• Journal of Internet Computing and Services
• /
• v.15 no.6
• /
• pp.55-64
• /
• 2014

In a Web application, you can pass without restrictions special network security devices such as IPS and F/W, URL parameter, which is an important element of communication between the client and the server, is forwarded to the Web server. Parameters are modulated by an attacker requests a URL, disclose confidential information or through e-commerce, can take financial gain. Vulnerability parameter manipulation thereof cannot be able to determine whether to operate in only determined logical application, blocked with Web Application Firewall. In this paper, I will present a technique OTACUS(One-Time Access Control URL System) to complement the shortcomings of the measures existing approaches. OTACUS can be effectively blocked the modulation of the POST or GET method parameters passed to the server by preventing the exposure of the URL to the attacker by using clean URL technique simplifies complex URL that contains the parameter. Performance test results of the actual implementation OTACUS proves that it is possible to show a stable operation of less than 3% increase in the load.

• Journal of Sensor Science and Technology
• /
• v.27 no.4
• /
• pp.254-258
• /
• 2018

A Wi-Fi signal network (WSN) system is introduced in this paper. This system consists of several data-transmitting sensor modules and a data-receiving server. Each sensor module and the server contain a unique intranet IP address. A piezoelectric accelerometer with a bandwidth of 12 kHz, a 24-bit analog-digital converter with a sampling rate of 15.625 kS/s, a 32-bit microprocessor unit, and a 1-Mbps Wi-Fi module are used in the data-transmitting sensor module. A 300-Mbps router and a PC are used in the server. The system is verified using an accelerometer calibrator. The voltage output from the sensor is converted into 24-bit digital data and transmitted via the Wi-Fi module. These data are received by a Wi-Fi router connected to a PC. The input frequencies of the accelerometer calibrator (320 Hz, 640 Hz, and 1280 Hz) are used in the data transfer verification. The received data are compared to the data retrieved directly from the analog-to-digital converter used in the sensor module. The comparison shows that the developed system represents the original data considerably well. Theoretically, the system can acquire vibration signals from 600 sensor modules at an accelerometer bandwidth of 15.625 kHz. However, delay exists owing to software processes, multiplexing between sensor modules, and the use of non-real time operating system. Hence, it is recommended that this system may be used to acquire vibration signals with up to 10 kHz, which is approximately 70% of the theoretical maximum speed of the system. The system can be upgraded using parts with higher performance

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.11 no.5
• /
• pp.217-228
• /
• 2011

In centralize CDN systems, the content server selection is performed by service node for every user request, and the selected node is notified to the user. In this paper, we present distributed CDN architecture and algorithm in which the request from a user is delivered to the content source by a P2P algorithm utilizing DHT(distributed hash table) through the overlay network and the user selects one of the source nodes based on real-time user-centric criteria. For this purpose, we propose a modified Pastry algorithm for contents registration, search and selection, in addition to the distributed architecture. The proposed architecture has the advantages of load balancing, traffic balancing, scalability, fault-tolerance due to the self-configuration, self-healing attributes of distributed architecture. Various simulation shows the feasibility of the proposed architecture and algorithm, and the performance is compared and discussed for the variations of the proposed scheme.

• The Journal of Korea Institute of Information, Electronics, and Communication Technology
• /
• v.12 no.6
• /
• pp.547-553
• /
• 2019

Presence server should process massive SIP subscription request messages and massive presence event notifications from presence resources in real time. Therefore multiple servers architecture is needed for presence service system. In this paper, an architecture of multiple servers presence service system using SIP based CCMP control messages for lowering presence server load level has been presented. In this system, each presence server exchanges current load status using CCMP control messages, and total system load according to variance of users number and amount of presence resources has been effectively distributed processed. The CCMP control messages has been optimally designed to control presence servers, and exchange procedures of these control messages between presence servers has been also presented and the performance of the proposed multiple servers presence service system has been analysed by experiments. The result shows that average presence subscription processing time reduced from 40.8% to 69.2% and average presence notification processing time reduced from 29.4% to 62.7%.

• The KIPS Transactions:PartC
• /
• v.10C no.1
• /
• pp.33-38
• /
• 2003

Most of the existing algorithms try to disseminate the multimedia contents of internet service provider (ISP), without taking into account characteristics and capacities of duplicated servers. However, they are less reliable without prior information on capacities of duplicated servers. In this paper we propose two algorithms, performance rating algorithm of hardware and capacity algorithm, inspired by the need of improving QoS of delivering multimedia contents without incurring long access delays when the capacities of duplicated servers are significantly different and clients locate in a fixed geographical domain Our simulation results show that they are better than HTTP response time algorithm when the multimedia contents are large and quite different from performances between duplicated servers.

