• Proceedings of the KAIS Fall Conference
• /
• 2010.05a
• /
• pp.455-458
• /
• 2010

침입탐지시스템은 공격이라고 판단되면 경보를 발생하여 보안 관리자에게 알려주거나 자체적으로 대응을 하게 된다. 그러나 이러한 경보들 중에 오경보가 많이 포함되어 있어 침입탐지시스템의 성능을 저하시킬 뿐 아니라 대량의 경보자체가 보안메커니즘에 방해가 되고 있다. 특히 오경보중 False Positive가 전체 오경보의 대부분을 차지하고 있다. 즉, False Positive는 정상 행위를 침입행위로 오인하여 판단하는 것을 의미한다. 경보들 중 이러한 오경보들은 네트워크 전반에 걸친 보안 서비스의 질을 하락시키는 원인이 된다. 따라서 침입탐지시스템의 성능향상을 위해서는 이러한 오경보 문제가 반드시 해결되어야 한다. 본 논문에서는 침입탐지시스템의 오경보를 감소시키는 결정트리 기반 오경보 분류모델을 제안하였다. 결정트리 기반 오경보 분류 모델은 침입탐지시스템의 오경보율을 감소시키고 침입탐지율을 향상시키는 역할을 수행한다는 것을 확인할 수 있었다.

• Journal of the Korean Data and Information Science Society
• /
• v.28 no.5
• /
• pp.981-999
• /
• 2017

In the standard control chart assuming a simple random model, we estimate the process variance without considering the between-sample variance. If the between-sample exists in the process, the process variance is under-estimated. When the process variance is under-estimated, the narrower control limits result in the excessive false alarm rate although the sensitivity of the control chart is improved. In this paper, using the variance component model to incorporate the between-sample variance, we set the control limits using both the within- and between-sample variances, and evaluate the efficiency of the control chart in terms of the average run length (ARL). Considering the most widely used control chart types such as ${\bar{X}}$, EWMA and CUSUM control charts, we compared the differences between two cases, Case I and Case II, where the between-sample variance is ignored and considered, respectively. We also considered the two cases when the process parameters are given and estimated. The results showed that the false alarm rate of Case I increased sharply as the between-sample variance increases, while that of Case II remains the same regardless of the size of the between-sample variance, as expected.

• Korean Journal of Forensic Psychology
• /
• v.12 no.2
• /
• pp.151-169
• /
• 2021

In the P300-based concealed information test, most commonly used methods to detect whether a subject is lying are the bootstrapped amplitude difference (BAD) and the bootstrap correlation difference (BCD). Previous studies comparing the accuracy of the two methods reported inconsistent results. Most studies showed that the BAD is more accurate than the BCD, but some studies found that the BCD had a higher accuracy rate than the BAD. The purpose of the study is to identify conditions where the each method has higher accuracy compared to the other. In the result of Monte Carlo study, the false alarm rate of the BAD was generally higher than that of the BCD, and the hit rate of the BAD was higher than that of the BCD. Compared to the condition where the P300 latencies of probe and irrelevant were similar, the hit rate of the BCD was decreased when the P300 latency of probe was about 100 ms faster, and the hit rate of the BCD was increased when the P300 latency of probe was about 100 ms slower. When the P300 amplitude of the probe was slightly larger than that of the irrelevant and the P300 latency of probe was longer than that of target, the hit rate of the BCD was higher than that of the BAD. The reason why the false alarm rate of the BAD is higher than that of BCD and why the hit rate of the BCD is affected by the P300 latency of the probe were discussed.

• Journal of Korea Multimedia Society
• /
• v.8 no.1
• /
• pp.46-55
• /
• 2005

In this paper, we realize the panoramic infrared warning system to detect the small threaten object and propose the infrared image enhancement method to improve the warning ability of this system. This system composes of the sense head unit, the signal processing unit, and so on. In the proposed system, the sense head unit acquires the panoramic IR image with 360 degree field of view(FOV) by rotating the thermal sensor. The signal processing unit divides panoramic image into four sub-images with 90 degree FOV and computes the adaptive plateau value by using statistical characteristics of each subimage. Then the histogram equalization is performed for each subimage by using the adaptive plateau value. We realize the signal Processing unit by using the DSP and FPGA to perform the proposed method in real time. Experimental results show that the proposed method has better discrimination and lower false alarm rate than the conventional methods in this warning system.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.22 no.7
• /
• pp.1550-1558
• /
• 1997

In this paper, we first propose a modified OS CFAR detector called the order statistics cell averaging(OSCA) CFAR detector and anlyze its performance for a Rayleigh target in homogeneous backgrounds, clutter edges, and satistics smallest of(OSSO) CFAR detectors for a Rayleigh target to nonhomogeneous environments. Computer simulation results show that the OSCA CFAR detector has superior performance to OS, OSGO, and OSSO CFAR detectors in homogeneous and multiple target environments. And the proposed detector shows its robustness for fast detection because it requires falf the processing time of the OS CFAR detector.

