• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.17 no.2
• /
• pp.103-114
• /
• 2007

The existing handover authentication schemes have authentication delay and overhead of the authentication server since they have been separately studied handover authentication at the link layer and the network layer. This paper proposes a handover authentication scheme initiated by Mobile Node on FMIPv6 based mobile access networks. The main idea of the paper is to generate a session key at the mobile node side, and transfer it to the next Access Router through the authentication server. Also, the scheme has a hierarchical key management at access router. There are two advantages of the scheme. First, the generated session key can be utilized for protecting the binding update messages and also for access authentication. Second, hierarchical key management at the access router reduced the handover delay time. The security aspects on the against PFS, PBS, and DoS attack of proposed scheme are discussed.

• Proceedings of the Korean Operations and Management Science Society Conference
• /
• 1999.10a
• /
• pp.59-59
• /
• 1999

• Korean Journal of Clinical Pharmacy
• /
• v.28 no.2
• /
• pp.124-130
• /
• 2018

Objective: This study examined the Risk Sharing Agreement (RSA) on pharmaceutical pricing system in Korean national health insurance. Through RSA, the insurer was able to maintain the principles in the price listing process while managing the budget effectively and improving patient access to new drugs. Despite these positive effects, there are still issues raised by some stakeholders, such as lack of transparency in the listing process and doubts about its effectiveness. Therefore, we investigated the impacts of RSA on national health insurance financing and patient access to analyze the effects of RSA. Methods: The impact of RSA was investigated by analyzing the health insurance claims data for 2014~2016. The degree of improvement in patient access was determined by the decreased amount of patients' payment. Results: Results showed that the financial impact of RSA was not significant and patients' access to the new drug greatly improved. Conclusion: These results show that RSA is a good system for improving patient access to new drugs without additional expense on insurance.

• The KIPS Transactions:PartC
• /
• v.10C no.3
• /
• pp.273-280
• /
• 2003

When an existing user authorization systems in Grid access many user to local system and subject DN (Distinguished Name) in a user-proxy authenticate and ID in local system is one-to-one mapping, they have difficulties in ID management, memory resource management and resource management. At this, a variety of subject DN is shared of one local ID in an existing Grid. But this faces many difficulties in applying all requirements for many Grid users. Thus, we suppose user authorization system based on a certificate not them based on ID in this paper. That is, we add user's access level to extension field in a certificate, and make a supposed authorization system decide access limitation level on resources instead of an existing ID mapping methods.

• Journal of Information Processing Systems
• /
• v.13 no.2
• /
• pp.236-255
• /
• 2017

The rapid growth of smart devices demands an enhanced throughput for network connection sustainability during mobility. However, traditional wireless network architecture suffers from mobility management issues. In order to resolve the traditional mobility management issues, we propose a novel architecture for future wireless access network based on software-defined network (SDN) by using the advantage of network function virtualization (NFV). In this paper, network selection approach (NSA) has been introduced for mobility management that comprises of acquiring the information of the underlying networking devices through the OpenFlow controller, percepts the current network behavior and later the selection of an appropriate action or network. Furthermore, mobility-related scenarios and use cases to analyze the implementation aspects of the proposed architecture are provided. The simulation results confirm that the proposed scenarios have obtained a seamless mobility with enhanced throughput at minimum packet loss as compared to the existing IEEE 802.11 wireless network.

• Journal of Computing Science and Engineering
• /
• v.5 no.4
• /
• pp.331-337
• /
• 2011

Recently, Virtual Desktop Infrastructure (VDI) has been widely adopted to ensure secure protection of enterprise data and provide users with a centrally managed execution environment. However, user experiences may be restricted due to the limited functionalities of thin clients in VDI. If thick client devices like laptops are used, then data leakage may be possible due to malicious software installed in thick client mobile devices. In this paper, we present Data Firewall, a security framework to manage and protect security-sensitive data in thick client mobile devices. Data Firewall consists of three components: Virtual Machine (VM) image management, client VM integrity attestation, and key management for Protected Storage. There are two types of execution VMs managed by Data Firewall: Normal VM and Secure VM. In Normal VM, a user can execute any applications installed in the laptop in the same manner as before. A user can access security-sensitive data only in the Secure VM, for which the integrity should be checked prior to access being granted. All the security-sensitive data are stored in the space called Protected Storage for which the access keys are managed by Data Firewall. Key management and exchange between client and server are handled via Trusted Platform Module (TPM) in the framework. We have analyzed the security characteristics and built a prototype to show the performance overhead of the proposed framework.

