• 한국융합학회논문지
• /
• 제10권9호
• /
• pp.47-53
• /
• 2019

본 논문은 소프트웨어 및 제품의 개발운영 및 개발보안운영에 대한 특성을 검토하고 소프트웨어 코드 관점에서 사용 분석도구를 고찰하였다. 또한 보안 설계규칙을 고려할 때 인적인 요소의 중요성과 이를 강화해야 할 필요성이 강조되었다. 본 논문에서는 개발보안운영을 고려할 때 절차적인 요소의 관점에서 신속하고 정확한 의사결정에 중점을 두고 변화를 관리하는 안전한 프로세스에 대해 분석하였다. 또한 본 논문에서는 개발보안운영 특성과 관련하여 성숙도 모델 분석의 필요성을 논의하였고, 이에 따른 동적인 요소와 정적인 요소의 강도 및 통합 요소에 대한 세부 절차를 통해 분석요소의 의미를 분석하였다. 본 논문에서는 위협모델링 및 컴플라이언스 그리고 통제를 위한 스캔 활동이나 코드 분석과 같은 요소에 대해서도 분석하였다.

• 융합정보논문지
• /
• 제11권6호
• /
• pp.24-32
• /
• 2021

최근 랜섬웨어(ransomware) 공격은 이메일, 피싱(phishing), 디바이스(Device) 해킹 등 다양한 경로를 통해 감염되어 피해 규모가 급증하는 추세이다. 그러나 기존 알려진 악성코드(정적/동적) 분석 엔진은 APT(Aadvanced Persistent Threat)공격처럼 발전된 신종 랜섬웨어에 대한 탐지/차단이 매우 어렵다. 본 연구는 그래프 데이터베이스를 기반으로 랜섬웨어 악성 행위를 모델링(Modeling)하고 랜섬웨어에 대한 새로운 다중 복합 악성 행위를 탐지하는 방법을 제안한다. 연구 결과 기존 관계형 데이터베이스와 다른 새로운 그래프 데이터 베이스 환경에서 랜섬웨어의 패턴 탐지가 가능함을 확인하였다. 또한, 그래프 이론의 연관 관계 분석 기법이 랜섬웨어 분석 성능에 크게 효율적임을 증명하였다.

• 산업경영시스템학회지
• /
• 제35권1호
• /
• pp.39-46
• /
• 2012

An unmanned aerial vehicle (UAV) is a powered aerial vehicle that does not carry a human operator, uses aerodynamic forces to provide vehicle lift, can fly autonomously or be piloted remotely, can be expendable or recoverable, and can carry a lethal or non-lethal payload. An UAV is very important weapon system and is currently being employed in many military missions (surveillance, reconnaissance, communication relay, targeting, strike, etc.) in the war. To accomplish UAV's missions, guarantee of survivability should be preceded. The main objective of this study is a local path planning to maximize survivability for UAV on the battlefield of dynamic threats (obstacles, surface-to-air missiles, radar etc.). A local path planning is capable of producing a new path in response to environmental changes. This study suggests a $Smart$ $A^*$ (Smart A-star) algorithm for local path planning. The local path planned by $Smart$ $A^*$ algorithm is compared with the results of existing algorithms ($A^*$ $Replanner$, $D^*$) and evaluated performance of $Smart$ $A^*$ algorithm. The result of suggested algorithm gives the better solutions when compared with existing algorithms.

• 한국멀티미디어학회논문지
• /
• 제24권1호
• /
• pp.58-66
• /
• 2021

The user's password must be encrypted one-way through the hash function and stored in the database. Widely used hash functions such as MD5 and SHA-1 have also been found to have vulnerabilities, and hash functions that are considered safe can also have vulnerabilities over time. Salt enhances password security by adding it before or after the password before putting it to the hash function. In the case of the existing Salt, even if it is randomly assigned to each user, once it is assigned, it is a fixed value in a specific column of the database. If the database is exposed to an attacker, it poses a great threat to password cracking. In this paper, we suggest variable-dynamic Salt that dynamically changes according to the user's password during the login process. The variable-dynamic Salt can further enhance password security during login process by making it difficult to know what the Salt is, even if the database or source code is exposed.

