• Journal of the Korean Society of Marine Environment & Safety
• /
• v.22 no.7
• /
• pp.807-813
• /
• 2016

The Maritime Traffic Safety Audit Scheme was institutionalized in 2009 to provide for professional surveys, measurement and the evaluation of navigational hazards that might occur in coastal waters in the course of marine work. Related researches that dealt with the reform of the Maritime Traffic Safety Audit Scheme found that there were no rules or regulations for verifying whether marine work conformed to audit results and reviewing the exactitude of ship handling simulations which were a crucial part of the scheme. According to the necessity of adopting an ex post facto management system in the field of maritime traffic, this study analyzed the similar audit acts such as the Natural Environment Impact Audit Scheme and the Road Traffic Safety Audit Scheme, and proposed specific articles for revising Maritime Safety Act in order to break out from the institutional inertia of the current Maritime Traffic Safety Audit Scheme. It is expected that a newly proposed legal system for verifying the performance of audit results and the exactitude of audits will help improve maritime traffic safety by eradicating potentially hidden hazards related to marine work.

• KIPS Transactions on Software and Data Engineering
• /
• v.5 no.9
• /
• pp.425-432
• /
• 2016

As the importance of information audit is getting bigger, the public corporations invest many expenses at information system audit to build a high quality system. For this purpose, there are much research to proceed an audit effectively. In database audit works, it could audit utilizing a variety of monitoring tools. However, when auditing SQLs which might be affected to database performance, there are several limits related to SQL audit functionality. For this reason, most existing monitoring tools process based on meta information, it is difficult to proceed SQL audit works if there is no meta data or inaccuracy. Also, it can't detect problems by analysis of SQL's syntax structure. In this paper, we design and implement the SQL Inspector using ANTLR which is applied by syntax analysis technique. The overall conclusion is that the implemented SQL Inspector can work effectively much more than eye-checked way. Finally, The SQL inspector which we proposed can apply much more audit rules by compared with other monitoring tools. We expect the higher stability of information system to apply SQL Inspector from development phase to the operation phase.

• Proceedings of the KSR Conference
• /
• 2011.10a
• /
• pp.2225-2234
• /
• 2011

According to Railway Safety Act, Korea Transportation Safety Authority (KOTSA) has been entrusted with 'Integrated Railway Safety Audit (IRSA) and has implemented the safety audit to the Railway operation agencies such as Korea Railway (KORAIL) and the Railway facility management organization such as the Korea Rail Network Authority (KR Network). The target of IRSA is to establish the effective rail safety management system and to raise the safety level of the Railway operation and facility agencies by checking synthetically their performance of safety duties with sincerity according to the Railway Safety Act. Even though newly introduced IRSA is conducted smoothly, it is necessary to study the methodology and criteria of the state's safety audit system. The purpose of this paper is to improve the efficiency of IRSA by the comparative research between IRSA and other similar safety audit system and to establish the consecutive improvement concept of IRSA. Second purpose is to confirm the effectiveness of IRSA by the analysis of the relationship between audit results and the safety level of the rail operation agencies.

• Journal of the Korean Society of Safety
• /
• v.28 no.1
• /
• pp.40-46
• /
• 2013

In the chemical process industries, accidents have a high potential and large effects on catastrophic results. Therefore the safety management for accident prevention plays a crucial role to guarantee the process safety. For these reasons, many systematic methods for safety management system have been widely employed in the fields of chemical processes. PSM (Process safety management) is one of most representative methods. The audit system, which is one of PSM system components, evaluates the performance of PMS system. However, most existing safety audit systems are not systematic and these are performed based on knowledges and experiences of various specialist. Moreover, the safety audit is only performed based on each independent technical component. So, the results of safety audit are not a quantitative index but only a series of commentaries. Finally, it is very difficult to obtain the comparison with other plants or industries. In this study, the novel systematic method and index-based accident database of auditing safety management systems for quantitative assessment are proposed. First, the elements of safety audit replace technical methods to categories of accident database. The F-N curve of each category for accident database is employed to derive the index for quantitative assessment. The Accidental Factor Risk Index (AFRI) is suggested for evaluating the effect of each element in accident database and safety audit system. The safety audit can be modified according to the proposed index.

