• 한국컴퓨터정보학회논문지
• /
• 제11권3호
• /
• pp.57-66
• /
• 2006

본 논문에서는 IETF CAT Working Group에서 발표한 PKINIT기반의 인증서비스를 향상시킨 Multi_Kerberos 인증 메커니즘을 제안한다. PKINIT기반의 X.509, DS/DNS를 적용하여 영역간의 서비스를 제공하는 인증과 키 교환방식으로 DNS를 통해 외부영역의 위치를 탐색하고 X.509 디렉터리 인증 시스템을 적용, 영역간 체인(CertPath)으로 DNS 서버로부터 공개키를 획득하여 다른 영역을 인증하도록 하였다. 검증서버를 활용하여 인증서 경로생성 및 구축, 세션키의 복구, 인증서 기반의 키 관리를 포함한 상호영역(cross realm)에 대한 효율적인 인증서비스를 지원하는 메커니즘을 제안하였다. 이에 통신상의 절차를 감소시키는 효과와 인증절차의 간소화를 가지는 Multi_Kerberos 시스템을 설계하였다.

• 산업기술연구
• /
• 제21권B호
• /
• pp.75-83
• /
• 2001

In the field of secure information systems including electronic commerces, public key infrastructure(PKI) is widely used for secure services. The more PKI domains are established, the more needs are required for cross-domain certifications. Furthermore, each country has many certificate authorities(CA) which require more complex cross certification: We may need a fast algorithm in order to find the possible certification paths. This will be more indispensible in the growing PKI systems. We designed and implemented the high-speed certification path discovery algorithm. Also, we investigated the feature of operation of the system.

• 한국컴퓨터산업학회논문지
• /
• 제2권12호
• /
• pp.1541-1548
• /
• 2001

본 논문에서는 IETF CAT Working Group에서 발표한 PKINIT 기반의 인증서비스를 향상시킨 Kerberos 인증 메커니즘을 제안한다. 서비스를 위한 상호 영역간 인증은 X.509와 DS/DNS를 이용하는 PKINIT를 통한 체인에 의해서 연결하였다. 영역간 서비스를 위해 공통키와 공개키를 사용하며 실제적인 인증은 Kerberos의 공통키에 두고 PKINIT의 X.509는 공개키를 이용하여 세션을 설정하였다. 새로운 메커니즘은 원격영역에서 티켓을 얻기 위하여 KDC의 인증서 사용으로 Client와 원격 KDC간 인증절차를 간소화시킴으로써 통신부담을 줄이고 원격 KDC의 재확인 과정이 생략되었다.

• 한국문헌정보학회지
• /
• 제36권1호
• /
• pp.211-231
• /
• 2002

본 논문은 세계적인 품질인증제도를 도서관 및 정보센터의 서비스 품질 평가에 활용할 수 있도록 이들 제도의 특성을 비교 ${\cdot}$ 분석하고, 외국 도서관의 적용사례를 고찰한 것이다. 본 논문의 분석 결과, TQM을 기반으로 한 데밍품질상, 말콤발드리지 국가품질상, 유럽 품질상의 품질인증기준은 광범위하고 동적이며, 고객 지향적인 제도인 반면, ISO 9000 품질 인증 제도는 협소하고, 정적이며, 명세서의 일치여부를 평가하는 내부지향적 제도임이 밝혀졌다.

• 디지털산업정보학회논문지
• /
• 제15권2호
• /
• pp.53-61
• /
• 2019

In this paper, we propose 'a self - conformance system of convergence security provider' to provide basic data for security and reliability of convergence industrial technology, system and service. It is difficult to evaluate convergence security systems, limited to information and communication service providers, unable to check convergence security items, burden of submission documents, difficulty in measuring convergence security service level and we will summarize product and service-based requirements that can be integrated and systematically measure the level of convergence security and define renewed life cycle-based convergence security information and content security and assurance requirements. On the basis of this, each convergence security company declares conformity with the standard itself without the certification of the certification body, and introduces the provider conformity certification system which can manufacture and sell. This will enable the company to strengthen its competitiveness through timely launch and implementation of products and services and cost reduction.

• 한국IT서비스학회지
• /
• 제18권2호
• /
• pp.55-73
• /
• 2019

The importance of the personal information has been increased, there have been a lot of efforts to establish a new policy, certification or law for administrating personal information more effectively and safely. Korean government has operated ISMS and PIMS certification system to assess whether an organization has established and managed appropriate information security system or not. However, it has been addressed the needs for revising and modifying of PIMS and ISMS. It is evaluated there are a few overlapped criteria to assess information management system in both ISMS and PIMS. ISMS-P certification, combining with ISMS and PIMS, is, finally, suggested, in the recent. GDPR is established having an aim of primarily to give control to individuals over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. This study compares GDPR and ISMS-P, focusing on "personal information". It can be expected to contribute as followings. This study can be a criterion for self-evaluation of possibility to violate of GDPR of a firm in preparation for ISMS-P. Second, this study also aims to increase the understanding of the role of ISMS-P and GDPR, among various certifications with the purpose of assessment of the information security management system, by reducing the costs required to obtain the unnecessary certification and alleviating the burden. Third, it contributes to diffusion of ISMS-P newly implemented in Korea.

