• Information and Communications Magazine
• /
• v.27 no.1
• /
• pp.28-34
• /
• 2009

인터넷의 진화에 따라 우리사회는 매우 빠르게 변화하고 있으며, 이러한 변화를 선도한 인터넷은 앞으로도 개인 맞춤형, 사물 지능화 등으로 진화를 거듭하여 우리 삶에 더욱 큰 변화를 가져올 것이다. 경제적 측면에서도 인터넷을 기반으로 한 다양한 형태의 융합이 산업발전의 새로운 패러다임으로 대두되어 전력, 교통 등 산업간 융합이 가속화되고, 첨단 융합보안기술로 고(高)부가가치 신규 시장의 창출이 가능해질 전망이다. 그러나 인터넷, IT의 발전과 더불어 사이버 공격의 특성이 과거 호기심이나 자기 과시적 행태에서 조직적이고 금전적인 이익을 노리는 방향으로 확산되고 있으며, 인터넷의 익명성과 비대면성으로 인해 불건전 정보의 유통, 저작권 침해, 명예 훼손, 언어폭력 등 개인과 사회의 피해가 점증하고 있는 상황이다. 본고에서는 이러한 환경변화에 맞추어 융합을 통한 가치 창조적 정책 및 선진 인터넷 기반마련, 깨끗하고 안전한 인터넷 이용환경 조성, 글로벌 협력체계 강화 등의 전략 목표 달성을 통해 신뢰할 수 있는 인터넷 및 방송통신융합의 가치창조와 진흥이라는 미션을 완수하기 위한 한국인터넷진흥원의 주요 중점 추진과제를 정리하였다.

• Review of KIISC
• /
• v.18 no.5
• /
• pp.73-83
• /
• 2008

본 논문에서는 금융보안 OTP를 이용한 온라인 본인확인 방안을 제안한다. 현재 국내에서 신원확인 방식으로는 공인인 증서론 이용한 전자서명, 휴대폰SMS 발송번호, 신용카드정보 및 금융계좌정보 인증방식을 활용한 본인확인 방식이 사용되고 있다. 하지만, 공인인증서를 이용한 전자서명 방식이외의 방식은 명의도용된 휴대폰을 통한 본인확인과 신용카드 비밀번호 앞2자리 및 금융계좌의 비밀번호 4자리 입력 등 민감한 정보의 노출 위협 등의 문제점이 있다. 본 논문에서는 이와 같은 문제를 금융보안 OTP를 이용하여 안전하게 본인확인할 수 있는 방안을 제안한다. 제안된 방식은 웹사이트 회원가입, 게시판 글쓰기 등 온라인 본인확인이 필요한 경우에 언제든지 이용될 수 있고 아이핀(i-PIN)에서 본인확인 수단으로 도입된다면 개인정보를 보호할 수 있어 활용 가치가 높을 것이다.

• Journal of the Korea Society of Computer and Information
• /
• v.25 no.6
• /
• pp.65-72
• /
• 2020

Today, the Internet of Things is used in many places, including homes, industrial sites, and hospitals, to give us convenience. Many services generate new value through real-time data collection, storage and analysis as devices are connected to the network. Many of these fields are creating services and applications that utilize sensors and communication functions within IoT devices. However, since everything can be hacked, it causes a huge privacy threat to users who provide data. For example, a variety of sensitive information, such as personal information, lifestyle patters and the existence of diseases, will be leaked if data generated by smarwatches are abused. Development of IoT must be accompanied by the development of security. Recently, Differential Privacy(DP) was adopted to privacy-preserving data processing. So we propose the method that can aggregate health data safely on smartwatch platform, based on DP.

• 한국공간정보시스템학회:학술대회논문집
• /
• 2005.05a
• /
• pp.225-233
• /
• 2005

최근 LBS는 '위치정보의 보호 및 이용에 관한 법률' 제정 및 시행령 준비에 의해 위치정보 이용에 대한 제도적인 안전장치가 마련되었으며 이동통신망, 유선망과 무선망의 결합에 의해 LBS의 범위는 점점 더 확장되고 있어 서비스 또한 고속 통신을 기반으로 매우 개인화되고 다양해지고 있다. 그 중에 위치기반 경보 서비스(Alert based on LBS)기술은 가족안전, 모바일 상거래 등의 Push형 서비스로 이동단말의 인치를 폴링 (Polling)하여 일정 영역이나 특정 조건에 만족하면 통보하거나 기 정의된 서비스를 제공해주는 고부가가치 서비스이다 기존 위치폴링 기술은 일정한 시간간격으로 위치를 획득하여 네트워크 망에 큰 부하를 주고 있다. 본 논문은 위치폴링 기술에 전반적인 이해와 관련 연구를 통해 문제점을 살펴본 후 문제 해결책을 제시한다 또한, 향후에 유무선 통합 환경에서 위치기반 경보 서비스의 중요성을 살펴본다.