• The Transactions of the Korea Information Processing Society
• /
• v.4 no.3
• /
• pp.754-766
• /
• 1997

In this paper,we implement the Audit Trail Service Sydtem for the EDI Security.It has solved a law dispute between enterprises by informations that have generated by the EDI serice systrm.The audit trail service sys-tem implemented for EDI security satisfied the requirements of audit and the protocol of the security serive of X.435 and X.400.The EDI Security Audit System consists of the event discrimiator,the audit recirder,the audit archiver,and the provider of audit services .The event discriminator classified the reansmitted data from the EDI network ot audit sercices.The audit recorder constructs an index that has combined time information wiht audit unformations which are classified by the event discriminator.ZThe audit archiver performas the vacumming of added audit imformations by passing time by passing time.The audit provider is a module that carries out the audit trail servies by using stored audit informations. The audit provider suports audit servies,which are non-requdiation,proof and probe,controller of security,and accesing infrimation.The audit trail service system for EDI security constructs audit information by using index that is combining time imfromation,so it supports especially fast accesing audit information.

• Journal of Environmental Impact Assessment
• /
• v.13 no.2
• /
• pp.41-55
• /
• 2004

The purpose of this study is to consider for the introduction of the school eco-audit system as an educational method for sustainable development. First of all, the concept and objective of the education for sustainable development(ESD) are reviewed in order to advance a theory on school eco-audit system. ESD which under the premise of global inter and intra generation justice, resolves to address a mixture of ecological, economical and social aspects, as well as safeguarding limited resources and protecting the environment from pollution and energy. In order to effectively structure uncoordinated environmental activities carried out by schools, the introduction of school eco-audit system in Korea is suggested, which as the model for long-term development, has since been integrated into the school's programme. Activities related to waste, heating, electricity and water are run by a 'Management Team'. By combining all 3 fields of action - i.e. establishing basic organizational conditions, education, and individual ecological measures - the eco-audit proves to be the key to success. In particular, administration agency and method, institutional improvement are presented.

• The Journal of the Korea Contents Association
• /
• v.11 no.2
• /
• pp.88-100
• /
• 2011

This thesis suggests fixed quantity model and detailed performance procedures of an information system audit. In addition, an identification of the check-items with high operating risk and factors that might lead to serious effects on the business are made. Then, this thesis proposes the information system audit model that can grant priorities. By using this model, the orderer can evaluate objectively with digitized mark. The model can improve the effectiveness, reliability, and objectivity of the audit by minimizing the discrepancies of different opinions about audit evaluation results between auditee and the orderer. The proposed model is adapted to an application system and audit projects of the database construction. As a result, the model has received an equal mark from the result of the general reviews, thus the propriety of the proposed model was verified.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.16 no.2
• /
• pp.1403-1413
• /
• 2015

An information System Audit by the recognition of a problem and suggestions for solutions for overall matters about constructing and managing information systems is needed in order to contribute to the improvement of an information system's quality and improving the performance of projects. In reality, however, the general cognition is that audit is biased by subjective opinions. For this, an auditor needs to measure the level of recognition of the usability and convenience of the technologies of automating audit by applying TAM in the information system audit, and to analyze the relationship with recognition and availability of the interested parties for the technology (tool) of the audit. By the hypothesis verification result, an auditor needs to present objective corroborative facts that back up the level of recognition and usability for the information technology in the field of audit. This study verified that the phenomenon of technology application can be explained and predicted by applying TAM in the field of audit. Through an empirical study of the recognition level of audit and contractor, the developer suggests that the audit plan stage is similar to the audit corrective action stage, but the audit action stage is different from the audit review stage. This research can verify the audit technology preferred for the availability and intention of use and usability.

• Journal of the Institute of Electronics Engineers of Korea TC
• /
• v.40 no.11
• /
• pp.27-33
• /
• 2003

This paper proposes the efficient audit method for the distributed connection information in ATM switch. Based on this method, we design the periodic audit function by a system and immediate audit function by a operator's order. We evaluate the performance about the proposed Audit method. At the result of evaluation, We figure out that the load of call control processor is almost independent of a system load regardless of audit function operation. Therefore, we confirm that the proposed audit method nearly have an effect on the load of call control processor. The proposed audit method can reestablish a Mismatched connection information with a little load.

• The Journal of Society for e-Business Studies
• /
• v.14 no.3
• /
• pp.169-181
• /
• 2009

As the situations that important evidences or clues are found in digital information devices increase, digital forensic technology is widely applied. In this paper, forensic based audit system is implemented by associating forensic analysis system with agent system which monitors and collects data for analysis in storage devices over distributed network nodes. Forensic audit system implemented in this paper can prevent, audit and trace the computer related crimes in IT infrastructure by real time monitoring and evidence seizure.