• Convergence Security Journal
• /
• v.7 no.3
• /
• pp.61-70
• /
• 2007

In Windows operating system, CSPs(Cryptographic Service Providers) are provided for offering a easy and convenient way of using an various cryptographic algorithms to applications. The applications selectively communicate with various CSPs through a set of functions known as the Crypto API(Cryptographic Application Program Interface). During this process, a secure method, accessing data using a handle, is used in order to prevent analysis of the passing parameters to function between CryptoAPI and CSPs. In this paper, our experiment which is using a novel memory traceback method proves that still there is a vulnerability of private key and secret key disclosure in spite of the secure method above-mentioned.

• Journal of the Korea Society of Computer and Information
• /
• v.22 no.3
• /
• pp.53-60
• /
• 2017

The purpose of this study is to provide empirical and quantitative analysis on user's perceived privacy, security, and user satisfaction when providing visualization information about objects and service provider behaviors that users can not perceive in internet service process. Through previous research, we have examined the importance of privacy and security factors as a key factor to be considered for the characteristics of the Internet of things and the Internet of things. In addition, service blueprint, which is one of the service design methodologies to examine the flow of service usage in providing Internet service of things, was examined. In the flow of things internet service utilization, it is found that the things that are out of the user's cognitive area and the behavior of the service provider take up a large part. Therefore, the hypothesis that the trust of the Internet service security and the satisfaction of the user experience can be improved by providing the security visualization information about the behavior of the object and the invisible service provider in the non-contact aspect of the user and the object. In order to verify the hypothesis, we conducted experiments and questionnaires on the use of virtual objects' internet environment and conducted statistical analysis based on them. As a result, it was analyzed that visual information feedback on non - contact and invisible objects and service provider's behaviors had a positive effect on user's perceived privacy, security, and satisfaction. In addition, we conclude that it can be used as a service design evaluation tool to eliminate psychological anxiety about security and to improve satisfaction in internet service design. We hope that this research will be a great help for the research on application method of service design method in Internet environment of objects.

• Journal of Information Technology Applications and Management
• /
• v.15 no.1
• /
• pp.21-41
• /
• 2008

The development of POS (Point of Sales) systems for small retailers according to their needs is considered to be important to improve their competitive advantages. However, their financial statuses hinder the adoption of the tailored POS systems. Viewing ASP as a viable solution to provide tailored POS systems for the small retailers, this study develops ASP POS service models for the small retailers. First, this study elicits ASP POS requirements of the small retailers in the following areas: merchandising, pricing, store design and display, customer service, advertising and promotion and personal selling. Then, the requirements are clustered and the clusters are analyzed based on the characteristics of the retailers. Then, ASP service models are proposed according to the needs and profiles of the retailers.

• The Journal of Society for e-Business Studies
• /
• v.14 no.4
• /
• pp.35-45
• /
• 2009

Domestic ASP (Application Service Provider) market has been dramatically enlarged under government supports for last 10 years. However ASP industry recently has been troubled for poor performance and market saturation. In this paper, firstly I derive core service groups through using BCG matrix for ASP market size and growth rate and secondly generate major critical success factors using focused group interview for selected core service groups. Finally I would like to propose a direction of ASP industry revitalization based on above critical success factors and transition strategy to SaaS (Software as a Service).

• Proceedings of the Korean Operations and Management Science Society Conference
• /
• 2001.10a
• /
• pp.387-390
• /
• 2001

e-Business는 최근 IT산업에서 가장 빈번히 등장하는 화두이다. 인터넷이 빠른 속도로 보급되고 시간과 공간의 한계를 극복할 수 있는 가능성을 제공함에 따라 기존의 오프라인 시스템들의 인터넷과 연동이 추구되고 있다. 인터넷과의 연동은 단순한 정보의 공유뿐만 아니라 지식, S/W, E/W 등의 거의 모든 IT자원들에 대한 공유를 촉발시키고 있다〔1〕. 1990년대 정보기술 아웃소싱은 괄목할 만한 성장을 가져왔다. 최근 새로운 종류의 아웃소싱 비즈니스 모델인 ASP(Application Service Providers)의 등장으로 정보기술 시장의 주요 이슈로 주목받고 있다. 하지만 아직 초기단계이기 때문에 수요층의 인식부족, 효과에 대한 확신 부족 등과 같은 여러 걸림돌이 있지만 e-Business의 핵심영역으로 발전할 것으로 전망된다. ASP는 e-Business관련 소프트웨어 및 어플리케이션을 배송하는 하나의 방식이다. 즉, ASP는 e-Business를 가능하게 하는 Enabler라고 볼 수 있다〔3〕. 본 연구는 ASP(Application Service Provider, 이하 ASP)의 서비스 품질의 차원을 분류하여 고객에게 보다 중요한 품질 요인을 찾기 위한 측정의 개념적 틀을 제시하고자 한다.