• Journal of the Korea Society of Computer and Information
• /
• v.10 no.5 s.37
• /
• pp.151-160
• /
• 2005

High availability and business continuity in the mission critical enterprise environment have been a matter of primary concern. It is desirable to implement replicated servers, duplicated devices and disaster recovery sites so that these issues are accomplished. When that happens, web browser's users may be accessed web server through a specific Uniform Resource Locator. A critical issue arises if web browser's users recklessly change the URL and access into other site. In this case, data integrity between duplicated sites may not be guaranteed. In this paper, we introduce the method of integrating the technologies of user authentication, certificate authority and business continuity and Propose the design and implementation of intelligent service access management.

• Journal of Communications and Networks
• /
• v.2 no.1
• /
• pp.35-45
• /
• 2000

this paper presents the concept of "mobile ATM', a proposal for third-generation (3G) mobile communication network infrastructure capable of supporting flexible evolution of radio technologies from today's cellular and data services towards future wireless multimedia services. Mobile ATM provides generic mobility management and QoS-based transport capabilities suitable for integration of multiple radio access technologies including cellular voice. wireless data, and future broadband wireless services. The architecture of a mobile ATM network is outlined in terms of the newly-defined "W-UNI" interface at the radio link and "M-UNI"and "M-UNI" interface which supports unified access for WATM and non-ATM mobile terminals through corresponding interworking functions (IWF) is explained. leading to an understanding of how different radio access technologies are supported by the same ATM-based core network infrastructure. Generic mechanisms for handoff and location management within the core mobile network are discussed. and related protocol extensions over the "W-UNI" and "M-UNI/NNI"interfaces are proposed. the issue of "crossover switch (COS)" selection in mobile ATM is considered, and a unified handoff signaling syntax which supports flexibility in COS selection is described. Typical signaling sequences for call connection and handoff using the proposed protocols are outlined. Experimental results form a proof-of-concept mobile ATM network prototype are presented in conclusion.

• Journal of Communications and Networks
• /
• v.15 no.5
• /
• pp.527-537
• /
• 2013

Improving resource utilization has been a hot issue in heterogeneous wireless networks (HWNs). This paper proposes a radio resource management (RRM) method based on access proportion optimization. By considering two or more wireless networks in overlapping regions, users in these regions must select one of the networks to access when they engage in calls. Hence, the proportion of service arrival rate that accesses each network in the overlapping region can be treated as an optimized factor for the performance analysis of HWNs. Moreover, this study considers user mobility as an important factor that affects the performance of HWNs, and it is reflected by the handoff rate. The objective of this study is to maximize the total throughput of HWNs by choosing the most appropriate factors. The total throughput of HWNs can be derived on the basis of a Markov model, which is determined by the handoff rate analysis and distribution of service arrival rate in each network. The objective problem can actually be expressed as an optimization problem. Considering the convexity of the objective function, the optimization problem can be solved using the subgradient approach. Finally, an RRM optimization scheme for HWNs is proposed. The simulation results show that the proposed scheme can effectively enhance the throughput of HWNs, i.e., improve the radio resource utilization.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.14 no.3
• /
• pp.11-20
• /
• 2018

Smart devices refer to various devices and control equipment such as health care devices, imaging devices, motor devices and wearable devices that use wireless network communication (e.g., Wi-fi, Bluetooth, LTE). Commercial services using such devices are found in a wide range of fields, including home networks, health care and medical services, entertainment and toys. Studies on smart devices have also been actively undertaken by academia and industry alike, as the penetration rate of smartphones grew and the technological progress made with the fourth industrial revolution bring about great convenience for users. While services offered through smart devices come with convenience, there is also various security threats that can lead to financial loss or even a loss of life in the case of terrorist attacks. As attacks that are committed through smart devices tend to pick up where attacks based on wireless internet left off, more research is needed on related security topics. As such, this paper seeks to design an access control method for reinforced security for smart devices. After registering and authenticating the smart device from the user's smart phone and service provider, a safe communication protocol is designed. Then to secure the integrity and confidentiality of the communication data, a management process such as for device renewal or cancellation is designed. Safety and security of the existing systems against attacks are also evaluated. In doing so, an improved efficiency by approximately 44% compared to the encryption processing speed of the existing system was verified.