• Convergence Security Journal
• /
• v.12 no.2
• /
• pp.61-70
• /
• 2012

The objective of this study is to achieve the most optimal data mining for effective analysis of false alarm event on mechanical security system. To perform this, this study searches the cause of false alarm and suggests the data conversion and analysis methods to apply to several algorithm of WEKA, which is a data mining program, based on statistical data for the number of case on movement by false alarm, false alarm rate and cause of false alarm. Analysis methods are used to estimate false alarm and set more effective reaction for false alarm by applying several algorithm. To use the suitable data for effective analysis of false alarm event on mechanical security analysis this study uses Decision Tree, Naive Bayes, BayesNet Apriori and J48Tree algorithm, and applies the algorithm by deducting the highest value.

• Journal of the Korean Society for Aviation and Aeronautics
• /
• v.18 no.1
• /
• pp.51-57
• /
• 2010

This study was to analyze the difference in pilot error by using the Signal Detection Theory. The task was to detect the targeted aircraft(signal) which is different shape from many other aircraft(noise). From the two experiments, we differentiated the task difficulty followed by change in noise stimuli. Experiment 1 was to search the signal stimuli(fighter plane) while the noise stimuli(cargo plane) were increasing. The results from the Experiment 1 showed the tendency to decrease the hit rate by increasing the number of noise stimuli. However, the false alarm rate was not increased. The sensitivity(d') showed quite high. In Experiment 2, a disturbance stimulus(helicopter) was added to noise stimuli. The result was generally similar to those of Experiment 1. However, the hit rate was lower than that of Experiment 1.

• Journal of the Korea Institute of Military Science and Technology
• /
• v.20 no.4
• /
• pp.482-490
• /
• 2017

The radar signal processing procedure is divided into the pre-processing such as frequency down converting, down sampling, pulse compression, and etc, and the post-processing such as doppler filtering, extracting target information, detecting, tracking, and etc. The former is generally designed using FPGA because the procedure is relatively simple even though there are large amounts of ADC data to organize very quickly. On the other hand, in general, the latter is parallel processed by multiple DSPs because of complexity, flexibility and real-time processing. This paper presents the radar signal processor design using FPGA which includes not only the pre-processing but also the post-processing such as doppler filtering, bore-sight error, NCI(Non-Coherent Integration), CFAR(Constant False Alarm Rate) and etc.

• The Journal of Korean Institute of Electromagnetic Engineering and Science
• /
• v.28 no.6
• /
• pp.487-496
• /
• 2017

Ground moving target indicator(GMTI) using syntheticaperture radar(SAR) used for finding moving targets on wide background clutter in short time is one of good ways to monitor a traffic situation or an enemy's threat. Although displaced phase center antenna (DPCA) is a real time method with low computational complexity, there have been few studies about its performance against various ground clutters. Thus, we need to analyze GMTI performance for various ground clutters in order to design a suitable DPCA detector. In this paper, simulation results show that the conventional DPCA detector produces different performance in terms of detection rate and false alarm rate. In particular, the false alarm rate of heterogeneous or extremely heterogeneous clutter from urban area is higher than one of homogeneous clutter from natural area.

• KIPS Transactions on Software and Data Engineering
• /
• v.3 no.9
• /
• pp.361-368
• /
• 2014

The LPR(License plate recognition) system has been developed to efficient control for complex traffic environment and currently be used in many places. However, because of light, noise, background changes, environmental changes, damaged plate, it only works limited environment, so it is difficult to use in real-time. This paper presents a heuristic segmentation algorithm for robust to noise and illumination changes and introduce a real-time license plate recognition system using it. In first step, We detect the plate utilized Haar-like feature and Adaboost. This method is possible to rapid detection used integral image and cascade structure. Second step, we determine the type of license plate with adaptive histogram equalization, bilateral filtering for denoise and segment accurate character based on adaptive threshold, pixel projection and associated with the prior knowledge. The last step is character recognition that used histogram of oriented gradients (HOG) and multi-layer perceptron(MLP) for number recognition and support vector machine(SVM) for number and Korean character classifier respectively. The experimental results show license plate detection rate of 94.29%, license plate false alarm rate of 2.94%. In character segmentation method, character hit rate is 97.23% and character false alarm rate is 1.37%. And in character recognition, the average character recognition rate is 98.38%. Total average running time in our proposed method is 140ms. It is possible to be real-time system with efficiency and robustness.