• Korea Information Processing Society Review
• /
• v.10 no.6
• /
• pp.69-76
• /
• 2003

• Proceedings of the CALSEC Conference
• /
• 2001.08a
• /
• pp.477-482
• /
• 2001

Under rapidly changing business surrounding, companies need information systems to keep their competitive powers and forecast business surroundings beforehand. In these trends, interests of ASP (Application Service Provider) service is increasing because of the advantage for efficiency to maintain a system and an inexpensive investment to build a system, and this service is rapidly spreading to many parts from simple functions to ERP system. In this research, we argue about these problems and about administrative framework technology for efficient ASP service of ERP system.

• The Korean Society of Law and Medicine
• /
• v.15 no.2
• /
• pp.31-60
• /
• 2014

In this paper the good Samaritan civil liability is argued. In many cases some damage could be caused by an emergency medical service. In such situations the degree of duty of care taken by the service provider would be alleviated depending upon the degree of emergency. Then the service provided by anyone not carrying any duty to do so could be generally ruled by the 'Korean Civil Act' Article 735. This article is related to the management of affairs in urgency. The application of this article means the mitigation of civil liability of the service provider. If the service provider not carrying any duty to provide it "has managed the affairs" of the service "in order to protect the" victim "against an imminent danger to the latter's life", the provider "shall not be liable for any damages caused thereby, unless he acted intentionally or with gross negligence". Korea has another rule applied in such a situation, that is the Korean 'Emergency Medical Service Act' Article 5-2. This article is established for the exemption from responsibility for well-intentioned emergency medical service. It could be referred to as the Good Samaritan law. It provides: "In cases where no intention or gross negligence is committed on the property damage and death or injury caused by giving any emergency medical service or first-aid treatment falling under any of the following subparagraphs to an emergency patient whose life is in jeopardy, the relevant actor shall not take the civil liability ${\cdots}$" In this paper the two articles is compared in the viewpoints of the requirements for and effects of the application of them respectively. The 'Korean Civil Act' Article 735 is relatively general rule against the the Korean 'Emergency Medical Service Act' Article 5-2 in the same circumstance. Therefore the former could be resorted to only if any situation could not satisfy the requisites for the application of the latter. In this paper it has suggested that the former article be more specific for the accuracy of making decision to apply it; and that the latter be revise in some requirements including the victim, the service provider, and the service.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2002.11a
• /
• pp.531-534
• /
• 2002

위치 기반 광고란 휴대폰, PDA(Personal Digital Assistant), 노트북 PC 등 위치 획득이 가능한 단말의 위치 정보를 이용하여 광고를 하는 것으로 위치 추적이 가능한 단말의 위치 정보를 활용하여 부가정보를 서비스하는 위치 기반 서비스 (LBS, Location Based Services)의 한 종류이다. 최근의 이동 통신 기술의 발달과 휴대폰, PDA 등 모바일 단말의 급속한 확산으로 인하여 LBS 는 유무선 인터넷의 응용 및 그를 이용한 부가 가치 창출에 있어 핵심적인 역할을 할 것이며, 특히 위치 기반 광고는 LBS 시장의 상당 부분을 차지할 것으로 예상되고 있다. 이러한 위치 기반 광고는 광고를 저장하고 관리하는 광고 ASP (Application Service Provider) 플랫폼에서 단말의 위치 정보를 저장 및 관리하는 LBS 플랫폼을 참조하여 위치 및 시간에 따라 광고의 대상이 되는 사용자 목록을 얻고, 해당 사용자에 대하여 단문 메시지 또는 멀티미디어 광고를 제공함으로써 이루어질 수 있다. 본 논문에서는 현재 많이 사용되고 있는 단문 메시지 서비스 (SMS, Short Message Services)를 사용하여 위치 기반 광고를 제공할 수 있는 광고 ASP 플랫폼을 설계한다. 이를 위해 광고 ASP 플랫폼이 제공하여야 하는 기능과 위치 기반 광고의 처리 흐름을 분석한다.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.14 no.4
• /
• pp.1015-1022
• /
• 2010

USN(Ubiquitous Sensor Network) environment that provides the service measured from sensors in real-time the information is delivered to application service. However, domestic service, application service provider environment between providers and users, most of the research are on the service platform architecture, and process the information detected by sensors between the providers of standard services platform architecture, which is a very weak level. In this paper, we proposed new service architecture though analysis of the OGC SWE(Sensor Web Enablement) with standards and research analysis of domestic standards. And we designed and implemented to each component of provider side.