International Journal of Fuzzy Logic and Intelligent Systems

  • 제12권1호
  • /
  • Pages.53-59
  • /
  • 2012
  • /
  • 1598-2645(pISSN)
  • /
  • 2093-744X(eISSN)
한국지능시스템학회 (Korean Institute of Intelligent Systems)
권호 표지
DOI QR코드

DOI QR Code

Implementation Privacy Reference Architecture for Forensic Readiness

  • Shin, Yong-Nyuo (Department of Computer Engineering, Hanyangcyber University)
  • 투고 : 2011.12.10
  • 심사 : 2011.12.30
  • 발행 : 2012.03.25
PDF 다운로드
⟨ 이전 논문 다음 논문 ⟩

초록

As the Privacy Act is in force in Korea, the subject of protection responsibility is increased, and continuous efforts are made to protect privacy in overseas countries, as can be seen by standard drafts related to privacy protection. However, the reality is that a formal privacy manual or guidelines are insufficient to help cope with the rapid changes and privacy leak caused by TGIF(Twitter-Google-iPhone-Facebook) these days, and practical effects cannot be expected, even though measures are taken. This paper propose a standard format for satisfying the ISO/IEC 29101 "Privacy Reference Architecture" and shows an implementation example for equipping with forensic readiness capturing indications of the incident rapidly and coming up with an effective counter measure when privacy information is disclosed.

키워드

참고문헌

  1. M. Lee, "A Study on Consistency of Dealing with Residnet Registration Number PDPA(Personal Data Protection Act)," Journal of Korea Institute of Electronic Communication Sciences, vol, 2, no. 1, pp. 90-104, 2011.
  2. Y. Shin, "Standard Implementation for Privacy Framework and Privacy Reference Architecture for Protecting Personally Identifiable Information," International Journal of Fuzzy Logic and Intellignet Systems, vol, 11, no. 3, pp. 197-203, 2011. https://doi.org/10.5391/IJFIS.2011.11.3.197
  3. G. Lee, "A Study on Influence of Korea-EU FTA Ratification upon Legal Service and Forensic Investigation," Internet and Information Security, vol, 6, no. 5, pp. 683-688, 2011.
  4. ISO/IEC JTC1 SC27 "Privacy Framework," SC27 N9226, May 2011.
  5. Y. Shin, S. Shin, "An Empirical Study on Massive Forensic Services," Journal of Korea Institute of Electronic Communication Sciences, vol, 1, no. 2, pp. 83-100, 2010.
  6. Robert Rowlingson, "A Ten Step Process for Forensic Readiness," International Journal of Digital Evidence, vol, 2, Issue 3, 2004.
  7. Tan, J. Forensic Readiness, July 2001, Electronic version retrieved 14th. 2003.
  8. ISO/IEC JTC1 SC27 "Privacy Reference Architecture," SC27 N9228, May 2011.
  9. ISO/IEC JTC1 SC27 "Business plan for JTC1 SC27 Security Technique," SC27 N9463, Jun. 2010.
  10. ISO/IEC JTC1 SC27 WG5 "StudyPeriod Vocabulary," SC27 N9401, May 2011.
  11. ISO/IEC JTC1 SC27 WG5 "Recommendation," SC27 N9237, May 2011.
  12. ISO/IEC JTC1 SC27 "WG5 Resolution," SC27 N9920, May 2011.
  13. Homeland Security Whitepaper, "Computer Network Security & Privacy Protection," 2011.
  14. http://www.cs.ucdavis.edu/-hchen/paper/passat09. pdf, "Noise Injection for Search Privacy Protection," 2011.