• Journal of Information Technology Services
• /
• v.11 no.2
• /
• pp.197-211
• /
• 2012

This paper describes how to derive audit criterion, audit domain, detail technology, and functional check items which are core of hospital information system, consisting of OCS, EMR, and PACS. Using the check items listed above, we investigated the objective validity for the construction audit of hospital information system. As a result, the derived audit criterion, audit domain, detail technology, and functional check items were verified as check items for audit. Since using the current audit check items of public area is insufficient to construct efficient, reliable, and stable hospital information system, we suggest adopting the hospital information system audit area, audit check items, and process that are presented in this paper.

• Journal of Information Technology Services
• /
• v.8 no.4
• /
• pp.87-101
• /
• 2009

The current information system audit merely inspects a web based information system by focusing on checking items that are extracted from structured and information engineering model and object-oriented component model. As a result, the checking item of web contents and design is inadequate. This paper aims to extract audit framework in order to strengthen the audit of web contents and design during the development of the web based information system and to suggest checking items based on audit framework. For this, the web development process and web site evaluation model were studied, compared, and analyzed with the current information system development audit. From a result of the survey, it was found that the adequacy of the suggested audit framework and audit checking items is above the average value. It is believed that the suggested audit framework is helpful for the audit of web based information system.

• Journal of Information Technology Services
• /
• v.3 no.1
• /
• pp.117-126
• /
• 2004

In this study an evaluation method is proposed, with the strong relationship between the ante and post audit works evaluation. The ante evaluation does in general and systematic ways, with past audit results and proposals. The criteria-based evaluation is used for the audit activities and outputs. The critical success factors for the projects applies to the activities evaluation and product evaluation framework to the output. The ante and post evaluation have the cross evaluation items to be the whole and continuous one. Eighteen common evaluation items are derived, with their own evaluation elements in detail, which have only differences of the actually done and expectations between the ante and post. The proposed evaluation makes the ante and post one to be related with each other in a systematic and objective ways, to enhance the reliability of audit results and effectiveness of the audit.

• Convergence Security Journal
• /
• v.2 no.1
• /
• pp.17-33
• /
• 2002

The major goal of this study is to develop an index that can evaluate the quality of the appropriate network in a series of projections that analyze, design, and then build a network. The existing software engineering and/or the methods of developing a system are limited. The process of defining the requirements in building a network, designing the system, and building the network focuses on arranging the methods of building a network. Based upon this, we tried to develop a necessary index to evaluate the security of a network.

• 한국IT서비스학회:학술대회논문집
• /
• 2003.11a
• /
• pp.427-432
• /
• 2003

효과적인 중소기업 생산정보화를 위하여 시스템 개발 과정을 표준화하고 단계별 주요 활동에 관한 연구, 프로젝트 범위 일정 비용 인적자원 관리를 위한 WBS 작성, 시스템의 신뢰성 품질 생산성 향상을 위한 관리 항목 설정, 중소기업 IT업체 감리업체 등 참여기업간의 의사소통, 그리고 구축된 생산정보화의 유지보수를 포함한 운영지원 등 보다 체계적이고 효율적인 시스템 구축을 위해 중소기업 생산정보화에 적합한 시스템 개발 방법론(PSDM : Production System Development Methodology)에 관하여 연구 개발한다. 이 PSDM의 연구로 생산정보화를 구축하고자 참여하는 많은 중소기업 및 IT업체들이 표준화된 방법론을 이용하여 시스템 구축을 보다 효과적으로 수행할 수 있으며, 보다 높은 신뢰성을 가진 시스템을 구축할 수 있다.