• 한국항공우주학회지
• /
• 제47권12호
• /
• pp.856-864
• /
• 2019

무장할당(Weapon-Target Assignment, WTA) 문제는 다수 위협과 다종의 무장을 효과적으로 할당하는 문제이다. 실제 급변하는 교전환경에서의 무장할당은 위협과 무장의 특성과 위협-무장 선정에 따른 영향성을 모두 고려해야한다. 본 논문에서는 동적 무장할당 문제에서의 최적해 도출을 위해 메타휴리스틱 방법의 일종인 Greedy Randomized Adaptive Search Procedure (GRASP) 알고리즘 적용 방안을 제안한다. 먼저 동적 무장할당 문제를 정의하고 알고리즘 적용을 위해 수학적 모델을 정식화한다. 무장할당 전략을 수립하기 위하여 목적함수를 정의하고 시간변화를 고려한 구속조건을 설정한다. 이를 바탕으로 GRASP 알고리즘을 동적 무장할당 문제에 적용한다. 교전 시뮬레이션을 통해 정식화한 무장할당 문제의 최적해 특성을 분석하며, Monte-Carlo 시뮬레이션을 통해 알고리즘 성능 검증을 수행한다.

• Computers and Concrete
• /
• 제22권1호
• /
• pp.123-132
• /
• 2018

Reinforced concrete (RC) columns which are the main vertical structural members are exposed to several static and dynamic effects such as earthquake and wind. However, impact loading that is sudden impulsive dynamic one is the most effective loading type acting on the RC columns. Impact load is a kind of impulsive dynamic load which is ignored in the design process of RC columns like other structural members. The behavior of reinforced concrete columns under impact loading is an area of research that is still not well understood; however, work in this area continues to be motivated by a broad range of applications. Examples include reinforced concrete structures designed to resist accidental loading scenarios such as falling rock impact; vehicle or ship collisions with buildings, bridges, or offshore facilities; and structures that are used in high-threat or high-hazard applications, such as military fortification structures or nuclear facilities. In this study, free weight falling test setup is developed to investigate the behavior effects on RC columns under impact loading. For this purpose, eight RC column test specimens with 1/3 scale are manufactured. While drop height and mass of the striker are constant, application point of impact loading, stirrup spacing and concrete compression strength are the experimental variables. The time-history of the impact force, the accelerations of two points and the displacement of columns were measured. The crack patterns of RC columns are also observed. In the light of experimental results, low-velocity impact behavior of RC columns were determined and interpreted. Besides, the finite element models of RC columns are generated using ABAQUS software. It is found out that proposed finite element model could be used for evaluation of dynamic responses of RC columns subjected to low-velocity impact load.

• Structural Engineering and Mechanics
• /
• 제61권3호
• /
• pp.419-426
• /
• 2017

Recently, the transportation of dangerous explosive goods is increasing, which makes vehicle blasting accidents a potential threat for the safety of bridge structures. In addition, blasting accidents happen more easily when earthquake occurs. Excessive dynamic response of bridges under extreme loads may cause local member damage, serviceability issues, or even failure of the whole structure. In this paper, a new explosion-proof and aseismic system is proposed including cable support damping bearing and steel-fiber reinforced concrete based on the existing researches. Then, considering one 40m-span simply supported concrete T-bridge as the prototype, through scale model test and numerical simulation, the dynamic response of the bridge under three conditions including only earthquake, only blast load and the combination of the two extreme loads is obtained and the applicability of this explosion-proof and aseismic system is explored. Results of the study show that this explosion-proof and aseismic system has good adaptability to seism and blast load at different level. The reducing vibration isolation efficiency of cable support damping bearing is pretty high. Increasing cables does not affect the good shock-absorption performance of the original bearing. The new system is good at shock absorption and displacement limitation. It works well in reducing the vertical dynamic response of beam body, and could limit the relative displacement between main girder and capping beam in different orientation so as to solve the problem of beam falling. The study also shows that the enhancement of steel fibers in concrete could significantly improve the blast resistance of main beam. Results of this paper can be used in the process of antiknock design, and provide strong theoretical basis for comprehensive protection and support of girder bridges.

