• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.25 no.1
• /
• pp.133-146
• /
• 2015

Ever sophisticated e-finance fraud techniques have led to an increasing number of reported phishing incidents. Financial authorities, in response, have recommended that we enhance existing Fraud Detection Systems (FDS) of banks and other financial institutions. FDSs are systems designed to prevent e-finance accidents through real-time access and validity checks on client transactions. The effectiveness of an FDS depends largely on how fast it can analyze and detect abnormalities in large amounts of customer transaction data. In this study we detect fraudulent transaction patterns and establish detection rules through e-finance accident data analyses. Abnormalities are flagged by comparing individual client transaction patterns with client profiles, using the ruleset. We propose an effective flagging method that uses decision trees to normalize detection rules. In demonstration, we extracted customer usage patterns, customer profile informations and detection rules from the e-finance accident data of an actual domestic(Korean) bank. We then compared the results of our decision tree-normalized detection rules with the results of a sequential detection and confirmed the efficiency of our methods.

• Journal of Distribution Science
• /
• v.17 no.8
• /
• pp.107-118
• /
• 2019

Purpose - The present study examines the effect of service employees' experienced customer incivility through their emotional exhaustion. We identified service employees' emotion regulation ability as a boundary condition (i.e., moderating variable) that decreased the positive relationship between service employees' experienced customer incivility and their emotional exhaustion. Furthermore, we also investigated the negative relationship between service employees' experienced customer incivility and their service performance via emotional exhaustion. Research design, data, and methodology - Drawing on AET (affective event theory) and COR (conservation of resources) theory, we developed three research hypotheses (i.e., mediation, moderation, and moderated mediation). Online panel survey data from 552 frontline employees at several service organizations (e.g., department stores, retail stores, hotels, restaurants, airlines, banking, insurance company, and etc) in South Korea were examined. To assess two types of validity (i.e., convergent and discriminant validity) and reliability of measurement model, we employed the CFA (confirmatory factor analysis) using M-plus 8.2 software. Internal consistency also was tested by Cronbach' α. In addition, we employed the SPSS PROCESS MACRO 2.16, which was recommended by Hayes (2013, 2015), to estimate mediation, moderation, and moderated mediation effects. Results - As predicted, the negative relationship between service employees' experienced customer incivility and their service performance was mediated by emotional exhaustion. Furthermore, service employees' emotion regulation ability also played a significant moderating role of the relationship between service employees' experienced customer incivility and emotional exhaustion, such that this relationship was less pronounced when service employees had a high level of their emotion regulation ability than when thir emotion regulation ability was low. Service employees' emotion regulation ability further moderated this mediation effect of service employees' experienced customer incivility on service performance through emotional exhaustion. These findings have theoretical implications for employees' experienced customer incivility and emotion regulation ability research and provide managerial implications for practitioners. Conclusions - This study empirically elaborated the previous model of service employees' experienced customer incivility and personal resource (e.g., emotion regulation ability) literature by presenting the findings that service employees' experienced customer incivility influences their service performance via emotional exhaustion and that emotion regulation ability effectively reduces this negative effect.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.15 no.8
• /
• pp.5294-5302
• /
• 2014

The development of public-key-based technique that enables a variety of services(E-government, e-banking, e-payment, etc.) evaluated as having complete safety. On the other hand, vulnerabilities(e.g, heartbleed bug, etc.) are constantly being discovered. In this paper, a public key infrastructure to verify the safety and reliability, the collision rate using OpenSSL key pair was analyzed. the experiment was performed using the following procedure. Openssl was used to create five private certification agencies, and each of the private certificate authority certificates to create 2 million, generating a total of 10 million by the certificate of the key pair conflicts analysis. The results revealed 35,000 in 1 million, 0.35% chance of a public key, a private key conflict occurred. This is sufficient in various fields(E-payment, Security Server, etc.). A future public-key-based technique to remove the threat of a random number generator, large minority issues, in-depth study of selection will be needed.

