• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.20 no.6
• /
• pp.541-547
• /
• 2019

Recent developments in hacking technology are continuing to increase the number of new security vulnerabilities. Approximately 80,000 new vulnerabilities have been registered in the Common Vulnerability Enumeration (CVE) database, which is a representative vulnerability database, from 2010 to 2015, and the trend is gradually increasing in recent years. While security vulnerabilities are growing at a rapid pace, responses to security vulnerabilities are slow to respond because they rely on manual analysis. To solve this problem, there is a need for a technology that can automatically detect and patch security vulnerabilities and respond to security vulnerabilities in advance. In this paper, we propose the technology to extract the features of the vulnerability-discovery target binary through complexity analysis, and select a vulnerability-discovery strategy suitable for the feature and automatically explore the vulnerability. The proposed technology was compared to the AFL, ANGR, and Driller tools, with about 6% improvement in code coverage, about 2.4 times increase in crash count, and about 11% improvement in crash incidence.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.31 no.4
• /
• pp.587-604
• /
• 2021

Because the library cannot be run independently and used by many applications, it is important to detect vulnerabilities in the library. Fuzzing, which is a dynamic analysis, is used to discover vulnerabilities for the library. Although this fuzzing technique shows excellent results in terms of code coverage and unique crash counts, it is difficult to apply its effects to library fuzzing. In particular, a fuzzing executable and a seed corpus are needed that execute the library code by calling a specific function sequence and passing the input of the fuzzer to reproduce the various states of the library. Generating the fuzzing environment such as fuzzing executable and a seed corpus is challenging because it requires both understanding about the library and fuzzing knowledge. We propose a novel method to improve the ease of library fuzzing and enhance code coverage and crash detection performance by using a test framework. The systems's performance in this paper was applied to nine open-source libraries and was verified through comparison with previous studies.

• Maxillofacial Plastic and Reconstructive Surgery
• /
• v.42
• /
• pp.22.1-22.6
• /
• 2020

Introduction: Facial fractures (FFs) occur after high- and low-energy trauma; differences in associated injuries and outcomes have not been well articulated. Objective: To compare the epidemiology, management, and outcomes of patients suffering FFs from high-energy and low-energy mechanisms. Methods: We conducted a 6-year retrospective local trauma registry analysis of adults aged 18-55 years old that suffered a FF treated at the Santa Barbara Cottage Hospital. Fracture patterns, concomitant injuries, procedures, and outcomes were compared between patients that suffered a high-energy mechanism (HEM: motor vehicle crash, bicycle crash, auto versus pedestrian, falls from height > 20 feet) and those that suffered a low-energy mechanism (LEM: assault, ground-level falls) of injury. Results: FFs occurred in 123 patients, 25 from an HEM and 98 from an LEM. Rates of Le Fort (HEM 12% vs. LEM 3%, P = 0.10), mandible (HEM 20% vs. LEM 38%, P = 0.11), midface (HEM 84% vs. LEM 67%, P = 0.14), and upper face (HEM 24% vs. LEM 13%, P = 0.217) fractures did not significantly differ between the HEM and LEM groups, nor did facial operative rates (HEM 28% vs. LEM 40%, P = 0.36). FFs after an HEM event were associated with increased Injury Severity Scores (HEM 16.8 vs. LEM 7.5, P <0.001), ICU admittance (HEM 60% vs. LEM 13.3%, P <0.001), intracranial hemorrhage (ICH) (HEM 52% vs. LEM 15%, P <0.001), cervical spine fractures (HEM 12% vs. LEM 0%, P = 0.008), truncal/lower extremity injuries (HEM 60% vs. LEM 6%, P <0.001), neurosurgical procedures for the management of ICH (HEM 54% vs. LEM 36%, P = 0.003), and decreased Glasgow Coma Score on arrival (HEM 11.7 vs. LEM 14.2, P <0.001). Conclusion: FFs after HEM events were associated with severe and multifocal injuries. FFs after LEM events were associated with ICH, concussions, and cervical spine fractures. Mechanism-based screening strategies will allow for the appropriate detection and management of injuries that occur concomitant to FFs. Type of study: Retrospective cohort study. Level of evidence: Level III.

• Proceedings of the Korean Information Science Society Conference
• /
• 2007.06c
• /
• pp.510-515
• /
• 2007

더 이상 사용되지 않는 메모리가 계속해서 유지되는 것을 메모리 누수라고 한다. 메모리 누수가 발생하면 메모리 낭비가 누적되기 때문에 시스템의 성능이 저하되고 궁극적으로 시스템 크래시(crash)가 발생 할 수 있다. 본 논문에서는 이러한 메모리 누수를 검출하기 위하여 참조 계수 기법을 이용한다. 참조계수 기법을 이용하면 메모리 누수의 발생 여부뿐만 아니라 메모리 누수 발생시점에 대한 정보까지 제공할 수 있어 디버깅이 용이해진다. 그리고 본 논문에서 제안한 기법을 구현한 도구를 이용하여 사례연구를 수행한다. 사례 연구 분석을 통하여 본 연구에서 제안한 기법이 정확하게 메모리 누수를 검출하고 디버깅에 유용한 정보를 제공할 수 있다는 것을 보인다.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2004.05a
• /
• pp.88-92
• /
• 2004

Most studies in the past in testing and benchmarking on Intrusion Detection System (IDS) were conducted as comparisons, rather than evaluation, on different IDSs. This paper presents the evaluation of the performance of one of the open source IDS, snort, in an inexpensive high availability system configuration. Redundancy and fault tolerance technology are used in deploying such IDS, because of the possible attacks that can make snort exhaust resources, degrade in performance and even crash. Several test data are used in such environment and yielded different results. CPU speed, Disk usage, memory utilization and other resources of the IDS host are also monitored. Test results with the proposed system configuration environment show much better system availability and reliability, especially on security systems.

