Browse > Article
http://dx.doi.org/10.17662/ksdim.2019.15.2.053

Convergence Security Provider Self-Conformity System  

Baik, Namkyun (부산외국어대학교 정보보호학과)
Publication Information
Journal of Korea Society of Digital Industry and Information Management / v.15, no.2, 2019 , pp. 53-61 More about this Journal
Abstract
In this paper, we propose 'a self - conformance system of convergence security provider' to provide basic data for security and reliability of convergence industrial technology, system and service. It is difficult to evaluate convergence security systems, limited to information and communication service providers, unable to check convergence security items, burden of submission documents, difficulty in measuring convergence security service level and we will summarize product and service-based requirements that can be integrated and systematically measure the level of convergence security and define renewed life cycle-based convergence security information and content security and assurance requirements. On the basis of this, each convergence security company declares conformity with the standard itself without the certification of the certification body, and introduces the provider conformity certification system which can manufacture and sell. This will enable the company to strengthen its competitiveness through timely launch and implementation of products and services and cost reduction.
Keywords
Convergence Security; System Evaluation; Service Audit; Certification; Assurance;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Ministry of Science, ICT and Future Planning, A Study on Plan for Enhanced Security of ICT Convergence Industry, 2016.
2 Ministry of Science, ICT and Future Planning, A study on strengthening for Market outlook and competitiveness to convergence security industry, 2016.
3 Namkyun Baik and others, "Domestic major information security duty system trend," The journal of Korea Institute of Electronics Engineers, Vol.40, No.10, 2017, pp. 32-40.
4 Namkyun Baik and others, "CC-based information security product evaluation trend," KIISC review, vol.16, no.6, 2009, pp. 49-67
5 ISO/IEC 15408 Information technology -- Security techniques -- Evaluation criteria for IT security, 2014.
6 ISO/IEC CD 18045 Information technology -- Security techniques -- Methodology for IT security evaluation, 2008.
7 ISO/IEC 27000 family - Information security management systems, 2013.
8 Namhi Kang, "IoT Convergence Services Security Requirements," The Journal of The Korean Institute of Communication Sciences, Vol.32, No.12, 2015, pp. 45-50.
9 Ministry of SMEs and Startups, SME Technology Roadmap 2018-2020, 2018.
10 IoT Security Certification Service Guide, https://www.kisis.or.kr/kisis/subIndex/307.do
11 IEC 62443 "Industrial communication networks - Network and system security (DRAFT)", 2018.
12 ISO/IEC 17065 Conformity assessment -- Requirements for bodies certifying products, processes and services, 2012.
13 ISO/IEC 17025 "General requirements for the competence of testing and calibration laboratories", 2017.