Journal of the Korea Academia-Industrial cooperation Society (한국산학기술학회논문지)

The Korea Academia-Industrial cooperation Society (한국산학기술학회)
권호 표지
DOI QR코드

DOI QR Code

A Dual Security Technique based on Beacon

비콘 기반의 이중 보안 기법

  • Park, Sang-Min (Dept. of Computer Systems and Engineering, Inha Technical College) ;
  • Kim, Chul-Jin (Dept. of Computer Systems and Engineering, Inha Technical College)
  • 박상민 (인하공업전문대학 컴퓨터시스템과) ;
  • 김철진 (인하공업전문대학 컴퓨터시스템과)
  • Received : 2016.05.02
  • Accepted : 2016.08.11
  • Published : 2016.08.31
Download PDF
⟨ Previous Next ⟩

Abstract

Many services have been developed that are based on smart devices, and security between devices is emphasized. A beacon on the current IoT(Internet of Things) services has been utilized in the commercial field and is being applied to the services of the home IoT. On the other hand, the beacon is weak to security using Bluetooth-based services. Therefore, it is important to strengthen the security of the beacon. This paper proposes a dual security technique that can enhance the security of beacon-based services. The dual security architecture and security process is proposed based on beacon and authentication service. In addition, mobile application was developed and validated based on the beacon for proving the suitability of the proposed technique. The experimental method for verification are the authentication failure case, such as 1st authentication fail, and authentication success case, such as 1st authentication success and 2nd authentication success. The components of the verification experiments consists of two beacons (matched with Beacon ID, mismatched with Beacon ID), one mobile device and authentication application. This was tested to verify the compatibility of the dual security architecture and 1st/2nd authentication process.

사물 인터넷의 활성화로 스마트 디바이스를 기반으로 하는 많은 서비스들이 개발되고 있으며, 이에 디바이스 간의 보안이 강조되고 있다. 현재 사물 인터넷 서비스에 비콘이 상업적 분야에 활용되고 있으며, 일반 가정의 사물 인터넷 서비스에도 적용되고 있다. 그러나 비콘은 블루투스 기반의 서비스로서 보안에 취약하다. 따라서 비콘의 보안을 강화하기 위한 연구가 진행되고 있다. 본 논문에서는 비콘 기반의 서비스 보안을 강화 할 수 있는 이중 보안 기법을 제안한다. 비콘과 인증 서비스를 기반으로 하는 이중 보안 아키텍쳐와 보안 처리 프로세스를 제안한다. 또한, 제안 기법의 적합성을 증명하기 위해 비콘기반의 모바일 어플리케이션을 개발하여 검증한다. 검증을 위한 실험 방법는 1차 인증 실패의 인증 실패 사례와 1차 인증 성공와 2차 인증 성공의 인증 성공 사례를 실험한다. 검증 실험의 구성 요소는 2개의 비콘(비콘 ID와 일치, 비콘 ID와 불일치), 1개의 모바일 디바이스 그리고 인증 애플리케이션으로 구성된다. 이중 보안 아키텍쳐와 1차/2차 인증 프로세스의 적합성을 검증하기 위해 실험한다.

Keywords

References

  1. Jong-Kyung Baek, Jae-Pyo Park, "A study of analysis and improvement of security vulnerability in Bluetooth for data transfer", Journal of the Korea Academia-Industrial cooperation Society, Vol. 12, No. 6 pp. 2801-2806, 2011. DOI: http://dx.doi.org/10.5762/KAIS.2011.12.6.2801
  2. Bluetooth Smart or Version 4.0+ of the Bluetooth specification, https://www.bluetooth.com/what-is-bluetooth-technology/bluetooth-technology-basics/low-energy.
  3. Jong-Wuk Son, Kook-rae Cho, Bo-Kyu Jang, "Secure Proximity Service Using Beacon", IEEK(Institute of Embedded Engineering of Korea), Preceeding, 2014.
  4. Gi-won Kwon, Sung-hyun Cho, "A Study on the vulnerability of Bluetooth Low Energy Security", KICS(The Korean Institute of Communications and Information Sciences), Winter Preceeding, 2016.
  5. Son-Yong Seung, "A Study of Security Model for Bluetooth Environment", Master's Paper of DongGuk University, 2011.
  6. iBeacon, http://www.ibeacon.com.
  7. Ranging Part of iBeacon, http://en.wikipedia.org/wiki/IBeacon, 2016.
  8. TelephonyManager for telephony services on the device, http://developer.android.com/reference/android/telephony/TelephonyManager.html.
  9. AsyncTask Instructions, http://tigerwoods.tistory.com/28, 2010.