公开(公告)号：WO2012070912A3

公开(公告)日：2012-05-31

申请号：PCT/KR2011/009078

申请日：2011-11-25

Applicant: 한국과학기술정보연구원 ,  박형우 ,  윤희준 ,  유진승 ,  장행진

Inventor： 박형우 ,  윤희준 ,  유진승 ,  장행진

IPC: H04L12/28 ,  H04L9/32

Abstract: 사용자와 특정 시간의 네트워킹 행위에 관한 동시 공증을 통하여 사용자 인증과 트래픽 인증을 대신하고 한 번의 시도로 여러 개의 방화벽을 동시에 동적으로 통과할 수 있는 다중 방화벽 동적 통과 방법이 개시된다. 다중 방화벽 동적 통과 방법은 약속된 절차에 의해 사용자 서버와 응용 서버가 TCP/IP의 3-wqy 핸드쉐이킹 과정 중에서 2번째 과정 까지를 시뮬레이션하고 정해진 시각에서 3번째의 과정이 수행될 수 있게 한다. 약속된 절차는 공증 서버에서 발행한 공증서에 근거하여 발생된다.

公开(公告)号：KR1020120046515A

公开(公告)日：2012-05-10

申请号：KR1020100108209

申请日：2010-11-02

Applicant: 한국과학기술정보연구원

Inventor： 유진승 ,  장행진 ,  박형우 ,  윤희준 ,  류재철 ,  유성민

IPC: H04L9/32 ,  G06Q20/02 ,  G06F21/46

Abstract: PURPOSE: A method for authenticating one time password and an apparatus thereof are provided to use a one time password without a hardware device for producing the one time password. CONSTITUTION: A table for inputting one time password is generated by a security server. The security server generates and verifies a table for inputting one time password by using a PIN(Personal Identification Number) of a user. The security server draws out the PIN number of the user(S202). User information is informed to the security server by a security client. The security server generates the table by using a drawn PIN number(S204). A generated table is transmitted(S206).

Abstract translation: 目的：提供用于验证一次性密码的方法及其装置，以使用一次密码，而不需要硬件设备来产生一次性密码。 构成：用于输入一次性密码的表由安全服务器生成。 安全服务器通过使用用户的PIN（个人识别码）生成并验证用于输入一次密码的表。 安全服务器抽出用户的PIN号码（S202）。 用户信息由安全客户端通知安全服务器。 安全服务器使用绘制的PIN号码生成表（S204）。 发送生成的表（S206）。

公开(公告)号：KR101307573B1

公开(公告)日：2013-11-21

申请号：KR1020110125399

申请日：2011-11-28

Applicant: 한국과학기술정보연구원

Inventor： 윤희준 ,  이종후 ,  노서영 ,  박형우 ,  장행진

IPC: G06F21/60

Abstract: 본 발명의 일 실시예는 데이터 암호화에 사용될 암호키를 생성하는 단계; 성가 생성한 암호키를 이용하여 데이터를 암호화하는 단계; 상기 암호키를, 상기 암호키의 복원에 필요한 가중키조각 및 적어도 하나 이상의 암호키조각으로 분리하는 단계; 및 상기 분리된 가중키조각 및 상기 적어도 하나 이상의 암호키조각을 각각 저장하기 위해 전송하는 단계를 포함하는 데이터 암호 방법을 제공한다.

公开(公告)号：KR1020120057225A

公开(公告)日：2012-06-05

申请号：KR1020100118873

申请日：2010-11-26

Applicant: 한국과학기술정보연구원

Inventor： 박형우 ,  윤희준 ,  유진승 ,  장행진

IPC: H04L12/28 ,  H04L9/32

CPC classification number: H04L9/3263 ,  H04L63/029 ,  H04L63/08

Abstract: Disclosed is a method for dynamically traversing multiple firewalls, in which user authentication and traffic authentication are replaced by the simultaneous authentication of a user and networking behavior conducted at a specific time to simultaneously and dynamically traverse multiple firewalls through one trial. The method for dynamically traversing multiple firewalls enables a user server and an application server to simulate first and second processes from among three-way handshaking processes of TCP/IP in accordance with an agreed procedure, and perform a third process of the three-way handshaking process at a predetermined time. The agreed procedure is generated on the basis of an authentication certificate issued by an authentication server.

