Browse > Article
http://dx.doi.org/10.33778/kcsa.2020.20.4.125

Defense ICT Supply Chain Security Threat Response Plan  

Lee, Yong-Joon (극동대학교 사이버보안학과)
Publication Information
Convergence Security Journal / v.20, no.4, 2020 , pp. 125-134 More about this Journal
Abstract
The potential security threat is increasing as the supply of ICT products to the defense sector increases with the development of information and communication technology. Attempts to neutralize, such as intelligence gathering and destruction, through attacks on the defense power support system and the intelligence system of the weapons system could pose a fatal threat.Therefore, security measures of supply chain shear system that take into account ICT product production and operation stage to maintenance stage are needed in defense field. In the paper, technical and administrative measures for responding to 12 ICT supply chain security threats at each stage of the defense ICT supply chain life cycle were presented.
Keywords
Defense ICT Supply Chain; Supply Chain Threat; Supply Chain Threat Response; ICT Threat; ICT Vulneravility;
Citations & Related Records
Times Cited By KSCI : 4  (Citation Analysis)
연도 인용수 순위
1 NRC, 10 CFR 73.54, "Protection of digital computer and communication systems and network", November 2009,
2 Department of commerce, "Defense industrial base assessment: Counterfeit electronics", January 2010.
3 NRC Regulatory Guide 5.71, "Cyber Security Programs for Nuclear Facilities", January 2010.
4 NRC Regulatory Guide 1.152, "Criteria for use of computers in safety systems of nuclear power plants Rev 3", July 2011.
5 "레노버-화웨이-ZTE 中백도어 논란", KINE WS, 2015.02.25.
6 "해킹의혹 중국산 PC, 영국 정보기관서 퇴출", 연합뉴스, 2013.07.30.
7 "미국, 中화웨이.70개 계열사 거래제한...안보침해 위협제기", MK뉴스, 2019.05.16.
8 김태호, 박태형, "SW공급망 사슬 위험관리", 월간 SW중심사회, pp.41-44. 2015.
9 국립외교원, "미국의 신 글로벌 공급망 안보 전략 검토", 주요국제문제분석, 제 2012-13호, pp. 1-13, 2012.
10 배병환, "영국 사이버보안 전략 분석 및 시사점", 주간기술동향, 제 1775호, pp. 1-14, 2014.
11 김종화, 임재성, "사이버 위협 대응을 위한 軍정보화자산관리시스템과 연계한 軍취약점 관리방안". 융합보안논문지, 제18권, 제1호,pp.111-116, 2018.
12 이대성, 안영규, 김민수, "북한의 사이버전 위협에 대한 분석과 전망". 융합보안논문지, 제16권, 제5호, pp.11-16, 2016.
13 김종화, 김용철, 김경민, 강정흥, "안전한 공급망 관리를 위한 국방사이버보호 파트너십 인증 방안 연구". 융합보안논문지, 제19권,제3호, pp.101-107, 2019.   DOI
14 김권일, 김지원 "4차 산업혁명 기술 도입에 따른 하드웨어 공급망 위협과 대응 방안". 한국산업보안연구, 제10권, 제2호, pp.37-57, 2020.
15 NIST SP 800-161 Supply Risk Management Practices for Federal Inforamtion System, NIST, April 2015.