• Journal of Information Processing Systems
• /
• v.13 no.6
• /
• pp.1516-1526
• /
• 2017

Many organizations today use patch management systems to uniformly manage software vulnerabilities. However, the patch management system does not guarantee the integrity of the patch in the process of providing the patch to the client. In this paper, we propose a method to guarantee patch integrity through dual electronic signatures. The dual electronic signatures are performed by the primary distribution server with the first digital signature and the secondary distribution server with the second digital signature. The dual electronic signature ensures ensure that there is no forgery or falsification in the patch transmission process, so that the client can verify that the patch provided is a normal patch. The dual electronic signatures can enhance the security of the patch management system, providing a secure environment for clients.

• Journal of Information Processing Systems
• /
• v.16 no.2
• /
• pp.301-317
• /
• 2020

An enterprise patch-management system (PMS) typically supplies a single point of failure (SPOF) of centralization structure. However, a Blockchain system offers features of decentralization, transaction integrity, user certification, and a smart chaincode. This study proposes a Hyperledger Fabric Blockchain-based distributed patch-management system and verifies its technological feasibility through prototyping, so that all participating users can be protected from various threats. In particular, by adopting a private chain for patch file set management, it is designed as a Blockchain system that can enhance security, log management, latest status supervision and monitoring functions. In addition, it uses a Hyperledger Fabric that owns a practical Byzantine fault tolerant consensus algorithm, and implements the functions of upload patch file set, download patch file set, and audit patch file history, which are major features of PMS, as a smart contract (chaincode), and verified this operation. The distributed ledger structure of Blockchain-based PMS can be a solution for distributor and client authentication and forgery problems, SPOF problem, and distribution record reliability problem. It not only presents an alternative to dealing with central management server loads and failures, but it also provides a higher level of security and availability.

• Convergence Security Journal
• /
• v.4 no.2
• /
• pp.43-51
• /
• 2004

Operating systems and application programs have security vulnerabilities derived from the software development process. Recently, incident cases related with the abuses of these vulnerabilities are increasing and the damages caused by them are becoming very important security issues all over the nations. Patch management is one of the most important processes to fix vulnerabilities of softwares and to ensure a security of systems. Since an institute or a company has distributed hierarchical and heterogeneous systems, it is not easy to update patches promptly. In this paper, we propose patch management framework to safely distribute and install the patches on Windows, Linux, and Solaris client systems. Besides, we considered extensibility and hierarchical structure for our patch management framework to support large scaled network environment.

• ETRI Journal
• /
• v.31 no.5
• /
• pp.554-564
• /
• 2009

In information security and network management, attacks based on vulnerabilities have grown in importance. Malicious attackers break into hosts using a variety of techniques. The most common method is to exploit known vulnerabilities. Although patches have long been available for vulnerabilities, system administrators have generally been reluctant to patch their hosts immediately because they perceive the patches to be annoying and complex. To solve these problems, we propose a security vulnerability evaluation and patch framework called PKG-VUL, which evaluates the software installed on hosts to decide whether the hosts are vulnerable and then applies patches to vulnerable hosts. All these operations are accomplished by the widely used simple network management protocol (SNMP). Therefore, system administrators can easily manage their vulnerable hosts through PKG-VUL included in the SNMP-based network management systems as a module. The evaluation results demonstrate the applicability of PKG-VUL and its performance in terms of devised criteria.

• Journal of the Korea Society of Computer and Information
• /
• v.27 no.12
• /
• pp.179-188
• /
• 2022

In this paper, we propose an efficient and procedural software patch management phases. Every year, organizations have tens of thousands of known vulnerabilities and spend tens of thousands of hours and millions of dollars or more patching them. Despite these efforts, research has shown that the time it takes for an exploit to appear for a given patched vulnerability is shortening. As various types of organizations such as companies and universities manage patches in inconsistent ways, problems such as security problems, system instability, information leakage and work delay due to patches occur. In this paper, we look at the basics required for software patch management and define the factors to be considered for patch management and the effective steps for patch management. Therefore, this study will be used as a method to efficiently and procedurally execute the organization's patch management policy in the process of updating and patching the software in the organization to a new version as a solution to software function modification and security vulnerability.

