• Proceedings of the Korean Society of Computer Information Conference
• /
• 2023.07a
• /
• pp.191-193
• /
• 2023

정보통신기술이 발전함에 따라 미래 해양산업에는 첨단 ICT 기술을 중심으로 두고 패러다임이 변화하고 있다. 해양 선박 분야에서는 현 단계인 스마트 쉽(Smart Ship), 자율운항선박(MASS) 등 육상과 선박간의 통신기술이 필요한 시점에서 사이버 공격 위험으로부터 자유로울 수 없다. 선박 간의 사용자 인증은 선박의 보안을 강화하고 인가된 사용자 만이 선박 시스템에 접근하고 조작할 수 있도록 하는 중요한 요소이다. 보안 요구 사항과 해당 규정에 따라 설계되고 구현되어야 하며, 또한 중요한 측면은 인증 시스템의 안전성과 안정성을 유지하기 위해 주기적인 업데이트와 강화된 보안 대책을 시행하는 것이다. 본 논문에서는 선박 간의 사용자 인증기술에 대해서 알아보고 다양한 방법에 대하여 제안하였다.

• Journal of the Korean Society for information Management
• /
• v.27 no.1
• /
• pp.289-319
• /
• 2010

The Council of the ALA has designated Committee on Accreditation to be responsible for the execution of the accreditation program of the ALA and to development and formulate standards of education for graduate programs of library and information studies leading to master's degree. The vast majority of employers require an ALA-accredited master's degree for professional positions in the field of library and information science; therefore, graduating from an ALA-accredited program enhances your career mobility and provides greater flexibility in the types of jobs for which you qualify. ALA-accredited master's programs can be found at colleges and universities in the United States, Canada, and Puerto Rico.

• The Journal of the Korea Contents Association
• /
• v.17 no.12
• /
• pp.368-377
• /
• 2017

The purpose of this study was to find improvement measures of the internal accreditation system which is spontaneously operated by A university. To do so, this study reviewed the historical backgrounds and current issues of A university's internal accreditation system mainly based on government's accreditation and financial support programs on higher education institutes. And, this study also analyzed qualitative data which were collected via interviews with members of the committee of internal accreditation and the minutes of accreditation related meetings. These procedures were conducted by using Nvivo 11, which is specially designed for the qualitative research method. The main results of this study were the following: the current issues that A university's internal accreditation system faced included the faculties' unwillingness to participate due to the administrative work load caused by the internal accreditation program, and the difficulties of the preparation of evaluation reports caused by the ambiguity of evaluation standards. The measures for improving A university's internal accreditation system included (1)offering the enough time and detailed information for the preparation of evaluation reports, and (2)providing the specific feedback and the consistent and systematic management, (3)establishing the ordinary recording system of achievement, (4)setting the standards for the renewal of accreditation, (5)setting the evaluation standards that considers the uniqueness of various faculties, and lastly, (6)providing the official templates for evaluation reports.

• Proceedings of the Korean Institute of Landscape Architecture Conference
• /
• 2022.03a
• /
• pp.7-9
• /
• 2022

• Food Science and Industry
• /
• v.48 no.2
• /
• pp.2-11
• /
• 2015

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.6
• /
• pp.1343-1354
• /
• 2018

OAuth 2.0 bearer token and JWT(JSON web token), current standard technologies for authentication and authorization, use the approach of sending fixed token repeatedly to server for authentication that they are subject to eavesdropping attack, thus they should be used in secure communication environment such as HTTPS. In OAuth 2.0 MAC token which was devised as an authentication scheme that can be used in non-secure communication environment, server issues shared secret key to authenticated client and the client uses it to compute MAC to prove the authenticity of request, but in this case server has to store and use the shared secret key to verify user's request. Therefore, it's hard to provide stateless authentication service. In this paper we present a randomized token authentication scheme which can provide stateless MAC token authentication without storing shared secret key in server side. To remove the use of HTTPS, we utilize secure communication using server certificate and simple signature-based login using client certificate together with the proposed randomized token authentication to achieve the fully stateless authentication service and we provide an implementation example.

