• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.7 no.3
• /
• pp.23-40
• /
• 1997

There are a lot of security tools for the investigation and improvement of UNIX systems. However, most of them fail to provide a consistent and usable user interface. In addition, they concentrate on a specific aspect of a system, not the whole one. For the overall management, system administrators cannot help using several uncomfortable tools. This paper introduces an integrated security analysis tool, named "Zkimi", which provides a convenient user interface and investigates the various aspects of UNIX systems such as account security, system security, network security, and file system integrity. The Zkimi supports user-friendly WWW based interface, so administrators can examine the various aspects of system more easily. We tried the tool for a system of a moderate size, and were confirmed that the tool is very efficient for investigating various security aspects of a system. a system.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.12 no.2
• /
• pp.111-122
• /
• 2002

Malicious attackers generally attempt to intrude the target systems by taking advantage of existing system vulnerabilities and executing readily available code designed to exploit blown vulnerabilities. To the network security administrators, the rat and minimal step in providing adequate network security is to identify existing system vulnerabilities and patch them as soon as possible. Network-based vulnerability analysis scanners (NVAS), although widely used by network security engineers, have shortcomings in that they depend on limited information that is available and generally do not have access to hast-specific information. Host-based vulnerability analysis scanner (HVAS) can serve as an effective complement to NVAS. However, implementations of HVAS differ from one platform to another and from one version to another. Therefore, to security engineers who often have to maintain a large number of heterogeneous network of hosts, it is impractical to develop and manage a large number of HVAS. In this paper, we propose an agent-based architecture named ISMAEL and describe its prototype implementation. Manager process provides various agent processes with descriptiom on vulnerabilities to check, and an agent process automatically generates, compiles, and executes an Java code to determine if the target system is vulnerable or not. The result is sent back to the manager process, and data exchange occurs in % format. Such architecture provides maximal portability when managing a group of heterogeneous hosts and vulnerability database needs to be kept current because the manager process need not be modified, and much of agent process remains unchanged. We have applied the prototype implementation of ISMAEL and found it to be effective.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.12 no.6
• /
• pp.59-69
• /
• 2002

Many Linear attacks have introduced after M. Matsui suggested Linear Cryptanalysis in 1993. The one of them is the method suggested by B. Kaliski and M. Robshaw. It was a new method using multiple linear approximations to attack for block ciphers. It requires less known plaintexts than that of Linear Cryptanalysis(LC) by Matsui, but it has a problem. In this paper, we will introduce the new method using multiple linear approximation that can solve the problem. Using the new method, the requirements of the known plaintexts is 5(1.25) times as small as the requirements in LC on 8(16) round DES with a success rate of 95%(86%) respectively. We can also adopt A Chosen Plaintext Linear Attack suggested by L. R. Knudsen and J. E. Mathiassen and then our attack requires about $2^{40.6}$ chosen plaintexts to recover 15 key bits with 86% success rate. We believe that the results in this paper contain the fastest attack on the DES full round reported so far in the open literature.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.16 no.4
• /
• pp.69-81
• /
• 2006

The Computer Forensics is a research area that finds the malicious users by collecting and analyzing the intrusion or infringement evidence of computer crimes such as hacking. Many researches about Computer Forensics have been done so far. But those researches have focussed on how to collect the forensic evidence for both analysis and poofs after receiving the intrusion or infringement reports of hosts from computer users or network administrators. In this paper, we describe how to collect the forensic evidence of good quality from observable and protective hosts at the time of infringement occurrence by malicious users. By correlating the event logs of Intrusion Detection Systems(IDSes) and hosts with the configuration information of hosts periodically, we calculate the value of infringement severity that implies the real infringement possibility of the hosts. Based on this severity value, we selectively collect the evidence for proofs at the time of infringement occurrence. As a result, we show that we can minimize the information damage of the evidence for both analysis and proofs, and reduce the amount of data which are used to analyze the degree of infringement severity.

• Journal of radiological science and technology
• /
• v.28 no.4
• /
• pp.317-325
• /
• 2005

The recent medical treatment guidelines and the development of information technology make hospitals reduce the expense in surrounding environment and it requires improving the quality of medical treatment of the hospital. That is, with the new guidelines and technology, hospital business escapes simple fee calculation and insurance claim center. Moreover, MIS(Medical Information System), PACS(Picture Archiving and Communications System), OCS(Order Communicating System), EMR(Electronic Medical Record), DSS(Decision Support System) are also developing. Medical Information System is evolved toward integration of medical IT and situation si changing with increasing high speed in the ICT convergence. These changes and development of ubiquitous environment require fundamental change of medical information system. Mobile medical information system refers to construct wireless system of hospital which has constructed in existing environment. Through RFID development in existing system, anyone can log on easily to Internet whenever and wherever. RFID is one of the technologies for Automatic Identification and Data Capture(AIDC). It is the core technology to implement Automatic processing system. This paper provides a comprehensive basic review of RFID model in Korea and suggests the evolution direction for further advanced RFID application services. In addition, designed and implemented DB server's agent program and Client program of Mobile application that recognized RFID tag and patient data in the ubiquitous environments. This system implemented medical information system that performed patient data based EMR, HIS, PACS DB environments, and so reduced delay time of requisition, medical treatment, lab.

