• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.22 no.3
• /
• pp.601-613
• /
• 2012

It is required to design and implement secure web applications to provide safe web services. For this reason, there are several scoring frameworks to measure vulnerabilities in web applications. However, these frameworks do not classify according to seriousness of vulnerability because these frameworks simply accumulate score of individual factors in a vulnerability. We rate and score vulnerabilities according to probability of privilege acquisition so that we can prioritize vulnerabilities found in web applications. Also, our proposed framework provides a method to score all web applications provided by an organization so that which web applications is the worst secure and should be treated first. Our scoring framework is applied to the data which lists vulnerabilities in web applications found by a web scanner based on crawling, and we show the importance of categorizing vulnerabilities according to privilege acquisition.

• Journal of the Computational Structural Engineering Institute of Korea
• /
• v.36 no.5
• /
• pp.295-305
• /
• 2023

This study introduces a smoothed finite-element implementation into the phase-field framework. In recent years, the phase-field method has recieved considerable attention in crack initiation and propagation since the method needs no further treatment to express the crack growth path. In the phase-field method, high strain-energy accuracy is needed to capture the complex crack growth path; thus, it is obtained in the framework of the smoothed finite-element method. The salient feature of the smoothed finite-element method is that the finite element cells are divided into sub-cells and each sub-cell is rebuilt as a smoothing domain where smoothed strain energy is calculated. An adaptive quadtree refinement is also employed in the present framework to avoid the computational burden. Numerical experiments are performed to investigate the performance of the proposed approach, compared with that of the finite-element method and the reference solutions.

• International Journal of Computer Science & Network Security
• /
• v.23 no.11
• /
• pp.128-132
• /
• 2023

Investment authorities are broad financial institutions that carefully manage investments on behalf of the national government using a long-term value development approach. To provide a stronger structure or framework for In-vestment Authorities to govern the distribution of funds to public and private markets, we've started research to create a blockchain-based prototype for managing and tracking numerous finances of such authorities. We have taken the case study of Oman Investment Authority (OIA) of Sultanate of Oman. Oman's wealth is held in OIA. It is an organization that oversees and utilizes the additional capital generated by oil and gas profits in public and private markets. Unlike other Omani funds, this one focus primarily on assets outside the Sultanate. The operation of the OIA entails a huge number of transactions, necessitating a high level of transparency and administration among the parties involved. Currently, OIA relies on various manuals to achieve its goals, such as the Authorities and Responsibilities manual, the In-vestment Manual, and the Code of Business Conduct, among others. In this paper, we propose a Blockchain based framework to manage the operations of OIA. Blockchain is a part of the Fourth Industrial Revolution, and it is re-shaping every industry. The main components of every blockchain are assets and participants. The funds are the major assets in the proposed study, and the participants are the various fund shareholders/recipients. The block-chain's transactions are all safe, secure, and immutable, and it's part of a trustless network. The transactions are simple to follow and verify. By replacing intermediary firms with smart contracts, blockchain-based solutions eliminate any middlemen in the fund allocation process.

• Journal of Applied Reliability
• /
• v.14 no.1
• /
• pp.81-91
• /
• 2014

The IEC 61508 standard was established to specify the functional safety of E/E/PE safety-related systems. Safety life cycle to provide the framework and direction for the application of IEC 61508 is included in this standard. In this paper, we describe overviews, objects, scopes, requirements and activities of each phase in safety life cycle. In addition, we introduce safety integrity level(SIL) which is used for verifying the safety integrity requirements of E/E/PE system and perform a case study to estimate hardware SIL by FMEDA. The SIL is evaluated by two criteria. One of them is the architectural constraints which restrict the maximum SIL by combination of SFF and HFT. The other is the probability of failure which is classified into PFD and PFH based on frequency of demand and calculated by safe or dangerous failure rates.

