• 정보보호학회논문지
• /
• 제25권4호
• /
• pp.793-805
• /
• 2015

현대의 자동차는 안전필수(Safety Critical) 시스템이기 때문에 차량의 안전성을 보장하는 것은 물론 초 연결사회를 지향하는 사물인터넷 기술의 발전과 자동차의 스마트화 됨에 따른 자동차 보안문제가 대두됨에 따라 자동차 소프트웨어와 공급망에서의 보증 방안과 공급망에서 발생할 수 있는 위험을 식별, 평가 및 통제하기 위한 위험관리 방안이 필요하다. 본 논문에서는 자동차 Life-Cycle 내에서 이해관계자 별 위험관리(A-SCRM, Automotive Supply Chain Risk Management) 방법을 연구 제안한다.

• 한국정보과학회논문지:컴퓨팅의 실제 및 레터
• /
• 제15권6호
• /
• pp.435-439
• /
• 2009

안전-필수 분야에 사용되는 소프트웨어의 신뢰도(dependability)를 보장하기 위해 소프트웨어의 테스팅과 확인 및 검증활동이 매우 중요하다. 본 연구에서는 위험수준이 높은 소프트웨어 모듈을 소프트웨어 수명수기 초기에 예측하여, 테스팅과 확인 및 검증 활동에 대한 자원할당을 도울 수 있게 해준다. 다중 클래스 분류를 지원하는 SVM(Support Vector Machine)을 이용하여 소프트웨어 모듈의 잠재위험수준 을 예측한다 잠재위험수준이 상대적으로 높게 나온 모듈들에 대해 테스팅과 확인 및 검증을 집중적으로 실시함으로써 보다 효과적으로 소프트웨어의 품질을 향상시킬 수 있다. 또한, 원전의 계측제어계통에 사용되는 안전-필수 소프트웨어의 안전성 심사를 위한 대상 모듈을 샘플링할 때 활용할 수 있을 것으로 기대된다.

• Asia pacific journal of information systems
• /
• 제12권4호
• /
• pp.101-120
• /
• 2002

Risk management or risk-based approach of software project management was developed to explain the effects of requirement uncertainty, control standardization, interactions on software quality. Based on a prior theory, five hypotheses were derived and empirically tested using a survey design. Data from 117 members in 3 SI companies support for the path model, and three of five hypotheses. The results showed that decreases in requirement uncertainty and increases in control standardization were directly associated with increases in the interactions between user and project teams, which, in turn, led to increases software quality. The findings suggested that the direct effect on software quality is primarily due to the interactions between user and project teams, rather than requirement uncertainty and control standardization.

• Advances in Computational Design
• /
• 제2권2호
• /
• pp.121-131
• /
• 2017

Collapse was one of the typical common geological hazards during the construction of tunnels. The risk assessment of collapse was an effective way to ensure the safety of tunnels. We established a prediction model of collapse based on Bayesian Network. 76 large or medium collapses in China were analyzed. The variable set and range of the model were determined according to the statistics. A collapse prediction software was developed and its veracity was also evaluated. At last the software was used to predict tunnel collapses. It effectively evaded the disaster. Establishing the platform can be subsequent perfect. The platform can also be applied to the risk assessment of other tunnel engineering.

• 한국안전학회지
• /
• 제17권3호
• /
• pp.66-72
• /
• 2002

During the last ten years, effort has been made for reducing maintenance cost for aged equipments and ensuring safety, efficiency and profitability of petrochemical and refinery plants. Hence, it was required to develop advanced methods which meet this need. RBI(Risk Based Inspection) methodology is one of the most promising technology satisfying the requirements in the field of integrity management. In this study, a qualitative assessment algorithm for RBI based on the API 581 code was reconstructed for developing an RBI software. The user-friendly realRBI software is developed with a module for evaluating qualitative risk category using the potential consequence factor and the likelihood factor.

