• Journal of Korean Society for Quality Management
• /
• v.48 no.1
• /
• pp.187-199
• /
• 2020

Purpose: This study suggests how to upgrade performance certification technology. Current performance certification of aviation security equipment and the requirements thereof were analyzed. Methods: The performance certification of aviation security equipment worldwide and identified issues with the domestic certification system were compared. The government must upgrade certification in terms of technical standards, the assessment methodology used, and the operating system. Results: Three principal conclusions were drawn. First, certification requirements must be based on a review of the technical literature and real-world experience. Second, development priorities must be set by reference to assessment techniques. Third, both research on the certification system and improvements thereof are essential. Conclusion: Certification of aviation security equipment performance requires gradual upgrading.

• Korean Journal of Social Welfare Studies
• /
• v.43 no.1
• /
• pp.229-247
• /
• 2012

This research has analyzed the options of improving 'National Basic Livelihood Security Program' and factors influencing on them, focusing on the 345 social welfare officials' recognition and assessment of the program. As a result of the analysis, some difference has been identified in the assessment of respective options in accordance with how social welfare officials recognize and assess the program and its recipients. The assessments as to the options of improving restrictions on the able-bodied poors, implementation of the individual benefit method, and so forth were shown differently according to the age; years of service; amount of work; rationality of the criteria for selecting recipients; levels of payment by the 'National Basic Livelihood Security Program'; possibility of the recipients' exit from poverty; achievements of the self-supporting program; and evaluation of the program improvement efforts of the government. Based on this result of analysis, key tasks and improvement options for the 'National Basic Livelihood Security Program' have been explored on the occasion of the 10th anniversary of the program.

• Journal of Software Assessment and Valuation
• /
• v.16 no.2
• /
• pp.45-52
• /
• 2020

Traditional methods of detecting security vulnerabilities in source-code require a lot of time and effort. If there is good data, the issue could be solved by using the data with machine learning. Thus, this paper proposes a source-code vulnerability detection method based on machine learning. Our method employs the code2vec model that has been used to propose the names of methods, and uses as a data set, Juliet Test Suite that is a collection of common security vulnerabilities. The evaluation shows that our method has high precision of 97.3% and recall rates of 98.6%. And the result of detecting vulnerabilities in open source project shows hopeful potential. In addition, it is expected that further progress can be made through studies covering with vulnerabilities and languages not addressed here.

• The KIPS Transactions:PartC
• /
• v.12C no.5 s.101
• /
• pp.633-642
• /
• 2005

Ubiquitous computing system is about networked processors, which is constructed with one or more computers interconnected by the networks. However, traditional security solution lacks a Proactive maintenance technique because of its focusing on developing the qualitative detection and countermeasure after attack. Thus, in this paper, we propose a quantitative assessment modeling technique, by which the general infrastructure can be improved and the attacks on a specific infrastructure be detected and protected. First of all, we develop the definition of survivality and modeling technique for quantitative assessment modeling with the static information on the system random information, and attack-type modeling. in addition, the survivality analysis on TCP-SYN attack and code-Red worm attack is performed for validating the proposed technique.

• Journal of Electrical Engineering and Technology
• /
• v.6 no.4
• /
• pp.484-492
• /
• 2011

Power system analyses, which involve the handling of massive data volumes, necessitate the use of effective visualization methods to facilitate analysis and assist the user in obtaining a clear understanding of the present state of the system. This paper introduces an interface that compensates for the limitations of the visualization modules of dynamic security assessment tools, such as PSS/e and TSAT, for power system variables including generator rotor angle and frequency. The compensation is made possible through the automatic provision of dynamic simulation data in visualized and tabular form for better data intuition, thereby considerably reducing the redundant manual operation and time required for data analysis. The interface also determines whether the generators are stable through a generator instability algorithm that scans simulation data and checks for an increase in swing or divergence. The proposed visualization methods are applied to the dynamic simulation results for contingencies in the Korean Electric Power Corporation system, and have been tested by power system researchers to verify the effectiveness of the data visualization interface.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.15 no.10
• /
• pp.3750-3770
• /
• 2021