• Proceedings of the Korean Society of Computer Information Conference
• /
• 2024.01a
• /
• pp.117-121
• /
• 2024

기존의 외장 하드디스크는 보안 기능의 부재로 인하여, 비인가자로부터 디스크가 탈취되는 경우에는 저장된 데이터가 유출되거나 훼손되는 문제점이 존재한다. 이러한 문제점을 보완하기 위하여, 보안 기능을 제공하는 보안 외장 하드디스크가 등장하였지만, 보안 기능 중 패스워드나 지문 인증과 같은 사용자 인증을 우회하는 취약점이 지속적으로 발견됨으로써, 비인가자가 장치 내부에 안전하게 저장된 데이터에 접근하는 보안위협이 발생하였다. 이러한 보안위협은 국가사이버안보센터에서 공개한 보안 요구사항을 만족하지 못하거나, 만족하더라도 설계나 구현 과정에서 내포된 취약점으로 인하여 발생한다. 본 논문은 이와 같이 보안 외장 하드디스크에서 발생하는 취약점을 점검하기 위한 목적으로 보안 외장 하드디스크 익스플로잇 프레임워크를 설계하였다. 취약점을 점검하기 위한 전체 프레임워크를 설계하였고, 프레임워크에서 제공하는 각 기능 및 유즈케이스 다이어그램을 설계하였으며, 설계된 프레임워크를 활용한다면, 현재 상용화되었거나 추후 개발될 보안 외장 하드디스크를 대상으로 안전성을 평가할 것으로 판단된다. 그뿐만 아니라, 안전성 평가 결과를 기반으로, 보안 외장 하드디스크에 내재된 취약점을 보완함으로써 안전성을 더욱 향상시키고, 수동으로 분석하여야만 하는 보안 외장 하드디스크의 취약점 점검을 자동화함으로써, 안전성을 평가하는 시간과 비용 또한 절감할 것으로 사료된다.

• Journal of Digital Convergence
• /
• v.17 no.3
• /
• pp.139-152
• /
• 2019

In the fourth industrial revolution and the era of convergence and integration, on the situation that the internal colleges are needed active change included in the improvement of educational quality, I tested it on the purpose of empirical analysis with SPSS v.18 how colleges' efforts on the first periodic Organization Evaluation And Accreditation System(OEAAS) affects on the Perceived Management Performances on the perspective of BSC. As the test result, the Degree of Awareness of Colleges' Efforts on the OEAAS affects on just Colleges' Learning and on Growth. The Degree Propriety of Preparation of the OEAAS affects on Customer Performance, on Internal Process Performance, and, on Finance Performance. And the Degree of Satisfaction of Internal Assessment affects on all of BSC 4 performances. The results of this research could be used on making the management idea of colleges' performance on the OEAAS. In the future, it would be needed advanced researches which are able to make relatedness to the expanse of management performance with the OEAAS.

• The Journal of the Korea Contents Association
• /
• v.19 no.1
• /
• pp.385-395
• /
• 2019

The purpose of this study was to compare the perception of medical institution certification evaluation, job stress, turnover intention, safety management cognition of a general hospital nurse before and after the medical institution certification system. Data were collected from June 1, 2016 to July 17, 2016. The collected data were analyzed by mean, standard deviation, and paired t-test using SPSS 21.0. The results of this study showed that there was no significant difference between before and after certification of medical institution recognition, turnover intention, and safety management awareness, but mean score was high and job stress showed significant difference before and after certification.(t = 2.825, p = <. 005). That is, the job stress was higher than that after the authentication. Therefore, in order to reduce job stress of nurses preparing for certification, active and diverse human and physical support of medical institutions that can reduce work burden is needed.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.19 no.5
• /
• pp.81-91
• /
• 2009

Recently, Chein et al proposed the ultralightweight strong authentication and strong integrity (SASI)protocol, where the tag requrires only simple bitwise operations. Since the tag does not support random number generator to generate a challenge nonce, an attacker can replay old messages and impersonate reader. However, all of the previous ultralightweight authentication schemes are vlunerable to various attacks: de-synk, eavesdropping, impersonating, tracking, DoS, disclosure etc. we analyze the problems of previous proposed ultrlightweight protocols, to overcome these security problems by using PRNG on the tag. Therefore, in this paper we propose a new lightweight RFID mutual authentication protocol that provides random number generator and bitwise operations, a security and an efficiency of the proposed schme analyze.