• Journal of Distribution Science
• /
• v.16 no.12
• /
• pp.69-80
• /
• 2018

Purpose - Our primary goal of this study is to investigate the positive relationship between female managers' self-determined motivations (i.e., RAI: relative autonomy index) and job performances with the mediation of their job creativity in service industries. This study also examines the moderating role of creative efficacy on the relationship between female managers' self-determined motivations and creativities. Finally, based on mediation and moderation hypotheses, we also tested moderating effect of creative efficacy on the mediation effect of job creativity. Research design, data, and methodology - Drawing on SDT(Self-determination theory) and COR(conservation of resources) theories, we developed three research hypotheses. Service female managers from a several service organizations(i.e. banking, retailing, and restaurant/hospitality service) in South Korea were surveyed using self-administered instrument for data collection. A total of 331 usable questionnaires were obtained after list-wise deletion. To test reliability and validity of measurement model, we employed the CFA(confirmatory factor analysis) using M-plus 8.1 Software. Also, internal consistency was tested by Cronbach's α. We, furthermore, used the SPSS PROCESS MACRO 2.16, which was suggested by Hayes (2013; 2015), to test mediation, moderation, and moderated mediation. Results - Our results revealed that self-determined motivation and job performance were positively and fully mediated by job creativity. Furthermore, the positive relationship between female managers' self-determined motivations and job creativities was stronger when their creative self-efficacies were high than when it was low. In addition, female managers' creative self-efficacies also amplified the positive relationship between their self-determined motivations and job performances with the mediation of job creativity. Conclusions - Our research empirically elaborated the previous model of self-determined motivation and manager/female creativity literature by presenting the findings that female managers' self-determined motivations significantly influence their job performances via job creativity and that creative self-efficacy effectively strengthen these positive impacts. Also, our research offered new insight for practitioners (i.e. top service managers) by suggesting that they may enhance female service managers' job performance if they pay more attention to employee creativity in service marketing.

• THE INTERNATIONAL COMMERCE & LAW REVIEW
• /
• v.19
• /
• pp.224-242
• /
• 2003

The author believes that the main task of study in international trade usage and practice is the management of transactional risks involved in international sale of goods. They are foreign exchange risks, transportation risks, credit risk, risk of miscommunication, etc. In most cases, these risks are more serious and enormous than those involved in domestic sales. Historically, the merchant adventurers organized the voyage abroad, secured trade finance, and went around the ocean with their own or consigned cargo until around the $mid-19^{th}$ century. They did business faceto-face at the trade fair or the open port where they maintained the local offices, so-called "Trading House"(商館). Thererfore, the transactional risks might have been one-sided either with the seller or the buyer. The bottomry seemed a typical arrangement for risk sharing among the interested parties to the adventure. In this way, such organizational arrangements coped with or bore the transactional risks. With the advent of ocean liner services and wireless communication across the national border in the $19^{th}$ century, the business of merchant adventurers developed toward the clear division of labor; sales by mercantile agents, and ocean transportation by the steam ship companies. The international banking helped the process to be accelerated. Then, bills of lading backed up by the statute made it possible to conduct documentary sales with a foreign partner in different country. Thus, FOB terms including ocean freight and CIF terms emerged gradually as standard trade terms in which transactional risks were allocated through negotiation between the seller and the buyer located in different countries. Both of them did not have to go abroad with their cargo. Instead, documentation in compliance with the terms of the contract(plus an L/C in some cases) must by 'strictly' fulfilled. In other words, the set of contractual documents must be tendered in advance of the arrival of the goods at port of discharge. Trust or reliance is placed on such contractual paper documents. However, the container transport services introduced as international intermodal transport since the late 1960s frequently caused the earlier arrival of the goods at the destination before the presentation of the set of paper documents, which may take 5 to 10% of the amount of transaction. In addition, the size of the container vessel required the speedy transport documentation before sailing from the port of loading. In these circumstances, computerized processing of transport related documents became essential for inexpensive transaction cost and uninterrupted distribution of the goods. Such computerization does not stop at the phase of transportation but extends to cover the whole process of international trade, transforming the documentary sales into less-paper trade and further into paperless trade, i.e., EDI or E-Commerce. Now we face the other side of the coin, which is data security and paperless transfer of legal rights and obligations. Unfortunately, these issues are not effectively covered by a set of contracts only. Obviously, EDI or E-Commerce is based on the common business process and harmonized system of various data codes as well as the standard message formats. This essential feature of E-Commerce needs effective coordination of different divisions of business and tight control over credit arrangements in addition to the standard contract of sales. In a few word, information does not alway invite "trust". Credit flows from people, or close organizational tie-ups. It is our common understanding that, without well-orchestrated organizational arrangements made by leading companies, E-Commerce does not work well for paperless trade. With such arrangements well in place, participating E-business members do not need to seriously care for credit risk. Finally, it is also clear that E-International Commerce must be linked up with a set of government EDIs such as NACCS, Port EDI, JETRAS, etc, in Japan. Therefore, there is still a long way before us to go for E-Commerce in practice, not on the top of information manager's desk.

