Journal of the Korea Institute of Information and Communication Engineering (한국정보통신학회논문지)

The Korea Institute of Information and Commucation Engineering (한국정보통신학회)
권호 표지
DOI QR코드

DOI QR Code

USB Device Authentication Protocol based on OTP

OTP 기반의 USB 디바이스 인증 프로토콜

  • 정윤수 (한남대학교 산업기술연구소) ;
  • 김용태 (한남대학교 멀티미디어학부) ;
  • 박길철 (한남대학교 멀티미디어학부)
  • Received : 2011.03.09
  • Accepted : 2011.06.12
  • Published : 2011.08.31
Download PDF
⟨ Previous Next ⟩

Abstract

Now a days, as a mass-storage USB becomes comfortable to carry, function of USB is being developed fast. However, there is a problem that the personal information which is stored in USB could be exposed being used with negative purpose without other certification process. This paper suggests OTP(One-Time Password)-based certification protocol of USB to securely protect personal information stored in USB without additional certification information. The proposed OTP based certification protocol of USB not only demands low calculations but also prevents physical approach of USB of other network and does not allow unnecessary service access of user because it conducts simple action and uses one-way hash function. Therefore, communication overhead and service delay is improved. In the experiment, the proposed protocol compares and evaluates throughput of certification server according to the numbers of USB and delay time of packet certification with a device(USB driver) which simply save device and a device(USB Token) which can calculate by oneself. As a result, it is improved as the number of 12.5% in the certification delay time on average and is improved as the number of 10.8% in the throughput of certification server according to the numbers of USB.

최근 대용량의 USB 장치가 휴대하기 편리해지면서 USB 장치의 기능성 또한 빠르게 발전하고 있다. 그러나, USB 장치에 저장되어 있는 개인정보는 별도의 사용자 인증 과정없이 악의적인 목적으로 사용되어 개인정보가 노출될 수 있는 문제가 있다. 이 논문에서는 USB에 저장되어 있는 사용자의 개인정보를 추가 인증 정보 없이 안전하게 보호하기 위한 OTP(One-Time Password)기반의 USB 인증 프로토콜을 제안한다. 제안된 OTP 기반의 USB 인증프로토콜은 일방향 해쉬 함수를 사용하여 단순한 동작을 수행하기 때문에 낮은 계산을 요구할 뿐만 아니라 서로 다른 네트워크에서 USB 장치의 불리적인 접근을 예방하고 사용자의 불필요한 서비스 액세스를 허용하지 않기 때문에 통신 오버헤드 및 서비스 지연이 향상되었다. 실험에서 제안 프로토콜은 패킷 인증 지연시간과 USB 수에 따른 인증서버의 처리량을 단순파일 저장매체(USB driver)와 자체 연산 가능한 매체(USB Token) 등과 비교 평가하였으며, 실험 결과 인증 지연시간에서 평균 12.5% 향상되었고 USB수에 따른 인증서버의 처리량에서는 평균 10.8% 향상된 결과를 얻을 수 있었다.

Keywords

Acknowledgement

Supported by : 지식경제부

References

  1. D. W. Kim, J. W. Han, and K. I. Chung, "Trend of Home Device Authentication/Authorization Technology", Weekly IT BRIEF, No. 1329, pp. 1-11, 2008.
  2. J. H. Kim, J. W. Gi, and C. K. Kim, "A User Authentication Method between Domains Using Privilege Certificates", Korea Institute of Information Security&Cryptology, Journal of KIISC, 18(6A), pp. 75-83, Dec. 2008.
  3. J. S. Moon, D. G. Lee, I. Y. Lee, "Device Authentication/Authorization PRotocol for Home Network in Next Generation Security", Advances in Information Security and Assurance(ISA 2009), LNCS 5576, pp. 760-768, Jun. 2009.
  4. S.Y. Lee, K.B. Yim, K.J. Bae, Taeyoung Jeong, and Jong-Wook Han, "Counterplan of Ubiquitous Home Network Privacy based on Device Authentication and Authorization," Korea Institute of Information Security & Cryptology, Review of KIISC, 18(5), pp.125-131, Oct. 2008.
  5. W.J. Lee, and I.S. Jeon, "Attribute-base Authenticated Key Agreement Protocol over Home Network", Journal of Korea Institute of Information Security & Cryptology (KIISC), 18(5), pp.49-57, Oct. 2008
  6. "Device Certificate Profile for the Home Network", TTAS.KO-12.0052, 2007.
  7. STEALTH MXP FAMILY MXI Security, http://www.mxisecurity.com/
  8. IronKey, https://www.ironkey.com/
  9. P. J. Bakker et al. "Investing Secure USB sticks", Nov. 2007.
  10. S. H. Lee, J. Kwak and I. Y. Lee, "The Study on The Security Solutions of USB Memory", Proceedings of the 4th International Conference Ubiquitous Information Technologies & Applications, 2009(ICUT'09), pp. 1-4, Dec. 2009.