• Journal of Korean Society of Disaster and Security
• /
• v.5 no.2
• /
• pp.81-87
• /
• 2012

Critical infrastructures (energy, information technology and communications, banking, transportation, public government services, etc.) are now more vital to modern society. Citizens, businesses and governments all rely on an array of interlinked physical and information infrastructures to satisfy their needs and perform their daily operations. At the same time, these infrastructures are becoming increasingly interdependent, such that failure of one of them can often propagate and result in domino effects. Recent dramatic episodes, from 9/11 to the Madrid train bombings, the April 2010 ash cloud the power cuts in Korea in 2011, and the cyber-attacks have highlighted the need for a comprehensive, internationally coordinated policy for the protection of critical infrastructures. For the purposes of this report, we define critical infrastructure as infrastructure whose failure would result in substantial damage to society and/or the economy.

• Asia pacific journal of information systems
• /
• v.10 no.2
• /
• pp.149-176
• /
• 2000

As companies become more dependent upon information systems(IS), the potential losses of IS resources become critical. IS management must assume the increasing responsibility for protection of IS resources as the IS and business environments become more vulnerable to various threats. The major issues facing management, when attempting to manage risks, include the assessment of the impact of risks on business objectives and the design of security safeguards to reduce the unacceptable risks to an acceptable level. This paper provides a case study of the risk management for IS. A Korean credit card company which has the high sensitivity for customers security was selected as a case. The risk management procedure using a powerful tool, CRAMM(the Central Computer and Telecommunications Agencys Risk Analysis and Management Method) was applied for this company.

• Proceedings of the Korea Inteligent Information System Society Conference
• /
• 2005.11a
• /
• pp.226-233
• /
• 2005

Ubiquitous computing is a study area explained in a myriad of contexts and technological terms. So when you try to define it with simple words, it gets even more confusing. Payment. however, refers in nature to an act of money transfer from one entity to another, and it is obvious that a payment method will be valued as long as the transaction can be completed with safety no matter what technology was used. In the end, the key to U-payment is convenience and security in the transfer of financial information. The purpose of this paper is to find a desirable U-payment scheme by looking at the characteristics of seamlessness under the ubiquitous environments, Strong Personal Device, and peer-based if information transactions. We also propose U-SDT Protocol integrating critical technologies such as Radio Frequency Identification (RFID), Bluetooth, Personal Payment Device, Account Managing Application and Transaction ID as a way to make transactions between users seamless and secure better privacy protection.

• Korean Security Journal
• /
• no.56
• /
• pp.145-163
• /
• 2018

Recently, security behavior of members of organizations has been recognized as a critical part of information security at the corporate level. Leakage of customers' information brings more attention to information security behavior of organizations and the importance of a task force. Research on information breach and information security is actively conducted of personal behavior toward security threats or members of organizations who use security technology. This study aims to identify factors of influence on information security behavior of members of organizations and to empirically find out how these factors affect information security behavior through behavior toward attitude, subjective norm and perceived behavior control. On the basis of the research, this study will present effective and efficient ways to foster information security activities of members of organizations. To this end, the study presented a research model that applied significant variables based on integration of Theory of Planned Behavior (TPB) and Theory of Protection Motivation (TPM). To empirically verify this research model, the study conducted a survey of members of organizations who had security-related work experience at companies. So, it is critical for members of organizations to encourage positive word of mouth (WOM) about information security behavior. Results show that based on the integration of TPM and TPB, perceived vulnerability, perceived severity, perceived efficiency and perceived barriers of information security behavior of members of organizations had significant influences on mediating variables such as behavior toward attitude, subjective norm, perceived behavior control and intention. They also had significant influences on organization information security behavior which is a dependent variable. This study indicates companies should introduce various security solutions so that members of the organizations can prevent and respond to potential internal and external security risks. In addition, they will have to take actions to inspect vulnerability of information system and to meet security requirements such as security patches.