• Journal of Service Research and Studies
• /
• v.8 no.3
• /
• pp.1-23
• /
• 2018

This study suggests a way through Hong Kong as an alternative strategy for Korean companies to enter Chinese service market which is rapidly expanding due to China's recent policy switch toward service economy. Service market is generally more regulated, labor-intensive, and domestic demand-oriented than goods market, which makes opening of domestic markets to foreigners slow. In case of China, market control and regulations by the State is tighter than other economies. Therefore, it is important to find ways to avoid regulations from the Chinese government if possible. In this sense, this study investigates the China-Hong Kong CEPA and draws its strategic value for entering Chinese service market by comparing it with the Korea-China FTA service sector. In addition, utilizing the difference in tax agreements between Korea-China and China-Hong Kong, and the human network of Hong Kong entrepreneurs in China may play an important role in reducing the risk that might arise in China.

• Journal of Digital Convergence
• /
• v.10 no.3
• /
• pp.23-37
• /
• 2012

Illegal game players' hacking and propagation of malignant code in online game exposes privacy of online game customers. So, online game companies have to support the standardized systems and operations of customers' privacies. Since online game companies implement authentication of information protection, which focuses on assets or physical, systemic security, they need a more professional system that is related to protection of individual privacy. We analyzed the individual information protection system, which includes ISO27001, ISMS of KISA, GMITS, ePrivacy, online game privacy protection guide, and BS10012. Using the suggested systems, we proposed the systemic tools that measure the level of individual information protection, which includes process and check items of each phase.

• Journal of the Korea Society of Computer and Information
• /
• v.19 no.12
• /
• pp.339-348
• /
• 2014

This study searches an improvement scheme of auditing on international financial environment since enforcing IFRS in order to secure transparency and reliability in corporate accounting and credibility in external audit from 2011 K-IFRS. As improvement schemes for the issue of the audit on K-GAAP are: First, the guarantee of the auditor's qualities of duties and talents about the lack of accountability and awareness and independence of auditor are needed. Secondly, the free acceptance or certified public accountant is adopted. Third, the non-Executive Director shall be granted. Fourth, the external auditor CPA and Auditor's remuneration should be increased. Fifth, the auditor's shares shall be limited. Sixth, the external audit to supervise and the ratio of supervision should increase. Finally, the foreign corporation for the time being limited to increase our competitiveness.

• Journal of Information Technology Services
• /
• v.5 no.2
• /
• pp.59-78
• /
• 2006

This research is to suggest the factor which is effecting on the information system audit fidelity in the perspective of audit procurer, to develop the measure to evaluate it, to investigate the audit performance and project performance for comparison the audit fidelity between the audit teams. As the analysis results, we found that the audit service factors can be divided to the expert knowledge of auditor and the project attributes itself. It means these factors are the major measures for the audit fidelity. In this research, the hypothesis of this study model is verified throughout the factor and corelation analysis, and the structured equation model is applied. Analysis results show that all relations between the factors are significant statistically. The audit service factors has an effect on audit fidelity. Also the information system audit fidelity can be affect on the project performance, audit performance and customer satisfaction. So, in conclusion, we need to judge closely the audit service factors affecting the audit fidelity for the enhancement of the project performance, audit performance and customer satisfaction.

• Journal of Information Technology Services
• /
• v.5 no.3
• /
• pp.121-135
• /
• 2006

With the growth and maturation of IT industry, the necessity of audit about development, maintenance and management of high-quality information system is gradually increasing. In addition, the necessity of inner auditing system, which could totally verify and evaluate the effectiveness of project according to the characteristics of organization conducting information-oriented business, also being proposed. Government offices including Korea Institute of Science and Technology(KISTI) collectively controlling nationwide science-technology related information have no guiding principle or organization within themselves even though performing information-oriented businesses are becoming more bigger and complicated. In this paper, we propose scheme for devising framework, which can audit construction and operation of knowledge information, check list and guideline. In addition, we present concrete ways for adapting these schemes to institutes which manage science-technology knowledge information. Audit framework consists of points of time in audit, audit domain and audit criterion. Points of time in audit are defined as three phases as followings: pre-audit, in-progress audit and post-audit. Audit domain includes 16 detail audit domains and especially we set 11 check items and 40 detail investigation items for database implementation business. We expect that management level of science-technology implementation business of organizations using this research result will increase and they could offer high-quality information service.