Convergence Security Journal (융합보안논문지)

Korea convergence Security Association (한국융합보안학회)
권호 표지

Effective measures for the regulation and supervision of encryption of unique identification information of financial companies

금융회사의 고유식별정보 암호화 규제·감독에 대한 실효성 확보 방안

  • 이승윤 (고려대학교/금융보안학과) ;
  • 김인석 (고려대학교/금융보안학과)
  • Received : 2018.10.10
  • Accepted : 2018.12.14
  • Published : 2018.12.31
Download PDF
⟨ Previous Next ⟩

Abstract

The purpose of this study is to propose effective countermeasures against the regulation and supervision of unique identification information for financial institutions and present the present problems and future directions. In financial institutions, it is investigated that DB system of many personal information processing systems is in order to comply with the law, and additional measures such as encryption are required for data files containing unique identification information in many other application systems. In this paper, the conclusions of institutional, administrative, and technological feasibility are presented.

본 연구의 목적은 금융기관 대상 고유식별정보 암호화 규제 및 감독에 대한 효과적인 대응방법을 제시하고, 현재의 문제점 그리고 앞으로 나아가야 할 방향을 제시하는 것이다. 금융기관에서는 법규준수를 위하여 다수의 개인정보처리시스템 중 DB시스템을 중심으로 대응하고 있어 그 외 다수의 어플리케이션시스템 내 고유식별정보를 포함하고 있는 데이터 파일의 경우 암호화 등 추가적인 조치가 필요한 것으로 조사되었다. 본 연구에서는 제도적, 관리적, 기술적 실효성 확보 방안을 결론에서 제시 하였다.

Keywords

References

  1. Nam seon-mo, Effective Measures for Damage Prevention of Leakage of Personal Information, Research on Victims' Studies, Vol. 23, No. 3, pp.75-97, December 2015.
  2. National Law Information Center(www.law.go.kr), Personal Information Protection Act, October 19, 2017. Act on the Use and Protection of Credit Information, August 18, 2014. Act on Information Network Promotion and Information Protection, etc., September 18, 2018.
  3. Ministry of Public Administration and Security Notification No. 2017-1, Standards for Securing Personal Information Security, July 27, 2017.
  4. Broadcasting Commission Notice No. 2015-3, Technical and Administrative Protection Measures of Personal Information, May 19, 2015.
  5. Financial Services Commission Notice No. 2016-37, Electronic Financial Supervisory Regulation, October 5, 2016.
  6. Relevant department joint "Comprehensive measures to prevent recurrence of personal information leaks in financial sector" March 2014.
  7. Press release (Ministry of Public Administration and Security)(www.mois.go.kr) Decision of administrative disposition by Hana Tour private information leakage accident, February 6, 2018.
  8. Korea Communications Commission (KCC) press release (www.kcc.go.kr), security company East Soft personal information leak accident prevention, March 28, 2018.
  9. Korea Communications Commission (KCC) press release (www.kcc.go.kr), KT's violation of personal information protection regulations, June 26, 2014.
  10. Korea Communications Commission e-Nara Index, "Number of Personal Information Infringement Complaints", July 15, 2018.
  11. Ministry of Public Administration and Security, Korea Internet & Security Agency, 2013 - 2017 Personal Information Survey and Administrative Disposition Casebook, April 2018.
  12. Kim, Yong Ho, "A study on strengthening security management to secure personal information security", Graduate School of Information Communication, Konkuk University, August 2018.
  13. Han Se-jin, An Impact and Problem by the Personal Information Protection Act. on the Financial Sector, Convergence Security Journal, Vol. 13, No. 1, pp. 32-26, March 2013.
  14. Kang Yoon-woo, Problems and Improvement of Personal Information Protection Law in Bank, Graduate School of Law, Korea University, June 2013.
  15. Jeong-Min Lee, In-Seok Kim, Design and Implementation of Financial Security Automatic System for Privacy Information of Financial Institution, The Journal of The Institute of Internet, Broadcasting and Communication, Vol. 15, No. 6, pp.25-30, December 2015. https://doi.org/10.7236/JIIBC.2015.15.6.25
  16. Jung Ki-suk, "A Study on Prevention of Personal Information Leakage in Financial Institutions," Convergence Security Journal, Vol. 14, No. 4, pp110-116, June 2014.
  17. Gil jae-sik, "100% encryption of financial sector, resident registration number", electronic newspaper, December 14, 2017.