• Journal of Digital Convergence
• /
• v.10 no.11
• /
• pp.691-699
• /
• 2012

"Information", which is circulated in society by information technology development represented by computer, has brought innovation not only to physical civilization, but also deep into our daily lives. This is to say that information has brought fundamental change to its form of existence, and value system through being faster regarding the circulation and the way of management being diverse. As time goes by, this kind of change would stimulate more changes to be made as the development of scientific civilization. Therefore, informatization is one of the important characteristic that defines modern society's essence, but on the other side, information has been taken advantage of that temperament and abused in a lot of different ways. "The Law Regarding Computer Network Diffusion Expansion and Usage Promotion"(1986), as a counterplan of informatization is our nation's first Act about informatization, which enacts national policy and system about this issue. Since then, many laws has been enacted down to "Private Information Protection Act"(2011), forming a comprehensive system. The basic background of these laws are based upon the premise that even if the place where the information is managed is virtual space, rules that are considered valid in the real world should be basically applied in the virtual space. Therefore, the violation of the law in the real world is also considered the violation in the virtual space. This direction of current law regarding information is shared with both the theories and the reality. However, current law system and notion are based upon the premise that the law regards material objects, thus the characteristic of the information, which is "Immaterial Being" is not reflected. Also, the management and approach to this issue is allopathic, exposing many problems. Thus, this paper examines the way of protecting information stipulated in the current law, contemplates its protection scope and limitation, and seeks the direction of the improvement, based on the critical mind explained above.

• Asian-Australasian Journal of Animal Sciences
• /
• v.29 no.9
• /
• pp.1345-1352
• /
• 2016

The hindgut of horses is an anaerobic fermentative chamber for a complex and dynamic microbial population, which plays a critical role in health and energy requirements. Research on the gut microbiota of Mongolian horses has not been reported until now as far as we know. Mongolian horse is a major local breed in China. We performed high-throughput sequencing of the 16S rRNA genes V4 hypervariable regions from gut fecal material to characterize the gut microbiota of Mongolian horses and compare them to the microbiota in Thoroughbred horses. Fourteen Mongolian and 19 Thoroughbred horses were used in the study. A total of 593,678 sequence reads were obtained from 33 samples analyzed, which were found to belong to 16 phyla and 75 genera. The bacterial community compositions were similar for the two breeds. Firmicutes (56% in Mongolian horses and 53% in Thoroughbred horses) and Bacteroidetes (33% and 32% respectively) were the most abundant and predominant phyla followed by Spirochaete, Verrucomicrobia, Proteobacteria, and Fibrobacteres. Of these 16 phyla, five (Synergistetes, Planctomycetes, Proteobacteria, TM7, and Chloroflexi) were significantly different (p<0.05) between the two breeds. At the genus level, Treponema was the most abundant genus (43% in Mongolian horses vs 29% in Thoroughbred horses), followed by Ruminococcus, Roseburia, Pseudobutyrivibrio, and Anaeroplasma, which were detected in higher distribution proportion in Mongolian horses than in Thoroughbred horses. In contrast, Oscillibacter, Fibrobacter, Methanocorpusculum, and Succinivibrio levels were lower in Mongolian horses. Among 75 genera, 30 genera were significantly different (p<0.05) between the two breeds. We found that the environment was one of very important factors that influenced horse gut microbiota. These findings provide novel information about the gut microbiota of Mongolian horses and a foundation for future investigations of gut bacterial factors that may influence the development and progression of gastrointestinal disease in horses.

• Convergence Security Journal
• /
• v.6 no.4
• /
• pp.113-120
• /
• 2006

C4I system is the centerpiece of the military force. The system is an information based system which facilitates information grid, collection of data and dissemination of the information. The C4I system seeks to assure information dominance by linking warfighting elements in the battlespace to information network which enables sharing of battlespace information and awareness; thereby shifting concept of warfare from platform-centric paradigm to Network Centric Warfare. Although, it is evident that C4I system is a constant target from the adversaries, the issues of vulnerability via cyberspace from attack still remains. Therefore, the protection of C4I system is critical. The roadmap I have constructed in this paper will guide through the direction to protect the system during peace and war time. Moreover, it will propose vision, objectives and necessary supporting framework to secure the system from the threat. In order to fulfill these tasks, enhanced investments and plans from the Joint chief of Staff and Defense of Acquisition and Program Administration (DAPA) is critical; thereby enabling the establishment of rapid and efficient security system.