公开(公告)号：KR1020100068728A

公开(公告)日：2010-06-24

申请号：KR1020080127183

申请日：2008-12-15

Applicant: 한국과학기술정보연구원

Inventor： 유진승 ,  변옥환 ,  장행진 ,  박상배 ,  이민선 ,  이형진 ,  김종원 ,  최고

IPC: G06F15/16

Abstract: PURPOSE: A system and a method for sharing lifelike media are provided to share high quality lifelike media of VP(Video Presence), thereby providing environment with reality and immersion. CONSTITUTION: A reality media generation device(100) assigns same multicast address and each different port number photographed by a plurality of photographing units(110). The reality media generation device transmits a SDP(Session Description Protocol) message to a plurality of clients(200). At least one of clients extract service attribute information through analysis of the SDP message of the reality media generation device. The client outputs an image of a selected photographing unit or a multi view image of a plurality of photographing units.

Abstract translation: 目的：提供一种用于共享逼真媒体的系统和方法，以共享VP（视频存在）的高品质栩栩如生的媒体，从而为环境提供现实和沉浸。 构成：现实媒体生成装置（100）分配由多个拍摄单元（110）拍摄的相同的多播地址和每个不同的端口号。 现实媒体生成装置向多个客户端（200）发送SDP（会话描述协议）消息。 客户端中的至少一个通过分析现实媒体生成设备的SDP消息来提取服务属性信息。 客户端输出多个拍摄单元的所选拍摄单元或多视图图像的图像。

公开(公告)号：KR1020130059205A

公开(公告)日：2013-06-05

申请号：KR1020110125399

申请日：2011-11-28

Applicant: 한국과학기술정보연구원

Inventor： 윤희준 ,  이종후 ,  노서영 ,  박형우 ,  장행진

IPC: G06F21/60

CPC classification number: G06F21/602 ,  H04L9/14

Abstract: PURPOSE: A device for coding or decoding data and a method thereof are provided to solve complexity and inefficiency of management of a coding key. CONSTITUTION: A device for coding and decoding data generates a coding key which is used for data coding(S210). The device codes data by using the generated coding key(S220). The device divides the coding key into weighted key pieces, which is necessary for reconstitution of the coding key, and one or more coding key pieces(S230). The device transmits a divided weighted key piece and one or more coding key piece to a weighted key piece storage unit and a coding key piece storage unit, respectively(S240). [Reference numerals] (S210) Generate a coding key which is used for data coding; (S220) Code data by performing a data coding process using the generated coding key; (S230) Divide the coding key used for data coding according to one or more piece keys and weighted keys to be used for decoding; (S240) Transmit the divided coding key pieces to each coding key piece storage unit and transmits the selected weighted key to a weighted key piece storage unit

Abstract translation: 目的：提供用于对数据进行编码或解码的装置及其方法，以解决编码密钥的管理的复杂性和低效率。 构成：用于对数据进行编码和解码的装置产生用于数据编码的编码密钥（S210）。 设备通过使用生成的编码密钥对数据进行编码（S220）。 该设备将编码密钥划分成用于重构编码密钥所需的加权密钥片段和一个或多个编码密钥片段（S230）。 该装置分别向加权密钥块存储单元和编码密钥块存储单元发送分割加权密钥块和一个或多个编码密钥块（S240）。 （参考号）（S210）生成用于数据编码的编码密钥; （S220）通过使用所生成的编码密钥执行数据编码处理的代码数据; （S230）根据用于解码的一个或多个片段密钥和加权密钥划分用于数据编码的编码密钥; （S240）将划分的编码关键码发送到各编码关键字块存储部，并将所选择的加权密钥发送给加权密钥片存储部

