DOI QR코드

DOI QR Code

불법스팸 방지를 위한 개선방안 : 정책적 제안을 중심으로

A Study on the Effective Countermeasure of SPAM : Focused on Policy Suggestion

  • 손종모 (서울여자대학교 정보보호학과) ;
  • 임효창 (서울여자대학교 경영학과)
  • Sohn, Jong-Mo (Dept. of Information Security, Seoul Women's University) ;
  • Lim, Hyo-Chang (Dept. of Business Administration, Seoul Women's University)
  • 투고 : 2021.11.11
  • 심사 : 2021.12.20
  • 발행 : 2021.12.31

초록

오늘날 이메일(E-mail), 스마트폰, SNS 등의 다양한 정보통신 매체는 정보공유 및 의사소통을 위한 필수품이다. 하지만 불법으로 수집한 개인정보와 보안에 취약한 기기를 활용하여 대량으로 불법 스팸을 보내거나, 사기에 이용하기 위한 악의적인 공격에 이용되고 있다. 불법스팸과 스미싱, 사기 메일(SCAM) 등은 기업과 사용자들에게 정신적 피로감 등의 사회적 비용뿐만 아니라 IT인프라 자원의 불필요한 소모와 경제적 손실 등 직간접적으로 많은 피해를 주고 있다. 스팸 관련 법제도가 마련되어 있지만 교묘히 회피하여 여전히 기승을 부리고 있고 피해자가 지속적으로 발생하고 있어 문제점이 없는지 검토가 필요하다. 불법스팸을 차단하고 이로 인한 사기 피해를 예방하기 위해 관련 제도를 개선하는데 기여하는 학술적 연구가 필요한 상황이다. 본 연구는 국내외 법제도와 스팸 관련 대응 활동과 문제점을 도출하고 정책적 개선 방안을 제안하였다.

Today, people share information and communicate with others using various information and communication media such as e-mail, smartphones, SNS, etc. However, it is being used in malicious attacks to send a large amount of illegal spam or to use it for fraud by using illegally collected personal information and devices that are vulnerable to security. Illegal spam, smishing, and fraudulent mail(SCAM) cause a lot of direct and indirect damage to companies and users, including not only social costs such as mental fatigue, but also unnecessary consumption of IT infrastructure resources and economic losses. Although there are regulations related to spam, violators of the law are still on the rise by circumventing the law, and victims are constantly occurring, so it is necessary to review what the problem is. This study examined domestic and foreign spam-related regulations and spam-related response activities, identified problems, and suggested improvement countermeasures. Through this study, it was intended to suggest directions for improving spam-related systems in order to block illegal spam and prevent fraudulent damage.

키워드

과제정보

This work was supported by a research grant from Seoul Women's University(2021).

참고문헌

  1. K. H. Lee. (2008). A Study on the effective consumer policies against spam in Korea. Journal of Consumer Policy Studies, 33, 93-121.
  2. KISA. (2021). Spam distribution status in the second half of 2020. Naju : Korea Internet & Security Agency.
  3. FSS. (2021). Analysis of Voice Phishing Status in 2020. Seoul : Financial Supervisory Service.
  4. KISA. (2020). Information and Communications Network Act Guide for Prevention of Illegal Spam. [Brochure]. Naju : Korea Internet & Security Agency.
  5. C. B. Lee. (2021. Feb). 2021 KISA REPORT, Review of KISA, 2, 55-67.
  6. S. J. Kim. (2010). Analysis on Spam-related Regulations of EU.Germany. Zeitschrift der Koreanisch-Deutschen Gesellschaft fur Sozialwissenschaften, 20(3), 137-158.
  7. KCC. (2021). Cases of illegal spam investigation and administrative disposition. Gwacheon : Korea Communications Commission.
  8. C. Stupp. (2019). Fraudsters Used AI to Mimic CEO's Voice in Unusual Cybercrime Case. The Wall Street Journal(Online). Retrieved from https://www.wsj.com/articles/fraudsters-use-ai-to-mimic-ceos-voice-in-unusual-cybercrime-case-11567157402
  9. J. S. Kim. (2021). It was the same as our boss... I called and sent money to the customer. Yonhapnews(Online). Retrieved from https://www.yna.co.kr/view/AKR20210720055500797?input=feed_daum.
  10. D. K. Lee, G. S. Jang & K. H. Lee. (2020). A Study on the Effective Countermeasure of Business Email Compromise (BEC) Attack by AI. Journal of The Korea Institute of Information Security & Cryptology, 30(5), 835-846. DOI : 10.13089/JKIISC.2020.30.5.835
  11. KISA. (2019). Analysis of overseas personal information protection trends in 2018. Naju : Korea Internet & Security Agency.
  12. H. O. Kwon. (2020. Aug). 2020 KISA REPORT, Review of KISA, 8, 44-50.
  13. KISA. (2017). Analysis of overseas personal information protection trends in 2016. Naju : Korea Internet & Security Agency.
  14. S. Y. Park & S. K. Kang. (2011). International Standardization Trend of ITU-T Spam Response Technology. The Korea Institute of Information Security & Cryptology, 21(2), 47-52.
  15. Y. C. Baek. (2007). A Study on Spam Regulation. Journal of Information Management, 38(4), 48-67. https://doi.org/10.1633/JIM.2007.38.4.048
  16. S. S. Shin. (2013. Aug). KISA Internet & Security Focus, Review of KISA, 4, 72-90.
  17. J. H. Baek & Y. J. Kim. (2014. Nov). KISA Internet & Security Focus, Review of KISA, 2, 18-38.
  18. KCC. (2021). Report on the work plan for 2021 of the Korea Communications Commission. Gwacheon : Korea Communications Commission.
  19. KCC. (2021). A Pilot Case of Combining Pseudonymisation Information for SPAM Analysis. Gwacheon : Korea Communications Commission.
  20. KCA. (2015). Investigation Report : Investigation of the Situation of Unfair Sales of Telephone Solicitation. Chungbuk Innovation City : Korea Consumer Agency.
  21. MSIT. (2021). Result of Inspection on the Protection of MVNO's Resale Phone Users. Sejong : Ministry of Science and ICT.
  22. FSC. (2021). Comprehensive Audit Results for the Korea Federation of Banks. Seoul : Financial Services Commission.
  23. BAI. (2020). Audit Report : Status of Implementation of Telecommunication Financial Fraud Prevention Measures. Seoul : THE Board of Audit and Inspection of KOREA.
  24. K. K. Kim. (2004. Sep). OECD Focus, Review of OECD, 3(5), 16-23.