• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.38B no.5
• /
• pp.377-384
• /
• 2013

In order to improve the security strength in the password based user authentication, in which the security vulnerability is increased while the same password is repeatedly used, the OTP(One-Time Password) system has been introduced. In the OTP systems, however, the user account information and OTP value may be hacked if the user PC is infected by the malicious codes, because the user types the OTP value, which is generated by the mobile device synchronized with the server, directly onto the user PC. In this paper, we propose a new method, called DTOTP(Dual Transmission OTP), to solve this security problem. The DTOTP system is an improved two-factor authentication method by using the dual transmission, in which the user performs the server authentication by typing the user account and password information onto the PC, and then for the OTP authentication the mobile device scans the QR code displayed on the PC and the OTP value is sent to the server directly. The proposed system provides more improved security strength than that of the existing OTP system, and also can adopt the existing OTP algorithm without any modification. As a result, the proposed system can be safely applied to various security services such like banking, portal, and game services.

• Journal of the Earthquake Engineering Society of Korea
• /
• v.16 no.5
• /
• pp.33-40
• /
• 2012

To reduce the vulnerability of torsional irregular buildings caused by seismic loads, the torsional amplification factor was introduced by the seismic code. This factor has been applied differently in a variety of seismic codes. In this study, the final static eccentricity, and the lateral and torsional stiffness ratios of buildings designed with different design eccentricities were compared. The increment of the torsional amplification factor resulted in a decrement of the final static eccentricity of the building. However, after reaching the maximum value of this factor, the final static eccentricity of the building increased again. The final static eccentricity of the building designed by multiplying the sum of the inherent and accidental eccentricity by the torsional amplification factor was zero or had a minus value, depending to the position of the vertical element.

• Journal of IKEEE
• /
• v.16 no.4
• /
• pp.389-394
• /
• 2012

Most current systems have ignored security vulnerability concerned with boot firmware. It is highly likely that boot firmware may cause serious system errors, such as hardware manipulations by malicious programs or code, the operating system corruption caused by malicious code and software piracy under a condition of no consideration of security mechanism because boot firmware has an authority over external devices as well as hardware controls. This paper proposed a structural security mechanism based on software equipped with encrypted bootstrap patterns different from pre-existing bootstrap methods in terms of securely loading an operating system, searching for malicious codes and preventing software piracy so as to provide reliability of boot firmware. Moreover, through experiments, it proved its superiority in detection capability and overhead ranging between 1.5 % ~ 3 % lower than other software security mechanisms.

• KIPS Transactions on Computer and Communication Systems
• /
• v.4 no.10
• /
• pp.349-360
• /
• 2015

In recent year, phishing attacks are flooding with services based on the web technology. Phishing is affecting online security significantly day by day with the vulnerability of web pages. To prevent phishing attacks, a lot of anti-phishing techniques has been made with their own advantages and dis-advantages respectively, but the phishing attack has not been eradicated completely yet. In this paper, we have studied phishing in detail and categorize a process of phishing attack in two parts - Landing-phase, Attack-phase. In addition, we propose an phishing detection methodology based on web sites heuristic. To extract web sites features, we focus on URL and source codes of web sites. To evaluate performance of the suggested method, set up an experiment and analyze its results. Our methodology indicates the detection accuracy of 98.9% with random forest algorithm. The evaluation of proof-of-concept reveals that web site features can be used for phishing detection.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.24 no.2
• /
• pp.327-333
• /
• 2014

The rapid expansion of the software industry has brought a serious security threat and vulnerability. Many softwares are constantly attacked by exploit codes using security vulnerabilities. Smart fuzzing is automated method to find software vulnerabilities. However, Many resources are consumed in fuzzing, because the fuzzing needs to create data model for target software and to analyze a data file and software binary. Therefore, The automated method for efficient smart fuzzing is needed to develop the automated data model. In this paper, through analysing the input file format and optimizing the data structure, we propose an efficient data modeling framework for smart fuzzing and implement the framework for detect software vulnerabilities.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.25 no.10
• /
• pp.1369-1374
• /
• 2021

Recently, controversy has been raised over the security and safety of Chinese-made network equipment (Huawei 5G), apps (TikTok, etc.). In particular, according to the results of the Ministry of Defense investigation in 2020, malicious codes were found in CCTVs made in China that were delivered as military surveillance equipment used as a coast guard system, and specific information was remotely transmitted to a Chinese server. The safety issues of these Chinese security products can be questioned as being systematically led by the state rather than by companies or individuals. In this paper, we perform network and process level analysis of 360 Total Security(360 TS), a Chinese antivirus software. In addition, it compares and analyzes the domestic cloud-based vaccine V3 Lite product. Through this, the safety of Chinese security solutions is checked and information leakage and risks are suggested.