This study investigates open-source dynamic XSS filters used as security devices in web applications to account for the effectiveness of filters in protecting against XSS attacks. The experiment involves twelve representative filters, which are examined individually by placing them into the final output function of a custom-built single-input-form web application. To assess the effectiveness of the filters in their tasks of sanitizing XSS payloads and in preserving benign payloads, a black-box testing method is applied using an automated XSS testing framework. The result in working with malicious and benign payloads shows an important trade-off in the filters' tasks. Because the filters that only check for dangerous or safe elements, they seem to neglect to validate their values. As some safe values are mistreated as dangerous elements, their benign payload function is lost in the way. For the filters to be more effective, it is suggested that they should be able to validate the respective values of malicious and benign payloads; thus, minimizing the trade-off. This particular assessment of XSS filters provides important insight regarding the filters that can be used to mitigate threats, including the possible configurations to improve them in handling both malicious and benign payloads.

• International Journal of Computer Science & Network Security
• /
• v.21 no.6
• /
• pp.231-236
• /
• 2021

The article assesses the functioning of the DE system or a separate educational institution, where it can be carried out on the basis of developed criteria or on a regulatory basis. The assessment was carried out on the basis of a qualitative and quantitative nature by comparing the actual state of affairs with a certain "ideal" (educational standard), which must be defined and used as a kind of benchmark against which the assessment is made. Conducted an assessment based on a regulatory framework that represents an alternative approach. It has been emphasized that the exceptional difficulty in determining the ideal indicators (norms) of the activities of universities, it has been found that the normative approach, in which the activities of traditional and open universities are compared, taking into account the differences in social, cultural and economic conditions, is the most acceptable.

• Analyses & Alternatives
• /
• v.6 no.2
• /
• pp.37-78
• /
• 2022

The U.S.-led international order, sustained by overwhelming national power since the end of the Cold War, is gradually being restructured from a unipolar international system to a bipolar international system or a multipolar international system, coupled with the weakening of U.S. global leadership and the rise of regional powers. Geopolitically, discussions have been constantly raised about the security instability that the reshaping of the international order will bring about, given that East Asia is a region where the national interests of the United States and regional powers sharply overlap and conflict. This study aims to critically analyze whether security discussions in Korea are based on appropriate crisis assessment and evaluation. This paper points out that the security crisis theory emerging in Korea tends to arise due to threat exaggeration and emphasizes the need for objective evaluation and conceptualization of the nature and the level of threats that the restructured international order can pose to regional security. Based on the analysis of changes in conflict patterns (frequency and intensity), occurring in East Asia during the periods divided into a bipolar system (1950-1990), a unipolar system (1991-2008), and a multipolar system (2009-current), this study shows that East Asia has not been as vulnerable to power politics as other regions. This investigation emphasizes that the complexity of Korea's diplomatic and security burden, which are aggravated by the reorganization of the international order, do not necessarily have to be interpreted as a grave security threat. This is because escalating unnecessary security issues could reduce the diplomatic strategic space of the Republic of Korea.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.6 no.4
• /
• pp.1223-1247
• /
• 2012

The need for securing Wireless Sensor Networks (WSNs) is essential especially in mission critical fields such as military and medical applications. Security techniques that are used to secure any network depend on the security requirements that should be achieved to protect the network from different types of attacks. Furthermore, the characteristics of wireless networks should be taken into consideration when applying security techniques to these networks. In this paper, energy efficient Security Model for Tree-based Routing protocols (SMTR) is proposed. In SMTR, different attacks that could face any tree-based routing protocol in WSNs are studied to design a security reference model that achieves authentication and data integrity using either Message Authentication Code (MAC) or Digital Signature (DS) techniques. The SMTR communication and processing costs are mathematically analyzed. Moreover, SMTR evaluation is performed by firstly, evaluating several MAC and DS techniques by applying them to tree-based routing protocol and assess their efficiency in terms of their power requirements. Secondly, the results of this assessment are utilized to evaluate SMTR phases in terms of energy saving, packet delivery success ratio and network life time.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.24 no.3
• /
• pp.547-560
• /
• 2014

Smart Grid, which maximize the efficiency of energic utilization by applying Information and Communication Technology to Power Grid, requires high availability. Attacks, such as DDoS, which cause suspension of service and lead to social disruptions have recently been increasing so that systematic management over availability becomes more important. In this paper, we presents a new evaluation criteria of Korean Smart Grid by comparing availability assessment items of international standards specified in management system and then overcome the limitations of availability evaluation of existing information security management system.