• Journal of Advanced Navigation Technology
• /
• v.16 no.6
• /
• pp.1014-1023
• /
• 2012

Recently with improvement of SMART Grid, AMI network security has been affecting the environment for Electric information and communication. The system and communication protection consists of steps taken to protect the AMI components and the communication links between system components from cyber intrusions. The addition of two way communications between SUN and HAN introduces additional risk for unauthorized access to the AMI system. In this paper, we propose new AMI device authentication infrastructure, key establishment and security algorithm based on public key encryption to solve AMI network security problems.

• Journal of Advanced Navigation Technology
• /
• v.13 no.5
• /
• pp.691-698
• /
• 2009

Chen et al. proposed a RFID authentication protocol for anti-counterfeiting and privacy protection. A feasible security mechanism for anti-counterfeiting and privacy protection was proposed using XOR and random number shifting operations to enhance RFID tag's security providing a low cost. However, their authentication protocol has some drawbacks and security problems because they did not consider the surrounding environments. We conduct analysis on the protocol and identify problematic areas for improvement of the research. We also provide enhanced authentication and update scheme based on the comment for efficient supply chain management. The proposed protocol was analyzed and compared with typical XOR based RFID authentication protocols and it was confirmed that our protocol has high safety and low communication cost.

• Journal of Advanced Navigation Technology
• /
• v.15 no.3
• /
• pp.372-377
• /
• 2011

Until now, the study and research on the projects which have internationally conducted are in poor condition with regard to the security vulnerability analysis of web application. This is due to a lack of precedent study for improving the quality of the web services in order to provide better services for the future. In this paper, I analyze the types of the web application vulnerabilities which have been studied and mapped out a plan for protecting them.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2004.08a
• /
• pp.155-159
• /
• 2004

The International Ship and Port Facility Security (ISPS) Code has come into force on July 7$^{th}$ 2004. It would therefore be prudent that all parties' concerned put in place, methodically, systematically and as soon as possible, all the necessary infrastructure needed to give effect to all the decisions of the Conference. But the ISPS Code doesn't have the details during implementation. For example, how to legislate, administrate\ulcorner How are the data relating to security incident saved\ulcorner So, the author will lay emphasis to expatiate on three aspects in this thesis on the basis of the fact of anti-terrorism at sea.

• Proceedings of the Korean Society of Computer Information Conference
• /
• 2012.07a
• /
• pp.343-344
• /
• 2012

국제해사기구(IMO)에서 진행하는 "e-Navigation" 프로젝트의 구성요소인 해상교통관제시스템(VTS)을 정의하고, VTS 시스템간 정보교류를 위한 기술로 IVEF(Inter-system VTS Exchange Format)를 소개한다. 현재까지 국제항로표지협회(IALA)에서 개발한 IVEF에는 접속자에 대한 신뢰도 높은 인증 기술이 포함되지 않는다. 하지만 해상교통정보는 국가적으로 보안수위가 높은 정보이므로 정보 요청 자에 대한 신뢰 높은 인증이 절대적으로 필요한 부분이다. 따라서 본 논문에서는 메인 인증 서버와 IVEF를 이용하여 VTS 시스템간의 신뢰도를 높일 수 있는 인증 시스템을 제안한다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2009.11a
• /
• pp.251-252
• /
• 2009

본 논문에서는 AIS의 표준 메시지 포맷과 사양을 확장하여 선박의 항해안전을 향상시키고 AIS시스템의 활용을 극대화할 수 있는 AIS 데이타 응용 포맷과 사양을 개발하여 제안하였다. 그리고 국내에서 적극적으로 활용되기 위해서 필요한 6비트 체계를 사용하는 AIS통신에서의 한글메시지의 구현방안을 제시하여 메시지의 한글화 및 단말기의 한글화 방안도 마련하였다. 테스트 결과 개발된 포맷들은 여객선의 운항관리나 교통방송, 어선의 입출항 및 어획량 보고, NAVTEX정보, 구난정보, 기상정보등을 전송할 수 있게 되어 그 활용범위는 광범위하고 특히 GPS플로터나 ECDIS같은 전자해도 기반의 항해시스템과 연동되면 선박의 해양사고 발생을 미연에 방지함은 물론 해상교통안전 향상 및 사고취약선박에 대한 안전향상에 큰 도움이 될 것으로 기대된다.