• 융합정보논문지
• /
• 제8권6호
• /
• pp.209-215
• /
• 2018

본 논문은 동적 샌드박스 도구를 이용하여 최근 급증하고 있는 멜트다운(Meltdown) 악성코드를 사전에 검출 및 차단하는 방법을 제시하였다. 멜트다운 공격 취약점에 대한 패치가 일부 제공되고 있으나 여전히 해당 시스템의 성능 저하 등의 이유로 의도적으로 패치를 적용하지 않는 경우가 많다. 이와 같이 적극적인 패치가 적용되지 않은 인프라를 위해 머신러닝 기법을 이용하여 기존의 시그니처 탐지 방식의 한계를 극복하는 방법을 제시하였다. 우선 멜트다운의 원리를 이해하기 위해 가상 메모리, 메모리 권한 체크, 파이프 라이닝과 추측 실행, CPU 캐시 등 4가지의 운영체제 구동 방식을 분석하고 이를 토대로 멜트다운 악성코드에 리눅스 strace 도구를 활용하여 데이터를 추출하는 메커니즘을 제공하였으며 이를 기반으로 의사 결정 트리 기법을 적용하여 멜트다운 악성코드를 판별하는 메커니즘을 구현하였다.

• 한국군사과학기술학회지
• /
• 제17권6호
• /
• pp.733-743
• /
• 2014

Since the technology of anti-ship missiles has advanced rapidly, defending battleships from the threat of anti-ship missiles is a crucial factor for the survival of warships. In this paper, we analyze the performance of an anti-ship missile defense system whose name is Close-In-Weapon-System. We show the survival probability of a warship equipped with the Close-In-Weapon-System as the number of anti-ship missiles attacking the warship varies. Because of the complex and dynamic operational characteristics surrounding the Close-In-Weapon-System such as speed of missiles, different range of an individual weapon in the weapon system, and the continuous change of the kill probability of the missiles corresponding to the distance of missiles from ships, few work has been done for the performance of Close-In-Weapon-System. We present a model to incorporate all the dynamic characteristics of the system using absorbing Markov Chain. With our results, we expect commanders of warships equipped with Close-In-Weapon-System to be provided with more helpful information on how to deal with the anti-ship missiles.

• East Asian Economic Review
• /
• 제17권1호
• /
• pp.55-79
• /
• 2013

The objective of this article is to explore the economic relationship between China and the surrounding dynamic Asian economies. It delves into China's influence over the Asian economies and whether this relationship is a market-led or de facto symbiosis. The three principal channels of regional integration analyzed in this article are trade, FDI and vertically integrated production networks. They are essentially based on the activities of the private-sector in these economies. China methodically expanded and deepened its economic ties with the regional neighbors. At the present juncture, China's integration with the surrounding Asia is deep. Another issue that this article explores is the so-called China "threat" or "fear" in Asia. It implies that China is crowding out exports of the other Asian economies in the world market place. Also, as China has become the most attractive FDI destination among the developing countries, it is apprehended that China is receiving FDI at the expense of the Asian economies. These concerns were examined by several empirical studies, and the inference is that they are exaggerated. This article concludes that the private-sector business activities in China and other rapidly growing Asian economies were (and are) instrumental in bringing together the production structures and real economies. The result is both convergence and integration among the dynamic Asian economies. Over the years China and its Asian neighbors has developed a close and symbiotic economic relationship and a de facto regional integration.