The framework of user information protection via secure SSO and PKI

  • Authors

    • Jeong Oh Kim
    • Min Woo Park
    • Woo Seung Jo
    • Ki Seok Choi
    2018-06-08
    https://doi.org/10.14419/ijet.v7i2.33.13850
  • National R&D Information, NTIS, User Information Management, Single-Sign on, Public Key Infrastructure

  • Background/Objectives: There has been a necessity of a new system to protect and share user information with cooperative research institutes and manage subjects for managing and providing national R&D information.

    Methods/Statistical analysis: The National Science & Technology Information Service (NTIS) used the SSO API to share user information with cooperative research institutes safely. The API included minimum information only to prevent personal information such as user ID and authorization code from being leaked and observed related laws. For the authorization and management of user information targeted to open R&D information, moreover, 2-stage authentication has been established, using the certificate authentication system.

    Findings: Since information is collected and provided in diverse manners by multiple institutes, user information has been scattered, and there has been a risk of the leak of personal information. With the centralized collection and management of user information, however, the protection of personal information and observance of laws have become more convenient. Furthermore, the information is provided to the authorized managers only through the construction of a security system and utilization of access control system, and security has been secured. To make users utilize information properly at access to raw data, authorization procedures were strengthened, keeping national R&D information and users more reliable.

    Improvements/Applications: Through this framework, secure information-sharing & management systems were applied, improving the safety of information management.

     

     

  • References

    1. [1] TH Kim, WK Joo, MS Yang, DY Nam, P Kim, KS Choi, Integrated R&D Information Service System of the Contributed Research Institues, Proceedings of the Korea Information Processing Society Conference, 2005, 1(1), pp. 121-124.

      [2] MI Kim, SJ Jhun, BJ You, A Study on a Method to Construct a System for Sharing National R&D Information, Proceedings of the Korea Contents Association Conference, 2006, 10 (1), pp. 698-701.

      [3] National Science & Technology Information Service, http://www.ntis.go.kr.

      [4] HS Choi, JS Kim, Desing of a NTIS Information Integration Model based on a Standard Integration Platform. Journal of KIISE, 2012, 18(6), pp.484-488.

      [5] Nancy P, Petr K, Matteo C, Samuel P, Fostering Open Science to Research using a Taxonomy and eLearning Portal, i-KNOW ’15 Proceedings of the 15th International Conference on Knowledge Technologies and Data-driven Business, 2015, 11 (1), pp. 1-8.

      [6] Peter M-R, Open data in science, Serials Review, 2008, 34(1), pp. 52-64.

      [7] KOREA Government 3.0, http://www.gov30.go.kr.

      [8] Open Data Portal, http://www.data.go.kr.

      [9] MI Kim, SJ Jhun, BJ You, A Study on a Method to Construct a System for Sharing National R&D Information, Proceedings of the Korea Contents Association Conference, 2006, 10(1), pp. 698-701.

      [10] MW Park, NG Kang, MS Yang, KN Choi, A Study of Cloud-based Analysis Platform for Sharing and Disclosure of National R&D Information, International Journal of Applied Engineering Research, 2015, 10(90), pp. 844-847.

  • Downloads

  • How to Cite

    Oh Kim, J., Woo Park, M., Seung Jo, W., & Seok Choi, K. (2018). The framework of user information protection via secure SSO and PKI. International Journal of Engineering & Technology, 7(2.33), 41-44. https://doi.org/10.14419/ijet.v7i2.33.13850