개발하였다. 본 연구를 통하여 이메일 사용자 인증 뿐만 아니라 인증이 필요한 다양한 분야에서 활용할 것으로 기대할 수 있으며, 향후 많은 수의 사용자를 대상으로 API를 사용하게 하여 집단 인증의 관계성을 증명할 수 있을 것으로 기대된다.