Introduction of Information Security Research Division

Transcription

1 Introduction of Information Security Research Division Kyo-il Chung, Ph. D. Information Security Infrastructure Research Group

2 Contents Overview - Secure u-it KOREA - Organization of ETRI Information Security Research Division - Network Security Research Group - Information Security Infrastructure Research Group

3 Secure u-it KOREA Embedded S/W IT Soc Digital Contents Next Generation Mobile Communications u-it KOREA Telematics Digital TV Security Intelligent Service Robot Home Network Next Generation PC

4 Organization of ETRI Established in 1976 Korea s s largest government funded research facility in the fields of IT & Comm. R&D Fields : Semiconductors, Mobile Communications, Networks, Security, etc.

5 Organization of ISRD Information Security Research Division Project Administration Team Network Security Research Group Network Security Architecture Team Security Gateway System Team Secure OS Research Team Active Security Research Team Privacy Protection Research Team P2P Security Research Team Home Network Security Research Team Information Security Infrastructure Research Group Cryptography Research Team Digital ID Security Research Team RFID/USN Security Research Team Biometrics Technology Research Team Biometrics Chipset Research Team Bio Sensor Research Team Wireless Security Application Research Team

6 R&D Themes of Network Security Research Group Next Generation Security System Tech. Security Gateway System Secure Router System Security Management System Harmful Contents Detection and Filtering Tech. Network Security Tech. for P2P Overlay Networks over Wired/Wireless IPV6 Infrastructures Authentication and Authorization Tech. for Home Networks

7 Research Areas of Information Security Infrastructure Group (1) Cryptographic Algorithm and Protocol Next Generation Cryptographic Algorithm Design & Analysis High-speed Cryptographic Processor Design Privacy Enhancing Technology Digital ID Security Internet ID Management Technology Autonomous Identity Federation Bridging Technology RFID/USN Security Light-weight Crypto Algorithm for RFID & Sensor Network Low Power & High Speed Processor Security Mechanism for RFID/USN Environments

8 Research Areas of Information Security Infrastructure Group (2) User Identification Technology Using Biometrics Multi-modal Biometric & Searching Technology Biometric Chipset & Bio Sensor Technology Biometric Data Protection Development of Secure Platform for Wireless Network Inter-working Security Technology for USIM based WCDMA, WiBro & WLAN Security Platform

9 Cryptography Research

10 Digital ID Security Research Provider ID Service User ID Database e-government Discovery Service ID Federation Bridge Service ID Federation Bridge Server ID Information Providing Service Internet ID Server Private Information Preserving Service Single ID Management Service Internet SSO Service e-commerce Discovery Server User User A Privacy Controller User B

11 RFID/USN Security Research Active RFID Security Technology Low Power AES, Hash Module(20uW) Light-weight Security Module Supply Chain Application (e-seal Application) Active RFID Secure Tag Mobile RFID Security Technology Passive RFID Tag + Security Mechanism Front-end M/W Mobile RFID Reader(Phone) Data Filtering Reader Management Active Secure Reader (Portable) G/W RFID Security Middleware - Data Filtering - Analyzer Business Event - EPC IS I/F - Privacy, Authentication RFID System for Detecting Weakness - Data Collecting /Management - Detecting Abnormal RF Traffic Signal - Monitoring the Weakness RFID Security Server - Security EPC IS Server - Privacy Scheme - Security OTS Server - PML, XML Security Mobile RFID Application (Gallery, e-check)

12 Development of Biometric Chipset Biometric Process Standard based Application System such as Bio-API User Register/Auth. Service Application Layer Application Program Authentication Register Management Biometric Application Platform Bio-API API Bio-API Framework Biometric Process Interface Bio-API Layer Data Processing Layer Processing Biometric Data Biometric Data Processing Module (CBEFF) Biometric Chip Reader Interface Module Biometric acquiring Module (Fingerprint/Face /Iris/Vein Pattern) Extracting Module (face/) Single/Multi-modal Processing Within Biometric Data Apparatus for Chip Chip Reader Sensor for Acquiring Finger Face Print Sensor Device Layer Iris Sensor Vein Pattern

13 Secure Platform for Wireless Network Portable internet terminal USIM PKI WiBro USIM PKI Terminal interworking 3G terminal Triple-mode terminal WCDMA USIM /WiBro web Authen. proxy Roaming server 3G(IMT-2000)web Authen. proxy Roaming server P W L A N UAGS WLAN web Authen. proxy Roaming server WLAN terminal Authen. proxy Roaming server 2G CDMA 2G terminal SIM Security for Terminal-client PKI Triple-mode terminal USIM : Universal Subscriber Identity Module UAGS : USIM Access Gateway Subsystem Interworking between roaming server for Triple-mode terminal

14 Future R&D Plans in Information Security Infrastructure Group Powerful Initiative Information Security Privacy Preserving Tech. Next Generation Cryptography PETs Cryptographic Protocols High-level Service for Ubiquitous Environments Efficient Digital ID Management Wireless Network System RFID/USN Service Conversion of BT & IT Multi-modal Biometric Identification Tech. Biosensor

15 Thank You for your Attention!