Journal of the Korea Academia-Industrial cooperation Society (한국산학기술학회논문지)

The Korea Academia-Industrial cooperation Society (한국산학기술학회)
권호 표지
DOI QR코드

DOI QR Code

A Study on Designing of Information Integration Framework and Architecture with Enhanced Security Focused on defense field

보안성을 강화한 정보연계 프레임워크 및 아키텍처 설계에 관한 연구 - 국방 분야를 중심으로

  • Received : 2016.10.17
  • Accepted : 2016.11.10
  • Published : 2016.11.30
Download PDF
⟨ Previous Next ⟩

Abstract

The amount and diversity of information is increasing, as is the information integration connecting data among the related institutions. In the defense field, DTAQ, which is in charge of the quality of military supplies, is attempting to collect and analyze the information which is related with it. In addition, the object of information integration is to expand civil data as well as defense data. There are many ways to integrate data in various environments. In the defense field, which needs enhanced security, it is necessary to establish and apply the information integration methods which are enhanced with more security. In this study, the framework and architecture of information integration was designed by considering task requirements and security conditions. As a result of example application of this framework for information systems to the selected 4 institutions, it was confirmed that the task can be performed through data connections. From the study result, integration architecture which can be applied securely in defense field was suggested. The data accumulated by using this framework with strengthened security are expected to be utilized for the quality improvement of military supplies.

정보화 시대의 도래로 각 기관에서 생성되는 정보의 종류와 양이 점차 증가하고 있으며, 또한 관련 기관 간 데이터를 연계하는 정보연계 역시 증가되고 있다. 국방 분야에서는 군수품의 품질을 담당하는 국방기술품질원에서 군수품의 품질 향상을 위해 품질관련 정보를 수집 분석하려는 노력을 지속하고 있으며, 정보연계 대상 또한 국방 분야의 기관뿐만 아니라 민간기관의 데이터까지 확대하고자 노력하고 있다. 서로 다른 환경의 정보체계 데이터를 연계하는 방법으로 여러 가지 방법들이 사용되는데, 높은 보안성이 요구되는 국방 분야에는 보안측면을 더욱 강화한 연계방안의 수립 및 적용이 필요하다. 본 논문에서는 다양한 정보화 환경의 기관 간 업무처리를 위하여 필요한 업무요건과 보안 고려요소를 고찰하고, 이에 적합한 연계 아키텍처 및 표준 연계 프레임워크를 제시하였다. 그리고 제시된 프레임워크를 4개 연구기관의 정보체계에 시범적으로 적용하여 기관 간 데이터 연계로 업무처리가 이루어질 수 있음을 확인하였다. 본 연구 결과를 토대로 국방 분야에도 안전하게 적용할 수 있는 정보연계 아키텍처가 제시되었으며, 특히 보안성이 강화된 표준 연계 프레임워크를 적용함에 따라 수집된 데이터는 군수품 품질향상을 위한 정보로 유용하게 활용될 것으로 기대한다.

Keywords

References

  1. Ministry of the Interior(Public Service Policy Bureau), "Act on promotion of the provision and user public data," Act no. 13723, 2016.
  2. Ministry of the Interior(Cooperation of relevant ministries), "Government 3.0 Master Plan," 2013.
  3. G. H. Wang, "Next generation e-Government created by service users : UCG(User Created Government)," e-Government Focus [2007], Korean Association for Information Society, no. 07, pp. 69-73, 2007.
  4. M. H. Lee, "Exploring the Influencing Factors on the Effectiveness of Government Information Sharing, Information System Connection, and Information System Integration," Korean society and public administration 26(2), pp. 25-28, 2015.
  5. M. H. Lee, "Vitalizations of Government Information Sharing, System Connection, and System Integration," pp. 339-343, Korea Institute of Administration, 2014.
  6. Defense Acquisition Program Administration (Aquisition Policy Division), "Instruction of DAPA No.366," 2016.
  7. S. Y. Jeon, "A Study on the Application Method of Munition's Quality Information based on Big Data," Journal of the Korea Academia-Industrial cooperation Society, Vol. 17, No. 6, pp. 315-325, 2016. DOI: http://dx.doi.org/10.5762/KAIS.2016.17.6.315
  8. Defense Agency for Technology and Quality(IT Planning Department), "TRIS Usage Guide," 2014.
  9. D. H. Lee, "Study on Test Report Information Service Architecture for Preventing Forgery and Alteration in Defense Industry," Journal of the Korea Academia-Industrial cooperation Society, vol. 17, no. 4, pp. 43-51, 2016. DOI: http://dx.doi.org/10.5762/KAIS.2016.17.4.43
  10. S. M. Lee, "University Textbook, Management Information System," Infodream, 2013.
  11. D. O. Kim, "A Study on the Information Integration Model Based on Standard Integration Framework," Journal of Korea Institute of Information and Communication Engineering. vol. 18, no. 4, pp. 861-866, 2014. DOI: https://doi.org/10.6109/jkiice.2014.18.4.861
  12. Ministry of National Defense(Defense Computing Information Agency), "The Standard for Defense Data Integration," MND, pp. 4-6, 2008.
  13. Korea Institute for Defense Analysis(Defense Information System Management Group), "The Instructions for users of Defense Data Integration Program," MND, pp. 13-17, 2016.
  14. Defense Agency for Technology and Quality (Technology Intelligence Division), "Methods for upgrading data integration DTAQ and DAPA," pp. 9-13, 2015.
  15. Ministry of National Defense(Cyber Command), "General Guideline for weakness analysis and evaluation in National defense Information System," 2016.
  16. H. S. Choi, "Design of a NTIS Information Integration Model based on a Standard Integration Platform," Journal of KIISE : Computing and Letters 18(6), pp. 484-488, 2012.
  17. The Open Web Application Security Project, https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project, 2016.
  18. S. H. Lee, "A Security Enhancement Method for Web Service," The Journal of Digital Policy & Management 11(12) : 361-366, 2014.
  19. Korea Internet and Security Agency, Domestic Code Dissemination : ARIA : https://seed.kisa.or.kr/iwt/ko/sup/EgovAriaInfo.do, 2016.