• Journal of Navigation and Port Research
• /
• v.40 no.4
• /
• pp.213-222
• /
• 2016

Recently, as cases of organizations' information disclosure occur continuously, it is urgent to manage security of information and establish measures to enhance security of information by an organization itself. Especially, members of an organization should be prepared with measures for information security, and an organization should do its efforts to raise its members' awareness toward information security. I set a research model to verify what effects an organization's fulfillment of regulations to secure information brings to performance of information security and selected members from maritime and port organizations and financial and insurance institutes as sample. Results of the analysis to identify factors affecting information security performance among members of maritime and port organizations are as follows. Firstly, I found that the factors affecting information security awareness are information security attitude and information security standards. Secondly, the factor giving influence on information security policy of an organization was found to be information security standards. In contrast, information security punishments and information security training were verified not to give influence on compliance of information security policy. Thirdly, information security awareness was identified to give significant influence on compliance of information security policy, information security competence and information security behavior. Fourthly, compliance of information security policy was verified to be those factors that give influence on information security competence and information security behavior. Lastly, information security competence and information security behavior were found to be such factors that give influence on information security performance.

• Proceedings of the Korean Institute of Navigation and Port Research Conference
• /
• 2021.11a
• /
• pp.72-73
• /
• 2021

As discussions of the International Maritime Organization for the introduction of the Marine Autonomous Surface Ship (MASS) began in earnest, discussions were conducted to prioritize cybersecurity (Cyber Risk Management) when developing a system to support MASS operation at the 27th ENAV Committee Working Group (WG2). Korea launched a technology development project for autonomous ships in 2020, and has been promoting detailed tasks for cybersecurity technology development since 2021. MASS operation in a digital maritime communication system environment requires network security of various digital equipment that was not considered in the existing maritime communication environment. This study introduces the basic concept of network security equipment to support MASS operation in the detailed task of cybersecurity technology development, and defines the network security equipment interface for MASS ship application in the basic stage.

• Review of KIISC
• /
• v.27 no.6
• /
• pp.41-46
• /
• 2017

현재 해양 환경의 안전을 위해 국제해양기구(IMO) 및 해양수산부에서 e-Navigation이 추진되고 있다. 해사클라우드는 e-Navigation의 핵심 통신 기반 기술에 해당하며, 성공적인 e-Navigation의 도입을 위한 필수적인 기술이다. 안전한 해사클라우드 환경을 위해서는 보안에 대한 고려가 필수적이며, Identity 관리 기술은 해사클라우드에서의 인증 및 권한 확인을 수행하는데 있어 주요 기술로서 작용하게 될 것이다. 따라서 본 고에서는 해사클라우드에서의 Identity 관리 기술 및 주요현황을 살펴본다.

• Journal of Advanced Navigation Technology
• /
• v.27 no.6
• /
• pp.733-739
• /
• 2023

The purpose of this study verify to the effect of applying the X-ray screening ability rating for security screening persons in Incheon International Airport. Data collected through a evaluation score of 1,034 security screening persons in Incheon International Airport. Data analysis performed using paired sample t-test. The research results found that it was a statistically significant difference pre-test and post-test applying the X-ray screening ability rating. In this article, we asserts that the X-ray screening ability rating is effective in improving the X-ray screening ability of security screening persons. This paper contribute to the academic expansion of motivation theory and self-determination theory. This study is valuable as a preemptive empirical research that provides practical implications about the application of X-ray screening ability rating for security screening persons.