Browse > Article
http://dx.doi.org/10.13089/JKIISC.2015.25.1.181

Study of effectiveness for the network separation policy of financial companies  

Cho, Byeong-Joo (Korea University, Graduate School of Information Security)
Yun, Jang-Ho (Korea University, Graduate School of Information Security)
Lee, Kyeong-Ho (Korea University, Graduate School of Information Security)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.25, no.1, 2015 , pp. 181-195 More about this Journal
Abstract
Financial industries have operated internal and external network with an unified system for continual business process of customers and other organizations in the past. The financial supervising authority requires more technical and managerial protecting policy to financial industries related to the exposure as danger of external attacks or information leakage. Financial industries performed network separation into internal business and external internet networks for protecting IT assets from malware infection accessing internet or hacking attacks and prohibiting leakage of customers' personal and financial information following financial supervising authority and redefine security policy to fit on network separated-condition. In this study, effectiveness for network separation policy was examined on malware inflow and verified that malware inflow in all routes can be blocked by the policy with analyzing operration data of a financial company, estimating network separation. Result of this study proves that malware infection route by portable storages was not completely blocked even on adapting network-separated condition. As a solution for this, efficient security policy would be suggested in this paper as controlling portable storages for maximizing effectiveness of network separation.
Keywords
Network separation; Network separation policy; effectiveness for Network separation policy;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Financial services commission, "guidelines for separating financial network system," Sep. 2013
2 Korea communication commission, "regulations for promoting information communication network and information security," pp.5-6, Aug. 2014
3 Korea communication commission, "tandards on technical and managing protective action for personal information," pp. 1-4, Aug. 2012
4 Korea communication commission, "Manuals of standards on technical and managing protective action for personal information," pp. 48-49, Sep. 2012
5 KISA, "guidelines for blocking external internet network", Feb. 2013
6 Lee, Eun Bae, Kim, Yeong Ki, "Study of information security in network seperated enviroment," pp.6-8, Feb. 2010
7 Lee, Ig Jun, "A Study on the Security Policy for Logical Separation of the Banking Network System," pp. 6-8 Dec. 2013
8 Digital Daily, "similar rates of financial companies decision of network separation with logical or physical," http://www.ddaily.co.kr/news/article.html?no=108084, Aug. 2013
9 Ministery of security and public administration, "Guidelines for setting network separation of govermental organzations," May. 2008
10 Ji,JeongEun, "Logical network separation against cyber hecking or terror attacks," The Korean Institute of Infomation Scientists and Engineers, Feb. 2012
11 Financial security agency, "guidelines for separating financial network system"
12 Joosam Lee, "A Study on Designating the Solution for Deployment of an Efficient Partitioned Network," Dankook University, Jun, 2013