• Journal of Korea Multimedia Society
• /
• v.16 no.12
• /
• pp.1413-1426
• /
• 2013

RFID thecnology has been widely adopted by industries for supply chain management. When a product item is manufactured RFID tag is attached to the product item and supply chain management among factories, distributors, retailers and customers needs to handle ownership transfer for the product item carefully. With RFID technology, the secure and efficient ownership transfer protocol is an important issue for the identification of product items and the overall system efficiency on supply chain. Many ownership transfer protocols have been proposed now. They have security problems and use complex operations such as encryption operation and hash function. Lo et al. proposed a protocol using lightweight operations such as shift, addition, XOR, and random number generation[1]. However, this protocol has a security problem in which the secret key between the tag and the new owner is disclosed to the attackers, and it is also weak against the Fraud attack[2]. In this paper, we propose a new ownership transfer protocol using lightweight operations such as shift, addition, and random number generation. This protocol is the modified version of Lo et al.'s protocol and is secure against the security attacks.

• Korean Security Journal
• /
• no.48
• /
• pp.79-111
• /
• 2016

This study aims at analyzing the global trend of standardization in the field of Industrial Security through ISO/TC 292. It covers broad areas from risk management for industrial property protection and loss prevention through supply chain security, product and document fraud and counterfeiting countermeasures and control and community resilience. It also explores the historical background of the standardization in the security field, how ISO TC 292 came out as a leading group in order to standardize relevant security management systems. TC 292 deals with terminology, general security-related standards and supply chain security management. One of the major findings from this analysis is that security targets and threats are diversified and so organizations like enterprises should have proper flexibility to adapt themselves to new security environment and take appropriate resilience system to cope with the threats and incidents. Also the ISO standardization requires public or private entities to take holistic approaches in security management. Finally, it was found that South Korea has to prepare for this global trend of standardization in this field so that ISO certification market demand and the requirements for transnational trades can be well met.

• Information and Communications Magazine
• /
• v.20 no.11
• /
• pp.1550-1559
• /
• 2003

The convergence of fixed and wireless networks in data communication is providing the necessary driver for M2M commerce to take-off. The opportunities provided by M2M Commerce areonly limited by imagination. Automotive Fleet and Freight, Tolling, Water and Power Metering, Supply Chain Management including Asset Management, Remote Monitoring and Diagnostics, Energy Management and Access Control and Security are among the many M2M applications that are currently getting rolled out. ARC Group expects the worldwide solutions market to be worth in excess of US$ 100 billion by 2007. In addition, operator revenues worldwide from the transport of Telematics data alone will rise from US$ 3.5 billion in 2002 to US$ 78 billion by 2007. This paper discusses some of the lifestyle and business opportunities provided by M2M Commerce in the new ear of network convergence. It also provides some case studies to demonstrate the benefits of M2M Commerce across the supply chain. The key focus of the paper is on achieving enhanced lifestyle, cost reduction, improved profitability and enhanced customer relationship management through M2M Commerce.

• Proceedings of the Korean Information Science Society Conference
• /
• 2012.06c
• /
• pp.286-288
• /
• 2012

Facing the counterfeiting acts towards various products, many manufacturers implement ePedigree system to secure their supply chain. Using ePedigree, a distribution history including a valid product identifier from the manufacturer until the final retailer is recorded. And this ePedigree is signed by each involved supply chain party using digital signature. With this digital signature, any unauthorized alteration to the ePedigree document would generate a failed verification process. If there is a counterfeit product using a fake ePedigree document, it wouldn't be able to pass the verification process either. Hence, there wouldn't be any counterfeit product that could enter the legal supply chain and bought by the consumer. We are proposing to use ECDSA instead of RSA since it has faster performance and shorter key size. At a certain same security level, ECDSA only needs 163 bits, while RSA needs 1024 bits.

• Economic and Environmental Geology
• /
• v.56 no.2
• /
• pp.155-166
• /
• 2023

Through COVID-19, the importance of supply chain management of raw material minerals has been maximized. In particular, supply chain management is important for rare metals, which are difficult to manage demand and supply, in order to secure raw materials for the parts and materials industry that Korea is actively promoting. In this study, a system was established and evaluated to select Critical minerals that need to respond to Korea's industrial structure and global risks by quantifying tangible and intangible risk factors. Global Supply Concentration, Supplying country risk, Policy Social Environment Regulation, Domestic Import Instability, Risk responsiveness, Market Scale, Demand Fluctuation and Economic Importance were evaluated as evaluation indicators. The degree of risk and risk impact were quantitatively measured using the criticality matrix-criticality level. After evaluating 40 types of minerals used in domestic new growth businesses, 15 types of Critical minerals(Li, Pt, Co, V, REE, Mg, Mo, Cr, Ti, W, C, Ni, Al, Mn, Si) in Korea were selected. The results are expected to be used to establish policies to strengthen resource security and to make decisions to form a company's raw material portfolio.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.34 no.2
• /
• pp.229-244
• /
• 2024

Recently, supply chain attacks against nuclear facilities such as "Evil PLC" are increasing due to the application of digital technology in nuclear power plants such as the APR1400 reactor. Nuclear supply chain security requires a asset management system that can systematically manage a large number of providers due to the nature of the industry. However, due to the nature of the control system, there is a problem of inconsistent management of attribute information due to the long lifecycle of software assets. In addition, due to the availability of the operational technology, the introduction of automated configuration management is insufficient, and limitations such as input errors exist. This study proposes a systematic asset management system using SBOM(Software Bill Of Materials) and an improvement for input errors using natural language processing techniques.

