Journal of Korea Society of Industrial Information Systems (한국산업정보학회논문지)

Korea Society of Industrial Information Systems (한국산업정보학회)
권호 표지
DOI QR코드

DOI QR Code

Research on Cybersecurity Risk Management System in Smart Factory Environment

스마트팩토리 환경의 사이버보안 리스크 관리 체계 연구

  • 신영선 (거제대학교 기계공학과)
  • Received : 2024.05.20
  • Accepted : 2024.07.23
  • Published : 2024.08.30
Download PDF
⟨ Previous Next ⟩

Abstract

This study presented a cybersecurity risk management system in a smart factory environment. A smart factory refers to a factory that optimizes the production system and increases efficiency. However, this digitized environment is vulnerable to cyber attacks, and manufacturing companies can suffer serious damage from disruptions in production systems or information leaks. Therefore, a systematic approach to effectively managing cyber security risks is essential in smart factories. In this study, a continuous security risk management system for each stage of the smart factory was proposed along with business process-based security risk assessment. These studies will help to further improve cybersecurity risk management in smart factories. It will also play an important role in ensuring that smart factories operate safely and efficiently.

본 연구는 스마트팩토리 환경에서의 사이버 보안 리스크 관리 체계를 제시하였다. 스마트팩토리는 제조업에서 인공지능, 빅데이터, 사물인터넷(IoT), 자동화 등 첨단 기술을 활용하여 생산 시스템을 최적화하고 효율성을 높이는 공장을 의미한다. 이러한 기술들은 생산 프로세스를 자동화하고 데이터를 실시간으로 수집하여 분석하므로, 생산 과정에서의 결함을 빠르게 감지하고 조치할 수 있다. 그러나 이러한 디지털화된 환경은 사이버 공격에 취약하며, 생산 시스템의 중단이나 정보 유출로 인한 심각한 피해를 입을 수 있어 사이버 보안 리스크를 효과적으로 관리하는 체계적인 접근 방식이 필수적으로 요구된다. 본 연구에서는 비즈니스 프로세스 기반 보안 위험 평가와 더불어 스마트팩토리 환경에서의 사이버 보안 리스크 관리체계를 제안하였다. 이러한 연구들은 스마트팩토리의 사이버 보안 리스크 관리를 더욱 향상시키는 데 도움이 될 것이다. 또한 스마트팩토리가 안전하고 효율적으로 운영될 수 있도록 하는 데 중요한 역할을 할 것이다.

Keywords

References

  1. Bae, C. S. and Goh, S. C. (2019). Case Study on Security Enhancement of Smart Factory, Korea Institute of Information Security & Cryptology, 29(3), 675-684.
  2. Choi, G. B. (2012). Status of Defense Cyber Response According to National Cyber Threats, Journal of Korea Institute of Information Security & Cryptology, 22(8), 36-40.
  3. Hwang, I. H. (2021). The Influence of Security Motivation and Organization Trust on Information Security Compliance : Focusing on Moderation Effects of Work Promotion Focus, Journal of Korea Society of Industrial Information Systems, 26(3). 23-39.
  4. Jeon, G. H. and Kim, K. S. (2024). Study on Method to Develop Case-based Security Threat Scenario for Cybersecurity Training in ICS Environment, Journal of Platform Technology, 12(1), 91-105.
  5. Jin, J. H. and Kim, J. T. (2021). A Study on the Security Enhancement of the Industrial Control System through the Application of IEC62443 Standards, Journal of Korea Information Processing Society, 28(2), 280-283.
  6. Kang, D. Y. (2021). Analysis of Threat Information Priorities for Effective Security Monitoring & Control, Journal of Korea Society of Industrial Information Systems, 26(5), 69-77.
  7. Kim, D. I. (2015). Aphased Strategy for Application of the Risk Management System based on ISO 31000 in the Domestic Construction Companies, Dissertation, Graduate School of Korea University, Seoul, Korea.
  8. Kim, E. J. and Park, I. C. (2023). The Impact of SMEs' Security Activities on Cyber Incident Response. Korean Journal of Industry Security, 13(1), 7-28.
  9. Kim, E. Y. (2015). Cyber Security Risk Analysis and Response Strategy Research in Smart Factories, Journal of Information Security Society, 25(1), 89-97.
  10. Kim, G. Y. (2018). Dependent Attacks Anaylsis for Threat Analysis and Risk Assessment (TARA), Thesis, Graduate School of Hanyang University, Seoul, Korea.
  11. Kim, H. J., Kim, S. J., Kim, Y. S., Kim, S. K. and Shon, T. H. (2019). Cybersecurity Architecture for Reliable Smart Factory, J ournal of The Korea Institute of Information Security & Cryptololgy, 29(3), 629-643.
  12. Kim, Y. S. and Park, J. H. (2022). A Research on the Exposure Status of Cybersecurity Risk of Process Control System and Its Counterplan, The Korean Institute of Chemical Engineers, 60(4), 492-498.
  13. Kim, W. N. and Park, E. K. (2019). Current Control System Security Evaluation System Trend, Journal of Information Security, 29(2), 5-11.
  14. Lee, H. S. (2015). Research on Smart Factory Security Threat Response Measures, Journal of Information Security Society, 25(4), 305-313.
  15. Lee, J. M. (2018). Security Vulnerability Management in Industrial Control System (ICS) Environment and Its Limitations; Focus on Security Patching, Thesis, Graduate School of Korea University, Seoul, Korea.
  16. Min, B. G. (2014). Vulnerability Analysis Plan According to Changes in Cybersecurity Threats, Korea Institute of Information Security & Cryptology, 24(1), 7-12.
  17. Shin, Y. S. (2024). A Study on the Establishment of Security Areas and Guidelines for Small and Medium Manufacturing Enterprises in the DX Process Environment, Journal of Industrial Technology Research, 29(2), 29-37.
  18. Son, B. J. (2023). Trend Analysis on Cybersecurity in the Era of Digital Transformation: Policy Implications, Dissertation, Graduate School of Seoul Venture University, Seoul, Korea.
  19. You, K. S. (2019). Smart Factory Information Security Policy Directional Suggestions, Thesis, Graduate School of Ajou University, Suwon, Korea.