• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.33 no.5
• /
• pp.813-826
• /
• 2023

Organization members often use the Internet for non-work purposes during work hours, which is called cyberloafing. Certain types of cyberloafing (e.g., webhard, adult, and gambling sites access) can be a major cause of malware infection, which can ultimately generate significant damages to organizations. It therefore is important to examine the relationship between cyberloafing and cybersecurity risks of organizations. We analyzed log data from an internet filtering system of a financial institute and found that the more employees access to blacklist sites, the higher the possibility of malicious code infection. In other words, cyberloafing increases cybersecurity risks of organizations. We suggest that organizations need to monitor and control their members' internet use in an appropriate way.

• International Journal of Computer Science & Network Security
• /
• v.23 no.11
• /
• pp.128-132
• /
• 2023

Investment authorities are broad financial institutions that carefully manage investments on behalf of the national government using a long-term value development approach. To provide a stronger structure or framework for In-vestment Authorities to govern the distribution of funds to public and private markets, we've started research to create a blockchain-based prototype for managing and tracking numerous finances of such authorities. We have taken the case study of Oman Investment Authority (OIA) of Sultanate of Oman. Oman's wealth is held in OIA. It is an organization that oversees and utilizes the additional capital generated by oil and gas profits in public and private markets. Unlike other Omani funds, this one focus primarily on assets outside the Sultanate. The operation of the OIA entails a huge number of transactions, necessitating a high level of transparency and administration among the parties involved. Currently, OIA relies on various manuals to achieve its goals, such as the Authorities and Responsibilities manual, the In-vestment Manual, and the Code of Business Conduct, among others. In this paper, we propose a Blockchain based framework to manage the operations of OIA. Blockchain is a part of the Fourth Industrial Revolution, and it is re-shaping every industry. The main components of every blockchain are assets and participants. The funds are the major assets in the proposed study, and the participants are the various fund shareholders/recipients. The block-chain's transactions are all safe, secure, and immutable, and it's part of a trustless network. The transactions are simple to follow and verify. By replacing intermediary firms with smart contracts, blockchain-based solutions eliminate any middlemen in the fund allocation process.

• Convergence Security Journal
• /
• v.23 no.4
• /
• pp.17-22
• /
• 2023

Traditional authentication systems typically involve users entering their username and password into a centralized identity management system. To address the inconvenience of such authentication methods, a decentralized identity authentication system based on Distributed Identifiers(DID) is proposed, utilizing decentralized identity technology. The proposed system employs QR code scanning for login, enhancing security through the use of blockchain technology to ensure the uniqueness and safety of user identities during the login process. This system utilizes DIDs and integrates the InterPlanetary File System(IPFS) to securely manage organizational members' identity information while keeping it private. Using the distributed identity authentication system proposed in this study, it is possible to effectively manage the security and personal identity of organization members. To improve the usability of the system proposed in this study, research is needed to expand it into a solution.

• Journal of the Korean Institute of Landscape Architecture
• /
• v.37 no.4
• /
• pp.52-63
• /
• 2009

WTO/TBT aims to reduce impediments to trade resulting from differences between national regulations and standards. Where international standards exist or their completion is imminent, the Code of Good Practice says that standardizing bodies should use them, or the relevant parts of them, as a basis for any standards they develop. Drawing is a formal and precise way of communicating information about the shape, size and, features. In addition, drawing is a part of the universal language of engineering. However there are many differences between international landscape drawing standard ISO 11091 and Korean landscape drawing practice(KLDP). The result of a comparison of ISO 11091 with KLDP and suggestions for international standardization of KLDP are summarized as follows. First, Among the 33 kinds of conventions from ISO 11091, 2 similar kinds and 15 different kinds from KLDP and 16 kinds of conventions which exist only in ISO 11091 appeared-for the international standardization of KLDP, it is necessary to make an extensive alteration of KLDP. Second, Europe Unity countries accepted ISO 11091 and are using it as their national standard for landscape drawing. Even Japan has accepted ISO 11091 on their civil engineering drawings and is using it as their national standard. Therefore, we need to hasten KS standard enactment based on ISO 1091. Third, For the KS standard of construction drawings, the degree of international standardization is rising even though there are still differences from the ISO standard. Therefore, since the burden on the international standardization of KLDP is expected to be weighed, preparations should be quickly brought about in the practice fields. Fourth, Since in the landscape planting ordinances of local independent governments is the standard presented by categorizing trees into evergreen and deciduous, such parts should be modified and introduced when enacting the KS standard based on ISO 11091. Fifth, For the enactment of the KS standard for landscape drawings, a wide range of opinions should be collected by the relevant landscape organization by installing a committee, and based on its recommendation, an application for the KS standard enactment of landscape drawing should be made to the chief of Ministry of Knowledge Economy.

