• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.30 no.6
• /
• pp.999-1012
• /
• 2020

As the utilize of personal health records increases in recent years, research on cryptographic protocol for protecting personal information of personal health records has been actively conducted. Currently, personal health records are commonly encrypted and outsourced to the cloud. However, this method is limited in verifying the integrity of personal health records, and there is a problem with poor data availability because it is essential to use it in decryption. To solve this problem, this paper proposes a verifiable cloud-based personal health record management scheme using Redactable signature scheme and zero-knowledge proof. Verifiable cloud-based personal health record management scheme can be used to verify the integrity of the original document while preserving privacy by deleting sensitive information by using Redactable signature scheme, and to verify that the redacted document has not been deleted or modified except for the deleted part of the original document by using the zero-knowledge proof. In addition, it is designed to increase the availability of data than the existing management schemes by designing to recover deleted parts only when necessary through the Redact Recovery Authority. And we propose a verifiable cloud-based personal health record management model using the proposed scheme, and analysed its efficiency by implementing the proposed scheme.

• Journal of the Korea Convergence Society
• /
• v.11 no.3
• /
• pp.27-35
• /
• 2020

The purpose of this study is to study the technical implementation methods to prevent problems such as the record of important educational activities of the student life record department or the continuous illegal leakage and manipulation. To this end, in this paper, by applying a private blockchain that can be participated only by a given organization or individual, it prevents outsiders from participating in the block network, and creates legitimate authority by creating two types of block data: student information block and access record block in the life record book. We proposed a block mechanism that can be registered, modified, and accessed only by authorized staff members. As a result, we have prepared an alternative to prevent forgery and alteration of the living records by third parties and to secure the integrity of the living records. If applied to the educational administrative information system, social consensus will be established that the operation and management of the life record book is reliable.

• The Korean Journal of Archival Studies
• /
• no.59
• /
• pp.159-206
• /
• 2019

This study aims to analyze the details of the executive order of the president of the United States, which have been developed in the country's administrative system to institutionalize the guarantee of the people's right to know the classified records, as well as to protecting national secrets. This study also aims to present any implications for the development of the classified record management system of Korea. To this end, the previously issued EO concerning the classified records management were reviewed in terms of its classification, safeguard, and declassification. The analysis results showed that the EO by the president established and prescribed the special access program for national secrets, the system to exempt and suspend the automatic declassification, and the sanctions for protecting national secrets. The EO also established and prescribed the appointment system for the person with the authority to classify record, automatic declassification program, and Mandatory declassification review system, as well as the procedures for historical researcher and certain former government personal to access the classified records with the purpose of guaranteeing people's right to know. As a result, this study identified implications for the development of Korea's classified record management system, as follows : First, it is necessary to restructure the current classified record management system, by changing the operations that is dependent on the director of the National Intelligence Service to the one that is dependent on the President. Second, it is necessary to legislate a separate special law for the classified record management system. Third, a standing supervisory body should be established for the integrated management and for the consistent and routine supervision of the classified record management. Fourth, it is necessary to establish procedures to further review the classification of classified record to correct the defects of the current classification system, which has been abused and mismanaged by the national agencies and organizations that produce classified record.

• Animal Systematics, Evolution and Diversity
• /
• v.17 no.1
• /
• pp.115-120
• /
• 2001

A new phycitine moth, Ceroperepes dorsomaculata sp. nov. is described from Korea. Acrobasis rufilimbalis (Wileman) is newly added to the pyralid fauna of Korea, with redescription and illustrations of adult and both sexes of genitalia.

• Proceedings of the IEEK Conference
• /
• 2002.06a
• /
• pp.351-354
• /
• 2002

NAPTR(Naming Authority Pointer) is a type of resource record specified IETF RFC 2915. NAPTR enables to register various services in tile domain name systems and thus Provides a way to discover services available on specific hosts. This paper describes the design and implementation of a proxy DNS system aimed at supporting NAPTRS. The goal of this work is to study on the feasibility of the service discovery registered in DNS via NAPTR records. This research result can be applied to service discovery in the resource information management for high performance GRID environments as well as to implement generic ENUM services

• The Korean Journal of Archival Studies
• /
• no.58
• /
• pp.147-190
• /
• 2018

Currently, the appraisal system for public records is mainly based on the disposition authority named 'Records Management Criteria Table,' which has many limitations in digital environment. Especially, it does not apply to other systems than the 'Business Management System' and does not adequately reflect the complex environment of records creation. The purpose of this study is to suggest ways to improve the 'Records Management Criteria Table,' so that it can be applied to appraisal of records created in a complex work environment. For this purpose, this study investigates a case of 'Factory Establishment and Registration' activity performed by local governments. For this activity, related laws and regulations, business processes and systems for those processes are analyzed and types of records are examined by each business process and system. Based on these analyses, the development procedure and structure of a new 'Records Management Criteria Table' are suggested, so that it can be applicable as disposition authority in the complex environments of records creation.