• Journal of Information Technology Services
• /
• v.20 no.6
• /
• pp.63-81
• /
• 2021

Joint financial network of Korea Financial Telecommunications and Clearings Institute, which is an essential facility with a natural monopoly, maintained its closedness as monopoly/public utility model, but it has evolved in the form of open banking in order to obtain domestic fintech competitiveness in the rapidly changing digital financial ecosystem such as the acceleration of Big Blur. In accordance with digital transformation strategy of financial institutions, various ICT companies are actively participating in the financial industries, which has been exclusive to banks, through the link technology called Open API. For this reason, there has been a significant change in the financial service supply chain in which ICT companies participate as users. The level of security in the financial service supply chain is determined based on the weakest part of the individual components according to the law of minimum. In addition, there is a perceived risk of personal information and financial information leakage among the main factors that affect users' intention to accept services, and appropriate protective measures against perceived security risks can be a catalyst, which increases the acceptance of open banking. Therefore, this is a study on factors affecting the introduction of open banking to achieve financial innovation by developing an open banking security control model for financial institutions, as a protective measures to user organizations, from the perspectives of cyber financial security and customer information protection, respectively, and surveying financial security experts. It is expected, from this study, that effective information protection measures will be derived to protect the rights and interests of financial customers and will help promote open banking.

• Journal of Korea Port Economic Association
• /
• v.27 no.2
• /
• pp.333-354
• /
• 2011

After the terrorist attack of 9/11 on the USA, the security concern to global trade has been raised. In particular, the USA has actively promoted a series of initiatives and rules such as CSI, 24 hour rule, C-TPAT, and so on in the area of logistics activities, which aimed to better protect the country against the potential terrorist threats. While implementing such schemes called as a multi-layed logistics security strategy, a large number of countries trading with USA are facing with the issues of additional time and costs for inspecting cargos in their logistics facilities. As a result, most countries all over the world have sought a way to minimize the impacts from such strategy. The Korea also is preparing the several security programs operated by various ministries, which are aiming to not only improve the efficiency of trade flows but also to ensure supply chain security. However, many companies are expressing the inefficiency of operating such programs. Thus, this paper analyzed several global supply chain security programs currently adopted by international organizations(ISO, WCO, and IMO) and major countries(USA, EU, and Singapore) and suggested a guideline for developing the national logistics security system.

• Convergence Security Journal
• /
• v.22 no.5
• /
• pp.49-59
• /
• 2022

Cyber security in the automobile sector is a key factor in the life cycle of automobiles, and cyber security evaluation standards are being strengthened worldwide. In addition, not only manufacturers who design and produce automobiles, but also due to the nature of automobiles consisting of complex components and various parts, the safety of cybersecurity can be secured only when the implementation level of the cybersecurity management system of companies participating in the entire supply chain is evaluated and managed. In this study, I analyzed the requirements of ISO/SAE 21434 and TISAX, which are representative standards for evaluating automotive cybersecurity. Through a survey conducted on domestic/overseas company security officers and related experts, suitability and feasibility were reviewed according to priorities and industries, so 6 areas and 45 evaluation criteria were derived and presented as final evaluation items. This study is meaningful as a study in that it presented a model that allows companies participating in the automotive supply chain to evaluate the current cybersecurity management level of the company by first applying ISO/SAE 21434 and TISAX overall control processes before uniformly introducing them.

• Proceedings of the Korean Society of Crop Science Conference
• /
• 2022.10a
• /
• pp.6-6
• /
• 2022

Prolonged Russia-Ukraine war, and unstable situation of supply and demand of global crops including the COVID-19 pandemic have raised awareness regarding food crisis, and in addition to this situation, export restriction measures imposed by some countries have accelerated the rise in the prices. Since the Republic of Korea depends annual crop consumption (21.32 million tons) mostly on the imports (food self-sufficiency rate in 2020 was 45.8%, crop self-sufficiency rate was 20.2%), our main task is to stably secure food. Now we need to put focus on building capacity to secure stable food supply, and actively manage and respond to risks. To overcome this condition, the Korean government set robust food sovereignty as its policy task, and has been focusing on the policy capacity by providing financial and policy support in parallel. We need to implement mid- to long-term measures to strengthen food security as well as to ensure domestic price stability. While increasing the domestic capacity to supply food in the mid- to long-term perspective, we are implementing projects to bring in crops which are inevitable to be imported by private companies. Specifically, we are making efforts to expand infrastructure for the public reserve and domestic production of wheat and beans which have low self-sufficiency rate, and to secure food sovereignty by providing support to secure global crop supply chain to private companies. The Ministry of Agriculture, Food and Rural Affairs plans to set a target for food self-sufficiency rate and prepare a policy to strengthen mid- to long-term food security by establishing a task force to strengthen mid- to long-term food security in the Ministry. Especially, although wheat is the second staple food, domestic wheat production and the foundation for the industry is poor. Compared to the wheat imports, domestic production of wheat is 30 thousand tons (self-sufficiency rate of 1%), leading to a vulnerable status against internal and external shocks. Through the establishment of the Wheat Industry Promotion Act (Feb. 2020) and the First Master Plan for Wheat Industry Promotion (Nov. 2020), the Korean government has developed a policy basis, and has been providing financial support in overall across the production, distribution and consumption process. In addition, the government established a production complex for Korean wheat and beans in order to supply affordable government-supplied commodities, provide education and consulting services, and create a high-quality stable production system, including facilities and equipment. We are also continuing to increase the public reserve for wheat and beans with the purpose of stable supply and demand as well as food security. The Korean government will establish and implement mid- to long-term measures to strengthen the foundation for domestic production across production, distribution and consumption process, and to stably secure global supply chain including through diversified import channels.