• 제어로봇시스템학회:학술대회논문집
• /
• 제어로봇시스템학회 2003년도 ICCAS
• /
• pp.2097-2100
• /
• 2003

Many studies have been done on secure operating system using secure kernel that has various access control policies for system security. Secure kernel can protect user or system data from unauthorized and/or illegal accesses by applying various access control policies like DAC(Discretionary Access Control), MAC(Mandatory Access Control), RBAC(Role Based Access Control), and so on. But, even if secure operating system is running under various access control policies, network traffic among these secure operating systems can be captured and exposed easily by network monitoring tools like packet sniffer if there is no protection policy for network traffic among secure operating systems. For this reason, protection for data within network traffic is as important as protection for data within local system. In this paper, we propose a secure operating system trusted channel, SOSTC, as a prototype of a simple secure network protocol that can protect network traffic among secure operating systems and can transfer security information of the subject. It is significant that SOSTC can be used to extend a security range of secure operating system to the network environment.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제9권11호
• /
• pp.4720-4738
• /
• 2015

Proper management on user-driven virtual circuits (VCs) is essential for seamless operation of virtual networks. The Network Provisioning System (NPS) is useful software for creating user-driven VCs automatically and must take fault management into account for physical layer impairments on user-driven VCs. This paper addresses a user-driven and trusty protection management in an NPS with an open standard Network Service Interface (NSI), as a contribution to show how to implement the user-driven and trusty protection management required for user-driven VCs. In particular, it provides a RESTful web service Interface for Configuration and Event management (RICE) that enable management of a distinguished data and control plane VC status between Network Service Agents (NSAs) in the event of a node or link fault and repair in a domain. This capability represents a contribution to show how network and protection events in a domain can be monitored between NSAs (NPSs with the NSI) in multiple domains. The implemented NPS controls and manages both the primary and backup VC with disjoint path in a user-driven manner. A demonstration to verify RICE API's capability is addressed for the trusty protection in the dynamic VC network.

• 대한전기학회논문지:전력기술부문A
• /
• 제52권9호
• /
• pp.506-512
• /
• 2003

In this paper, a communication module between Relay agents in a multi-agent system based power distribution network protection system is realized using DNP3.0(Distributed Network Protocol), which is the standard communication protocol of distribution automation system in KEPCO. The key words for agent communication in the multi-agent based protection system are defined and represented by use of DNP application function code. The communication module developed based on the proposed communication scheme is tested by use of the Communication Test Harness, a test tool for DNP protocol, then used to the multi-agent system based power distribution net work protection system.

• 한국대기환경학회지
• /
• 제23권5호
• /
• pp.526-538
• /
• 2007

Since air quality monitoring data sets are important base for developing of air quality management strategies including policy making and policy performance assessment, the environmental protection authorities need to organize and operate monitoring network properly. Air quality monitoring network of Busan, consisting of 18 stations, was allocated under unscientific and irrational principles. Thus the current state of air quality monitoring networks was reassessed the effect and appropriateness of monitoring objectives such as population protection and sources surveillance. In the process of the reassessment, a GIS-based decision support system was constructed and used to simulate air quality over complex terrain and to conduct optimization analysis for air quality monitoring network with multi-objective. The maximization of protection capability for population appears to be the most effective and principal objective among various objectives. The relocation of current monitoring stations through optimization analysis of multi-objective appears to be better than the network building for maximization of population protection capability. The decision support system developed in this study on the basis of GIS-based database appear to be useful for the environmental protection authorities to plan and manage air quality monitoring network over complex terrain.

• KIEE International Transactions on Power Engineering
• /
• 제2A권3호
• /
• pp.89-94
• /
• 2002

In this paper, a protection system using a Multi-Agent concept for power distribution networks is proposed. Every digital over current relay(OCR) is developed as an agent by adding its own intelligence, self-tuning and communication ability. The main advantage of the Multi-Agent concept is that a group of agents work together to achieve a global goal which is beyond the ability of each individual agent. In order to cope with frequent changes in the network operation condition and faults, an OCR agent, suggested in this paper, is able to detect a fault or a change in the network and find its optimal parameters for protection in an autonomous manner considering information of the whole network obtained by communication between other agents. Through this kind of coordination and information exchanges, not only a local but also a global protective scheme is completed. Simulations in a simple distribution network show the effectiveness of the suggested protection system.