• Journal of the Korea Society of Computer and Information
• /
• v.16 no.6
• /
• pp.119-130
• /
• 2011

On the point of data quality management, data quality is influenced by quality policy, quality organization, business process, and business rule. Business rules, guide of data manipulation, have effects on data quality directly. In case of building an integration database among distributed databases, defining business rule is more important because data integration needs to consider heterogeneous structure, code, and data standardization. Also data value has various figures depended on data type, unit, and transcription. Finally, database structure and data value problem have to be solved to improve data quality. For handling them, it is needed to draw database integration model and cleanse data in integrated database. NTIS(stands for National science and Technology Information Service) has an aim to serve users who need all information about national R&D by internet, and for that aim, it has a integrated database which has been made with several database sources. We prove that database integration model and data cleansing are needed to build a successful integrated database through NTIS case study.

• The KIPS Transactions:PartD
• /
• v.16D no.4
• /
• pp.583-594
• /
• 2009

Most of the SOA solutions applicable to businesses and organizations are taking a top-down methodology. It starts with an analysis of an organization's requirements, followed by definition of business models and identification of candidate services and ends with finding or developing required services. Challenges in adopting SOA while abandoning legacy systems involve time and cost required during the process. Many businesses and organizations want to gradually migrate into SOA while making the most of the existing system. In this paper, we propose A Method for Migration of Legacy System into Web Service(M-LSWS); it allows legacy system to be migrated into web service accessible by SOA and be used as data repositories. M-LSWS defines procedures for migration into reusable web services through analysis of business processes and identification of candidate services based on design specification and code of legacy system. M-LSWS aims to migrate of legacy system into web service appropriate for SOA. The proposed method consists of four steps: analysis of legacy system, elicitation of reusable service and its specification, service wrapping and service registration. Each step has its own process and guideline. The eligibility of the proposed method will be tested by applying the method to book management system.

• The Korean Journal of Archival Studies
• /
• no.52
• /
• pp.119-170
• /
• 2017

This study aims to analyze the environment for the open-source records system and to identify the risk and requirements for the success of the strategy in Korea. For this, Chapter 2 presented a review of the strategic benefits of open source to public organizations, developers, and users. It also discussed the process of cooperatively developing and releasing the source code and the technology infrastructure supporting open source. In Chapter 3, six representative open-source projects in the field of records management were selected, and case studies were conducted. To derive comprehensive implications, we have divided the main development body of open-source projects into international organizations, international cooperation systems, national archives, and software development companies. We also analyzed the background and purpose of each project, the agents of development and funding, the governance model, the development period and cost, the business model and software architecture, the community composition, and the licensing strategy. Through this, we have derived four critical success factors. In terms of technology, a component-based design was required; therefore, we proposed a microservice architecture and a model-view-controller design pattern. Next, it was necessary to reestablish system requirements of records center and archives. Moreover, we also proposed a dual licensing strategy to allow developers to easily participate in open-source projects. Lastly, we emphasized a strong governance structure and an effective cooperation framework to create a sustainable community. For a record system to be open-source successfully in an organization-centered market, the roles of software developers and end users should be exercised more in the community. To achieve this, it is important to build various collaborative tools and development infrastructure from a planning stage to a centralized one.

