Search | Korea Science

Jang, Seung-Ju
- Journal of the Korea Institute of Information and Communication Engineering
- /
- v.18 no.10
- /
- pp.2482-2488
- /
- 2014
This paper proposes that a user account of the MS-SQL is checked whether expirated or not in C++ program environment. Vulnerability checking module decides security weakness for password change time or user configuration time. The proposed module prevents and protects a user account from a malicious user account. Recently, Information Assets becomes more important. If the loss of database information it would make large damage in our life. This paper develops user account checking module, which checks whether user password have not been changed for a long time or whether the user account expirated in the MS-SQL Database. By checking security vulnerability using this feature, a malicious user cannot access the Database.
https://doi.org/10.6109/jkiice.2014.18.10.2482 인용 PDF KSCI

현영숙;김창수
- Proceedings of the Korea Multimedia Society Conference
- /
- 2001.11a
- /
- pp.686-689
- /
- 2001
최근 개인 신분확인 기술로 개인의 신체적 특징을 이용한 생채인식시스템이 주목을 받고 있다. 그러나 생체인식시스템에 저장된 생체 정보가 개인의 고유한 신체정보라는 점에서 정보가 유출되거나 의도적인 데이터의 변경으로 침해 발생 시 막대한 피해가 우려된다. 이러한 문제들을 기본으로 해결하기 위해서는 생체인식 정보가 저장된 데이터베이스를 보호해야 한다. 본 논문에서는 생체인식시스템 중 지문인식 시스템을 사용하여 지문 데이터베이스내의 데이터에 대한 위조 및 변조를 체크하여 신뢰성 있는 데이터를 관리할 수 있는 지문데이터베이스 보안관리에 관한 내용을 설계하고자 한다.
PDF

Lee, Chang Won;Choi, Hyung Kee
- Proceedings of the Korea Information Processing Society Conference
- /
- 2020.11a
- /
- pp.376-379
- /
- 2020
메신저 애플리케이션은 사용자의 채팅 로그나 전화번호와 같은 개인 정보를 데이터베이스에 저장하며, 비밀번호 관리 애플리케이션은 사용자의 비밀번호 정보를 데이터베이스에 저장한다. 따라서 사용자의 개인 정보들이 들어 있는 데이터베이스를 안전하게 보호하는 것은 매우 중요하다. 본 논문에서는 암호화된 데이터베이스를 복호화하기 위한 키를 저장하는 위치에 따라 애플리케이션을 분류하고, 각 경우 보안성이 어떻게 달라지는지에 관한 연구를 수행했다.
https://doi.org/10.3745/PKIPS.y2020m11a.376 인용 PDF

Lee, Byoung-Yup;Lim, Jongtae;Yoo, Jaesoo
- The Journal of the Korea Contents Association
- /
- v.14 no.6
- /
- pp.1-10
- /
- 2014
Through the development of internet mobile devices and online business activation, sensitive data of unspecified user is being easily exposed. In such an open business environment, the outflow of sensitive personal information has often been remarked on recently for which adoption of encryption solution for database became top priority in terms of importance. In 2011, government also legislated for the protection of personal information as an information network law, and is now applying the law to a variety of industries. Firms began to comply with these regulations by establishing various measures for protection of personal information and are now quickly introducing encryption solution to reinforce security of personal information they are managing. In this paper, I present architecture and technological parts that should be considered when introducing security solution.
https://doi.org/10.5392/JKCA.2014.14.06.001 인용 PDF KSCI

Hyun, Suk-woo;Kwon, Taekyoung
- Journal of the Korea Institute of Information Security & Cryptology
- /
- v.29 no.5
- /
- pp.1167-1177
- /
- 2019
In this paper, the improved security operation model based on the vulnerability database is studied. The proposed model consists of information protection equipment, vulnerability database, and a dashboard that visualizes and provides the results of interworking with detected logs. The evaluation of the model is analyzed by setting up a simulated attack scenario in a virtual infrastructure. In contrast to the traditional method, it is possible to respond quickly to threats of attacks specific to the security vulnerabilities that the asset has, and to find redundancy between detection rules with a secure agent, thereby creating an optimal detection rule.
https://doi.org/10.13089/JKIISC.2019.29.5.1167 인용 PDF KSCI HTML