• The KIPS Transactions:PartC
• /
• v.11C no.6 s.95
• /
• pp.725-730
• /
• 2004

Separation of Duty(SOD), with delegation, is one of important security principles in access control area. The role-based access control model adopts SOD principle, but it has some problems; SOD concept is inconsistent with role hierarchy, permissions that have no relation with SOD may be restricted, and delegation may violate SOD. We propose permission-based SOD model on role-based access control. We establishes SOD as a set of permissions instead of role level SOD. Furthermore we propose a principle of role activation. It solves SOD problems of RBAC and supports easy implementation of SOD policy.

• Journal of Korean Academic Society of Home Health Care Nursing
• /
• v.11 no.1
• /
• pp.33-43
• /
• 2004

Purpose: This study is a descriptive research conducted for looking into the role awareness level. role conflicts, and job satisfaction among professional home care nurses in the field of hospital based home care nursing service. Method: 154 specialized home care nurses in 63 hospitals and clinics that are implementing home care programs were subject to the study. Result: 1. The level of role awareness among professional home care nurses was $4.47\pm0.41$ on average out of 5. 2. The average score for role conflicts was $3.87\pm0.61$ out of 5. 3. In terms of job satisfaction level. $3.33\pm0.71$ was scored out of 5. 4. It has been discovered that there are statistically significant positive correlations among role awareness level, role conflicts(r= .224, P= .005), and job satisfaction level(r= .166, P=.040), while a negative correlation was detected between role conflicts and job satisfaction level(r=-.210, P= .009). Conclusion: The level of role awareness among professional home care nurses in the field of hospital based home care nursing service was very high and job satisfaction level was high when the level of home care nursing antecedents was high and the organization structure of working place was independent. But the level of role conflicts coming out of the weakness of job-supporting system was high. So the realistic alternative such as the improvement of working environment by administrative, institutional support, is required to make up for this problem in the future.

• The KIPS Transactions:PartC
• /
• v.12C no.7 s.103
• /
• pp.981-988
• /
• 2005

Administrative Role-Based Access Control(ARBAC) is a typical model for decentralized authority management by plural security administrators. They have their work range on the role hierarchy. A problem is that legal modification of role hierarch may induce unexpected side effect. Role-Role Assignment 97(RRA97) model introduced some complex integrity principles to prevent the unexpected side effect based on geometric approach. We introduce simple and new one integrity principle based on simple set theory. It is simple and intuitive. It can substitute for all integrity principles of RRA97 model.

• Journal of the Korea Society of Computer and Information
• /
• v.22 no.9
• /
• pp.49-55
• /
• 2017

Despite the Openflow's switch migration occurs after the channel was established in secure manner (optional), the current cryptography protocol cannot prevent the insider attack as the attacker possesses a valid public/private key pair. There are methods such as the certificate revocation list (CRL) or the online certificate status protocol (OCSP) that tries to revoke the compromised certificate. However, these methods require a management system or server that introduce additional overhead for the communication. Furthermore, these methods are not able to mitigate power abuse of an insider. In this paper, we propose a role-based identity-based cryptography (RB-IBC) that integrate the identity of the node along with its role so the nodes within the network can easily mitigate any role abuse of the nodes. Besides that, by combining with IBC, it will eliminate the need of exchanging certificates and hence improve the performance in a secure channel.

• The Journal of Information Technology
• /
• v.4 no.4
• /
• pp.15-24
• /
• 2001

In current role-based systems, security officers handle assignments of users to roles. This may increase management efforts in a distributed environment because of the continuous involvement from security officers. The role-based delegation provides a means for implementing RBAC in a distributed environment. The basic idea of a role-based delegation is that users themselves may delegate role authorities to other users to carry out some functions on behalf of the former. This paper presents a user-level delegation model, which is based on Extended Role-Based Access Control(ERBAC). ERBAC provides finer grained access control on the base of subject and object level than RBAC model.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.1
• /
• pp.123-128
• /
• 2010

Graph expression of attack scenarios is a necessary method for analysis of vulnerability in server as well as the design for defence against attack. Although various requirement analysis model are used for this expression, they are restrictive to express combination of complex scenarios. Role Based Petri Net suggested in this paper offer an efficient expression model based role on Petri Net which has the advantage of concurrency and visuality and can create unknown scenarios.

• Journal of Digital Convergence
• /
• v.11 no.4
• /
• pp.101-108
• /
• 2013

The main purpose of this study was to investigate the effect of authentic leadership on occupational self-efficacy and role-based performance and to investigate the effect of occupational self-efficacy on role-based performance. Moreover, another objective of this study is to analyse the mediating role of occupational self-efficacy in the influence of authentic leadership on role-based performance. To accomplish the purpose of the study, this study employed two methods: literature reviews and empirical studies. The results showed that authentic leadership increase employees' occupational self-efficacy and have a positive influence on role-based performance. And it was found that employees' occupational self-efficacy also positively affect employees' role-based performance.

• Journal of the Korea Society of Computer and Information
• /
• v.9 no.3
• /
• pp.63-69
• /
• 2004

The purpose of this paper is to design a system model which is needed for integrating the secure role-based access control model into web-based application systems. For this purpose, firstly, the specific system architecture model using a user-pull method is presented. This model can be used as a design paradigm. Secondly, the practical system working model is proposed. which specifies the mechanism that performs role-based access control in the environment of web-based application systems. Finally, the comparison and analysis is shown in which the merits with the proposed system model is presented.

• Journal of the Korea Society of Computer and Information
• /
• v.6 no.4
• /
• pp.119-124
• /
• 2001

In the paper, is proposed a secure role-based access control model that not only has s functions such as security, integrity and flow control, but also can easily meet access requirements of role-based social organizations. The proposed role-based access control mod designed based on proven existing rule-based access control mechanisms in order to be app real access control systems. The model proposed in the paper is simple and secure. It can be used for the web-based application systems working on the Internet.

• The Journal of Korean Academic Society of Nursing Education
• /
• v.24 no.2
• /
• pp.115-126
• /
• 2018

Purpose: This study intends to examine the effects of a stepwise communication education program among nursing college students, focusing on scenarios and nursing case-based role playing. Methods: The study design was a one-group repeated measure ANOVA. Participants were 27 nursing students in practice. Students participated in 5-week stepwise communication education program using SBAR; including 1 week of lecture education, 4 weeks of scenarios and nursing case-based role playing. The data were collected at each level of the education process: pre-education, after 1 week of lectures, and after completion of scenarios and nursing case-based role playing. Repeated measures ANOVA was used to determine changes in SBAR technique knowledge and communication self-efficacy. Results: The stepwise communication education program using SBAR was effective in increasing SBAR technique knowledge, and communication self-efficacy. The lecture-based education was effective only in the area of SBAR technique knowledge and its subscale, attitudes towards SBAR. However, scenarios and nursing case-based role playing was broadly effective across communication self-efficacy, SBAR technique knowledge, and its subscale, knowledge of the SBAR. Conclusion: Based on this study, we propose that it is necessary to confirm the effect of long-term SBAR communication education using scenarios and nursing case-based role playing in nursing students' practice.