-
111.发明授权
公开(公告)号:KR100833509B1
公开(公告)日:2008-05-29
申请号:KR1020060124151
申请日:2006-12-07
Applicant: 한국전자통신연구원
Abstract: A method and a system for preventing location tracking for mobile phones and blocking denial for service usage in a mobile RFID(Radio Frequency Identification) service network are provided to guarantee the privacy of each individual by preventing a service provider from tracking the location of a mobile user and to revitalize a mobile RFID service by efficiently verifying a mobile user's service usage in case he denies it. A mobile service provider creates a pseudonym according to a request from a mobile phone which has acquired RFID information, and transmits the created pseudonym to the mobile phone(S210). Receiving the pseudonym, the mobile phone transmits the received pseudonym and the acquired RFID information to an RFID service provider(S220). The RFID service provider transmits contents equivalent to the RFID information to the mobile phone(S230).
Abstract translation: 提供了一种用于防止移动电话的位置跟踪和阻止在移动RFID(射频识别)服务网络中的服务使用的拒绝的方法和系统,以通过防止服务提供商跟踪移动的位置的位置来保证每个人的隐私 用户,并通过在拒绝移动用户的服务使用情况下有效地验证移动RFID服务来振兴移动RFID服务。 移动服务提供商根据来自已经获取RFID信息的移动电话的请求创建假名,并将创建的假名发送到移动电话(S210)。 接收假名,移动电话将接收到的假名和获取的RFID信息发送给RFID服务提供商(S220)。 RFID服务提供商将与RFID信息相当的内容发送到移动电话(S230)。
-
公开(公告)号:KR100785811B1
公开(公告)日:2007-12-13
申请号:KR1020060123402
申请日:2006-12-06
Applicant: 한국전자통신연구원
CPC classification number: H04L29/06816 , G06K7/10297 , G06K17/0022
Abstract: An RFID security system and a method thereof are provided to enable a user to block access from illegal RFID readers by notifying a user of a use state of an RFID tag. A RFID tag(110) performs inter-authentication with the RFID reader(120) based on a service provision message including an RFID reader ID received from the RFID reader. An authentication server(130) authenticates the RFID reader and the service provided through the RFID reader based on a service authentication request message including the RFID reader ID received from the RFID reader. A user terminal determines validity of the service provided from the RFID reader by comparing the RFID reader ID received from the authentication server with the RFID reader ID received from the RFID tag. The authentication server includes a receiver receiving the service authentication request message, an authenticator authenticating the RFID reader and the service provided through the RFID reader based on the received message, and a transmitter transmitting ID information of the authentication RFID reader and service to the user terminal.
Abstract translation: 提供RFID安全系统及其方法,以使用户能够通过向用户通知RFID标签的使用状态来阻止来自非法RFID读取器的访问。 RFID标签(110)基于包括从RFID读取器接收的RFID读取器ID的服务提供消息来执行与RFID读取器(120)的互认。 认证服务器(130)基于从RFID读取器接收的包括RFID读取器ID的服务认证请求消息来认证RFID读取器和通过RFID读取器提供的服务。 用户终端通过将从认证服务器接收的RFID读取器ID与从RFID标签接收到的RFID读取器ID进行比较来确定从RFID读取器提供的服务的有效性。 认证服务器包括接收服务认证请求消息的接收者,基于接收到的消息来认证RFID读取器和通过RFID读取器提供的服务的认证器,以及将认证RFID读取器和服务的ID信息发送到用户终端的发送器 。
-
公开(公告)号:KR1020070062198A
公开(公告)日:2007-06-15
申请号:KR1020050121980
申请日:2005-12-12
Applicant: 한국전자통신연구원
CPC classification number: H04L63/1416 , H04L63/101 , H04L63/205
Abstract: A system and method for controlling access to an RFID(Radio Frequency Identification) application level event service are provided to prevent a service from being provided to an unauthorized user without a permission, and a leakage of resources. An intrusion detecting unit(142) determines whether RFID middleware(13), which provides an RFID application level event service to a client host who has requested the corresponding service, has been illegally intruded or not by referring to audit information on the client host. An access control performing unit(143) receives a notification about the detection of an intrusion and controls access of the host to the event service. A security agreement unit(144) performs a security agreement with the host according to a security state of the middleware(13) communicating with the host.
