• Journal of the Korea Society of Computer and Information
• /
• v.17 no.4
• /
• pp.173-184
• /
• 2012

As a result of the compulsory of information system audit and a rise in audit demand, the quality improvement of information system audit is being emphasized. However, since the current information system audit heavily depends on the auditor's experience, skill, and subjective judgments, it incurs distrust in the objectivity and reliability of audit results from audit interest person. Furthermore, so far research activities aimed at securing the objectivity and reliability of audits have not been adequately carried out. Therefore, this paper presents a quantitative method for information system audit evaluation in order to contribute to the quality improvement of overall information system audit through securing compliance, objectivity, and reliability of information system audit. The quantitative method is largely composed of two sectors, such as evaluation areas and items, scores calculation for evaluation items, and can generally apply the information system audit standard to information system audit evaluation.

• Journal of KIISE
• /
• v.43 no.4
• /
• pp.497-508
• /
• 2016

With a cloud storage service, data owners can easily access their outsourced data in cloud storage on different devices and at different locations, and can share their data with others. However, as the users no longer physically have possession of their outsourced data and the cloud still facing the existence of internal/external threats, the task of checking the data integrity is formidable. Over recent years, numerous schemes have been proposed to ensure data integrity in an untrusted cloud. However, the existing public auditing schemes use a third-party auditor(TPA) to execute high computation to check data integrity and may still face many security threats. In this paper, we first demonstrate that the scheme proposed by Zhang et al. is not secure against our two threat models, and then we propose a self-certified public auditing scheme to eliminate the security threats and guarantee a constant communication cost. Moreover, we prove the securities of our public auditing scheme under three security models.

• Journal of Digital Convergence
• /
• v.14 no.12
• /
• pp.111-120
• /
• 2016

PCAOB conducts the direct supervision for the PCAOB registered accounting firm. Therefore, if an accounting firm is registered with the PCAOB, it will thoroughly manage for their quality management systems. The registered auditor can be expected to have better quality of the audit. This study carried out the analysis using the audit fee which proxies for audit quality. The results of analysis are as follows. After controlling for foreign accounting firms affiliated status, company size, risky assets, leverage, ROA, and market-related variables, PCAOB is a significant explanatory variable for the audit fees. The results of this study support the hypothesis that PCAOB-registered auditors will provide a good audit quality.

• Journal of Digital Convergence
• /
• v.18 no.9
• /
• pp.93-101
• /
• 2020

Although concerns about the opinion shopping have been continuously raised in the audit market, there has been little research on empirical evidence on the existence of audit opinions. For this reason, this study empirically confirmed whether the opinion shopping exists. At first, we measured thresholds of audit opinion issuing of two groups(changed or not-changed auditors). After that, the difference analysis was conducted to verify whether the thresholds of the audit opinion issuing was significant difference between two groups. As a result of the study, there was no significant difference in the thresholds of audit opinion issuing between two groups. This result can be interpreted that the audit opinion shopping is not a general phenomenon in the external audit market. The contribution of this study is to empirically confirmed that audit opinion shopping does not exist in the external audit market.

• KIPS Transactions on Software and Data Engineering
• /
• v.9 no.11
• /
• pp.351-356
• /
• 2020

With the spread of COVID-19 infections, the need for next-generation learning management system for undact education is rapidly increasing, and the Ministry of Education is planning future education through the establishment of fourth-generation NEIS. If the fourth-generation NEIS System is well utilized, there are advantages such as providing personalized education services and activating the use of educational data, but a solution to the illegal access problem in an access control environment where strict authorization is difficult due to various user rights. In this paper, we propose a blockchain-based access control audit system for next-generation learning management. Sensitive personal information is encrypted and stored using the proposed system, and when the auditor performs an audit later, a secret key for decryption is issued to ensure auditing. In addition, in order to prevent modification and deletion of stored log information, log information was stored in the blockchain to ensure stability. In this paper, a hierarchical ID-based encryption and a private blockchain are used so that higher-level institutions such as the Ministry of Education can hierarchically manage the access rights of each institution.

• Journal of the Korea Convergence Society
• /
• v.10 no.6
• /
• pp.203-218
• /
• 2019

Using the sample of 104 mutual savings banks inspected by the Financial Supervisory Service (FSS) on June 2011, this study examines if mutual savings banks manage BIS capital adequacy ratio using allowance for bad debts through comparison of BIS capital adequacy ratio before and after the 2011 when mutual savings banks experienced a large-scale restructuring by financial supervisory authorities. We find that mutual savings banks mainly use the allowance for bad debts to manage BIS capital adequacy ratio. It also shows that mutual savings banks with a business suspension order by FSS manage BIS capital adequacy ratio more than the others. Lastly, we find that Non Big4 auditors as well as Big 4 auditors don't effectively audit the use of the allowance for bad debts for mutual savings banks to manage their BIS capital adequacy ratio.

• KIPS Transactions on Software and Data Engineering
• /
• v.8 no.5
• /
• pp.179-186
• /
• 2019

Information system audit, which provides effective diagnosis and inspection of IT governance, is applied to all aspects from planning to development and operation. However, there is a difficulty in carrying out the audit because the system for the specialized university IT project is not developed. Therefore, it is necessary to set the internal system as the audit-based application framework in order to apply it to university IT governance. In this paper, we propose a audit-based application framework of university information system developed for university. The framework has a difference from the existing audit system. By using this framework, it is possible to present a standard for the university IT project and easily approach and use it in the field. And it can be used for direct audit through this framework in the level of the auditor as well as the HQ admin. The framework categorizes the audit into three major dimensions and suggests a method that can be applied to the university information system audit through the UAFP(University Audit Framework Process) and quality assurance.

