• Journal of Communications and Networks
• /
• v.7 no.2
• /
• pp.207-221
• /
• 2005

The proliferation of wireless local area networks (WLANs) offering high data rate in hot spot area have spurred the demand for possible WLANs and third-generation (3G) cellular network integration solutions as the initiative step towards 4G systems. This paper provides a novel architecture for seamless location-aware integration of WLANs into 3G cellular networks and also an analysis for the efficient handover techniques. We introduce location as a key context in secure roaming mechanism for context-aware interworking in 4G systems. The fast secure roaming with location-aware authentication is implemented at an entity called location-aware service (LAS) broker that utilizes the concepts of direction of user and pre-warming zone. The location-ware interworking architecture supports seamless roaming services among heterogeneous wireless networks including WLANs, wireless metropolitan area networks (WMANs), and 3G cellular networks. This paper also includes a description of procedures needed to implement efficient mobility and location management. We show how the LAS broker with pre-warming and context transfer can obtain significant lower latency in the vertical handover.

• The KIPS Transactions:PartC
• /
• v.19C no.2
• /
• pp.99-118
• /
• 2012

In PMIPv6-based network, mobile nodes can be made smaller and lighter because the network nodes perform the mobility management-related functions on behalf of the mobile nodes. The one of the protocols, Fast Handovers for Proxy Mobile IPv6(FPMIPv6)[1] has studied by the Internet Engineering Task Force(IETF). Since FPMIPv6 adopts the entities and the concepts of Fast Handovers for Mobile IPv6(FMIPv6) in Proxy Mobile IPv6(PMIPv6), it reduces the packet loss. Conventional scheme has proposed that it cooperated with an Authentication, Authorization and Accounting(AAA) infrastructure for authentication of a mobile node in PMIPv6, Despite the best efficiency, without begin secured of signaling messages, PMIPv6 is vulnerable to various security threats such as the DoS or redirect attAcks and it can not support global mobility between PMIPv. In this paper, we analyze Kang-Park & ESS-FH scheme, and then propose an Enhanced Security scheme for FPMIPv6(ESS-FP). Based on the CGA method and the pubilc key Cryptography, ESS-FP provides the strong key exchange and the key independence in addition to improving the weaknesses for FPMIPv6. The proposed scheme is formally verified based on Ban-logic, and its handover latency is analyzed and compared with that of Kang-Park scheme[3] & ESS-FH and this paper propose inter-domain fast handover sheme for PMIPv6 using proxy-based FMIPv6(FPMIPv6).

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.1
• /
• pp.51-61
• /
• 2010

Koinonia system is designed to fully utilize the advantage of Binary CDMA so as to guarantee QoS in wireless networks. In this paper, we propose the new network structure based on this system and refer to it as BLAN(Binary CDMA LAN). Although BLAN is similar structure to IEEE 802.11 WLAN, it will ensure the fast handover and QoS. We also propose the AKA(Authentication and Key Agreement) protocol and Reauthentication protocol to be used for communication in BLAN. These protocols are securely and efficiently designed using the user identity module to support the more powerful authentication. Hence, BLAN, including the proposed protocols, will support the high mobility and security. In conclusion, we expect that BLAN can be applied to future infrastructure on special environment, and it can be helpful showing the new network model which alternate WLAN.

• Journal of the Institute of Electronics Engineers of Korea TC
• /
• v.48 no.4
• /
• pp.100-106
• /
• 2011

u-TSN is a promising technology facilitating road safety and traffic management for drivers and passengers. To deploy this technology in a real environment, personal information and communicated data should be protected against malicious adversaries. Even though such adversaries would appear relatively infrequently, in such cases, the benefits of u-TSN could be disrupted and disabled. Therefore, one of the ultimate goals in the design of secure u-TSN is to protect against attacks of malicious adversaries. In this paper, we present secure communication scenario for u-TSN and implement security protocols and algorithms that are the components of the scenario on an IXP425 board. The security systems, implemented as a security module, supports secure and efficient communication for the u-TSN.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• v.9 no.1
• /
• pp.872-875
• /
• 2005

Portable Internet extended from wireless LAN has a large cell size, similar to a wireless mobile communication, and can provides the seamless service which offers middle-low speed mobility. IEEE 802.16e, the international standard of Portable Internet, uses PKMv2(Privacy Key Management) protocol for authorization and key exchange between a MSS(Mobile Subscriber Station) and a BS(Base Station). This paper first reviews and studies overall security architecture of TTA HPi standard and IEEE 802.16e which supports mobility based on WMAN(Wireless Metropolitan Area Network) standard(IEEE 802.16)

