• Proceedings of the KIEE Conference
• /
• 2005.11b
• /
• pp.46-48
• /
• 2005

This paper discusses a probabilistic method for power system security assessment. The security analysis relates to the ability of the electric power systems to survive sudden disturbances such as electric short circuits or unanticipated loss of system elements. It consists of both steady state and dynamic security analyses, which are not two separate issues but should be considered together. In steady state security analysis including voltage security analysis, the analysis checks that the system is operated within security limits by OPF (optimal power flow) after the transition to a new operating point. Until now, many utilities have difficulty in including dynamic aspects due to computational capabilities. On the other hand. dynamic security analysis is required to ensure that the transition may lead to an acceptable operating condition. Transient stability, which is the ability of power systems to maintain synchronism when subjected to a large disturbance. is a principal component in dynamic security analysis. Usually any loss of synchronism may cause additional outages and make the present steady state analysis of the post-contingency condition inadequate for unstable cases. This is the reason for the need of dynamic studies in power systems. Probabilistic criterion can be used to recognize the probabilistic nature of system components while considering system security. In this approach. we do not have to assign any predetermined margin of safety. A comprehensive conceptual framework for probabilistic static and dynamic assessment is presented in this paper. The simulation results of the Western System Coordinating Council (WSCC) system compare an analytical method with Monte-Carlo simulation (MCS).

• Journal of the Korea Society of Computer and Information
• /
• v.25 no.8
• /
• pp.39-45
• /
• 2020

Despite the increasing interest in cyber security in recent years, the emergence of new technologies has led to a shortage of professional personnel to efficiently perform the cyber security. Although various methods such as cyber rage are being used to cultivate cyber security experts, there are problems of limitation of virtual training system, scenario-based practice content development and operation, unit content-oriented development, and lack of consideration of learner level. In this paper, we develop a fuzzy rule-based user-customized training scenario automatic generation system for improving user's ability to respond to infringement. The proposed system creates and provides scenarios based on advanced persistent threats according to fuzzy rules. Thus, the proposed system can improve the trainee's ability to respond to the bed through the generated scenario.

• The Transactions of the Korea Information Processing Society
• /
• v.6 no.11S
• /
• pp.3278-3288
• /
• 1999

This paper proposes a security platform, called SCAP(Security platform for CORBA based APplication), to cope with potential threats in a distributed object system. SCAP supports CORBA security specification announced by OMG. SCAP is comprised of four functional blocks, which co-work with ORB to provide security services: Authentication Block, Association Block, Access Control Block, and Security Information Management Block. It is designed to support Common Secure Interoperability Functionality Level 2, which is useful for large-scale intra-, or inter-network based applications. Actual security services, which are dependent on supporting security technology, will be provided as external security service for replace ability. Implementation issues such as how to simulate an interceptor mechanism using a commercial ORB product without source code, and how to extend Current object required for security services are also described. At the end of the paper, the SCAP applied to the web environment is described to show its practical utilization.

• Journal of the Korean Society for Aviation and Aeronautics
• /
• v.20 no.2
• /
• pp.47-57
• /
• 2012

The strengthened aviation security measurements caused by increased terror threat all around the world have air passengers annoyed by uneasy treatment and some delayed process. The service level of air travel and competitiveness of airlines industry has been weakened also. The aviation security process is mainly conducted at an airport. The threat level of airport is not usually same airport to airport, and the quality of aviation security activity is neither same. However, ICAO requires every international airport to conduct similar process to ensure aviation security without considering situational difference of each airport. The paper has objectives to develop reasonable security measurements based on risk management concept. It studied the ways of achieving target level of security of an airport, considering the threat situation of the airport and its ability to conduct security procedures.

• Asia pacific journal of information systems
• /
• v.8 no.2
• /
• pp.105-119
• /
• 1998

As the first step to information security, the security policy and organizational control need to be established. The purpose of this study is to investigate the policy and management of information security of five major Korean business groups. The results of case study on five giant groups can be summarized as follows. There exists a basic policy for information security. But it is outdated and not realistic in the present. The security audit and education need to be upgraded. It is also necessary to use security tools actively. The security level is low in companies which do not have independent information security divisions. Therefore, it is desirable to build information security teams. The number of security personnel is not enough for the task although there exist an information security team in the company. It is important to check if the team has the ability of perform information security task. The interview with security managers reveals that the total security management should be integrated with physical and computer security. It is suggested that an Information Security Center play the major role for information security. The study on the information security management for industry level is expected to be performed in the future.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2013.11a
• /
• pp.800-803
• /
• 2013

