• Convergence Security Journal
• /
• v.5 no.2
• /
• pp.29-36
• /
• 2005

The industrial structure of the Internet is changing from off-line to on-line. E-commerce on the Internet will be formed a big market by developing of network. E-commerce on the Internet is natural. And it will be increase in interest of many people. By the way, it must support to institutional and technical problem. First of all, we need user authentication technique. In this paper, we described about safe Electronic shopping mall construction and operation by three main categories. First is security solution method of E-commerce, Second is analyzing about various threats and vulnerability when is user authentication in Electronic shopping mall. Third is to propose countermeasures of that.

• Korean Security Journal
• /
• no.51
• /
• pp.81-100
• /
• 2017

Recently, Crime patterns in our society are diversifying as followed on the urbanization of population and the influx of immgrants. Existing murder, kidnap, sexual assault, etc. Especially, the crimes such as school violence, dating violence, domestic violence, violent abuse and even social hatred a crime, motiveless crime are spreading into every phase of national life. Due to the social situation, the sharp increase in demand for personal protection, the scale of private security industry has been constantly expanded. Following this trend, the personal protective regulations in Security Industry Act has been revised several times since the it was enacted in 1995. However, despite the fact that the legal and institutional aspects should have been amended and improved systematically according to the industrial development, the regulations adopted initially adopted has been maintained so far, which have resulted in various problems as they could not coincide with the purpose of private security, being divorced from the reality of private security industry and social changes. Especially, in the case of personal protection service and facility security service, the legal requirements of both services are identical with each other in terms. Such legal systems may cause confusion to security businesses and employees, or the police managing and supervising them, regarding the scope and duties of security services. In order to improve such problems, the regulations of permission requirement that the personal protective regulations in Security Industry Act should be revised system. In this study, relevant personal protection provisions prescribed in the Security Industry Act have been reviewed critically in this paper. And also the regulations were review of those personal protection provisions enacted in security industry Act, so that the improvement plan for the personal protection provisions that are apposite to the cases in this country could be suggested in order to amend the current laws and provide real grounds for the law enforcement.

• Korean Security Journal
• /
• no.58
• /
• pp.195-213
• /
• 2019

「Security Services Industry Act」made in 1976 for the purpose of contributing to the good operation of services industry by establishing the requirements for promotion, development and systematic management of services industry has been since 26 times of overall revisions. Period division of private security through overall revision of 「Security Services Industry Act」 can be roughly divided into three periods. The first is a settlement period. It is a period when the present five business areas were completed rom 1976 to 2001. Beginning with facility and escort security in 1996, five types of jobs have been prepared. so far by adding personal protection in 1996, and machine and special security in 2001. The second is a quantitative growth period. It is a period when quantitative development is made on the institutional basis. As various culture, sports and arts events are increasing based on the demand of security services due to an increase in the people's sense of security, quantitative development was made, which additionally influenced the downward trend of capital and the possibility of having two jobs through revisions. The third is a qualitative growth period. From 2013 to the present is a period when quantitative growth has slowed and qualitative growth has been made. After the period of quantitative growth, the growth slowed down. However, by raising the criteria for permission of services industry through creation of a rule for the group civil petition, by raising capital, by institutionally compensating for diverse punishment regulations, by realizing the training hours for new security guards, by permitting private education, etc, the reliability and professionality of a security guard job has been to be recovered.

• SUVANNABHUMI
• /
• v.16 no.1
• /
• pp.175-203
• /
• 2024

With the enactment of international free trade and economic agreements and cooperation, BIMP-EAGA is an opportunity to accelerate development and economic growth in eastern Indonesia. This subregional cooperation could be used to reduce the development gap or inequality between the western and eastern regions, which are geographically, demographically, and economically different. This cooperation also may accelerate development in the border area. This study analyzes Indonesia's policies related to connectivity in BIMP-EAGA subregional cooperation and its implementation. The study results show that the National Secretariat of Sub-Regional Economic Cooperation has encouraged cooperation clusters ranging from natural resources, transportation, infrastructure, ICT, and tourism to MSMEs. In terms of connectivity, Indonesia is also involved in the development program of three economic corridors, namely West Borneo, East Borneo, and Sulu-Sulawesi. Indonesia's involvement in the three corridors has boosted the connectivity of Indonesia's territory, especially border areas, with neighboring countries. Connectivity has covered not only physical but also institutional and people-to-people dimensions. However, there are still several challenges, ranging from the standardization of the Customs, Immigration, and Quarantine (CIQ) mechanisms, improvement of institutional quality, and consistent strong political will among the involved parties. In addition, considering the vulnerability of the BIMP subregion to transnational crimes and acts of radical terrorism, BIMP-EAGA needs to think about solutions to overcome these cross-border security problems so that the momentum of development in the subregion may be sustained.