Abstract translation: 提供了用于控制对RFID(射频识别)应用级事件服务的访问的系统和方法,以防止在未经许可的情况下将服务提供给未经授权的用户和资源泄露。 入侵检测单元(142)通过参考客户主机上的审核信息来确定是否已经被请求了相应服务的客户端主机提供RFID应用级事件服务的RFID中间件(13)已被非法入侵。 访问控制执行单元(143)接收关于入侵检测的通知并控制主机对事件服务的访问。 安全协议单元(144)根据与主机通信的中间件(13)的安全状态,与主机执行安全协议。
-
114.发明公开팬시 스티커 타입의 RFID 태그, 및 그를 이용한보안(프라이버시) 강화된 온/오프라인 연계 방법 및 그단말기 장치 失效FANCY STICKER型RFID标签,使用其的终端设备的隐私保护的ON / OFF-LINE连接方法
公开(公告)号:KR1020070042750A
公开(公告)日:2007-04-24
申请号:KR1020050098694
申请日:2005-10-19
Applicant: 한국전자통신연구원
IPC: G06F15/00
Abstract: 본 발명은 팬시(Fancy) 스티커 타입의 RFID 태그, 및 그를 이용한 보안(프라이버시) 강화된 온/오프라인 연계 방법 및 그 단말기 장치에 관한 것이다. 이를 위하여 단말기 장치는 RFID리더를 포함하고, 프라이버시 관리시스템과 연계되어 원하는 사람만이 태그정보에 접근하도록 한다.
기존 RFID 또는 모바일 RFID 응용 서비스 모델은 사업자들이 RFID 태그를 상품에 부착하여 물류/유통 관리 및 상품의 광고, 정보의 전달 등의 목적으로 사용하는 것인데 반하여, 본 발명에서는 사용자들이 개인 용도로 RFID 태그를 활용할 수 있도록 하기 위해, 팬시(Fancy) 스티커 타입의 RFID 태그에 직접 자신의 프라이버시와 관계된 정보 또는 링크 정보를 저장하도록 한다.
이에 따라, 본 발명은 RFID 리더를 장착한 모바일 디바이스의 보급이 활성화 되고 태그의 값이 저렴해져 모바일 RFID 서비스가 활성화되는 경우, RFID 태그에 직접 자신의 프라이버시와 관계된 정보 또는 링크 정보를 저장하여 개인적으로 활용하고자 하는 소비자들의 욕구를 충족시킬 수 있으며, RFID 태그에 저장되는 프라이버시와 관계된 정보 또는 링크 정보에 사용자가 원하는 사람만이 접근할 수 있도록 하는 프라이버시 보호 메커니즘을 제공함으로써 신뢰성있고 안전한 서비스를 제공할 수 있다.-
公开(公告)号:KR100656406B1
公开(公告)日:2006-12-11
申请号:KR1020050114719
申请日:2005-11-29
Applicant: 한국전자통신연구원
IPC: G06F7/48
Abstract: A finite operation device for ONB(Optimal Normal Basis) is provided to trade off an area and performance according to system requirement, and perform finite multiplication and finite reverse multiplication for the ONB with one operator by setting an operator mode with optimization of a finite multiplier and a finite reverse multiplier. The first multiplexer(100) selects a reverse multiplication input value or the first middle operation value. A register(200) stores the value selected by the first selector. A shifter(400) performs a cyclic shift operation of the selected value. The second multiplexer(300) selects multiplicand input of an ONB multiplier(600) by receiving output of the first register and the first middle operation value. The third multiplexer(500) selects multiplier input of the ONB multiplier by receiving the output of the shifter and the second middle operation value. The ONB multiplier performs the ONB finite multiplication by receiving the output of the second and third multiplexer. An output multiplexer(700) selects an output value of the ONB multiplier depending on the performed operation.
Abstract translation: 提供了用于ONB(最优正常基准)的有限操作装置以根据系统需求折衷区域和性能,并且通过使用有限乘法器的优化来设置操作员模式,用一个操作者对ONB执行有限乘法和有限反向乘法 和一个有限的反向乘法器。 第一多路复用器(100)选择反向乘法输入值或第一中间操作值。 寄存器(200)存储由第一选择器选择的值。 移位器(400)执行所选值的循环移位操作。 第二多路复用器(300)通过接收第一寄存器的输出和第一中间操作值来选择ONB乘法器(600)的被乘数输入。 第三多路复用器(500)通过接收移位器的输出和第二中间操作值来选择ONB乘法器的乘法器输入。 ONB乘法器通过接收第二和第三多路复用器的输出来执行ONB有限乘法。 输出多路复用器(700)根据执行的操作选择ONB乘法器的输出值。
-
Patent Agency Ranking
公开(公告)号:KR100656356B1
公开(公告)日:2006-12-11
申请号:KR1020050099601
申请日:2005-10-21
Applicant: 한국전자통신연구원
IPC: G06K19/073 , G06K19/07 , G06K19/077
Abstract: A system and a method for hiding an RFID(Radio Frequency IDentification) tag ID are provided to secure security of a mobile RFID service by hiding the RFID tag ID attached to an article, as the RFID tag ID is continuously changed by using a mobile terminal embedded with an RFID reader. A temporary ID generator(202) generates a temporary ID for hiding a unique ID of the RFID tag(101) attached to the article from the outside by encoding the unique ID of the RFID tag. An ID recoding controller(203) records the generated temporary ID to a tag ID recording area of the RFID tag. An ID decoder(204) decodes the recorded temporary ID in case that a situation for using the unique ID is generated after the temporary ID is recorded to the recording area. The temporary ID is generated by concatenating a random number to the unique ID.
