• Journal of Software Assessment and Valuation
• /
• v.16 no.1
• /
• pp.65-79
• /
• 2020

As Programmable Logic Controllers (PLCs), popular components in industrial control systems (ICS), are incorporated with the technologies such as micro-controllers, real-time operating systems, and communication capabilities. As the latest PLCs have been connected to the Internet, they are becoming a main target of cyber threats. This paper proposes two sanitizers that improve the security of uC/OS-II based firmware for a PLC. That is, we devise BU sanitizer for detecting out-of-bounds accesses to buffers and UaF sanitizer for fixing use-after-free bugs in the firmware. They can sanitize the binary firmware image generated in a desktop PC before downloading it to the PLC. The BU sanitizer can also detect the violation of control flow integrity using both call graph and symbols of functions in the firmware image. We have implemented the proposed two sanitizers as a prototype system on a PLC running uC/OS-II and demonstrated the effectiveness of them by performing experiments as well as comparing them with the existing sanitizers. These findings can be used to detect and mitigate unintended vulnerabilities during the firmware development phase.

• Journal of the Korean Society of Marine Environment & Safety
• /
• v.28 no.spc
• /
• pp.23-29
• /
• 2022

To detect harmful chemical substances in seawater, we fabricated a prototype sensor and evaluated its performance. The prototype sensor consisted of a detector, housing, and driving circuit. We built the detector by printing an Indium-Tin-Oxide (ITO) nanoparticle film on a flexible substrate, and it had two detection parts for simultaneous detection of temperature and HNS concentration. The housing connected the detector and the driving circuit and was made of Teflon material to prevent chemical reactions that may affect sensor performance. The driving circuit supplied electric power, and display measured data using a bridge circuit and an Arduino board. We evaluated the sensor performances such as response (ΔR), the limit of detection (LOD), response time, and errors to confirm the specification.

• Journal of Navigation and Port Research
• /
• v.47 no.1
• /
• pp.10-17
• /
• 2023

A series of studies on the development of autonomous surface ships have been promoted in domestic and foreign countries. One of the main technologies for the development of autonomous ships is path-following control, which is closely related to securing the safety of ships at sea. In this regard, the path-following performance of an autonomous ship should be first evaluated at the design stage. The main aim of this study was to develop a visual and quantitative evaluation method for the path-following control performance of an autonomous ship at the design stage. This evaluation technique was developed using a computational fluid dynamics (CFD)-based path-following control model together with a line-of-sight (LOS) guidance algorithm. CFD software was utilized to visualize waves around the ship, performing path-following control for visual evaluation. In addition, a quantitative evaluation was carried out using the difference between the desired and estimated yaw angles, as well as the distance difference between the planned and estimated trajectories. The results demonstrated that the ship experienced large deviations from the planned path near the waypoints while changing its course. It was also found that the fluid phenomena around the ship could be easily identified by visualizing the flow generated by the ship. It is expected that the evaluation method proposed in this study will contribute to the visual and quantitative evaluation of the path-following performance of autonomous ships at the design stage.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2023.11a
• /
• pp.116-118
• /
• 2023

In recent years, the need for economical and sustainable ship routing has emerged due to the enforced regulations on environmental issues. Despite the development of weather forecasting technology, maritime accidents by rough waves have continued to occur due to incorrect weather forecasts. In this study, onboard measurements are conducted to observe the acutal situation on merchant ships in operation encountering rough waves. The types of measured data include information related to navigation (Ship's position, speed, bearing, rudder angle) and engine (engine revolutions, power, shaft thrust, fuel consumption), weather conditions (wind, waves), and ship motions (roll, pitch, and yaw). These ship experiments was conducted to 28,000 DWT bulk carrier, 63,000 DWT bulk carrier, 20,000 TEU container ship, and 12,000 TEU container ship. The actual ship experiment of each ship is intended to acquire various types of data and utilize them for multi-objective studies related to ship operation. Additionally, in order to confirm the sea conditions, the directional wave spectrum was reproduced using a wave simulation model. Through data collection from ship experiments and wave simulations, various studies could be proceeding such as the measurement for accurate wave information by marine radar and analysis for cargo collapse accidents. In addition, it is expected to be utilized in various themes from the perspective of safety and efficiency in ship operation.

• Journal of the Korea Society of Computer and Information
• /
• v.29 no.2
• /
• pp.109-118
• /
• 2024

With the increasing number of social media users worldwide, cases of social media being abused to perpetrate various crimes are increasing. Specifically, drug distribution through social media is emerging as a serious social problem. Using social media channels, the curiosity of teenagers regarding drugs is stimulated through clever marketing. Further, social media easily facilitates drug purchases due to the high accessibility of drug sellers and consumers. Among various social media platforms, we focused on Instagram, which is the most used social media platform by young adults aged 19 to 24 years in South Korea. We collected four types of information, including profile photos, introductions, posts in the form of images, and posts in the form of texts on Instagram; then, we analyzed the similarity among each type of collected information. The profile photos and posts in the form of image were analyzed for similarity based on the SSIM(Structural Simplicity Index Measure), while introductions and posts in the form of text were analyzed for similarity using Jaccard and Cosine similarity techniques. Through the similarity analysis, the similarity among various accounts for each collected information type was measured, and accounts with similarity above the significance level were determined as the same drug sales account. By performing logistic regression analysis on the aforementioned information types, we confirmed that except posts in image form, profile photos, introductions, and posts in the text form were valid information for tracking the same drug sales account.