• Structural Monitoring and Maintenance
• /
• v.10 no.1
• /
• pp.87-105
• /
• 2023

Seismic regulations have been updated from time to time to accommodate an increase in seismic hazards. Comparison of seismic fragility of the existing bridges in Indonesia from different historical periods since the era before 1990 will be the basis for seismic assessment of the bridge stock in Indonesia, most of which are located in earthquake-prone areas, especially those built many years ago with outdated regulations. In this study, seismic fragility curves were developed using incremental non-linear time history analysis and more holistically according to the actual strength of concrete and steel material in Indonesia to determine the uncertainty factor of structural capacity, βc. From the research that has been carried out, based on the current seismic load in SNI 2833:2016/Seismic Map 2017 (7% probability of exceedance in 75 years), the performance level of the bridge in the era before SNI 2833:2016 was Operational-Life Safety whereas the performance level of the bridge designed with SNI 2833:2016 was Elastic - Operational. The potential for more severe damage occurs in greater earthquake intensity. Collapse condition occurs at As = F_PGA x PGA value of bridge Era I = 0.93 g; Era II = 1.03 g; Era III = 1.22 g; Era IV = 1.54 g. Furthermore, the fragility analysis was also developed with geometric variations in the same bridge class to see the effect of these variations on the fragility, which is the basis for making bridge risk maps in Indonesia.

• Journal of the Korea Institute of Building Construction
• /
• v.23 no.4
• /
• pp.405-416
• /
• 2023

Recent seismic activities in countries like China and Turkey have underscored the widespread and severe damages that earthquakes can inflict globally. Being situated in a seismically active zone, South Korea can no longer regard itself as immune to earthquake hazards, necessitating the urgent adoption of proactive measures against such threats. The government has been proactive in evaluating, formulating processes, and methods for the seismic retrofitting of public buildings lacking in earthquake resistance. However, enforcement mechanisms for privately-owned apartment complexes are absent, and in the face of insufficient previous research and guidelines, preemptive measures for public safety remain alarmingly inadequate. With over 48% of residential structures in Korea aged over 30 years, and apartment complexes constituting more than 80% of these, the gravity of the situation is undeniable. This study deduces key factors for seismic retrofitting of apartment buildings like earthquake zones, soil type, building significance, aging degree, vulnerability, etc., based on building seismic design codes. It further proposes an algorithm for a more succinct and efficient determination of the priority of seismic reinforcements for apartment buildings.

• PNF and Movement
• /
• v.22 no.1
• /
• pp.101-111
• /
• 2024

Purpose: The purpose of this study was to investigate physical activity as a risk factor for neck pain recurrence using the National Health Insurance Data Sharing Service that utilizes a nationwide cohort in South Korea. Methods: Medical records spanning a two-year period were extracted from the National Health Insurance database for 541,937 patients who sought healthcare services for neck pain (ICD 10 codes: M54.2) in 2020 and completed the national health examination survey. Selected variables for analysis included age, gender, health insurance premium decile, regional health vulnerability index, body mass index (BMI), acuity, blood pressure, and types of physical activity. A mixed-effect multivariate logistic regression analysis was conducted to examine the recurrence rate of neck pain and identify risk factors for neck pain recurrence. Results: Among the participants, 124,433 patients (23.0%) experienced a recurrence of neck pain within two years, with higher recurrence rates observed among older individuals and females. Regression analysis revealed that the risk of neck pain recurrence increased with age (OR=1.51), being female (OR= 1.10), being a medical aid recipient (OR=1.51), and having anaerobic (OR=1.04) or vigorous physical activities (OR=1.06). By contrast, an increased health insurance premium decile (OR=0.96) and having moderate physical activity (OR=0.97) were associated with a decreased risk of neck pain recurrence. Conclusion: This study highlights the importance of moderate physical activity as an effective strategy for reducing the recurrence of nonspecific neck pain, underscoring the necessity for personalized physical activity programs for patients.

• Journal of the Computational Structural Engineering Institute of Korea
• /
• v.22 no.4
• /
• pp.355-362
• /
• 2009

Many of residential buildings, which have pilotis in lower stories to meet the architectural needs, are recently constructed in Korea. Usually, infill walls located in the upper stories of these buildings may cause a soft first story, which is very weak from the earthquake resistance. In the design of the buildings, the infill walls of upper stories are usually considered as non-structural elements and thus they are not included in the analytical model. However, the infill walls may affect the seismic behavior of the residential buildings. Therefore, the differences in seismic behaviors of RC buildings with and without masonry infill walls are required to be investigated. In this study, seismic fragility analyses were performed for masonry infilled low-rise RC moment-resisting frames. And seismic behaviors of RC moment-resisting frame with/without masonry infill walls were evaluated. Two types of structural system with the same frame and different allocation of infill walls are used to evaluate the influence of masonry infill walls on seismic behavior of RC moment-resisting frames. The infill walls were modeled as bi-equivalent diagonal struts. The fragility analyses show that the seismic performance of RC moment-resisting frames with soft story is below the desirable building seismic performance level recommended by current seismic codes, indicating high vulnerability of RC moment-resisting frames with soft story.