Abstract translation: 随着RFID标签ID通过使用移动终端连续地改变,通过隐藏附加到物品的RFID标签ID来提供用于隐藏RFID(射频识别)标签ID的系统和方法以确保移动RFID服务的安全性 嵌入一个RFID阅读器。 临时ID生成器(202)通过对RFID标签的唯一ID进行编码,从外部生成用于隐藏附加到物品的RFID标签(101)的唯一ID的临时ID。 ID记录控制器(203)将生成的临时ID记录到RFID标签的标签ID记录区域。 在将临时ID记录到记录区域之后产生使用唯一ID的情况的情况下,ID解码器(204)对记录的临时ID进行解码。 临时ID是通过将随机数连接到唯一ID而生成的。
-
公开(公告)号:KR1020040050742A
公开(公告)日:2004-06-17
申请号:KR1020020077902
申请日:2002-12-09
Applicant: 한국전자통신연구원
IPC: H04L9/30
CPC classification number: H04L9/302 , H04L9/3066
Abstract: PURPOSE: A public key encryption apparatus based on the prime field is provided, which improves the efficiency of the system as well is commonly utilized in various system required to operate encryption operation. CONSTITUTION: A public key encryption apparatus(100) based on the prime field includes a register(110), an RSA operational block(160), a modular inverse element calculation block(175), an ellipse curve calculation block(180), a modular operational block(170) and a controller(130). The register(110) stores the various data for the encryption operation. The RSA operational block(160) performs the RSA public key encryption operation. The modular inverse element calculation block(175) calculates the inverse element of the data based on the prime field. The ellipse curve calculation block(180) performs the ellipse curve public key encryption operation. The modular operational block(170) performs the repeat operation in the unit of the 32 bits so as to perform the RSA/ellipse curve encryption operations. And, the controller(130) reads/writes the data required to the encryption operation from the register(110) and controls the operations of each block to perform the encryption operation.
Abstract translation: 目的:提供基于素数字段的公钥加密装置,提高了系统的效率,并且通常用于操作加密操作所需的各种系统。 构成:基于主场的公开密钥加密装置(100)包括寄存器(110),RSA操作块(160),模块化反向元素计算块(175),椭圆曲线计算块(180), 模块化操作块(170)和控制器(130)。 寄存器(110)存储用于加密操作的各种数据。 RSA操作块(160)执行RSA公钥加密操作。 模块逆元素计算块(175)基于素数域计算数据的逆元素。 椭圆曲线计算块(180)执行椭圆曲线公钥加密操作。 模块化操作块(170)以32位为单位执行重复操作,以便执行RSA /椭圆曲线加密操作。 并且,控制器(130)从寄存器(110)读取/写入加密操作所需的数据,并控制每个块的操作以执行加密操作。
-
公开(公告)号:KR100416233B1
公开(公告)日:2004-01-31
申请号:KR1020010082619
申请日:2001-12-21
Applicant: 한국전자통신연구원
IPC: H04L9/14
Abstract: PURPOSE: An encryption system for an F8 encryption algorithm and an F9 integrity verification algorithm of IMT(International Mobile Telecommunication)-2000 system is provided to enhance the security of data by using a data encryption calculator between a terminal and an RNC system. CONSTITUTION: An encryption system includes an input/output system bus(10), a register file(11), a memory portion(13), and an F8_F9 calculator(12). The register file is used for storing input variables of an F8 encryption algorithm and an F9 integrity verification algorithm. The memory portion stores encoded output data and authentication code generation object data of the F8 encryption algorithm and the F9 integrity verification algorithm. The F8_F9 calculator performs selectively the F8 encryption algorithm and the F9 integrity verification algorithm in order to provide a message authentication code to the register file and output the encoded output data to the memory portion.