• 한국방재안전학회논문집
• /
• 제16권3호
• /
• pp.35-43
• /
• 2023

본 논문은 생활안전지수 보정 방안에 대한 연구를 소개한다. 생활안전지수는 생활안전 예방서비스 시스템에서 제공되는 서비스로써, 개인의 일상생활 안전수준을 종합적으로 평가하여 개개인의 안전상태를 수시로 파악하고, 안전사고를 사전에 예방하기 위해 종합지수 형태로 나타낸다. 이전의 선행 연구에서는 생활안전 예방서비스를 평가하기 위한 평가 기준(항목)을 기반으로 하여 AHP(Analysis Hierarchy Process)와 Likert Scale 기법을 혼용하여 개발되었다. 이에 본 연구에서는 이러한 기존의 생활안전지수를 기반으로, 개인의 특성에 따른 보정 인자를 생활안전지수에 적용하는 방안을 탐구하고자 한다. 기존의 국가 통계를 활용한 보정 인자를 개발하여 개인 프로파일에 맞는 개별화된 서비스를 제공하는 방법을 제시한다. 따라서 본 논문은 생활안전지수 개발 및 보정 방법론에 대한 응용을 통해 사용자 맞춤형 서비스를 제공하는 방법에 대하여 제안하고자 한다.

• 디지털산업정보학회논문지
• /
• 제12권1호
• /
• pp.51-61
• /
• 2016

Because the Apple Pay which created by U.S's Apple Inc. and launch of Samsung pay in last August in domestic, people have high interest in Pin-Tech industries and new method of easy payment. In this paper, it will study newly introduced Pin-Tech industries and marketability of Pin-Tech industries. Also it will propose safe use of Pin-Tech services based on cases in domestic and overseas. This paper is organized as follows. In Chapter 2, it will study concept of Pin-Tech services and status of Pin-Tech services in domestic and overseas. In Chapter 3, it will look technical trends of Pin-Tech services. In Chapter 4, it will propose direction based on analysis of cases of Pin-Tech services. This paper will finish with conclusion in Chapter 5. Given the global trends, Korea is now just took the first steps in new Pin-Tech era. The Pin-Tech services are in situations that it is not yet activated in domestic due to the various financial regulations and procedures. In this paper, it will shows cases of concerns of Pin-Tech services and domestic authentication which relates to easy payment certification. If Pin-Tech services are develop with easy payment certification and adapt to domestic environment and develop based on stability and security as mentioned in this paper, domestic Pin-Tech services and security technology will grow to the world level. Also it requires unceasing research and efforts from relevant government officials, security companies and Pin-Tech ICT companies.

• 보건행정학회지
• /
• 제21권3호
• /
• pp.381-396
• /
• 2011

This study is to investigate the factors affecting the regional rate of certification for long-term care insurance benefits. Analyzed data were the 253,935 certified beneficiaries (equivalent to 4.9% of total elderly population) as long-term care degree (LTC degree) 1~3 extracted from the applicants for long-term care in the beginning stage of the system from April 15 2008 to July 1 2009. Although the data were collected from individuals, after restructured into regional data and then analysed in the unit of 225 administrative regions for the Korean Long-term Care Insurance. The rate of certification was operated as the percentage of people of LTC degree 1~3 to the elderly population in each region. The average rate of certification among regions was 4.91%, and ranged from 2.20% to 8.32%. In the analysing regression models, most socio-demographic variables, applicants' disease characteristics, regional service infrastructure, and the certification interviewer's characteristics were included. The most influencing variables were the disease factors of applicants, especially dementia or cerebrovascular disease rather than arthritis, osteoporosis, or fracture patients were strong factors for the regional rate of certification. However, advanced studies adding more explainable factors on the regional variance of certification rate would be necessary to provide political agenda and measures for evidence-based certification process with high reliability and validity for a sustainable LTC system in Korea.

• 보건행정학회지
• /
• 제27권1호
• /
• pp.56-62
• /
• 2017

Background: There have been deviations in the regional rate of certification in Korean long-term care insurance (LTCI). This study aimed to explore the determinants of the rate of certification in LTCI. Methods: The panel data of the year 2010-2014 of the 227 National Health Insurance Service (NHIS) regional office were used. Making use of 26 explanatory variables (socio-demographic factors, access to the long-term care services, etc.), we estimated the random effects model using STATA SE ver. 13.0 program (Stata Corp., College Station, TX, USA) and tried to find out the determinants of the regional rate of certification. Results: Estimation results showed that the most important determinants of the regional rate of certification in LTCI are the long-term care infrastructure such as capacity or number of the homecare service institution, sanatorium, or convalescent hospital. The number of the elderly who lives alone and the dimentia patients were positively related to the regional rate of certification in LTCI. Conclusion: The estimation results implied that the regional variation in the rate of certification in LTCI has nothing to do with the NHIS regional offices or their employees. To alleviate the deviation in the regional rate of certification in LTCI, we suggested the analysis of the deviation in the survey checklist. We also proposed to found the regional comprehensive support center to prevent the geriatric illness and to improve the residents' health, etc.