• Journal of the Institute of Electronics Engineers of Korea CI
• /
• v.48 no.3
• /
• pp.91-101
• /
• 2011

Internet is becoming increasingly popular due to the rapid development of information and communication technology. There has been a convenient social activities such as the mutual exchange of information, e-commerce, internet banking, etc. through cyberspace on a computer. However, by using the convenience of the internet, the personal IDs(identity card, driving license, passport, student ID, etc.) represented by the electronic media are exposed on the internet frequently. Therefore, this study propose a feature extraction method to analyze the characteristics of image files containing personal information and a image retrieval method to find the images using the extracted features. The proposed method selects the feature information from color, texture, and shape of the images, and the images as searched by similarity analysis between feature information. The result which it experiments from the image which it acquires from the web-based image DB and correct image retrieval rate is 89%, the computing time per frame is 0.17 seconds. The proposed method can be efficiently apply a system to search the image files containing personal information and to determine the criteria of exposure of personal information.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.15 no.4
• /
• pp.25-31
• /
• 2015

FinTech(Financial Technology) is defined as the technique to create efficient financial services using IT technologies. FinTech is an innovative technology through IT platform and big data, and is expected to improve the security and problems of the conventional banking system. Domestic financial institutions has introduced the technologies and investment in order to provide safe and effective services to users. However, In the financial environment, information disclosure and security incident has occurred so they has lost the trust from their customers. Moreover new variant of the security threats and attack techniques have occurred. Therefore, in this paper, we designed a authentication scheme for secure payment system in FinTech environment. The proposed study evaluated the stability of the existing security systems with respect to attack methods occurred in the financial environment.

• Journal of Internet Computing and Services
• /
• v.21 no.3
• /
• pp.11-19
• /
• 2020

In this paper, a merged TEA block cipher processor which unifies Tiny Encryption Algorithm(TEA), extended Tiny Encryption Algorithm(XTEA) and corrected block TEA(XXTEA) is designed. After TEA cipher algorithm was first designed, XTEA and XXTEA cipher algorithms were designed to correct security weakness. Three types of cipher algorithm uses a 128-bit master key. The designed cipher processor can encrypt or decrypt 64-bit message block for TEA/XTEA and variable-length message blocks up to 256-bit for XXTEA. The maximum throughput for 64-bit message blocks is 137Mbps and that of 256-bit message blocks is 369Mbps. The merged TEA block cipher designed in this paper has a 16% gain on the area side compared to a lightweight LEA cipher. The cryptographic IP of this paper is applicable in security module of the mobile areas such as smart card, internet banking, and e-commerce.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.5 no.7
• /
• pp.1204-1209
• /
• 2001

According to the rapid development of information and communication, various services are offered using information and communication infrastructure for example e-commerce, internet banking, stock dealings, etc. This time, the most important problem is personal identification. But now secret number that is used to personal identification mostly can be misappropriated. To solve this problem, this paper proposes smart card identification system using 1 vs. 1 fingerprint matching. Information protection and security of smart card excel and use is convenient. And fingerprint becomes the focus of public attention in biometric field. Implemented system in this paper is based on PC. This system stores minutia that is fingerprint information into smart card and compare it with personal minutia. Therefore this system is sure to be on personal identification. If this system is applied to various services, safety degree of services will be enhanced.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.20 no.4
• /
• pp.786-792
• /
• 2016

Camellia was jointly developed by Nippon Telegraph and Telephone Corporation and Mitsubishi Electric Corporation in 2000. Camellia specifies the 128-bit message block size and 128-, 192-, and 256-bit key sizes. In this paper, a modified round operation block which unifies a register setting for key schedule and a conventional round operation block is proposed. 16 ROMs needed for key generation and round operation are implemented using only 4 dual-port ROMs. Due to the use of a message buffer, encryption/decryption can be executed without a waiting time immediately after KA and KB are calculated. The suggested block cipher Camellia algorithm is designed using Verilog-HDL, implemented on Virtex4 device and operates at 184.898MHz. The designed cryptographic core has a maximum throughput of 1.183Gbps in 128-bit key mode and that of 876.5Mbps in 192 and 256-bit key modes. The cryptographic core of this paper is applicable to security module of the areas such as smart card, internet banking, e-commerce and satellite broadcasting.