Dongchang Yoo scite author profile

Abstract. The importance of privacy cannot be emphasized too much. That is true even for reporting exam scores or sending individual comments in the school. Any sensitive data including students" exam scores should be kept confidentially and protected from any kinds of attacks against privacy. If the online management system is well-equipped and securely managed in the school, then it is easy to distribute individual reports. However, such a system costs high and does not support flexible and dedicated formats designed for each purpose. In this paper, we propose a practical way for an instructor to post students" individual exam scores in a single file. By implementing a cryptographic hash function together with score data in an MS Excel file, we demonstrate a score report from which allows each student to retrieve his/her score in a privacy preserving way based on the password. Since our worksheet runs cryptographic operations with only built-in functions of Excel, it is easy for instructors to write their own score reports based on ours without relying on any management systems. Also, it is cryptographically as secure as underlying hash function SHA-256.

show abstract

Analysis of the Random Number Generator Using MD5 PRNG in Linux Kernel

Yoo¹,

Yewon²,

Yoo³

et al. 2017

View full text Add to dashboard Cite

Abstract. When random numbers are needed, kernel level threads can use at least one of two random number generators (RNGs), called LRNG and MD5 PRNG. LRNG is a well-known cryptographic RNG accessed via /dev/(u)random and MD5 PRNG provides a function interface get_random_int(). While the /dev/(u)random has been investigated a lot, MD5 PRNG had been regarded as a less important one. In this paper, we demonstrate MD5 PRNG is vulnerable against a generic attack by searching entropy source in some embedded systems. In fact, once a random number is obtained, one can predict previous outputs of MD5 PRNG. Even though the RNG uses high resolution clock of microsecond unit as an entropy source, we can recover random number by reducing search space. We suggest a generic attack which the attacker just guesses entropy source at most 2 53 times. This attack can be done within 74 hours using parallel implementation with NVIDIA GeForce Titan X.

show abstract

A Secure Score Report Implemented in a Spreadsheet without Privacy Concerns

Yoo

Bae²,

Yeom³

2016

IJSIA

View full text Add to dashboard Cite

The OpenWRT’s Random Number Generator Designed Like /dev/urandom and Its Vulnerability

Yoo

Yeom

2016

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Dongchang Yoo

Dynamic ransomware protection using deterministic random bit generator

A Practical Online Score Reporting with an Excel File in a Privacy Preserving Way

Analysis of the Random Number Generator Using MD5 PRNG in Linux Kernel

A Secure Score Report Implemented in a Spreadsheet without Privacy Concerns

The OpenWRT’s Random Number Generator Designed Like /dev/urandom and Its Vulnerability

Contact Info

Product

Resources

About