Abstract translation: 目的:提供IMT(国际移动电信)-2000系统的F8加密算法和F9完整性验证算法的加密系统,以通过在终端和RNC系统之间使用数据加密计算器来增强数据的安全性。 组成:加密系统包括输入/输出系统总线(10),寄存器文件(11),存储器部分(13)和F8_F9计算器(12)。 寄存器文件用于存储F8加密算法和F9完整性验证算法的输入变量。 存储器部分存储F8加密算法和F9完整性验证算法的编码输出数据和认证码生成对象数据。 F8_F9计算器选择性地执行F8加密算法和F9完整性验证算法,以便向寄存器文件提供消息认证码并将编码的输出数据输出到存储器部分。
-
公开(公告)号:KR100399048B1
公开(公告)日:2003-09-26
申请号:KR1020010034306
申请日:2001-06-18
Applicant: 한국전자통신연구원
IPC: G09C1/00
Abstract: PURPOSE: An ellipse curve encryption device is provided to have a high security with maintaining a short key so as to authenticate a user in a system restricted in area such as an integrated(IC) card and to exchange the key values of the symmetric key system. CONSTITUTION: An ellipse curve encryption device includes a first storing register(201) for storing operational coefficient values of an ellipse curve encryption, a second storing register(202) for storing input values of operation for the ellipse curve encryption, an ellipse curve encryption operation module(205) for implementing the ellipse curve encryption operation by using the valued stored at the first and the second registers(201,202), a third register(203) for inputting to the ellipse curve encryption operation module(205) so as to use the following operation after the output value form the ellipse curve encryption operation module is stored at the register and an ellipse curve encryption controller(204) for controlling the ellipse curve encryption operation module(205) in response to the value stored the first register(201) and for managing the transmission of the operation result.
Abstract translation: 目的:提供一种椭圆曲线加密装置,其具有高度的安全性和维持短密钥以便在诸如集成(IC)卡之类的受限区域内的系统中对用户进行认证并且交换对称密钥系统的密钥值 。 用于存储椭圆曲线加密的运算系数值的第一存储寄存器(201),用于存储椭圆曲线加密的运算的输入值的第二存储寄存器(202),椭圆曲线加密运算 模块(205),用于通过使用存储在第一和第二寄存器(201,202)中的值来执行椭圆曲线加密操作;第三寄存器(203),用于输入到椭圆曲线加密操作模块(205)以便使用 在从椭圆曲线加密操作模块的输出值存储在寄存器之后的操作之后的操作和用于响应于存储在第一寄存器(201)中的值来控制椭圆曲线加密操作模块(205)的椭圆曲线加密控制器(204) 并管理运行结果的传输。
-
公开(公告)号:KR1020030055732A
公开(公告)日:2003-07-04
申请号:KR1020010085801
申请日:2001-12-27
Applicant: 한국전자통신연구원
IPC: H04L9/14
CPC classification number: H04L9/14 , H04L2209/125
Abstract: PURPOSE: An encryption processing apparatus for a high speed radio network switch is provided to process much data at a time with high throughput and little response time and to process little data rapidly with a little delay time. CONSTITUTION: According to the encryption processing apparatus for a high speed radio network switch performing security processing and integrity verification encryption algorithm processing in the high speed radio network switch, a memory memorizing device part(101) stores input/output protocol packet or data and command and control signals extracted from the packet. A shared memory memorizing device part(102) stores a packet and a control signal and command and data extracted from the packet. A memory control part(105) performs input/output control and synchronization of the memory memorizing device part and the shared memory memorizing device part. An encryption processing device part(107) processes security and integrity verification encryption algorithm. An external input/output control part(108) controls external input/output. An external network interface block(109) performs packet analysis operation as to a packet received from an external network connection network, and transmits the analyzed packet to the encryption processing device part or the memory memorizing device part or the shared memory memorizing device part. And a central processing part(100) performs basic protocol analysis and packet processing, memory management, shared memory management and encryption processor control.
Abstract translation: 目的:提供一种用于高速无线网络交换机的加密处理装置,以高吞吐量和较小的响应时间一次处理大量数据,并在稍微延迟的时间内快速处理一些数据。 构成:根据在高速无线网络交换机中执行安全处理和完整性验证加密算法处理的高速无线网络交换机的加密处理装置,存储器存储装置部分(101)存储输入/输出协议分组或数据和命令 以及从分组提取的控制信号。 共享存储器存储设备部分(102)存储从分组提取的分组和控制信号以及命令和数据。 存储器控制部分(105)执行存储器存储器件部分和共享存储器存储器件部分的输入/输出控制和同步。 加密处理设备部分(107)处理安全性和完整性验证加密算法。 外部输入/输出控制部分(108)控制外部输入/输出。 外部网络接口块(109)对从外部网络连接网络接收到的分组执行分组分析操作,并将分析的分组发送到加密处理装置部分或存储器存储装置部分或共享存储器存储装置部分。 并且中央处理部分(100)执行基本协议分析和分组处理,存储器管理,共享存储器管理和加密处理器控制。
-
-
-
-
-
-
-
-
-
Search Results
221
records
(took 0.025 seconds)