• Journal of Korean Academy of Fundamentals of Nursing
• /
• v.22 no.2
• /
• pp.180-189
• /
• 2015

Purpose: The purpose of this study was to identify the types of errors that occurred and were recovered in a simulated transfusion scenario by nursing students. Methods: Twenty-eight teams of a total of 89 nursing students participated in a transfusion simulation using a high fidelity simulator. Data were collected by observing rule based errors and built in errors recovered according to the framework of Eindhoven model. Reflective journaling was used to identify perceived safety-threatening errors and commitment to improvement. Data were analyzed using descriptive statistics. Results: All teams committed the rule based errors in the scenario. The most common errors occurred in the coordination category related to communication with physician. Most of students perceived the transfusion reaction as a safety-threatening error. Conclusion: The findings indicate that students lack patient safety competence. The simulation training to decrease errors and improve safe practice provides nursing students with an effective strategy to develop patient safety competence.

• Proceedings of the KIEE Conference
• /
• 2009.07a
• /
• pp.1207_1208
• /
• 2009

It is expected that standardized framework for urban rail transit system will contribute to more convenient and safe traffic service and ensure higher reliability and availability of urban rail transit rolling stock and infrastructure. Information and telecommunication system in urban rail transit consists of various subsystems, such as radio communication system, digital transmission system, integrated monitoring system and public addressing system and its standardization will be implemented based on these subsystem. Public addressing system is to provide information related to operation and emergency for passengers and operators. In this paper we suggest draft criterion of public addressing system for urban rail transit through functional analysis and comparison on the present state of the system.

• Korean Journal of Bronchoesophagology
• /
• v.2 no.2
• /
• pp.213-221
• /
• 1996

To evaluate the clinical effectiveness of expandable metallic stents, the stents were implanted under endoscopic guidance with local anesthesia or general anesthesia for maintenance of the constructed subglottic space of trachea. The nine patients with respiration difficulty were subjected for expandable stents. The stenosis of upper airway were due to the framework problem of subglottic trachea and tracheostoma after total laryngectomy. Stents were constructed of 0.4 m stainless steel win in a zigzag configuration of 8 bends. A single stent was 20 m in diameter when fully expanded and 20 mm long. The stents were placed accurately to the stenotic site and followed to the 5 month after stent placement. The stenotic area became narrowed with overgrowing of granuloma in all patients and the metallic stents were removed and the stenotic area reconstructed surgically. As conclusion, this technique for the treatment of the subglottic trachea showed simple and safe, but highly recurred due to overgrowing of granuloma. We suggest that the expandable metallic stent is not encouraging in this study.

• Journal of Institute of Control, Robotics and Systems
• /
• v.6 no.11
• /
• pp.968-973
• /
• 2000

Fault diagnosis plays an important role in the performance and safe operation of many modern engineering plants. This paper investigates the problem of fault detection using neural networks in dynamic systems. A general framework for constructing a nonlinear fault detection scheme for nonlinear dynamic systems containing modeling uncertaintly is proposed. The main idea behind the proposed approach is to monitor the physical system with an off -line learning neural network and then to approximate the upper and lower thresholds of acceleration of the nominal system with the model-based threshold(ThMB) method, The performance of the proposed fault detection scheme is investigated through simulations of a pendulum with uncertainty.

• Proceedings of the IEEK Conference
• /
• 2008.06a
• /
• pp.625-626
• /
• 2008

Today, the railway is very important in modern society means of public transport. Many people use the railway each day. On the other hand, with regard to railway accidents every year due to damage caused many casualties. In this paper, we propose railroad crossing accident prevention system for monitoring the situation based on OSGi for safe railway operations, about the same railroad crossing a dangerous place. This system, communication between the train and railroad crossing. So the information from the train crossing while a train driver was monitored in real time with more information than can help prevent accidents on the crossing. Using the OSGi framework, can be used widely in many hardware.

• Journal of information and communication convergence engineering
• /
• v.7 no.3
• /
• pp.330-334
• /
• 2009

Most security solutions and middleware on home network consider internet users as approaching subject. It is unrealistic where the most subjects are mobile users who want to control home network devices. Therefore minor and fast certification structures are needed to control other devices with mobile device that has lower computing capacity. To solve the above problems, this paper wants to build safe certification frame work for internet and mobile users to control household devices safely. New certification structure is proposed to get out of heavy certification structure like PKI and to minimize encrypting and decrypting operation by compounding session key and public key.