• Nuclear Engineering and Technology
• /
• 제50권8호
• /
• pp.1255-1265
• /
• 2018

The need for a PSA (Probabilistic Safety Assessment) for a multi-unit at a site is growing after the Fukushima accident. Many countries have been studying issues regarding a multi-unit PSA. One of these issues is the problem of many combinations of accident sequences in a multi-unit PSA. This paper deals with the methodology and software to quantify a PSA scenarios for a multi-unit site. Two approaches are developed to quantify a multi-unit PSA. One is to use a minimal cut set approach, and the other is to use a Monte Carlo approach.

• 대한기계학회:학술대회논문집
• /
• 대한기계학회 2003년도 춘계학술대회
• /
• pp.598-603
• /
• 2003

During the last ten years, the need has been increased for reducing maintenance cost for aged equipments and ensuring safety, efficiency and profitability of petrochemical and refinery plants. RBI (Risk Based Inspection) methodology is one of the most promising technologies satisfying the need in the field of integrity management. In this study, a user-friendly software, realRBI for RBI based on the API 581 code was developed and a quantitative analysis was performed for over 500 equipments in a domestic plant whose operating time reaches about 13 years. Current risks for each equipment parts were evaluated and risk based prioritization were determined as a conclusion.

• 한국멀티미디어학회논문지
• /
• 제17권12호
• /
• pp.1494-1502
• /
• 2014

Since smartphones are utilized in the ranges from personal usages to governmental data exchanges, known but not patched vulnerabilities in smartphone operating systems are considered as major threats to the public. To minimize potential security breaches on smartphones, it is necessary to estimate possible security threats. So far, there have been numerous studies conducted to evaluate the security risks caused by mobile devices qualitatively, but there are few quantitative manners. For a large scale risk evaluation, a qualitative assessment is a never ending task. In this paper, we try to calculate relative risk levels triggered by software vulnerabilities from unsecured smartphone operating systems (Android and iOS) among 51 Asian countries. The proposed method combines widely accepted risk representation in both theory and industrial fields. When policy makers need to make a strategic decision on mobile security related agendas, they might find the presented approach useful.

• Journal of Information Technology Applications and Management
• /
• 제13권4호
• /
• pp.237-255
• /
• 2006

This study was exploratively performed to demonstrate the management behavior of the public software project in korea. In this study, 167 auditing reports on the public software project which were carried out during $1999{\sim}2003$, were employed and surveyed. Survey reveals that quality management was the most neglected in process of software project management relative to other 12 management areas. And configuration management, risk management, time management, and scope management follow up in order in its vulnerability in software project management.

• 정보처리학회논문지:컴퓨터 및 통신 시스템
• /
• 제2권12호
• /
• pp.541-552
• /
• 2013

최근 우리 생활에 스마트 기술의 빠른 전파 때문에 정보 과학 및 기술 분야에 있어서는 스마트 폰의 소프트웨어 보안성이 중요한 이슈가 되고 있다. 보안성 중요 시스템인 스마트 폰은 은행 서비스, 유비쿼터스 홈 관리, 항공 고객의 검색 등의 서비스 시스템에 이용되기 때문에 비용의 리스크, 손실의 리스크, 이용가능 리스크, 그리고 사용상의 리스크에 관련 되어 있다. 스마트 폰의 보안성 이슈는 이들의 관찰된 고장들을 사용하여 소프트웨어 장애 분석을 하는 것이 핵심 접근 방법이다. 본 연구에서는 손으로 조작하는 디바이스들의 수렴하는 보안성과 신뢰성 분석 기법을 얻기 위해서 결함 트리 분석 (FTA)와 고장 모드 효과 분석(FMEA)을 사용하여 스마트 폰의 소프트웨어 보안성 분석을 위한 하나의 유효한 통합적 프레임 워크를 제안한다. 그리고 만약 하나의 고장 모드 효과 분석이 더욱 더 간단해지면 스마트 디바이스들의 보안성 개선뿐만 아니라 고장효과 의 감소를 위해서 제안된 통합적인 프레임 워크는 핵심 해법이 됨을 논의한다.