• Journal of Navigation and Port Research
• /
• v.47 no.6
• /
• pp.410-418
• /
• 2023

Recently, advancements and commercialization in the field of maritime autonomous surface ships (MASS) has rapidly progressed. Concurrently, studies are also underway to develop methods for automatically surveying the condition of various on-board equipment remotely to ensure the navigational safety of MASS. One key issue that has gained prominence is the method to obtain values from analog gauges installed in various equipment through image processing. This approach has the advantage of enabling the non-contact detection of gauge values without modifying or changing already installed or planned equipment, eliminating the need for type approval changes from shipping classifications. The objective of this study was to identify a dynamically changing indicator needle within noisy images of analog gauges. The needle object must be identified because its position significantly affects the accurate reading of gauge values. An analog pressure gauge attached to an emergency fire pump model was used for image capture to identify the needle object. The acquired images were pre-processed through Gaussian filtering, thresholding, and morphological operations. The needle object was then identified through Hough Transform. The experimental results confirmed that the center and object of the indicator needle could be identified in images of noisy analog gauges. The findings suggest that the image processing method applied in this study can be utilized for shape identification in analog gauges installed on ships. This study is expected to be applicable as an image processing method for the automatic remote survey of MASS.

• Journal of Navigation and Port Research
• /
• v.48 no.3
• /
• pp.214-220
• /
• 2024

Remote control is used for operating maritime autonomous surface ships. The operator controls the ship using control data generated by the remote control system. To ensure successful remote control, three principles must be followed: safety, reliability, and availability. To achieve this, the suitability of both the control data and operators for remote control must be established. Currently, there are no international regulations in place for evaluating remote control suitability through experiments on actual ships. Conducting such experiments is dangerous, costly, and time-consuming. The goal of this study is to develop a suitability evaluation method using the output values of control devices used in actual ship operation. The proposed method involves evaluating the suitability of data by analyzing the output values and evaluating the suitability of operators by examining their tracking of these output values. The experiment was conducted using a shore-based remote control system to operate the training ship 'Hannara' of Korea National Maritime and Ocean University. The experiment involved an iterative process of obtaining the operator's tracking value for the output value of the ship's control devices and transmitting and receiving tracking data between the ship and the shore. The evaluation results showed that the transmission and reception performance of control data was suitable for remote operation. However, the operator's tracking performance revealed a need for further education and training. Therefore, the proposed evaluation method can be applied to assess the suitability and analyze both the control data and the operator's compliance with the three principles of remote control.

• Smart Media Journal
• /
• v.13 no.6
• /
• pp.9-15
• /
• 2024

In recent trends, there has been an increase in 'Qshing' attacks, a hybrid form of phishing that exploits fake QR (Quick Response) codes impersonating government agencies to steal personal and financial information. Particularly, this attack method is characterized by its stealthiness, as victims can be redirected to phishing pages or led to download malicious software simply by scanning a QR code, making it difficult for them to realize they have been targeted. In this paper, we have developed a classification technique utilizing machine learning algorithms to identify the maliciousness of URLs embedded in QR codes, and we have explored ways to integrate this with existing QR code readers. To this end, we constructed a dataset from 128,587 malicious URLs and 428,102 benign URLs, extracting 35 different features such as protocol and parameters, and used AutoML to identify the optimal algorithm and hyperparameters, achieving an accuracy of approximately 87.37%. Following this, we designed the integration of the trained classification model with existing QR code readers to implement a service capable of countering Qshing attacks. In conclusion, our findings confirm that deriving an optimized algorithm for classifying malicious URLs in QR codes and integrating it with existing QR code readers presents a viable solution to combat Qshing attacks.

• Journal of Navigation and Port Research
• /
• v.48 no.4
• /
• pp.335-341
• /
• 2024

Recently, research, development, and commercialization of maritime autonomous surface ships (MASS) and remote control are in progress. Remote control is intended to secure autonomous navigation environments for existing ships or early-stage MASS using a remote control system (RCS). The main function of an RCS is to control MASS using data transmission between the MASS and the remote control centre. Remote control by a remote control officer also has an important function. The purpose of this study was to develop RCS and a performance evaluation technique for operation data provided by the RCS. The experiment was conducted during the navigation period of a training ship 'Hannara' after building experimental equipment at both an onshore remote control center and a training ship. As a result of evaluating data transmitted and received using the developed RCS, it was confirmed that data transmission was possible within an error range of 0.1%p. Fourteen types of ship information reflecting the navigation environment of the training ship were confirmed to be transmitted and received. The RCS developed in this work complies with the three principles of remote control: safety, reliability, and availability. This study provides a core technology for the development of RCSs for MASS and the evaluation of data transmission performance.

• Asia-Pacific Journal of Business Venturing and Entrepreneurship
• /
• v.11 no.6
• /
• pp.1-9
• /
• 2016

In this study, we investigate the announcement effects of M&As with a start-up as a target firm on shareholder wealth of an acquiring firm. We use M&A events in KOSPI or KOSDAQ market between 2002 and 2014 after the financial crisis. Among the total 1436 mergers and acquisitions that took place domestically during this period, 1383 cases were selected as cases to be studied, excluding 53 cases where acquiring firms were unlisted firms. The results of the analysis are as follows: First, as a result of a comparison between the acquiring firms' CARs of the whole sample group(n=1383) occurred during the (-2, +1), (-5, +2), (-10, +5) periods of M&A announcement date(t=0) and the sub-sample group(n=468) where the target firms are start-ups which were established within five years, the acquiring firms of the whole sample group do not show significat CARs, while the acquiring firms of the sub-sample group show the significantly positive CARs. This suggests that M&A with start-ups have a positive effect on firm value of acquiring firms. Second, when merging unlisted start-ups, the acquiring firms show positive CARs, showing that there exists a listing effect in the merger of start-up. Third, merging the start-ups belonging to the high-tech industry shows the higher CARs than the case of merging the start-ups belonging to the non-high-tech industry. This study has great significance as the first in Korea to investigate the effect of M&A announcement with a start-up.