公开(公告)号：KR100554015B1

公开(公告)日：2006-02-22

申请号：KR1020020082636

申请日：2002-12-23

Applicant: 한국과학기술정보연구원

Inventor： 박형우 ,  홍정우 ,  김상완 ,  조금원 ,  장행진 ,  이종숙 ,  김은성 ,  임민열 ,  함재균 ,  구기범 ,  명훈주 ,  홍원택 ,  안준언 ,  권오경 ,  이지수 ,  이홍석 ,  정영균 ,  성춘호 ,  이상산

IPC: H04L29/06 ,  H04L12/801

CPC classification number: H04L69/16 ,  H04L47/10 ,  H04L47/193 ,  H04L47/27 ,  H04L47/29 ,  H04L47/37 ,  H04L69/163

Abstract: Disclosed are a system and a method for controlling a data transmission adapted for a grid computing and a computer readable recording medium of recording a process thereof, in which efficiently perform a grid computing using an ultrahigh speed communication network from an ultrahigh speed communication network in a non-congestion state to a communication network in a congestion state. TCP state information-providing section stores and provides TCP state information of a network. TCP state information-initializing section initializes TCP state information. Transmission mode-judging section judges a transmission mode of data to be transmitted according to the TCP state information. Packet processor generates and transmits traffic corresponding to each transmission mode classified according to the judgment result from transmission mode-judging section.

公开(公告)号：KR1020040056443A

公开(公告)日：2004-07-01

申请号：KR1020020082636

申请日：2002-12-23

Applicant: 한국과학기술정보연구원

Inventor： 박형우 ,  홍정우 ,  김상완 ,  조금원 ,  장행진 ,  이종숙 ,  김은성 ,  임민열 ,  함재균 ,  구기범 ,  명훈주 ,  홍원택 ,  안준언 ,  권오경 ,  이지수 ,  이홍석 ,  정영균 ,  성춘호 ,  이상산

IPC: H04L29/06 ,  H04L12/801

CPC classification number: H04L69/16 ,  H04L47/10 ,  H04L47/193 ,  H04L47/27 ,  H04L47/29 ,  H04L47/37 ,  H04L69/163

Abstract: PURPOSE: A data transmission control system suitable for grid computing, method therefor and a recording medium for reading a computer storing process of the same are provided to enhance transmission capability in high speed communication network and grid network environment by adopting a virtual buffer concept. CONSTITUTION: A TCP state information initializing unit initializes TCP state information by using a pre-set initial value(S100). A transmission mode determining unit determines a transmission mode of data based on the TCP state information(S120). The transmission mode determining unit checks whether the data transmission mode is an initial mode(S130). If it is not the initial mode, the transmission mode determining unit checks whether a CWND(transmittable window) is greater than an RWND(Receive Window)(S140). If so, the transmission mode determining unit checks whether an SWND(Send Window) is the same as the RWND(S150). The transmission mode determining unit checks whether the SWND is the same as or greater than the RWND and smaller than four times a reference point(SSTHRESH) indicating start of congestion(S160). If not, the transmission mode determining unit checks whether the SWND is greater than or the same as four times the reference point or smaller than eight times the reference point(S170), it transmits data at a high speed(S180). The transmitted data is uniformly distributed and transmitted(S190). The uniformly distributed data is fully delayed(S200). It is determined whether a packet of the data has been lost(S210). The reference point is reset to half of the SWND(S220).

Abstract translation: 目的：提供一种适用于网格计算的数据传输控制系统，其方法和用于读取其计算机存储过程的记录介质，以通过采用虚拟缓冲区概念来提高高速通信网络和网格网络环境中的传输能力。 构成：TCP状态信息初始化单元通过使用预设初始值初始化TCP状态信息（S100）。 传输模式确定单元基于TCP状态信息确定数据的传输模式（S120）。 传输模式确定单元检查数据传输模式是否是初始模式（S130）。 如果不是初始模式，则发送模式确定单元检查CWND（可发送窗口）是否大于RWND（接收窗口）（S140）。 如果是，则传输模式确定单元检查SWND（发送窗口）是否与RWND相同（S150）。 传输模式确定单元检查SWND是否与RWND相同或更大，并且小于指示拥塞开始的参考点（SSTHRESH）的四倍（S160）。 如果不是，传输模式确定单元检查SWND是否大于或等于参考点的四倍或小于参考点的八倍（S170），则它以高速传输数据（S180）。 发送的数据被均匀分布和发送（S190）。 均匀分布的数据完全延迟（S200）。 确定数据包是否已丢失（S210）。 参考点重置为SWND的一半（S220）。