• Journal of Platform Technology
• /
• v.9 no.3
• /
• pp.3-17
• /
• 2021

Advanced persistent threat (APT) attacks are attacks aimed at a particular entity as a set of latent and persistent computer hacking processes. These APT attacks are usually carried out through various methods, including spam mail and disguised banner advertising. The same name is also used for files, since most of them are distributed via spam mail disguised as invoices, shipment documents, and purchase orders. In addition, such Infostealer attacks were the most frequently discovered malicious code in the first week of February 2021. CDR is a 'Content Disarm & Reconstruction' technology that can prevent the risk of malware infection by removing potential security threats from files and recombining them into safe files. Gartner, a global IT advisory organization, recommends CDR as a solution to attacks in the form of attachments. There is a program using CDR techniques released as open source is called 'Dangerzone'. The program supports the extension of most document files, but does not support the extension of HWP files that are widely used in Korea. In addition, Gmail blocks malicious URLs first, but it does not block malicious URLs in mail systems such as Naver and Daum, so malicious URLs can be easily distributed. Based on this problem, we developed a 'Dangerzone' program that supports the HWP extension to prevent APT attacks, and a Chrome extension that performs URL checking in Naver and Daum mail and blocking banner ads.

• Journal of the Korean Society of Radiology
• /
• v.10 no.6
• /
• pp.403-409
• /
• 2016

MRI scan is a useful method in the diagnosis of musculoskeletal excellent contrast of the organization. Depending on the patient's musculoskeletal examinations state the type of aids provided the aid is used there is also challenging as well as the costs do not vary. This study was produced by the use of 3D printing technology, an MRI aids. Aids in the production process, then through 3D modeling and then convert stl files using (3D MAX.2014, Fusion360) slicing programs (Cubicreater 2.1ver., Cura 15.4ver) converted to G-code printed on the FDM scheme (Cubicon Style, output was MICRO MAKE). Output is, but in the FDM to evaluate the SNR on the MRI images were compared to the test is the case before use, and then to produce a Water Phantom case of a PLA, ABS, a TPU thickness 3mm, using aids before, It was evaluated in a clinical image after qualitatively. Obtaining an image of SNR Warter Phantom appeared to have been evaluated as T1 NON $123.778{\pm}28.492$, PLA $123.522{\pm}28.373$, ABS $124.461{\pm}25.716$, TPU $124.843{\pm}27.272$. T2 NON $127.421{\pm}26.949$, was rated as PLA $124.501{\pm}27.768$, ABS $128.663{\pm}26.549$, TPU $130.171{\pm}25.998$. The results did not show statistically significant differences. The use of assistive devices before and after images Clinical evaluation method palliative $3.20{\pm}0.88$, $3.95{\pm}0.76$ after using the aids used to aid improved the quality of the image. Production of the auxiliary mechanism using a future 3D printing is expected are thought to be used clinically, it can be an aid making safe and comfortable than the inspection of the patient is an alternative to improve the problems of the aids used in the conventional do.

• Computational Structural Engineering
• /
• v.7 no.3
• /
• pp.95-103
• /
• 1994

The safety related components in the nuclear power plant should be designed to withstand the seismic load. Among these components the integrity of reactor internals under earthquake load is important in stand points of safety and economics, because these are classified to Seismic Class I components. So far the modelling methods of reactor internals have been investigated by many authors. In this paper, the dynamic behaviour of reactor internals of Yong Gwang 1&2 nuclear power plants under SSE(Safe Shutdown Earthquake) load is analyzed by using of the simpled Global Beam Model. For this, as a first step, the characteristic analysis of reactor internal components are performed by using of the finite element code ANSYS. And the Global Beam Model for reactor internals which includes beam elements, nonlinear impact springs which have gaps in upper and lower positions, and hydrodynamical couplings which simulate the fluid-filled cylinders of reactor vessel and core barrel structures is established. And for the exciting external force the response spectrum which is applied to reactor support is converted to the time history input. With this excitation and the model the dynamic behaviour of reactor internals is obtained. As the results, the structural integrity of reactor internal components under seismic excitation is verified and the input for the detailed duel assembly series model could be obtained. And the simplicity and effectiveness of Global Beam Model and the economics of the explicit Runge-Kutta-Gills algorithm in impact problem of high frequency interface components are confirmed.