• The Transactions of The Korean Institute of Electrical Engineers
• /
• v.63 no.11
• /
• pp.1571-1574
• /
• 2014

In this paper, we propose a unidirectional transmission of critical information obtained by keyboard hacking or kernel and keyboard driver hacking even though the computer is not connected to the external network. We show the hacking can be attempted in the proposed method to show the way preventing such attempts in advance. Firewalls and other various methods are used to prevent the hacking from the external network but the hacking is also attempted in various ways to detour the firewall. One of the most effective way preventing from the hacking attack is physically disconnect the internal intranet systems from the external internet and most of the government systems, military systems and big corporate systems are using this way as on one of the protection method. In this paper, we show the feasibility of transmission of security codes, etc via the short message to the external network on the assumption that a hacking program such as Trojan Horse is installed on the computer systems separated from the external network. Previous studies showed that the letters on the monitor can be hijacked by electromagnetic analysis on the computer to obtain the information even though the system is not connected ti the network. Other studies showed that the security code hint can obtained by analyzing the power consumption distribution of CPU. In this paper, the power consumption distribution of externally accessible power line is analyzed to obtain the information and the information can be transmitted to the external network. Software controlling the CPU and GPU usage is designed to control the power supply of computer. The sensors such as the Rogowski coils can be used on the external power line to collect the data of power consumption change rates. To transmit the user password by short message, due to the capacitive components and the obstacle from other power supply, A very slow protocol are used.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.33 no.2C
• /
• pp.208-218
• /
• 2008

We are sure that RFID system should be a widely used automatic identification system because of its various advantages and applications. However, many people know that invasions of privacy in RFID system is still critical problem that makes it difficult to be used. Many works for solving this problem have focused on light-weight cryptographic functioning in the RFID tag. An agent scheme is another approach that an agent device controls communications between the tag and the reader for protecting privacy. Generally an agent device has strong security modules and enough capability to process high-level cryptographic protocols and can guarantees consumer privacy. In this paper, we present an enhanced mobile agent for RFID privacy protection. In enhanced MARP, we modified some phases of the original MARP to reduce the probability of successful eavesdropping and to reduce the number of tag's protocol participation. And back-end server can authenticate mobile agents more easily using public key cryptography in this scheme. It guarantees not only privacy protection but also preventing forgery.

• Korean Journal of Plant Taxonomy
• /
• v.46 no.2
• /
• pp.129-148
• /
• 2016

Plant species on oceanic islands comprise nearly 25% of described vascular plants on only 5% of the Earth's land surface yet are among the most rare and endangered plants. Conservation of plant biodiversity on islands poses particular challenges because many species occur in a few and/or small populations, and their habitats on islands are often disturbed by the activity of humans or by natural processes such as landslides and volcanoes. In addition to described species, evidence is accumulating that there are likely significant numbers of "cryptic" species in oceanic archipelagos. Plant systematists, in collaboration with others in the botanical disciplines, are critical to the discovery of the subtle diversity in oceanic island floras. Molecular data will play an ever increasing role in revealing variation in island lineages. However, the input from plant systematists and other organismal biologists will continue to be important in calling attention to morphological and ecological variation in natural populations and in the discovery of "new" populations that can inform sampling for molecular analyses. Conversely, organismal biologists can provide basic information necessary for understanding the biology of the molecular variants, including diagnostic morphological characters, reproductive biology, habitat, etc. Such basic information is important when describing new species and arguing for their protection. Hybridization presents one of the most challenging problems in the conservation of insular plant diversity, with the process having the potential to decrease diversity in several ways including the merging of species into hybrid swarms or conversely hybridization may generate stable novel recombinants that merit recognition as new species. These processes are often operative in recent radiations in which intrinsic barriers to gene flow have not evolved. The knowledge and continued monitoring of plant populations in the dynamic landscapes on oceanic islands are critical to the preservation of their plant diversity.