• Journal of the Ergonomics Society of Korea
• /
• v.30 no.3
• /
• pp.419-426
• /
• 2011

Objective: The objective of this study was to evaluate a work of guards, using an ergonomic method(work analysis and posture analysis). Background: Most studies about guards were conducted in the field of medical, problems of shift, and the physical problems of old workers and social problems. But, guards consist of vulnerability group so it needs an ergonomic research in musculoskeletal disorders. Method: A head of an ergonomic estimation was work analysis(determination of combined task, work tool, work time and frequency of combined task) and posture analysis(upper body and lower body) of workers based on the video. Results: The result showed that combined task of guards was classification of patrolling, security, cleaning and waiting. The security indicated the highest ratio in the work time of combined tasks. The results of posture analysis for guards indicated high value in neutral. But, lower arm indicated high value in bending(left: 59%, right: 50%). Conclusion: The results of ergonomic methods indicated that guards' physical work load was not high during work, but comfortable work environment would be required for old guards. Application: If an ergonomic rule can be integrated into existing work environments, the risk of occupational injuries and stress will be reduced.

• Asia pacific journal of information systems
• /
• v.24 no.3
• /
• pp.299-323
• /
• 2014

The reason location based service is drawing attention recently is because smart phones are being supplied increasingly. Smart phone, basically equipped with GPS that can identify location information, has the advantage that it can provide contents and services suitable for the user by identifying user location accurately. Offering such diverse advantages, location based services are increasingly used. In addition, for use of location based services, release of user's personal information and location data is essentially required. Regarding personal information and location data, in addition to IT companies, general companies also are conducting various profitable businesses and sales activities based on personal information, and in particular, personal location data, comprehending high value of use among personal information, are drawing high attentions. Increase in demand of personal information is raising the risk of personal information infringement, and infringements of personal location data also are increasing in frequency and degree. Therefore, infringements of personal information should be minimized through user's action and efforts to reinforce security along with Act on the Protection of Personal Information and Act on the Protection of Location Information. This study aimed to improve the importance of personal information privacy by empirically analyzing the effect of perceived values on the intention to strengthen location information security and continuously use location information for users who received location-based services (LBS) in mobile environments with the privacy calculation model of benefits and risks as a theoretical background. This study regarded situation-based provision, the benefit which users perceived while using location-based services, and the risk related to personal location information, a risk which occurs while using services, as independent variables and investigated the perceived values of the two variables. It also examined whether there were efforts to reduce risks related to personal location information according to the values of location- based services, which consumers perceived through the intention to strengthen security. Furthermore, it presented a study model which intended to investigate the effect of perceived values and intention of strengthening security on the continuous use of location-based services. A survey was conducted for three hundred ten users who had received location-based services via their smartphones to verify study hypotheses. Three hundred four questionnaires except problematic ones were collected. The hypotheses were verified, using a statistical method and a logical basis was presented. An empirical analysis was made on the data collected through the survey with SPSS 12.0 and SmartPLS 2.0 to verify respondents' demographic characteristics, an exploratory factor analysis and the appropriateness of the study model. As a result, it was shown that the users who had received location-based services were significantly influenced by the perceived value of their benefits, but risk related to location information did not have an effect on consumers' perceived values. Even though users perceived the risk related to personal location information while using services, it was viewed that users' perceived value had nothing to do with the use of location-based services. However, it was shown that users significantly responded to the intention of strengthening security in relation to location information risks and tended to use services continuously, strengthening positive efforts for security when their perceived values were high.

• Convergence Security Journal
• /
• v.22 no.5
• /
• pp.61-67
• /
• 2022

The purpose of this study is to analyze research trends in artificial intelligence. For a three-dimensional analysis, an attempt was made to objectively compare and present the difference between the research direction of artificial intelligence in social science and engineering. For the research method, topic modeling was used among the big data analysis methodologies, and 1000 English papers searched with the keyword artificial intelligence (AI) in the academic research information system were used for the analysis data. As a result of the analysis, in the field of social science, it was possible to identify groups formed around the keywords of 'human', 'impact', and 'future' for artificial intelligence, and in the field of engineering, 'artificial intelligence-based technology development', 'system', 'Groups such as 'Risk-Security' were formed.

• The Journal of the Convergence on Culture Technology
• /
• v.2 no.4
• /
• pp.65-70
• /
• 2016

As network communication increases by using public WiFi to check e-mail and handling Internet banking, the danger of hacking public routers continues to rise. While the national policy is to further propagate public routers, users are not eager to keep their information secure and there is a growing risk of personal information leakage. Because wireless routers implement high accessibility but are vulnerable to hacking, it is thus important to analyze hacking to tackle the attacks. In this study, an analysis is made of the encryption method used in WiFi and cases of hacking WiFi by security attacks on wireless routers, and a method for tackling the attacks is suggested.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2015.10a
• /
• pp.628-631
• /
• 2015