이메일을 기반으로 좀비PC 및 봇넷그룹을 탐지하는 알고리즘은 기존에 연구가 되었으나, 기존의 검증방식은 가상의 메일계정을 이용해 스팸메일을 수집하는 스팸트랩 시스템에서 추출한 이메일을 대상으로 하였다. 본 논문에서는 상용환경의 이메일을 대상으로 좀비PC를 탐지하고, 좀비PC를 이용한 추가 사이버 공격을 예방하기 위해 기존의 알고리즘을 보완하고, 이에 대한 좀비PC 탐지결과를 분석한다. 이를 통해, 주요 포탈 및 기업의 메일서버에서 수신하는 이메일을 대상으로 좀비IP를 탐지하여, 스팸메일을 차단하고 ISP와 연계하여 실제 조치를 유도할 수 있을 것으로 기대한다.

• The Journal of the Convergence on Culture Technology
• /
• v.6 no.4
• /
• pp.1-8
• /
• 2020

Existing studies have used a variety of terms related to North Korea's income guarantees, causing some confusion. It can be said that it is a problem that appears only when dealing with the contents of a specific statute in an existing study. To this end, we will look at the laws and regulations related to income security by period and analyze the contents of dictionaries that are also the explanations of the laws and the status of orders and rules. As a result of the analysis, living subsidies are classified into subsidies under the national social insurance system and pension and subsidy under the national social security system. Among them, the pension under the national social security system, which is an income security system for non-workers, includes old age pensions, labor capacity loss pension(general work ability loss pension, accidental work ability loss pension, honored soldiers' work ability loss pension), and survivor pension(general survivor pension, war deads' survivor pension, victims' survivor pension). In particular, it was confirmed that the terminology for social security pension, which has been confusing in previous studies, is a collective jargon for all pensions under the national social security system. This study is significant in that it synthesized the historical transition process of the terminology of income security from the 10th Platform for the National Liberation Society in 1936 to the Socialist Constitution of the Democratic People's Republic of Korea in 2013.

• Korean Journal of Social Welfare
• /
• v.56 no.2
• /
• pp.71-91
• /
• 2004

The National Basic Livelihood Security System implemented from October 2000 has expanded cash assistance to cover the poor households that have work ability. The cash assistance for the households with work ability has positive aspects of providing basic livelihood security for all people, but many people have worried about its negative aspects such as the decrease of labor supply among the low-income people with work ability. However, there has been few study that evaluated the effects of the NBLS implementation on labor supply. One of the reason for this may be related with the difficulty of research methodology that there were neither program group nor control group, because NBLS was implemented for all the people at the same time. This study suggests alternative program groups and control groups based on work ability and education. Using wave1 to wave5 data of the Korean Labor and Income Survey, this study estimated the effects of the NBLS implementation on employment and work hours. A difference-in-difference approach was applied to these alternative program and control groups. I found that the implementation of NBLS did not have any statistically significant effects on employment an work hours. It is too early to conclude from this result that cash assistance for the poor households with work ability does not induce any labor supply decrease in Korea. Rather, I interpret this result as reflecting that the NBLS system was too limited to induce any sizable decrease of labor supply or that the work requirement imposed on the recipients with work ability was effective in deterring work disincentive among the low-income population. Future research need to explore better program and control groups and investigate long-term effects.

• Information and Communications Magazine
• /
• v.19 no.8
• /
• pp.128-136
• /
• 2002

It is an active security that has the research field which has more powerful responding mechanism comparing to current network security technology, has an ability to introduce new security mechanism according to changing our environments, and can support effective security management. Our goal is to introduce a new category of internet security technologies on network survivability: active security technology. It is a new security technology that blocking network or computers. before malicious traffics are reached to them, including protecting hosts or small area network from hackers.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.30 no.2
• /
• pp.197-212
• /
• 2020

With the advent of virtual currency and electronic wallets creating a way to make financial gains based on anonymity, malicious code dissemination using malicious mail has continued to increase. In order to minimize the damage, the human factors, security awareness and the ability to respond, which are technical factors, should be improved evenly, which can be improved through malicious mail training. This study presented a model considering the performance of malicious mail training, such as practice. It was classified as a training for enhancing awareness of security for employees and detection and response to improve their ability to respond to malicious mail. A training system suitable for the purpose, the core functions of malware training, implementation and camouflage skills, and bypass techniques were described. Based on the above model, the training data conducted over three years were collected and the effectiveness of the training was studied through analysis of the results according to the number of training sessions, training themes and camouflage techniques.