公开(公告)号：KR1020150063243A

公开(公告)日：2015-06-09

申请号：KR1020130147784

申请日：2013-11-29

Applicant: 한국과학기술정보연구원

Inventor： 윤희준 ,  노서영 ,  장행진 ,  류재철 ,  신진섭 ,  유성민 ,  김상우

IPC: H04N19/625 ,  A61B6/00

Abstract: 본발명은의료영상처리장치및 방법이개시된다. 본발명에따르면, DICOM 파일에저장된소정포맷형식의의료영상을기 설정된소정단위로추출하여양자화계수를도출하고도출된양자화계수를기 설정된소정블록의양자화테이블로나누어양자화하여의료영상데이터의난독화를실행함에따라, 의료영상복원시 양자화테이블에존재하는의료영상데이터의사이즈를토대로복원함에있어최소의메모리용량및 향상된속도로의료영상을복원할수 있으므로의료영상해독장비에대한의존도를최소화할수 있고, 기설정된소정단위의의료영상을 AES 암호알고리즘을이용한 AES-CBC 모드를통해암호화함에따라, 의료영상처리에대한무결정검증이가능하고, 비정상적인의료영상의획득및 암호화복원시 의료영상의복원이불가능하여암호화기능을향상시킬수 있게된다.

Abstract translation: 在本发明中，公开了用于治疗医学图像的装置和方法。 根据本发明，以预定单位提取具有特定格式类型并存储在DICOM文件中的医学图像，并且引发量化系数。 感应量化系数除以量化的预定块的量化表。 然后，医学图像数据被模糊化。 当医疗图像恢复时，基于存在于量化表中的医学图像数据的大小进行恢复。 可以以最小的存储容量和改进的速度恢复医学图像，使得对医学图像解码器的依赖性可以被最小化。 通过使用AES码算法的AES-CBC模式对预定单元的医学图像进行编码，从而可以进行医学图像处理的非选择性检查。 当获得异常的医学图像并且编码被恢复时，医学图像不可能恢复，从而可以提高编码功能。

公开(公告)号：KR1020140070762A

公开(公告)日：2014-06-11

申请号：KR1020120135039

申请日：2012-11-27

Applicant: 한국과학기술정보연구원

Inventor： 윤희준 ,  노서영 ,  장행진 ,  류재철 ,  유성민 ,  정광운

IPC: G06F21/00 ,  G06F7/58 ,  H03M7/30 ,  G06F9/06

CPC classification number: G06F21/602 ,  G06F7/588 ,  G06F21/6209

Abstract: The present invention relates to a method for partially encrypting data, an apparatus thereof, a storage medium for storing a program partially encrypting data, a method for decrypting partially-encrypted data, an apparatus thereof and a storage medium for storing a program decrypting partially-encrypted data. According to an embodiment of the present invention, a method for partially encrypting data is provided. The method comprises the steps of: initializing a random generator with an initial value; creating random numbers by the random generator; matching a data block to be encrypted with a partial digit string included in the created random number sequence and, when the partial digit string is identical to a digit string on a predefined truth table, encrypting the matched data block according to encryption information corresponding to the same digit string on the truth table; and outputting the encrypted data block.

Abstract translation: 本发明涉及数据部分加密的方法及其装置，用于存储部分加密数据的程序的存储介质，用于解密部分加密的数据的方法，其装置和用于存储部分加密数据的程序解密的存储介质， 加密数据。 根据本发明的实施例，提供了一种用于部分地加密数据的方法。 该方法包括以下步骤：初始化具有初始值的随机发生器; 由随机生成器创建随机数; 使用包含在创建的随机数序列中的部分数字串来匹配要加密的数据块，并且当部分数字串与预定义真值表上的数字串相同时，根据对应于 真相表上相同的数字串; 并输出加密的数据块。