• Journal of the Computational Structural Engineering Institute of Korea
• /
• v.34 no.2
• /
• pp.77-84
• /
• 2021

A sampling-based approach was devised as a nuclear seismic probabilistic risk assessment (SPRA) method to account for the partially correlated relationships between components. However, since this method is based on sampling, there is a limitation that a large number of samples must be extracted to estimate the results accurately. Thus, in this study, we suggest an effective approach to improve the existing sampling method. The main features of this approach are as follows. In place of the existing Monte Carlo sampling (MCS) approach, the Latin hypercube sampling (LHS) method that enables effective sampling in multiple dimensions is introduced to the SPRA method. In addition, the degree of segmentation of the seismic intensity is determined with respect to the final seismic risk result. By applying the suggested approach to an actual nuclear power plant as an example, the accuracy of the results were observed to be almost similar to those of the existing method, but the efficiency was increased by a factor of two in terms of the total number of samples extracted. In addition, it was confirmed that the LHS-based method improves the accuracy of the solution in a small sampling region.

• Journal of the Institute of Convergence Signal Processing
• /
• v.21 no.1
• /
• pp.21-28
• /
• 2020

In this paper, a new type of electric wheelbarrow is proposed and developed. The developed electric wheelbarrow is equipped with an attitude reference system(ARS) sensor, which consists of 3-axis acceleration sensor and 2-axis Gyro sensor so that it can estimate pitch angle and roll angle. When an operator tilts the wheelbarrow up and down, the pitch angle is detected. The sign of the pitch angle is interpreted as the operator's intention for moving the wheelbarrow forward or backward and the controller drives the wheel of the wheelbarrow with the velocity according to the magnitude of the detected pitch angle. A cargo box of the wheelbarrow is designed to rotate and is controlled to maintain level always, so an operator can handle the electric wheelbarrow easily and safely. The wheelbarrow consists of an in-wheel motor, a DC motor, motor drives, an ARS sensor considering economical use in industrial field. Three experiments are performed to verify the feasibility and stability of the electric wheelbarrow.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.22 no.2
• /
• pp.802-809
• /
• 2021

To cope with the increasing maintenance costs due to aging, the maintenance cost was evaluated from the perspective of asset management. The maintenance cost can be predicted based on the condition of the bridge, and the life cycle cost is used as an index. In general, the condition of a bridge has a wide distribution characteristic depending on the deterioration, load, and material characteristics. In this paper, to evaluate the effect of the bridge conditions on the life cycle cost, condition prediction models were constructed considering the service life, deterioration rate, and inspection error, which are the main variables of the bridge condition and life cycle cost calculation. In addition, condition prediction models were constructed based on the distribution of the health index to estimate the upper and lower bounds of the life cycle costs that can occur in individual bridges. Life cycle cost analysis showed that the life cycle cost differed significantly according to the condition of the bridge. Accordingly, research will be needed to increase the reliability of predicting the life cycle cost of individual bridges.

• Journal of Internet Computing and Services
• /
• v.21 no.6
• /
• pp.123-132
• /
• 2020

The EDucation-research Integration through Simulation On the Net (EDISON) platform, which is a web-based platform that provides computational science and engineering simulation execution environments, can offer various analysis environments to students, general users, as well as computational science and engineering researchers. To expand the user base of the simulation environment services, the EDISON platform holds a challenge every year and attempts to increase the competitiveness and excellence of the platform by analyzing the user requirements of the various simulation environment offered. The challenge platform system in the field of computational science and engineering is provided to users in relation to the simulation service used in the existing EDISON platform. Previously, EDISON challenge servicesoperated independently from simulation services, and hence, services such as end-user review and intermediate simulation results could not be linked. To meet these user requirements, the currently in-service challenge platform for computational science and engineering is linked to the existing computational science and engineering service. In addition, it was possible to increase the efficiency of service resources by providing limited services through various analyses of all users participating in the challenge. In this study, by analyzing the simulation and usage environments of users, we provide an improved challenge platform; we also analyze ways to improve the simulation execution environment.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.30 no.6
• /
• pp.1087-1101
• /
• 2020

Various security devices are used to protect internal networks and valuable information from rapidly evolving cyber attacks. Firewall, which is the most commonly used security device, tries to prevent malicious attacks based on a text-based filtering rule (i.e., access control policy), by allowing or blocking access to communicate between inside and outside environments. However, in order to protect a valuable internal network from large networks, it has no choice but to increase the number of access control policy. Moreover, the text-based policy requires time-consuming and labor cost to analyze various types of vulnerabilities in firewall. To solve these problems, this paper proposes a 3D-based hierarchical visualization method, for intuitive analysis and management of access control policy. In particular, by providing a drill-down user interface through hierarchical architecture, Can support the access policy analysis for not only comprehensive understanding of large-scale networks, but also sophisticated investigation of anomalies. Finally, we implement the proposed system architecture's to verify the practicality and validity of the hierarchical visualization methodology, and then attempt to identify the applicability of firewall data analysis in the real-world network environment.