Network-Separated Security and Traffic-Governance Architecture for Internet-Based Military DID Access Control Systems 


Vol. 51,  No. 2, pp. 485-495, Feb.  2026
10.7840/kics.2026.51.2.485


PDF Full-Text
  Abstract

Future military communications require a transition from closed, defense-network-centric architectures to Internet-based services. However, because military security policies rely on physical network segmentation, Internet-based defense systems require a secure operational architecture. This study proposes and validates a boundary security and traffic-governance architecture for a Decentralized Identifier (DID) access-control system that operates under network-segmentation constraints. The proposed three-tier structure-external network, demilitarized zone (DMZ), and internal network-applies proxy-based single peering and KCMVP-compliant segment encryption to isolate blockchain traffic and ensure communication integrity. Only hash references to DID documents are stored on-chain, while Verifiable Credentials (VCs), Verifiable Presentations (VPs), and location data are processed exclusively within the internal network to minimize personal data exposure. Field validation at the Korea Military Academy achieved 100% blocking of external-to-internal blockchain traffic and reduced average authentication latency by 23% (1.1 s to 0.85 s). These results show that DID can meet military security regulations while supporting real-time operations, and the proposed architecture can serve as a baseline security standard for future Internet-based military communication systems.

  Statistics
Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.


  Related Articles
  Cite this article

[IEEE Style]

B. Jun, K. Shin, H. Choi, "Network-Separated Security and Traffic-Governance Architecture for Internet-Based Military DID Access Control Systems," The Journal of Korean Institute of Communications and Information Sciences, vol. 51, no. 2, pp. 485-495, 2026. DOI: 10.7840/kics.2026.51.2.485.

[ACM Style]

Byungjin Jun, Kyuyong Shin, and Hyeondon Choi. 2026. Network-Separated Security and Traffic-Governance Architecture for Internet-Based Military DID Access Control Systems. The Journal of Korean Institute of Communications and Information Sciences, 51, 2, (2026), 485-495. DOI: 10.7840/kics.2026.51.2.485.

[KICS Style]

Byungjin Jun, Kyuyong Shin, Hyeondon Choi, "Network-Separated Security and Traffic-Governance Architecture for Internet-Based Military DID Access Control Systems," The Journal of Korean Institute of Communications and Information Sciences, vol. 51, no. 2, pp. 485-495, 2. 2026. (https://doi.org/10.7840/kics.2026.51.2.485)
Vol. 51, No. 2 Index

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)






pISSN : 1226 - 4717
eISSN : 2287 - 3880