인터넷의 급속한 확산과 기술의 진보로 인해 인터넷에 대한 의존도는 갈수록 높아지고 있다. 이로 인해 웹 사이트를 기반으로 한 사이버 공격 또한 그 파급도가 점차 높아지고 있다. 특히 최근 지능화해가는 사이버 공격 과정에서 일차적 공격 수단으로 웹 사이트 기반 사이버 공격이 많이 활용되고 있다. 또한 자바 스크립트 및 HTML5의 신규 태그를 악용한 공격은 IPS나 웹 방화벽 같은 기존의 보안 장비에 탐지하기 어려운 부분이 있다. 따라서 본 논문에서는 웹 사이트를 구성하는 웹 문서에 대하여 HTML 태그 및 자바 스크립트 등에 대한 취약성을 분석하고, 분석한 결과를 토대로 위험도를 산출하는 기술을 제안하고자 한다.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.33 no.5
• /
• pp.827-846
• /
• 2023

Recently, various information technologies such as network communication and sensors have begun to be integrated into weapon systems that were previously operated in stand-alone. This helps the operators of the weapon system to make quick and accurate decisions, thereby allowing for effective operation of the weapon system. However, as the involvement of the cyber domain in weapon systems increases, it is expected that the potential for damage from cyber attacks will also increase. To develop a secure weapon system, it is necessary to implement built-in security, which helps considering security from the requirement stage of the software development process. The U.S. Department of Defense is implementing the Risk Management Framework Assessment and Authorization (RMF A&A) process, along with the introduction of the concept of cybersecurity, for the evaluation and acquisition of weapon systems. Similarly, South Korea is also continuously making efforts to implement the Korea Risk Management Framework (K-RMF). However, so far, there are no cases where K-RMF has been applied from the development stage, and most of the data and documents related to the U.S. RMF A&A are not disclosed for confidentiality reasons. In this study, we propose the method for inferring the composition of the K-RMF based on systematic threat analysis method and the publicly released documents and data related to RMF. Furthermore, we demonstrate the effectiveness of our inferring method by applying it to the naval battleship system.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.28 no.3
• /
• pp.579-590
• /
• 2018

In May 2014, AppCard(Which is a smartphone application designed to register and use a credit card in a mobile phone by credit card company.) was attacked by smshing and a vulnerability which could not obtainable phone number. After that, credit card companies have supplemented and operated by introducing additional authentication methods to supplement the vulnerability. However, The analysis of the authentication environments, purposes and methods is not enough to lower the level of vulnerability and risk from existing accidents. This study analyzes the authentication process of the AppCard in the electronic financial service by applying the NIST's authentication guidelines, identifies the problems and suggests improvement directions. The method analyzed in this study can be applied to the analysis of the authentication method in addition to the application card, so that it will be highly utilized.

• Journal of Korean Society of Disaster and Security
• /
• v.15 no.4
• /
• pp.79-86
• /
• 2022

The National Park Service is making efforts to create a safe environment by installing rockfall prevention facilities (rockfall prevention nets, fences, and Piam tunnels) in areas at risk of falling rocks. However, the occurrence of falling rocks is increasing every year due to torrential rains caused by climate change, abnormal temperatures in winter, and aging of the ground, and the need to improve the existing rock risk area management plan has emerged. In this study, a pilot area at risk of falling rocks was selected for the Hwanggol district of Chiaksan National Park among Korean national parks, and rockfall analysis was performed using the Rockfall program, and monitoring was conducted by applying a countermeasure method combined with the measurement system to the pilot area. Through this, a rockfall management plan was proposed for continuous management and monitoring of rockfall.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.24 no.6
• /
• pp.1159-1174
• /
• 2014

As the use of smartphones and tablet PCs has exploded in recent years, there are many occasions where such devices are used for treating sensitive data such as financial transactions. Naturally, many types of attacks have evolved that target these devices. An attacker can capture a password by direct observation without using any skills in cracking. This is referred to as shoulder surfing and is one of the most effective methods. There has been only a crude definition of shoulder surfing. For example, the Common Evaluation Methodology(CEM) attack potential of Common Criteria (CC), an international standard, does not quantitatively express the strength of an authentication method against shoulder surfing. In this paper, we introduce a shoulder surfing risk calculation method supplements CC. Risk is calculated first by checking vulnerability conditions one by one and the method of the CC attack potential is applied for quantitative expression. We present a case study for security-enhanced QWERTY keyboard and numeric keypad input methods, and the commercially used mobile banking applications are analyzed for shoulder surfing risks.

• Journal of Korean Institute of Industrial Engineers
• /
• v.40 no.2
• /
• pp.195-204
• /
• 2014

The transition from fossil to renewable energy is inevitable due to fossil depletion. So, Renewable energy is very important for energy security and economic growth although it's R&D is long-term and high risky project. We propose new valuation method which combined system dynamics and compound real option method for long-term and high risk projects such as renewable energy. This method can show dynamic valuation results for the complex causal interaction and be easy for Monte-Carlo simulation to estimate volatility. And it can reflect the value of flexible decision for uncertainty. We applied the empirical analysis for Korea's photovoltaic industry by using this method. As results by empirical analysis, photovoltaic's R&D has high valuation using this method compared by traditional valuation methods such as DCF.