• Journal of KIISE
• /
• v.44 no.7
• /
• pp.703-709
• /
• 2017

Outsourcing databases is to offload storage and computationally intensive tasks to the third party server. Therefore, data owners can manage big data, and handle queries from clients, without building a costly infrastructure. However, because of the insecurity of network systems, the third-party server may be untrusted, thus the query results from the server may be tampered with. This problem has motivated significant research efforts on authenticating various queries such as range query, kNN query, function query, etc. Although aggregation queries play a key role in analyzing big data, authenticating aggregation queries has not been extensively studied, and the previous works are not efficient for data with high dimension or a large number of distinct values. In this paper, we propose the AMR-tree that is a data structure, applied to authenticate aggregation queries. We also propose an efficient proof construction method and a verification method with the AMR-tree. Furthermore, we validate the performance of the proposed algorithm by conducting various experiments through changing parameters such as the number of distinct values, the number of records, and the dimension of data.

• Journal of KIISE:Databases
• /
• v.31 no.2
• /
• pp.140-149
• /
• 2004

Data broadcast has received much attention as a very efficient method for disseminating data items in mobile environment with large number of mobile clients. In this approach, a database server periodically and continuously broadcasts data items through wireless channels and clients perform read-only transactions by accessing necessary data items from the air. While broadcasting, the server must also process update transactions on the database, which raises an obstacle for client's accessing consistent data. In this research, we propose a new algorithm SCDSC(Serialization Checking with DirtySet on Commit) which is an alternative for solving the concurrency control problem efficiently. The SCDSC is a kind of optimistic concurrency control in that a client checks the consistency of data using a DirtySet as a part of data broadcast when it commits its transaction. In each broadcast cycle, the server updates and disseminates the DirtySet with newly changed data items for last few cycles in the sliding window approach. We perform an analysis and a simulation study to evaluate the performance of our SCDSC algorithm in terms of data consistency and data currency.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.31 no.4A
• /
• pp.377-384
• /
• 2006

According to fast VoIP technology development, more and more companies change voice network into IP based network among branch offices. IP PBX, which is deployed up to now, composed of IP phone and VoIP Gateway. Every telphone has replaced with If phone which support VoIP and VoIP gateway is installed in PBTN connection point to relay voice data. It can reduce the communication expense of International call, long distance call and call between a headquater and a trance because it uses internet line. In this paper, IP PBX is implemented that can distribute call using PBX network only usig personal terminal without Proxy Server. Depending on Role, terminal can be registered Master, Server and Client and it is verified in terms of performance and validation.

• Journal of the Korea Society of Computer and Information
• /
• v.18 no.3
• /
• pp.11-18
• /
• 2013

In this paper, we propose a new design scheme of N-Screen emulator based on Cloud and then implement the emulator, in order to solve the critical point of N-Screen emulator based on Cloud. This method, without the emulator in the server, will be able to confirm the features of the emulator with a browser using Web Service. This means that the identical service is possible without regard to personal computer or mobile environment. Also, in order to emulating each different web browser engine of the various devices separately, we revise and manage the WebKit engine to be suitable to the characteristics of each device. In the previous design method, the number of emulators which can be shown in a monitor is restricted to 2 or 3. However, we show that the proposed design method can improve the performance of server to the extent that this method could operate more than 100 emulators per each server.

• The Journal of the Korea Contents Association
• /
• v.7 no.3
• /
• pp.34-41
• /
• 2007

The presence service which provides user's presence information by subscription and notification is one of SIP(session initiation protocol) extension services, and it is used importantly in VoIP(Voice over IP) and Instant Messaging service. In this paper, we propose a new method in which users can combine and control presence service and call processing services in various ways by extending call processing language, and only changed parts of the presence information are published instead of full presence information document. Each user registers full presence information document with his own call processing script during the first publication to a presence server. The presence server executes these call processing scripts, so it can provide various services with combination of presence service and call processing services during the presence subscriptions and notifications. Afterwards, users publish only changed parts of the presence information and the presence server notify only these changed parts to watchers. Therefore the efficiency of the overall system can be improved. The performance of our proposed model is evaluated by experiments.