• The Korean Journal of Air & Space Law and Policy
• /
• v.35 no.2
• /
• pp.281-312
• /
• 2020

Despite the recent economic difficulties, the on-line market is overtaking the off-line market. Since US Amazon CEO Jeff Bezos mentioned that a delivery service using drones is possible, it has been creating new perspectives and values that have never been seen before. Drones are being used in various fields. Among them, the delivery service using drones will be the future growth engine of Korea in cooperation with the 4th industrial revolution. However, as drones are put into practical use, problems such as human life and property damage and personal information protection due to public collisions or falls are expected. The practical use of future drones is inevitable, not optional. As a method for commercialization of drones, first, securing safety through drone use and securing a national certification system, which is the minimum standard system for drone safety, and second, securing various infrastructures by activating drone use, and third, aviation regulations and personal information protection, etc. It needs to be supplemented in terms of laws and regulations.

• Journal of Convergence for Information Technology
• /
• v.12 no.5
• /
• pp.1-14
• /
• 2022

This study tried to suggest crisis management compliance to prevent personal information infringement accidents that may occur in the process because the data including personal information is being processed in the artificial intelligence (AI) service process. To this end, first, the AI service provision process is divided into 3 processes such as service planning/data design and collection process, data pre-processing and purification process, and algorithm development and utilization process. And 3 processes are subdivided into 9 stages following to personal information processing stages to infringe personal information. All processes were investigated with literature and experts' Delphi. Second, the investigated personal information infringement factors were selected through FGI, Delphi, etc. for experts. Third, a survey was conducted with experts on the severity and possibility of each personal information infringement factor, and the validity and adequacy of the 94 responses were verified. Fourth, to present appropriate risk management compliance for personal information infringement factors in AI services, a method for calculating the risk level of personal information infringement is prepared by utilizing the asset value of personal information, personal information infringement factors, and the possibility of infringement accidents. Through this, the countermeasures for personal information infringement incidents were suggested according to the scored risk level.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.23 no.5
• /
• pp.831-847
• /
• 2013

The various types of data are being created in large quantities resulting from the spread of social media and the mobile popularization. Many companies want to obtain valuable business information through the analysis of these large data. As a result, it is a trend to integrate the big data technologies into the company work. Especially, Hadoop is regarded as the most representative big data technology due to its terabytes of storage capacity, inexpensive construction cost, and fast data processing speed. However, the authentication token system of Hadoop Distributed File System(HDFS) for the user authentication is currently vulnerable to the replay attack and the datanode hacking attack. This can cause that the company secrets or the personal information of customers on HDFS are exposed. In this paper, we analyze the possible security threats to HDFS when tokens or datanodes are exposed to the attackers. Finally, we propose the secure authentication protocol in HDFS based on hash chain.

• Knowledge Management Research
• /
• v.22 no.2
• /
• pp.227-246
• /
• 2021

In the context of the global pandemic caused by COVID-19, emergency alert text messages can violate the privacy of confirmed corona positive cases. This study used conjoint analysis to identify the essential information factors and the privacy invasion information factors of local government initiated safety notices. As a result of this study, we found eight essential information factors, including all routes of the confirmed case and ten privacy invasion factors of safety notices. In addition, we found that there is a similarity between the combinations of information perceived to be the most essential and perceived as the most significant privacy invasion; both combinations include the confirmed case's personal and route information. This study ultimately tried to suggest a way to lower the concern about privacy invasion of the confirmed cases without damaging the emergency alert text messages' essential information. We expect that this study will provide researchers and policymakers interested in disaster communication with valuable theoretical and practical implications.

• Journal of Navigation and Port Research
• /
• v.28 no.10 s.96
• /
• pp.899-908
• /
• 2004

The rise of income and introduction of 5 day a week working system give korean people opportunities to enjoy their leisure time. And many korean people have much interest in oceanic sports such as yachting and also oceanic leisure equipments. With the popularization and development of the equipments, the scope of oceanic activities has been expanding in Korea just as in the advanced oceanic countries. However, The current conditions for the sports in Korea are not advanced and even worse than underdeveloped countries. In order to develop the underdeveloped resources of Korean marina, we need to customize the marina models of advanced nations to serve the specific needs and circumstances of Korea As such we have carried out a comparative analysis of how Austrailia, Newzealand, Singapore, japan and Malaysia operate their marina, reaching the following conclusions. Firstly, in marina operations, in order to protect personal property rights and to preserve the environment, we must operate membership and non-membership, profit and non-profit schemes separately, yet without regulating the dress code entering or leaving the club house. Secondly, in order to accumulate greater value added, new sporting events should be hosted each year. There is also the need for an active use of volunteers, the generation of greater interest in yacht tourism, and the simplification of CIQ procedures for foreign yachts as well as the provision of language services. Thirdly, a permanent yacht school should be established, and classes should be taught by qualified instructors. Beginners, intermediary, and advanced learner classes should be managed separately with special emphasis on the dinghy yacht program for children. Fourthly, arrival and departure at the moorings must be regulated autonomically, and there must be systematic measures for the marina to be able, in part, to compensate for loss and damages to equipment, security and surveillance after usage fees have been paid for. Fifthly, marine safety personnel must be formed in accordance with Korea's current circumstances from civilian organizations in order to be used actively in benchmarking, rescue operations, and oceanic searches at times of disaster at sea.