• International conference on construction engineering and project management
• /
• 2015.10a
• /
• pp.676-677
• /
• 2015

In Korea, NSDI(National Spatial Data Infrastructure) was implemented for integrating and sharing the nationally generated spatial data. One of the main roles of implementing NSDI is providing spatial data to public agencies. And now, the establishment plan for NSDI with the technical advancement should be needed. This paper deals with the technical aspects of adopting cloud service in the NSDI. First, we propose the concept for target system, which shows the current and future NSDI. In the future NSDI model, GIS cloud and governance systems are included. Service functions for cloud system and infrastructure implementation design directions are derived. Finally, governance system implementation plan is described. This research will contribute to the implementation of NSDI cloud service system.

• Journal of Information Technology and Architecture
• /
• v.10 no.4
• /
• pp.509-516
• /
• 2013

Cloud services are recognized the essential IT infrastructure in the optimal smart society which is changing rapidly as a low-cost and high-efficiency. This service of starting from prominent overseas companies such as Google, Amazon, had influenced on the introduction of the service for the various policies of foreign governments, including the United States and the United Kingdom. Such countries adopting to the cloud computing and make transform to the cloud service of existing public service for the effective management of information resources. In this study, we have proposed the main determining factors of cloud adoption, the model of cloud governance for the adoption of public cloud service.

• KIPS Transactions on Computer and Communication Systems
• /
• v.1 no.2
• /
• pp.103-108
• /
• 2012

Recently, IT Governance has been applied to business management environment. In this paper, we study business model that can minimize information security risk using IT governance in cloud computing environment. Especially, we propose the interaction model that link risk management for subject of information security governance. In our model, synergy means the effective, strategic and secure business support. And interaction analysis of BMIS's 4 elements and 6 dynamic interconnections is required. Therefore we propose interaction model which can link risk management based on COSO ERM or COBIT Risk IT Framework.

• Journal of the Korean Association of Geographic Information Studies
• /
• v.19 no.2
• /
• pp.86-97
• /
• 2016

This study aims to analyze the characteristics of the smart city governance through the multi-layer governance model, which includes administrative governance(AG), technological governance(TG), and global governance(GG). The results of the smart city governance are as follows. Multi-layered governance was modeled to enable cross-checking of each element of the propelling process and types of governance. AG has transitioned from a public partnership to a public-private people partnership(pppp) through a public-private partnership(ppp). TG has the characteristics of information communication technologies(ICTs) - eco technologies(EcoTs) - Spatial technology convergence including physical center, information software platforms such as the CCTV convergence center, and virtualization such as the cloud data center. GG aims at developing killer applications and ICTs-embedded space with intelligent buildings such as a smart city special zone to enable overseas exports. The smart city roadshow and forum have been developed as a platform for overseas exports with competition as well as cooperation.

• Journal of Information Processing Systems
• /
• v.12 no.2
• /
• pp.226-233
• /
• 2016

Cloud computing is a distributed computing model that has lot of drawbacks and faces difficulties. Many new innovative and emerging techniques take advantage of its features. In this paper, we explore the security threats to and Risk Assessments for cloud computing, attack mitigation frameworks, and the risk-based dynamic access control for cloud computing. Common security threats to cloud computing have been explored and these threats are addressed through acceptable measures via governance and effective risk management using a tailored Security Risk Approach. Most existing Threat and Risk Assessment (TRA) schemes for cloud services use a converse thinking approach to develop theoretical solutions for minimizing the risk of security breaches at a minimal cost. In our study, we propose an improved Attack-Defense Tree mechanism designated as iADTree, for solving the TRA problem in cloud computing environments.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.23 no.6
• /
• pp.1277-1286
• /
• 2013

Cloud computing's unique attributes such as elasticity, rapid provisioning and releasing, resource pooling, multi-tenancy, broad-network accessibility, and ubiquity bring many benefits to cloud adopters(company and organization), but also entails specific security risks associated with the type of adopted cloud and deployment mode. To minimize those types of risk, this paper proposed cloud computing security framework refered to strategic alliance model. The cloud computing security framework has main triangles that are cloud threat, security controls, cloud stakeholders and compose of three sides that are purposefulness, accountability, transparent responsibility. Main triangles define purpose of risk minimization, appointment of stakeholders, security activity for them and three sides of framework are principles of security control in the cloud computing, provide direction of deduction for seven service packages.