• Journal of English Language & Literature
• /
• v.55 no.6
• /
• pp.1163-1191
• /
• 2009

As many critics do, this article starts from the premise that Charles Waddell Chesnutt wrote The Conjure Woman with a distinct socio-ethical view to ameliorating white readers' racism. For this purpose of social activism, first, the author uses a racially submissive genre and narrator- antebellum plantation-dialect fiction and an old ex-slave Julius-in order to win the attention of white racists, who constituted the majority of the reading public of postbellum America. Chesnutt then allows this seemingly submissive ex-slave consecutively to wage narrative battles against a Northern white capitalist, John. This fiction's structure is thus based on interracial narrative conflict. Granted, the result of these narrative battles is Julius's defeat. Even though he sometimes has narrative success through his manipulation of either his white female auditor's sentimentalism or the white capitalist's racial prejudice, it does not lead to any fundamental change in the white audience members' awareness: John still regards Julius's tacitly reformoriented tales merely as nonsensical ghost stories invented by the absurd imagination of a subservient, entertaining, and exploitable black coachman. Admitting his defeat, Julius relinquishes his original goal of deterring John's capitalist exploitation of both racial Others and the natural environment of the South and finally decides to serve the economic power of white capitalism. This self-defeating conclusion, however, should not be identified with Chesnutt's failure as an author. Rather, it should be understood as an interim result of the black author's earnest experiment with literary media best suited to his reform project. In fact, this narrative failure reveals Chesnutt's accurate diagnosis of the postbellum literary world: a black voice is still feebly heard and even easily buried by the whites' capitalist ambition and consequently intensifying racism. Conclusively, Julius's narrative failure should be positively evaluated as Chesnutt's one step further in his gradual and lifelong progress to a narrative goopher effectively to engage whites' imagination and sympathy for a vision of equal interracial coexistence.

• Asia-Pacific Journal of Business Venturing and Entrepreneurship
• /
• v.5 no.4
• /
• pp.1-34
• /
• 2010

Recently, failure rates of Kosdaq IPO firms are increasing and their survival rates tend to be very low, and when these firms do fail, often times backed by a number of governmental financial supports, they may inflict severe financial damage to investors, let alone economy as a whole. To ensure investors' confidence in Kosdaq and foster promising and healthy businesses, it is necessary to precisely assess their intrinsic values and survivability. This study investigates what contributed to the failure of IPO firms and analyzed how these elements are factored into corresponding firms' stock returns. Failure risks are assessed at the time of IPO. This paper considers factors reflecting IPO characteristics, a firm's underwriter prestige, auditor's quality, IPO offer price, firm's age, and IPO proceeds. The study further went on to examine how, if at all, these failure risks involved during IPO led to post-IPO stock prices. Sample firms used in this study include 98 Kosdaq firms that have failed and 569 healthy firms that are classified into the same business categories, and Logit models are used in estimate the probability of failure. Empirical results indicate that auditor's quality, IPO offer price, firm's age, and IPO proceeds shown significant relevance to failure risks at the time of IPO. Of other variables, firm's size and ROA, previously deemed significantly related to failure risks, in fact do not show significant relevance to those risks, whereas financial leverage does. This illustrates the efficacy of a model that appropriately reflects the attributes of IPO firms. Also, even though R&D expenditures were believed to be value relevant by previous studies, this study reveals that R&D is not a significant factor related to failure risks. In examing the relation between failure risks and stock prices, this study finds that failure risks are negatively related to 1 or 2 year size-adjusted abnormal returns after IPO. The results of this study may provide useful knowledge for government regulatory officials in contemplating pertinent policy and for credit analysts in their proper evaluation of a firm's credit standing.

• Korean Chemical Engineering Research
• /
• v.57 no.5
• /
• pp.637-651
• /
• 2019

In the event of a major accident such as an explosion in a refinery or a petrochemical plant, it has caused a serious loss of life and property and has had a great impact on the insurance market. In the case of catastrophic incidents occurring in process industries such as refinery and petrochemical plants, only the proximate causes of loss have been drawn and studied from inspectors or claims adjustors responsible for claims of property insurers, incident cause investigators, and national forensic service workers. However, it has not been done well for conducting root cause analysis (RCA) and identifying the factors that contributed to the failure and establishing preventive measures before leading to chemical plant's catastrophic incidents. In this study, the criteria of warning signs on CCPS catastrophic incident waning sign self-assessment tool which was derived through the RCA method and the contribution factor analysis method using the swiss cheese model principle has been reviewed first. Secondly, in order to determine the major incident warning signs in an actual chemical plant, 614 recommendations which have been issued during last the 17 years by loss control engineers of global reinsurers were analyzed. Finally, in order to facilitate the assessment index for catastrophic incident warning signs, the criteria for the catastrophic incident warning sign index at chemical plants were grouped by type and classified into upper category and lower category. Then, a catastrophic incident warning sign index for a chemical plant was developed using the weighted values of each category derived by applying the analytic hierarchy process (pairwise comparison method) through a questionnaire answered by relevant experts of the chemical plant. It is expected that the final 'assessment index for catastrophic incident warning signs' can be utilized by the refinery and petrochemical plant's internal as well as external auditors to assess vulnerability levels related to incident warning signs, and identify the elements of incident warning signs that need to be tracked and managed to prevent the occurrence of serious incidents in the future.