학술논문
스마트 홈 환경에서 분산원장 ID 기반의 안전한 인증프레임워크 설계 / A Design of Secure Authentication Framework Based on Distributed Ledger ID in Smart Home Environments
Document Type
Dissertation/ Thesis
Author
Source
Subject
Language
Korean
Abstract
4차 산업혁명이 크게 대두됨에 따라 단일로 동작되며 정보를 수집하고 처리하던 사물들에 IoT(Internet of Things) 개념이 더해지며 Wi-Fi나 근거리 무선통신(NFC), 혹은 블루투스와 같은 네트워크에 연결가능한 칩셋을 장착하게 되어 사물들끼리 정보를 주고받아 사용자에게 유용한 정보들을 제공하게 되었다.IoT 환경의 제품으로 구분되는 디바이스는 가전제품, 웹 캠, 웨어러블 디바이스 등 다양한 임베디드 기기들이 해당된다. 이러한 IoT 환경은 기존의 환경에 뛰어난 호환성을 기반으로 다양한 분야에 빠르게 적용되고 있다. 개인 분야에서는 헬스케어, 커넥티드 카, 스마트 홈과 같은 환경에 적용되고 있으며, 산업 분야에서는 스마트 팩토리, 스마트 팜, 스마트 물류배송과 같은 환경에 점차적으로 적용되고 있다. 하지만 IoT 환경을 기반으로 네트워크에 연결된 디바이스들은 오프라인에서 사용되는 소형화된 임베디드 기기로 PC 기반의 보안 기법들을 그대로 적용하는 것은 전력에 대한 효율성과 연산능력의 한계로 인해 그대로 적용시키기 힘들기 때문에 보안에 대한 기능은 미흡하다. 무엇보다도 사용자가 서비스를 이용하기 위해 디바이스에 접근하는 인증과정이 취약하면 공격자가 사용자인 것처럼 디바이스에 접속하여 사용자에 대한 개인정보 등을 침해할 수 있다는 치명적인 문제점이 있다.본 논문에서는 개인의 프라이버시가 담긴 정보가 빈번하게 교류되는 스마트 홈 환경에서 분산원장 방식의 블록체인을 활용한 분산원장 ID 기반의 사용자 인증프레임워크를 설계한다. 그리고 C-PBFT 기반의 디바이스 인증 프로토콜에 대한 성능을 비교 분석한다. 본 논문 연구는 전력 효율성의 한계를 가지고 있는 IoT 디바이스에 대한 경량화된 방식의 디바이스 인증 프로토콜을 적용하여 개인 프라이버시 침해없이 안전하게 사용자가 스마트 홈 환경을 이용할 수 있도록 한다.
With the advent of the Fourth Industrial Revolution, things that were working in a single way and that were collecting and processing information were equipped with an Internet of Things(IoT) concept and equipped with chipsets that could be connected to networks such as Wi-Fi, NFC, or Bluetooth, to send and receive information between objects and provide useful information to users.Devices that are categorized as products in IoT environments include a variety of embedded devices such as home appliances, webcams and wearable devices. These IoT environments are rapidly being applied to various fields based on their excellent compatibility with existing environments. In the personal sector, it is applied to environments such as healthcare, connected cars and smart homes, and in the industrial sector it is gradually applied to environments such as smart factory, smart farm and smart logistics delivery. However, devices connected to the network based on the IoT environment are smallized embedded devices used offline, and the application of PC-based security techniques is difficult due to the limitations of efficiency and computational capabilities for power, so security functions are insufficient. Above all, the critical problem is that the user's weak authentication process to access the device to use the service can violate the privacy of the user, etc. by accessing the device as if the attacker were the user.In this paper, a distributed ledger ID-based user authentication framework is designed using distributed ledger blockchain in a smart home environment where information containing personal privacy is frequently exchanged. And compare and analyze the performance of the device authentication protocol based on C-PBFT. This paper study applies a lightweight device authentication protocol for IoT devices that have limitations in power efficiency, so that users can safely use the smart home environment without compromising personal privacy.
With the advent of the Fourth Industrial Revolution, things that were working in a single way and that were collecting and processing information were equipped with an Internet of Things(IoT) concept and equipped with chipsets that could be connected to networks such as Wi-Fi, NFC, or Bluetooth, to send and receive information between objects and provide useful information to users.Devices that are categorized as products in IoT environments include a variety of embedded devices such as home appliances, webcams and wearable devices. These IoT environments are rapidly being applied to various fields based on their excellent compatibility with existing environments. In the personal sector, it is applied to environments such as healthcare, connected cars and smart homes, and in the industrial sector it is gradually applied to environments such as smart factory, smart farm and smart logistics delivery. However, devices connected to the network based on the IoT environment are smallized embedded devices used offline, and the application of PC-based security techniques is difficult due to the limitations of efficiency and computational capabilities for power, so security functions are insufficient. Above all, the critical problem is that the user's weak authentication process to access the device to use the service can violate the privacy of the user, etc. by accessing the device as if the attacker were the user.In this paper, a distributed ledger ID-based user authentication framework is designed using distributed ledger blockchain in a smart home environment where information containing personal privacy is frequently exchanged. And compare and analyze the performance of the device authentication protocol based on C-PBFT. This paper study applies a lightweight device authentication protocol for IoT devices that have limitations in power efficiency, so that users can safely use the smart home environment without compromising personal privacy.