• Korean Journal of Agricultural Science
• /
• v.38 no.2
• /
• pp.243-248
• /
• 2011

This investigation was conducted to develop an integrated disease management system against large patch disease occurred in a golf course. Large patch, brown patch, and Rhizoctonia blight sometimes are used interchangeably by turfgrass managers and researchers, Large patch disease of zoysiagrass is caused by a soilborne fungus called Rhizoctonia solani. Although this fungus is very similar to the one that causes brown patch disease of cool-season turfgrasses in mid-summer. Large patch development is favored by high thatch and soil moisture. Avoid overwatering the turfgrass, especially in the fall or early spring. Poorly-drained areas are very susceptible to injury from large patch and should be reconstructed (draining tiles, etc) to avoid soil saturation. However, control of yellow patch with fungicides is normally not recommended because the disease has only cosmetic effects and symptoms are usually very short-lived. Therefore, we reviewed the symptom of large patch to look for control method by soil management method.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.6
• /
• pp.1393-1399
• /
• 2018

Companies that use a variety of software use patch management systems provided by security vendor to manage security vulnerabilities of software to improve security. System administrators monitor the vendor sites that provide new patch information to maintain the latest software versions, but it takes a lot of cost and monitoring time to find and collect patch information because the patch cycle is irregular and the structure of web page is different. In order to reduce this, studies to automate patch information collection based on keyword or web service have been conducted, but since the structure to provide patch information in vendor site is not standardized, it was applicable only to specific vendor site. In this paper, we propose a system that automates the collection of patch information by analyzing the structure and characteristics of the vendor site providing patch information and using web crawler to reduce the cost and monitoring time consumed in collecting patch information.

• International journal of advanced smart convergence
• /
• v.4 no.1
• /
• pp.40-44
• /
• 2015

Most people do not think seriously about the concept of time management, just to spend the precious time sheets. Regular life can sustain mental and physical health. That's why time management is an important factor in living. In the thesis, smart alarm patch is designed using a wireless communication NFC technology that gradually develop and attract attention. Due to the alarm, regular hours is helped to improve the quality of life. For this, analysis was performed using the UML in this system, linked to the smart alarm system patches and NFC technology, Java Script language, Adobe Muse CC was used embody web document and mobile content.

• Proceedings of the Korea Information Assurance Society Conference
• /
• 2004.05a
• /
• pp.199-204
• /
• 2004

Operating systems and application programs have security vulnerabilities derived from the software development process. Recently, incident cases related with the abuses of these vulnerabilities are increasing and the damages caused by them are becoming very important security issues all over the nations. Patch management is one of the most important processes to fix vulnerabilities of softwares and to ensure a security of systems. Since an institute or a company has distributed hierarchical and heterogeneous systems, it is not easy to update patches promptly. In this paper, we propose patch management framework to safely distribute and install the patches on Windows, Linux, and Solaris client systems. Besides, we censidered extensibility and hierarchical structure for our patch management framework to support large scaled network environment.

• The Korean Journal of Ecology
• /
• v.22 no.2
• /
• pp.69-77
• /
• 1999

Secondary vegetation. the holistically integrated system of nature and human being, is the complicated ecosystem that is composed of natural and man-created factors. Understanding the ecological function of secondary vegetation supplies us many important informations for sustainable landscape management and ecological restoration planning. In this research, we tried to examine the shape effect of vegetation patch on early structure of populations of pine and oaks. Moreover. we also tried to clarify the ecological functions of patch edge by exploring the patch effect on germination using patch index. In addition, we present the landscape structure of man -made vegetation of our study area, and setting experimental design of research. Vegetation landscape of study area is typical human disturbed landscape mainly composed of disturbance patches. Vegetation types of graveyard and managed pine forest were controlled by periodically repeated management. However, current seedlings of pine occurred well at both vegetation types. Presence of both saplings were more controlled in managed pine forest (PDM) and graveyard (G) than those of undergrowth (PD) and forest edge (FE) with canopy trees. The number of pine seedlings increased with patch size and patch perimeter. That of oak seedlings was, however, not significantly different. Larger graveyards provided higher light availability for germination of pine seedlings. We think, however, most seedlings of both species in the large sized graveyards without shade will die more easily than that of small sized ones before rainy summer. Relationships between patch shape and germination of two woody species cannot be exactly explained enough yet in these results. More informations on spatial interaction of the total species with differently sized patches are necessary to solve the concept of patch effect on species colonization.