• 한국정보통신설비학회:학술대회논문집
• /
• 2008.08a
• /
• pp.211-217
• /
• 2008

Recently, there are many efforts to support seamless mobility in 802.11 WLANs using IP Layer mobility protocols. The IP layer mobility protocols are the most efficient mechanism to guarantee the service session continuity when IP subnet is changed during handover. Even if the IP layer mobility protocols are quite efficient, the feature of the protocols that had been designed to consider only L3 layer makes it difficult to improve the performance of hand over more and more. Nowadays, to overcome this limitation of IP mobility protocols, many researchers have worked on the mobility protocols integration of different layers (e.g., L2 layer). In this paper, we propose the enhanced Proxy MIPv4 to minimize the latency of handover using MIH protocol in 802.11 WLANs. The proposed mechanism minimizes the latency of authentication by exchanging security keys between Access Routers during handover. Moreover, it also minimizes packet losses by Inter-AP Tunneling and data forwarding.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.4
• /
• pp.41-52
• /
• 2010

Message authentication is an essential security element in vehicular ad-hoc network(VANET). For a secure message authentication, integrity, availability, privacy preserving skill, and also efficiency in various environment should be provided. RAISE scheme has been proposed to provide efficient message authentication in the environment crowded with lots of vehicles and generally considered to be hard to provide efficiency. However, as the number of vehicles communicating in the area increases, the overhead is also incurred in proportion to the number of vehicles so that it still needs to be reduced, and the scheme is vulnerable to some attacks. In this paper, to make up for the vulnerabilities in dense vehicular communication network, we propose a more secure and efficient scheme using a process that RSU(Road Side Unit) transmits the messages of neighbor vehicles at once with Bloom Filter, and timestamp to protect against replay attack. Moreover, by adding a handover function to the scheme, we simplify the authentication process as omitting the unnecessary key-exchange process when a vehicle moves to other area. And we confirm the safety and efficiency of the scheme by simulating the false positive probability and calculating the traffic.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2017.04a
• /
• pp.121-122
• /
• 2017

스마트폰이나 노트북 등 무선 단말기는 가까운 AP를 통하여 인터넷에 접속하게 된다. 만약 이 무선 단말기가 이동하여 이전의 AP와 멀어지고 새로운 AP에 다가가면 이 단말기는 AP를 변경하는 절차를 따라야하는데 이를 핸드오버라 한다. 핸드오버가 일어날 때 새로운 AP에서는 이동 단말기가 정당한 것인지를 검증하여 끊김 없는 통신 환경을 제공한다. 이 논문에서는 끊김 없는 핸드오버 환경 구현을 목표로 하는 연구과제에 연구 보조원으로 참여하여 여러 번의 수행착오를 거쳐 터득한 공개 소프트웨어 기반 인증 서버 구축 과정을 발표한다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2009.04a
• /
• pp.1206-1209
• /
• 2009

모바일 단말의 이동성을 지원하는 호스트 기반의 MIPv6, HMIPv6 및 FMIPv6 프로토콜이 개발되었지만, 이동성 기능을 단말기에 구현해야 하는 부담이 있다. 이러한 문제점을 해결하기 위해 최근에 네트워크 기반으로 동작하는 PMIPv6 프로토콜이 등장하였다. 그러나 라우팅 최적화나 핸드오버 지연시간을 단축해야 하는 과제가 아직 남아 있다. 따라서, 본 논문에서는 사용자의 인증절차를 간소화하여 지연시간을 줄이고, 핸드오버 시간 동안 패킷들을 LMA 의 별도 광 버퍼링 공간에 저장하였다가 재전송함으로써 패킷 disordering 문제점을 해결하는 기법을 제안한다. 성능평가는 분석 모델을 통해 평가하며, 제안기법의 핸드오버 지연시간은 표준 PMIPv6 대비 33% 개선된 성능을 보인다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2011.04a
• /
• pp.607-610
• /
• 2011

본 논문은 WiMAX 와 WLAN 네트워크 간 빠른 핸드오버를 위한 이동성 관리 방안을 제안한다. 제안방안은 MPLS 네트워크 환경을 기반으로 하고, 공용 인증키로써 MA ID(Mobility Agent Identifier)를 할당하여 핸드오버 시 재인증(Re-authentication) 및 IP 재구성을 위한 시그널링 메시지를 간소화시킨다. 따라서 이동노드가 핸드오버 할 때마다 반복적으로 요구되는 두 동작에 대한 처리가 보다 신속히 이뤄지면서 핸드오버 지연 감소의 효과를 보인다. 제안방안에 의한 성능 향상을 검증하기 위해 수식을 이용하여 기존방안과 제안방안의 핸드오버 지연을 분석하였다. 그 결과 제안방안에서의 핸드오버 지연이 기존방안 보다 더 낮음을 확인하였다.