• 한국통신학회논문지
• /
• 제29권11A
• /
• pp.1231-1236
• /
• 2004

최근까지 통신망의 장애대책은 주로 기간망에 적용되는 개념이었다. 즉, SONET, SDH 등 동기식 전송장치의 점대점, 선형, 링형, 메쉬형 구성 혹은 565 Mbps의 비동기식 전송장치 등이 그 예이다. 그러나 대용량, 광대역 PON 시스템의 도입으로 인해 가입자망에도 보호 및 절체의 필요성이 대두되고 있다. 본 논문에서는 EPON의 경우에 효과적으로 망을 보호할 수 있는 방법에 대해 기술하였다. EPON프레임 및 프로토콜 특성을 이용한 보호절체 방법을 제시하고 이를 구현하여 1ms 이내에 시스템을 보호하는 실험 결과를 보인다.

• 대한전기학회:학술대회논문집
• /
• 대한전기학회 2003년도 하계학술대회 논문집 A
• /
• pp.299-301
• /
• 2003

In this paper, a protection system using Multi-Agent concept for power distribution network is proposed. Multi agent system consist of Feeder agent, OCR(Over Current Relay) agent, Recloser agent and Switch agent. An agent calculates and corrects its parameter by itself through communication with neighboring agents and its own intelligence algorithm. Simulations in a simple distribution network show the effectiveness of the suggested protection system. Multi-Agent System, protection of distribution network, Communication.

• 대한전기학회논문지:전력기술부문A
• /
• 제50권11호
• /
• pp.506-513
• /
• 2001

The islanding detection for distributed resources (DR) becomes an important and emerging issue in power system protection since the distributed generator installations are rapidly increasing and most of the installed systems are interconnected with distribution network. In order to avoid the negative impacts from islanding operations of DR on protection, operation and management of distribution system, it is necessary to effectively detect the islanding operations of DR and rapidly disconnect it from distribution network. Generally, it is difficult to detect islanding operation by monitoring only one system parameter This paper presents a new logic based islanding detection method for distributed resources(DR) which are interconnected with distribution network. The proposed method detects the islanding operation by monitoring four system parameter: voltage variation, phase displacement, frequency variation, and the variation of total harmonic distortion(THD) of current; therefore, it effectively detects island operation of DR unit operating in parallel with the distribution network. We also verified the efficiency of the proposed algorithm using the radial distribution network of IEEE 34 bus model.

• 정보보호학회논문지
• /
• 제33권6호
• /
• pp.939-946
• /
• 2023

IT 기술이 급속히 발전하는 현대 초연결 환경은 네트워크 장비들이 다양해지고 네트워크 구성이 복잡해짐에 따라 사이버 공격자가 침투경로로 활용될 수 있는 공격표면(attack surface) 또한 증가하게 되었다. 이러한 환경에서 사이버 공격을 원천적으로 방어하기 위해 공격표면을 변이하는 MTD(Moving Target Defense) 기술이 연구되고 있다. 그중에 네트워크를 통해 공격이 시작됨에 따라 주요 속성 네트워크 주소를 변이하는 기술이 있으나, 대부분 운용환경이 기존 고정 IP 기반으로 운용되기 때문에 주소변이 기술이 기존 네트워크 보호체계 내에 적용되었을 때 어떠한 영향이 있는지 연구가 필요하다. 본 논문에서는 기존 네트워크 보호체계에서 네트워크 주소변이 기술이 적용되었을 때의 영향성을 연구하였고 연구 결과로서 네트워크 보호체계의 주요 시스템인 방화벽, NAC, IPS와 네트워크 주소변이 기술이 동시 적용되었을 때 운용 측면에서 고려해야 할 요소를 도출하였다. 또한 사이버 대응체계 내에서 네트워크 분석시스템과의 연동성을 위해 네트워크 주소변이 기술에서 관리해야하는 요소를 제안하였다.

• 한국해양공학회지
• /
• 제30권2호
• /
• pp.134-140
• /
• 2016

An envelope protection system is a control system that allows a submarine to operate freely using its own operational envelope without exceeding the structural limit, dynamic limit, and control input limit. In this paper, an envelope protection system for the pitch angle of a submarine is designed using a dynamic trim algorithm. A linear quadratic regulator and artificial neural network are used for the true dynamics approximation. A submarine maneuvering simulation program developed using experimental data is used to validate the designed envelope protection system. Simulation results show the effectiveness of the designed envelope protection system.