• Korean Security Journal
• /
• no.33
• /
• pp.163-195
• /
• 2012

Various kinds of performances and events have been held by local governments along with the worldwide popularity of K-pop, and there is a growing concern about possible accidents. Actually, a large-scale of accident took place during the MBC pop song concert in Sangju Sports Stadium in October 3, 2005. And another great safety accident occurred during an open event in the Lotte World in Seoul in March 26, 2006. The purpose of this study is to propose improvement of security company that carry out security activity through the analysis of the cases of accidents and common causes in the event sites. The improvement of safety management for large-scale event site by the study are as followings; First, institutional measures should be taken to extend the size of private security companies. Second, more education and training should be provided for security personnels who work for the event. Third, private security companies should prepare for the security measures more thoroughly in advance. Fourth, private security companies should make every possible effort to maintain order in the event site. Fifth, private security companies should bolster their collaboration with relevant organizations. Sixth, security companies should take actions to make themselves completely ready for any possible unexpected situations.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.3
• /
• pp.743-763
• /
• 2018

It has been 10 years since the concept of cloud system has emerged. Despite the fact that the cost-effectiveness and security of cloud systems has been proven, financial companies are reluctant to adopt cloud systems. Financial institutions are reluctant to adopt the cloud system because of the strong regulation of financial authorities in relation to the leakage of customer information However, more important reason why financial institutions hesitate to introduce cloud systems is the lack of direction and standards for the introduction of cloud systems by financial institutions. This study examines the legal and institutional constraints on the introduction of cloud systems in financial institutions and suggests decision models for determining whether cloud systems can be applied and how cloud systems are configured when financial institutions construct IT systems. We hope that this research will be helpful for establishing direction of cloud system introduction of many financial institutions.

• Journal of the Korea Society of Computer and Information
• /
• v.19 no.3
• /
• pp.163-170
• /
• 2014

Cyberspace is closely related with one another, transcending the spacetime throughout the world, and is already located in the most important area of our lives. However, if the organizational cyber terror happens like the national paralysis crisis of major information network such as the previous 1.25 the Internet crisis, the possibility of cyber crisis highly damaging our whole society such as the leakage of the national secrecy and advanced technology is increasing. But we haven't set up the institutional procedure systematically performing the national cyber security management affairs yet. So, in case of cyber crisis, this is highly likely to damage the aspects of national and personal level. On this point, this study looks into the examples of legislation related to our cyber security, and suggests the implication on the revision direction of national cyber security management regulations through relative examination about the examples of legislation in major countries.

• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.15 no.6
• /
• pp.1313-1319
• /
• 2011

VoIP service by taking advantage of the current PSTN network and internet over the existing telephone network at an affordable price allows you to make voice calls to the service is being expanded. However, the security of public must be maintained for security vulnerabilities in Smart Phone VoIP case problems arise, and is likely to be attacked by hackers. In this paper, the Internet, using wired and Smart Phone VoIP services may occur during analysis of the type of incident and vulnerability analysis, the eavesdropping should conduct an attack. Smart Phone VoIP with institutional administration to analyze the vulnerability OmniPeek, AirPcap the equipment is installed in a lab environment to conduct eavesdropping attack. Packet according to the analysis and eavesdropping attacks, IP confirmed that the incident as an attack by the eavesdropping as to become the test proves. In this paper, as well as Smart Phone VoIP users, the current administration and the introduction of Smart Phone service and VoIP service as a basis for enhanced security will be provided.

• Convergence Security Journal
• /
• v.16 no.3_2
• /
• pp.33-42
• /
• 2016

While evolving information-oriented society provides a lot of benefits to the human life, new types of threats have been increasing. Particularly, cyber terrorism, happen on the network that is composed of a computer system and information communication network, and the mean and scale of damage has reached a serious level. In other words, it is hard to locate cyber terror since it occurs in the virtual space, not in the real world, so identifying "Who is attacking?" (Non-visibility, non-formulas), or "Where the attack takes place?" (trans-nation) are hard. Hackers, individuals or even a small group of people, who carried out the cyber terror are posing new threats that could intimidate national security and the pace and magnitude of threats keep evolving. Scale and capability of North Korea's cyber terrorism are assessed as world-class level. Recently, North Korea is focusing on strengthen their cyber terrorism force. So improving a response system for cyber terror is a key necessity as North Korea's has emerged as a direct threat to South Korean security. Therefore, Korea has to redeem both legal and institutional systems immediately to perform as a unified control tower for preemptive response to cyber terrors arise from North Korea and neighboring countries.

• Convergence Security Journal
• /
• v.17 no.2
• /
• pp.53-68
• /
• 2017

Today, information sharing is recognized as a means to effectively prevent cyber attacks, which are becoming more intelligent and advanced, so that many countries such as U.S., EU, UK, Japan, etc. are establishing cyber threat information sharing system at national level. In particular, the United States has enacted the "Cyber Threat Information Sharing Act (CISA)" in December 2015, and has been promoting the establishment of a legal and institutional basis for sharing threat information and the implementation of the system. Korea is sharing cyber threat information in public and private sectors mainly through the National Cyber Security Center(NCSC) and the Korea Internet & Security Agency(KISA). In addition, Korean government is attempting to strengthen and make legal basis for unified cyber threat information sharing system through establishing policies. However, there are also concerns about issues such as leakage of sensitive information of companies or individuals including personal identifiable information that may produced during the cyber threat information sharing process, reliability and efficiency issues of the main agents who gather and manage information. In this paper, we try to derive improvement plans and implications by comparing and analyzing cyber threat information sharing status between U.S. and Korea.