• Journal of Korean Society of Archives and Records Management
• /
• v.7 no.2
• /
• pp.113-138
• /
• 2007

This study was started from a critical mind for the construction records management in South Korea and examined the state of the construction records management system of the Korea Rail Network Authority which is constructing the biggest Express Railway Construction of National Project in Korea. The Methodology of this study is based on the functional requirement of the Records Management International Standard, ISO 15489, which standardized the record management process in the cases of Record Capture, Declaration, Classification, Storage, Access, Tracking and Disposition. In regard to the functional requirements from Capture to Disposition, each level(title) consists of 3 to 4 items, for a total of 22 principles in all. The estimation was created for each of the 22 categories using 4 levels: observance, partial observance, insufficiency and non observance. And pointing out the problem, suggesting the improvements for the Korea Rail Network Authority and structural improvements according to the KS X ISO 15489 principles.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.20 no.6
• /
• pp.1-8
• /
• 2019

Medical information is an important personal information for patients, and it must be protected. In particular, when medical personnel approach electronic medical records, authentication for enhanced security is essential. However, the existing public certificate-based certification model did not reflect the security characteristics of the electronic medical record(EMR) due to problems such as personal key management and authority delegation. In this study, we propose a fingerprint recognition-based authentication model with enhanced security to solve problems in the approach of the existing electronic medical record system. The proposed authentication model is an EMR system based on fingerprint recognition using PEMS (Private-key Escrow Management Server), which is applied with the private key commission protocol and the private key withdrawal protocol, enabling the problem of personal key management and authority delegation to be resolved at source. The performance experiment of the proposed certification model confirmed that the performance time was improved compared to the existing public certificate-based authentication, and the user's convenience was increased by recognizing fingerprints by replacing the electronic signature password.

• Journal of Information Management
• /
• v.42 no.1
• /
• pp.113-135
• /
• 2011

The final report of the Functional Requirement of Subject Authority Data(FRSAD), the 3rd report of the FRBR family model, is announced by IFLA in June, 2010. This model represents the international trends of subject authority control and suggests a direction to the future subject authority record suitable for the FRBR system. Therefore aims of this study are to analysis the FRSAD model in context of the FRBR family and apply the model to the subject headings and bibliographic records of Korean National Library. For these aims, we analyse the model focused on the entities, attributes, and relationships between entities. From this analysis, we have found the openness of the FRSAD, which does not force a certain entity types and has focus on the conceptual aspects of the entity not only the form of the headings. Moreover, we suggest examples by applying the FRSAD frame and facets of the FAST to the Headings of the NLSH and related KORMARC fields. The scope of this study is the additional entities of the FRBR groups, so personal names, corporate names, family names and titles are not included. As a result, it is necessary to determine the criteria for the types of thema and to apply the types consistently in bibliographic records. A follow up research will be needed to suggest more detailed examples.

• Journal of the Korean Society for information Management
• /
• v.38 no.1
• /
• pp.191-219
• /
• 2021

The development of IT technology that has come to symbolize the fourth industrial revolution, the introduction of online government, and the change in environment has caused radical changes in record management. Most public institutions under the government make use of information systems that are objects of information protection such as electronic document system, document management system, and Onnara system. Further, protection and access control of record information through physical environment and electronic system in a user-centered record management environment is an essential component. Hence, this study studies how professional records management professionals in public institutions recognize safe protection and access management of record information, deriving areas that require improvement and providing a discussion and suggestions to bring about such improvement. This study starts by examining laws and policies on information protection in Korea, analyzing items on access control to compare them with laws and policies, as well as the current situation on records management and derive implications. This study is meaningful in that it aims to substantialize records management by suggesting areas of improvement necessary for the protection and management of record information in public institutions and providing professionals with tangible authority and control.