• Journal of the Korean Society of Safety
• /
• v.24 no.6
• /
• pp.72-78
• /
• 2009

Exposure to HDI(hexamethylene di-isocyanate) commonly used in vehicle crash repair workshops remains a leading cause of occupational asthma. Although skin and eye contamination are considered as absorption routes, there are no occupational exposure standards for skin and ocular exposure. This is the reason why there are more empirical data should be provided. Therefore this study was to determine contamination levels of HDI on the skin, eyes, work surfaces, respirators and eye protectors. There was evidence of contamination on a variety of work surfaces, for example, door handles, bench top and spray gun, etc. A high proportion(47~80%) of skin wipe samples from neck, forehead, back hand, palm and wrist was positive for HDI contamination, even though spray time was relatively brief. The contamination levels from spraying inside spray booth were generally higher than outside booth due to poor work practices and inappropriate personal protective use like safety gloves. Apprentices had higher exposure levels than the qualified painters, likely due to lack of the recognition of safety and hygiene. The extent of contamination inside the PPE might provide an indication of the potential for respiratory & skin exposure and ocular exposure. Eye fluid samples from 4 out of 14 workers had the positive detection of HDI contamination, due to poor work practices like no or inappropriate eye protection. Considering the potential for dermal & ocular exposure to contribute to possible health symptoms including respiratory sensitization, the empirical data point to a need for improving work practices and appropriate PPE selection, use and maintenance.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.17 no.11
• /
• pp.2677-2685
• /
• 2013

Car running data collected from the vehicle is a native image data and sensing data of it. Hence, it can be used as a set of objective data based on which events that took place outside the car can be analyzed and determined. In this paper, we designed and implemented a emergency situation detection system to sense, store, and analyze signals related to car movements, driver's various operation states, collision pulse, etc when a car collision accident occurs on the actual road by sensing and analyzing the car movements and driver's operation status. The suggested system provides information on the driver's reaction right before the collision, operation state of the vehicle, and physical movement. The collected and analyzed data on vehicle running can be utilized to clarify the cause of a collision accident and to handle it in a just manner. Besides, it can contribute to grasping and correcting wrong driving habits of the driver and to saving.

• Journal of Auto-vehicle Safety Association
• /
• v.3 no.2
• /
• pp.17-21
• /
• 2011

Vehicle safety device such as active headrest and rear detection system has been developing as people are interested about rear end collision more than head on or than front. However, there is no any standard or criterion in order to evaluate vehicle safety device for rear end collision. Also there is no test protocol about rear end collision in vehicle experiment. Therefore, this research developed scenario for experiment about rear end collision in vehicle experiment. Also this research evaluated dangerousness about vehicle test and fitness about re-enacting rear end collision using scenario developed using commercial software (PC-Crash) which can re-enact vehicle collision in virtual vehicle experiment. Scenario developed according to statistics from National Highway Traffic Safety Administration and German In-Depth Accident Study. Scenario has twelve cases which composed of Re-LVS (Rear end Leading Vehicle Stop), Re-LVM (Rear end Lead Vehicle Moving) and scenario for evaluation about malfunction of active headrest.

• International Journal of Highway Engineering
• /
• v.14 no.4
• /
• pp.93-101
• /
• 2012

PURPOSES : Adverse weather conditions such as heavy rain, heavy snowfall, and thick fog and so on have highly affect on the change in traffic conditions on the road. In particular, heavy snowfall causes capacity reduction as well as crash occurrence. This study investigated the effects of snowfall on speed on a freeway. METHODS : Vehicle detection systems data were matched with corresponding weather station data by regression analysis. RESULTS : The results show that the travel speed is reduced by 6.7% under little snowfall and by 12.8% under heavy snowfall. Regarding the speed variation, 8.7% and 114.7% increases are observed under little snowfall and heavy snowfall, respectively. It is also found that 1 cm increase in snowfall leads to 0.4% decrease in travel speed. In addition, the travel speed increases by 0.4% when the temperature increases by $1^{\circ}C$. CONCLUSIONS : It is expected that the outcome of this study will be useful in establishing more effective strategies for winter operations and road maintenance in practice.

• The Journal of The Korea Institute of Intelligent Transport Systems
• /
• v.17 no.2
• /
• pp.152-167
• /
• 2018

The high-speed weigh-in-motion system can collect the traveling speed and load information of individual vehicles, which can be used in a variety of ways for the traffic surveillance. However, it has a limit to apply the high-speed weigh-in-motion data directly to a safety analysis because high-speed weigh-in-motion's raw data are point measured data. In order to overcome this problem, this paper proposes a method to calculate the conflict rate and the Impulse severity based on surrogate safety measures derived from the detection time, detection speed, vehicle length, vehicle type, vehicle weight. It will be possible to analyze and evaluate the risk of rear-end collision on freeway traffic. In addition, this study is expected to be used as a fundamental for identifying crash risks and developing policies to enhance traffic safety on freeways.